$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ULC/buy2wyl2RfYBrEknI-wokR0rmRc.roa File: buy2wyl2RfYBrEknI-wokR0rmRc.roa (raw, json) Hash identifier: s+LeJyi1JI08Hu0w9Ih0SUFbxpxNKkgwh6GUYTgypPg= Subject key identifier: 6E:EC:B6:C3:29:76:45:F6:01:AC:49:27:23:EC:28:91:1D:2B:99:17 Certificate issuer: /CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B Certificate serial: 048B Authority key identifier: BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/buy2wyl2RfYBrEknI-wokR0rmRc.roa Signing time: Mon 26 Aug 2024 05:34:32 +0000 ROA not before: Mon 26 Aug 2024 05:34:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 103.157.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Sep 2024 11:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1163 (0x48b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B Validity Not Before: Aug 26 05:34:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6EECB6C3297645F601AC492723EC28911D2B9917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:46:90:21:b6:19:67:bb:a0:45:e0:03:a3:cc: c0:cb:4a:d3:6a:d6:3a:15:a6:02:d2:73:32:f2:4f: b5:81:d3:a7:86:20:94:90:97:20:de:4a:ec:9f:3c: 6c:c4:92:de:2a:8a:7b:b4:ea:75:8f:0a:33:47:de: 67:50:8b:af:bf:a7:68:2d:ec:77:25:ea:a8:f0:d6: ad:0c:a1:5a:ed:fd:cf:24:7a:6c:6e:d8:b3:da:b4: 70:d6:81:7b:e8:89:b1:ae:9f:8d:cf:ab:09:2c:e4: 60:06:67:77:43:82:c0:19:2a:16:62:d2:28:eb:6e: 06:e3:1d:03:b1:11:da:3a:96:ca:e2:40:3d:52:77: 57:c9:7b:aa:d3:70:25:c6:de:6d:4e:76:2f:65:b8: f0:56:6b:43:d5:2c:bf:8c:a5:cd:ac:19:c8:a0:fc: 1d:b4:d0:42:1c:d2:e8:3f:ee:6e:8d:0f:ff:11:29: d9:94:ab:c5:1a:db:76:0e:89:f5:e8:fc:57:dc:55: ee:ee:57:cf:78:8c:15:19:5c:b6:24:36:24:d4:f0: de:e4:1a:ae:11:65:b8:10:1e:bd:12:b6:eb:e6:9e: 5f:08:42:7b:1a:b0:bc:3a:b1:94:f6:3d:cc:17:b7: 29:b1:ac:30:04:d4:59:35:af:74:1a:34:d0:d3:2d: 70:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:EC:B6:C3:29:76:45:F6:01:AC:49:27:23:EC:28:91:1D:2B:99:17 X509v3 Authority Key Identifier: keyid:BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/buy2wyl2RfYBrEknI-wokR0rmRc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.157.42.0/23 Signature Algorithm: sha256WithRSAEncryption 93:e6:30:e0:ef:33:69:dc:d0:20:35:18:ad:83:61:9c:f3:bd: 55:19:9c:6f:5f:af:73:9a:e7:c3:15:e8:01:a3:82:ff:5c:7e: 8e:0c:55:d8:35:95:7c:42:d1:b7:39:60:b6:4a:72:9f:cf:5a: 2c:04:1e:45:b2:88:7c:6b:ca:d6:0f:fd:aa:10:6a:8d:2e:cd: 0b:ce:44:5b:6a:a0:dd:d3:a4:f3:e0:74:c8:f3:7d:d6:f0:96: f2:07:34:e2:54:86:27:7b:2d:a8:8c:d3:b3:f6:80:03:24:eb: 67:6a:52:7f:5f:d8:b3:2b:c2:de:6a:3d:f9:81:e8:3e:e1:3d: 33:68:37:1b:b9:cf:6d:e4:3f:a9:ce:f6:5d:14:5f:e2:de:46: ed:68:13:7e:cd:38:f8:d7:ca:c0:6e:c8:a2:1a:ff:73:bb:b0: b4:32:d3:cb:28:25:e2:ec:93:07:9f:d1:0f:0a:05:95:02:bc: 6c:3a:7f:36:d2:45:e2:e4:9f:de:f5:e7:29:ba:49:dc:15:bf: b5:5e:4c:30:f6:06:47:a3:f0:54:fd:a0:3c:6e:88:d6:74:a6: 15:38:30:a1:ad:f3:9c:ed:1f:ef:9c:aa:1b:f8:87:45:6a:1b: 93:07:7b:1d:40:c0:6f:7b:01:b2:51:9d:28:1a:66:2d:d2:49: f8:83:10:d9 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICBIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkZC QjdGN0I1QzU4MzIzNDkwODc1ODQ5QjhFRERBNDk1RUYxN0IxQjAeFw0yNDA4MjYw NTM0MzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZFRUNCNkMzMjk3NjQ1 RjYwMUFDNDkyNzIzRUMyODkxMUQyQjk5MTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdRpAhthlnu6BF4AOjzMDLStNq1joVpgLSczLyT7WB06eGIJSQ lyDeSuyfPGzEkt4qinu06nWPCjNH3mdQi6+/p2gt7Hcl6qjw1q0MoVrt/c8kemxu 2LPatHDWgXvoibGun43Pqwks5GAGZ3dDgsAZKhZi0ijrbgbjHQOxEdo6lsriQD1S d1fJe6rTcCXG3m1Odi9luPBWa0PVLL+Mpc2sGcig/B200EIc0ug/7m6ND/8RKdmU q8Ua23YOifXo/FfcVe7uV894jBUZXLYkNiTU8N7kGq4RZbgQHr0Stuvmnl8IQnsa sLw6sZT2PcwXtymxrDAE1Fk1r3QaNNDTLXC5AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUbuy2wyl2RfYBrEknI+wokR0rmRcwHwYDVR0jBBgwFoAUv7t/e1xYMjSQh1hJ uO3aSV7xexswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUxDL3Y3 dF9lMXhZTWpTUWgxaEp1TzNhU1Y3eGV4cy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev djd0X2UxeFlNalNRaDFoSnVPM2FTVjd4ZXhzLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVUxDL2J1eTJ3eWwyUmZZQnJFa25JLXdva1Iw cm1SYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnSowDQYJ KoZIhvcNAQELBQADggEBAJPmMODvM2nc0CA1GK2DYZzzvVUZnG9fr3Oa58MV6AGj gv9cfo4MVdg1lXxC0bc5YLZKcp/PWiwEHkWyiHxrytYP/aoQao0uzQvORFtqoN3T pPPgdMjzfdbwlvIHNOJUhid7LaiM07P2gAMk62dqUn9f2LMrwt5qPfmB6D7hPTNo Nxu5z23kP6nO9l0UX+LeRu1oE37NOPjXysBuyKIa/3O7sLQy08soJeLskwef0Q8K BZUCvGw6fzbSReLkn9715ym6SdwVv7VeTDD2Bkej8FT9oDxuiNZ0phU4MKGt85zt H++cqhv4h0VqG5MHex1AwG97AbJRnSgaZi3SSfiDENk= -----END CERTIFICATE-----Generated at Fri Sep 20 09:06:52 2024 by rpki-client on console-ams.rpki-client.org