$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/lPjjQAa9YjMY3PXnYpR1IOY7-6I.roa File: lPjjQAa9YjMY3PXnYpR1IOY7-6I.roa (raw, json) Hash identifier: sfIxAt+svBBFa/KEcFp7lApoeHX5O6HWW+80fq+2oeE= Subject key identifier: 94:F8:E3:40:06:BD:62:33:18:DC:F5:E7:62:94:75:20:E6:3B:FB:A2 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 12C7 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/lPjjQAa9YjMY3PXnYpR1IOY7-6I.roa Signing time: Mon 26 Aug 2024 05:32:32 +0000 ROA not before: Mon 26 Aug 2024 05:32:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 16509 IP address blocks: 103.235.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4807 (0x12c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Aug 26 05:32:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=94F8E34006BD623318DCF5E762947520E63BFBA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a7:f3:b4:09:3a:b8:c5:ec:6f:bb:6c:98:e5: e6:0d:54:3d:e8:cf:7b:ab:42:58:5f:ce:d5:d7:3f: 15:7c:8d:4e:e8:a5:b9:d6:79:2f:27:5b:4f:23:18: f1:59:4a:2d:b8:4a:f7:4b:59:f3:d3:96:ac:27:95: 11:74:ad:da:4a:24:31:16:14:e0:96:ae:7d:83:61: 13:46:f9:46:d9:ef:df:4d:66:82:63:40:1e:8c:6d: 0a:53:e9:56:f1:d2:2b:48:64:1a:77:92:b1:28:a1: 26:1b:a0:71:72:93:36:b9:5f:f3:1c:e4:fc:71:b9: 95:b8:9f:82:ad:be:32:6c:ae:1f:4b:b9:55:ad:d3: 65:e6:61:69:71:3d:4e:56:b3:85:08:25:a2:9a:40: 33:f7:a7:73:61:54:97:2e:cf:de:70:58:8e:05:bd: 14:2f:88:1a:78:51:ce:8e:db:e4:c9:01:da:4e:b1: 0a:7a:8b:bb:01:66:d4:8b:6c:a1:6d:9c:ad:ab:00: af:37:89:e1:23:22:13:cf:4b:83:08:86:79:fb:3f: a4:15:7e:a9:72:a5:cd:62:20:33:c0:d8:68:4a:11: 91:bd:0c:a7:64:b8:b1:0b:4c:33:6f:c7:c9:71:eb: 5a:90:6f:aa:0e:08:9d:bc:fc:20:21:f6:b6:a9:d7: 33:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F8:E3:40:06:BD:62:33:18:DC:F5:E7:62:94:75:20:E6:3B:FB:A2 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/lPjjQAa9YjMY3PXnYpR1IOY7-6I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.235.88.0/24 Signature Algorithm: sha256WithRSAEncryption 86:8b:6f:1b:1f:6b:89:1b:69:b1:d9:00:59:b8:0c:a7:e7:75: e4:f2:74:9b:4d:67:18:30:10:c2:76:72:1a:15:f1:5d:cb:31: 4a:ca:2c:8d:e5:de:e8:14:ae:c8:b2:fa:eb:a1:6c:18:62:bf: 60:4e:ec:cb:9b:aa:af:4d:f9:0b:fa:79:cd:55:34:8a:69:84: d8:71:1d:94:0b:83:06:f1:eb:1f:cf:9b:d0:98:b7:09:b6:29: f9:73:36:ba:e0:61:b3:20:af:be:67:d4:05:15:f8:5b:b4:23: 04:50:bd:c4:0b:70:20:a2:07:44:28:a4:bd:3b:0e:85:aa:a2: b9:fb:e7:7e:ca:db:8c:88:86:fb:d5:3e:e5:71:a3:82:df:e7: 34:18:df:88:89:66:0b:75:81:54:0b:72:e8:8b:36:24:03:eb: 98:b4:f6:28:93:b7:00:ba:b7:87:e2:4d:19:4a:d2:e2:7b:b6: d0:33:d9:de:f1:af:8d:e7:2c:37:63:17:a1:64:14:25:d5:ca: 4b:2d:ce:49:f9:52:d9:36:8b:82:ca:1f:b9:d1:d8:fc:3f:42: 8d:ff:d1:5a:ac:17:c7:25:20:a1:e0:0e:c1:b9:a0:35:30:dd: 1f:2d:6f:27:c6:ef:fc:5f:5b:a1:13:79:fe:f2:0a:5b:30:82: 5d:3e:79:f2 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEscwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNDA4MjYw NTMyMzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk0RjhFMzQwMDZCRDYy MzMxOERDRjVFNzYyOTQ3NTIwRTYzQkZCQTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/p/O0CTq4xexvu2yY5eYNVD3oz3urQlhfztXXPxV8jU7opbnW eS8nW08jGPFZSi24SvdLWfPTlqwnlRF0rdpKJDEWFOCWrn2DYRNG+UbZ799NZoJj QB6MbQpT6Vbx0itIZBp3krEooSYboHFykza5X/Mc5PxxuZW4n4KtvjJsrh9LuVWt 02XmYWlxPU5Ws4UIJaKaQDP3p3NhVJcuz95wWI4FvRQviBp4Uc6O2+TJAdpOsQp6 i7sBZtSLbKFtnK2rAK83ieEjIhPPS4MIhnn7P6QVfqlypc1iIDPA2GhKEZG9DKdk uLELTDNvx8lx61qQb6oOCJ28/CAh9rap1zNXAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUlPjjQAa9YjMY3PXnYpR1IOY7+6IwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9sUGpqUUFhOVlqTVkzUFhuWXBS MUlPWTctNkkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+tY MA0GCSqGSIb3DQEBCwUAA4IBAQCGi28bH2uJG2mx2QBZuAyn53Xk8nSbTWcYMBDC dnIaFfFdyzFKyiyN5d7oFK7IsvrroWwYYr9gTuzLm6qvTfkL+nnNVTSKaYTYcR2U C4MG8esfz5vQmLcJtin5cza64GGzIK++Z9QFFfhbtCMEUL3EC3AgogdEKKS9Ow6F qqK5++d+ytuMiIb71T7lcaOC3+c0GN+IiWYLdYFUC3LoizYkA+uYtPYok7cAureH 4k0ZStLie7bQM9ne8a+N5yw3YxehZBQl1cpLLc5J+VLZNouCyh+50dj8P0KN/9Fa rBfHJSCh4A7BuaA1MN0fLW8nxu/8X1uhE3n+8gpbMIJdPnny -----END CERTIFICATE-----Generated at Fri Nov 22 00:15:21 2024 by rpki-client on console-ams.rpki-client.org