$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/XSLYHisFznZF6UkZza9K_4j06VU.roa File: XSLYHisFznZF6UkZza9K_4j06VU.roa (raw, json) Hash identifier: J/clNmNHoYBbPxqkgGSeEVBQzC11XsSYJs8UyDwCGY0= Subject key identifier: 5D:22:D8:1E:2B:05:CE:76:45:E9:49:19:CD:AF:4A:FF:88:F4:E9:55 Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378 Certificate serial: 0C5E Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/XSLYHisFznZF6UkZza9K_4j06VU.roa Signing time: Wed 18 Sep 2024 04:12:01 +0000 ROA not before: Wed 18 Sep 2024 04:12:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38851 IP address blocks: 103.229.102.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3166 (0xc5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378 Validity Not Before: Sep 18 04:12:01 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5D22D81E2B05CE7645E94919CDAF4AFF88F4E955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4b:85:de:e6:b8:b5:23:22:16:17:cc:3d:f2: 5d:16:13:73:62:25:71:d3:35:f4:65:3f:20:d5:f2: 9d:f8:9b:a7:36:31:07:ae:fc:6a:88:35:fd:87:70: e8:79:26:7e:34:3f:ca:6c:3f:16:a6:58:a3:a4:21: 6b:d1:59:2b:f3:3c:91:ce:2e:46:8d:20:8f:bc:0e: 3d:58:7f:3f:21:f4:7d:8f:d4:89:2e:f9:a9:d2:29: 0e:4a:bf:8a:d3:53:e4:e9:3d:ff:2e:97:62:47:ec: fb:16:c1:58:e9:cb:94:99:cb:99:aa:14:77:2e:ff: 89:d2:5c:19:fc:05:3b:b0:45:b6:aa:2f:e3:83:68: fe:0a:22:5b:30:4a:3f:2c:ea:b9:92:b2:96:c8:36: f1:8f:58:e9:d1:e6:4c:0f:97:02:cc:28:da:73:e2: 9f:fc:dd:c2:eb:3b:52:49:22:32:52:47:47:cd:2e: 63:7c:0d:e0:a1:9f:b5:da:72:46:89:e5:70:d6:f5: ae:22:a3:d1:9f:f5:15:82:d4:eb:9b:fc:0c:51:c1: f6:ed:ca:66:cf:0f:be:fc:4c:71:a4:1f:ae:c5:59: 8d:56:c7:14:9e:d8:ec:b0:26:c5:c6:00:39:77:2f: 96:2d:24:60:9a:9f:71:d9:18:ed:5c:6d:48:32:d5: 97:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:22:D8:1E:2B:05:CE:76:45:E9:49:19:CD:AF:4A:FF:88:F4:E9:55 X509v3 Authority Key Identifier: keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/XSLYHisFznZF6UkZza9K_4j06VU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.229.102.0/23 Signature Algorithm: sha256WithRSAEncryption 06:07:70:48:54:ad:a3:d0:1c:61:52:14:dd:a2:a9:fd:d7:4a: c7:72:da:ad:43:ce:3e:13:55:3f:df:89:fd:ab:2c:b7:36:0f: f4:72:3f:c0:5f:de:9b:85:9b:59:b9:a1:a8:4b:2d:f0:73:02: 95:3d:ff:e1:b2:62:21:bc:84:43:b1:ec:c9:b6:d6:a7:20:31: 13:f3:98:c6:0b:2a:ea:e8:c5:26:ed:ac:b1:f3:ac:71:c5:61: 22:93:2d:4f:24:7c:2a:53:b4:01:0d:ec:d2:fe:c1:6a:45:e8: e3:80:c8:ba:d5:fb:e2:88:1e:48:65:cc:a9:db:d6:e7:15:6d: 9e:c1:36:0c:4e:b3:05:e6:ec:a9:56:b8:45:b2:9f:51:0e:72: 08:be:54:34:a1:d9:6b:47:a1:52:14:8c:fe:9e:4f:fe:3e:56: 1e:06:f8:2e:ae:94:86:94:80:a3:5d:ed:86:d2:04:d5:d5:5d: 7f:35:4d:15:4a:73:ab:bf:4f:4b:31:6b:6f:b8:53:83:d6:a1: c5:c3:19:53:5c:bc:cd:76:3e:86:7f:90:01:1e:c8:14:0d:b2: 99:34:ad:f5:f9:b9:71:04:7c:b5:9e:41:ba:62:09:b3:f7:e1: 14:03:a5:ba:cf:dc:af:a7:c3:46:bb:fc:1f:c4:8b:7e:81:e7: 29:0f:01:36 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDF4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0VD N0YxNjc3QkI0OTIzODAyODIxNTNCQjc3RUMyRUJFMzE4NTM3ODAeFw0yNDA5MTgw NDEyMDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVEMjJEODFFMkIwNUNF NzY0NUU5NDkxOUNEQUY0QUZGODhGNEU5NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9S4Xe5ri1IyIWF8w98l0WE3NiJXHTNfRlPyDV8p34m6c2MQeu /GqINf2HcOh5Jn40P8psPxamWKOkIWvRWSvzPJHOLkaNII+8Dj1Yfz8h9H2P1Iku +anSKQ5Kv4rTU+TpPf8ul2JH7PsWwVjpy5SZy5mqFHcu/4nSXBn8BTuwRbaqL+OD aP4KIlswSj8s6rmSspbINvGPWOnR5kwPlwLMKNpz4p/83cLrO1JJIjJSR0fNLmN8 DeChn7XackaJ5XDW9a4io9Gf9RWC1Oub/AxRwfbtymbPD778THGkH67FWY1WxxSe 2OywJsXGADl3L5YtJGCan3HZGO1cbUgy1ZdtAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUXSLYHisFznZF6UkZza9K/4j06VUwHwYDVR0jBBgwFoAUfsfxZ3u0kjgCghU7 t37C6+MYU3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL2Zz ZnhaM3Uwa2pnQ2doVTd0MzdDNi1NWVUzZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZnNmeFozdTBramdDZ2hVN3QzN0M2LU1ZVTNnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL1hTTFlIaXNGem5aRjZVa1p6YTlLXzRq MDZWVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn5WYwDQYJ KoZIhvcNAQELBQADggEBAAYHcEhUraPQHGFSFN2iqf3XSsdy2q1Dzj4TVT/fif2r LLc2D/RyP8Bf3puFm1m5oahLLfBzApU9/+GyYiG8hEOx7Mm21qcgMRPzmMYLKuro xSbtrLHzrHHFYSKTLU8kfCpTtAEN7NL+wWpF6OOAyLrV++KIHkhlzKnb1ucVbZ7B NgxOswXm7KlWuEWyn1EOcgi+VDSh2WtHoVIUjP6eT/4+Vh4G+C6ulIaUgKNd7YbS BNXVXX81TRVKc6u/T0sxa2+4U4PWocXDGVNcvM12PoZ/kAEeyBQNspk0rfX5uXEE fLWeQbpiCbP34RQDpbrP3K+nw0a7/B/Ei36B5ykPATY= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:40 2024 by rpki-client on console-ams.rpki-client.org