$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ULC/wf8lDAunDMObaBjaS7lXfNu5CDM.roa File: wf8lDAunDMObaBjaS7lXfNu5CDM.roa (raw, json) Hash identifier: 3OY/4zfdCU3Fmf5A3cNoddDZ+LCZmcujMkz1RoceEq4= Subject key identifier: C1:FF:25:0C:0B:A7:0C:C3:9B:68:18:DA:4B:B9:57:7C:DB:B9:08:33 Certificate issuer: /CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B Certificate serial: 048A Authority key identifier: BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/wf8lDAunDMObaBjaS7lXfNu5CDM.roa Signing time: Mon 26 Aug 2024 05:34:32 +0000 ROA not before: Mon 26 Aug 2024 05:34:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18178 IP address blocks: 103.157.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Sep 2024 15:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1162 (0x48a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B Validity Not Before: Aug 26 05:34:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C1FF250C0BA70CC39B6818DA4BB9577CDBB90833 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:14:f3:c7:36:fe:37:63:ff:a4:99:98:92:f4: f9:63:46:9b:4d:95:84:7c:40:dd:ac:10:0e:38:9f: 1a:f5:9c:05:c0:ad:4b:12:6f:af:00:ce:09:f1:69: a5:78:e2:a7:c2:16:0a:56:94:55:5d:2a:e8:b1:73: cd:31:2f:e8:7f:28:d8:d6:d9:d8:c5:d7:75:b9:de: b1:5f:e0:c6:b0:d1:d4:74:26:d8:c3:b7:94:a4:c1: dc:06:2a:30:20:d1:fd:56:ea:4a:f2:93:f7:95:43: 09:be:be:65:53:5e:4e:a5:e6:4a:9e:49:ec:f5:91: 08:8a:0f:92:46:49:ca:f0:6f:2a:de:d5:2f:e8:dd: 8c:b0:35:9a:5a:05:90:1d:66:4b:b6:20:d8:22:8b: ca:00:90:6a:fc:c0:77:08:88:c2:54:68:c3:9a:54: 74:eb:33:cb:ad:e4:ee:90:91:82:80:b8:19:78:f5: 02:3a:6a:e3:b9:fa:69:8b:80:9e:c0:54:50:23:81: 25:84:4f:45:30:6c:ec:7c:25:cb:7e:45:7e:dc:ce: 92:3b:ed:94:c3:10:56:0f:94:d3:a5:60:71:19:5e: 8b:e5:c9:5c:26:b6:11:d9:e7:05:81:d5:ff:fa:d7: ad:4b:63:e6:d4:53:53:c5:af:a5:b7:75:00:c5:29: 11:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:FF:25:0C:0B:A7:0C:C3:9B:68:18:DA:4B:B9:57:7C:DB:B9:08:33 X509v3 Authority Key Identifier: keyid:BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/wf8lDAunDMObaBjaS7lXfNu5CDM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.157.42.0/23 Signature Algorithm: sha256WithRSAEncryption 72:a6:12:3e:b7:3d:74:5d:e4:5b:6b:dd:a7:af:ef:92:b3:40: 7a:3d:7a:ab:76:44:1a:d4:ad:f6:8b:fc:ff:61:d4:db:5f:25: b5:ae:38:f8:c4:cd:2a:8f:13:bc:fe:df:40:35:f9:cd:7c:c5: 14:c1:a4:09:fe:b8:27:38:fb:96:df:d1:fd:37:1e:e4:30:cf: 15:f3:b1:9a:e4:f5:ae:5d:22:a6:0f:a5:56:aa:eb:72:5d:2a: 1a:12:69:42:e2:a3:c3:2f:03:b6:d0:fe:3c:d4:4f:2d:ab:e0: 38:30:9a:e2:e5:4f:7e:1d:50:db:66:4b:09:ee:f1:f3:9f:70: 8e:db:3e:57:c3:67:5f:71:21:48:80:e9:8a:03:9e:c0:3d:af: ae:d8:88:03:7e:87:da:3f:8a:1f:ae:98:31:56:46:7f:f9:38: 9a:77:f1:91:f1:c3:6d:87:d7:4a:24:7d:86:25:09:cd:60:5d: a7:04:2d:c3:33:32:33:d2:65:0c:67:56:46:64:70:4c:3f:3d: cb:56:41:9d:19:53:5d:4f:45:3e:9e:33:c5:f7:0b:27:e4:ec: 79:07:2b:4d:dd:00:6e:49:fe:a4:92:a6:2e:14:a1:eb:79:51: ea:bd:84:7d:a8:0c:e7:b2:9d:01:ba:cc:05:33:4e:e7:90:b9: 5d:86:5e:0f -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICBIowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkZC QjdGN0I1QzU4MzIzNDkwODc1ODQ5QjhFRERBNDk1RUYxN0IxQjAeFw0yNDA4MjYw NTM0MzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMxRkYyNTBDMEJBNzBD QzM5QjY4MThEQTRCQjk1NzdDREJCOTA4MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxFPPHNv43Y/+kmZiS9PljRptNlYR8QN2sEA44nxr1nAXArUsS b68AzgnxaaV44qfCFgpWlFVdKuixc80xL+h/KNjW2djF13W53rFf4Maw0dR0JtjD t5SkwdwGKjAg0f1W6kryk/eVQwm+vmVTXk6l5kqeSez1kQiKD5JGScrwbyre1S/o 3YywNZpaBZAdZku2INgii8oAkGr8wHcIiMJUaMOaVHTrM8ut5O6QkYKAuBl49QI6 auO5+mmLgJ7AVFAjgSWET0UwbOx8Jct+RX7czpI77ZTDEFYPlNOlYHEZXovlyVwm thHZ5wWB1f/6161LY+bUU1PFr6W3dQDFKRE5AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUwf8lDAunDMObaBjaS7lXfNu5CDMwHwYDVR0jBBgwFoAUv7t/e1xYMjSQh1hJ uO3aSV7xexswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUxDL3Y3 dF9lMXhZTWpTUWgxaEp1TzNhU1Y3eGV4cy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev djd0X2UxeFlNalNRaDFoSnVPM2FTVjd4ZXhzLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVUxDL3dmOGxEQXVuRE1PYmFCamFTN2xYZk51 NUNETS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnSowDQYJ KoZIhvcNAQELBQADggEBAHKmEj63PXRd5Ftr3aev75KzQHo9eqt2RBrUrfaL/P9h 1NtfJbWuOPjEzSqPE7z+30A1+c18xRTBpAn+uCc4+5bf0f03HuQwzxXzsZrk9a5d IqYPpVaq63JdKhoSaULio8MvA7bQ/jzUTy2r4DgwmuLlT34dUNtmSwnu8fOfcI7b PlfDZ19xIUiA6YoDnsA9r67YiAN+h9o/ih+umDFWRn/5OJp38ZHxw22H10okfYYl Cc1gXacELcMzMjPSZQxnVkZkcEw/PctWQZ0ZU11PRT6eM8X3Cyfk7HkHK03dAG5J /qSSpi4Uoet5Ueq9hH2oDOeynQG6zAUzTueQuV2GXg8= -----END CERTIFICATE-----Generated at Fri Sep 20 14:59:43 2024 by rpki-client on console-ams.rpki-client.org