$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/1SPPfSh3XbzlF_q60dG9T0wbEQM.roa File: 1SPPfSh3XbzlF_q60dG9T0wbEQM.roa (raw, json) Hash identifier: BSF+ol/scDAMu3l99DCSAAg+3GU0c8ANwG61mr3E6EU= Subject key identifier: D5:23:CF:7D:28:77:5D:BC:E5:17:FA:BA:D1:D1:BD:4F:4C:1B:11:03 Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Certificate serial: 0C49 Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/1SPPfSh3XbzlF_q60dG9T0wbEQM.roa Signing time: Mon 26 Aug 2024 05:34:36 +0000 ROA not before: Mon 26 Aug 2024 05:34:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 103.123.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3145 (0xc49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Validity Not Before: Aug 26 05:34:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D523CF7D28775DBCE517FABAD1D1BD4F4C1B1103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:35:66:31:b1:ec:b8:d1:8b:c9:3f:95:03:8d: 8f:a4:50:7b:bc:8a:d5:8a:41:92:5e:9a:9b:da:4b: 95:e7:2d:9d:cd:c3:e7:de:a8:84:3f:98:fb:bc:f0: 8c:1e:ee:39:7e:56:32:09:bc:a5:e7:35:bb:76:0a: 50:c1:95:d1:ea:28:76:97:a4:fb:f2:6b:dc:a7:0d: b0:d5:2b:c9:05:57:a7:4c:2f:3b:2b:5b:12:6b:a3: 12:af:cb:9f:a9:2e:ff:be:e4:69:bb:33:6b:aa:5d: 21:e1:99:4a:f1:47:db:7a:eb:ac:e7:35:ef:2a:9e: 1f:69:26:9c:04:91:f8:f2:60:ce:0e:6a:bf:35:e6: b0:da:cc:01:f1:89:35:07:4d:2e:95:bc:0b:b2:41: 28:18:55:78:cb:10:32:41:1a:46:82:27:80:b2:2e: 9c:9a:55:ee:57:ee:cd:fc:7f:41:a9:99:39:a5:5c: ee:77:6b:4a:3a:26:d9:89:fe:d4:84:ae:44:c4:d6: bd:39:1f:8a:c0:8e:d5:86:00:4a:71:d9:df:8c:7a: fd:06:e8:ef:0f:d6:90:92:27:dc:a4:f4:47:fa:e4: ed:2f:85:4f:27:eb:9d:71:08:a7:32:87:14:81:25: b4:60:3c:46:9e:0d:b1:0c:6b:10:bf:0c:37:00:33: fe:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:23:CF:7D:28:77:5D:BC:E5:17:FA:BA:D1:D1:BD:4F:4C:1B:11:03 X509v3 Authority Key Identifier: keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/1SPPfSh3XbzlF_q60dG9T0wbEQM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.140.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:f4:6b:50:73:88:b7:20:ef:e4:3e:3d:cb:25:ef:d4:07:3c: a5:4b:a7:f1:3d:a6:48:92:9c:f8:02:c9:ca:fd:21:76:f8:e3: 2f:6a:64:56:cb:c3:e7:3d:8d:a8:48:2d:c9:2e:cb:a6:88:46: 00:c0:7c:64:03:45:79:28:6f:27:32:bb:63:b4:91:38:2c:a6: e1:d2:a2:3a:13:94:6b:ae:63:e9:dd:1f:cb:27:84:77:2d:8f: 1c:34:e1:86:39:ac:49:d3:0e:d4:74:58:c3:0e:34:a0:60:97: 85:c7:31:d1:20:dd:9d:a7:c4:08:06:74:59:2b:48:78:2e:fa: eb:de:64:fa:9a:d6:57:8f:48:04:91:9d:30:4e:77:93:a1:f3: a4:88:97:01:8f:a6:99:dc:1e:36:fc:c4:ef:64:6b:fd:05:da: 8e:e7:c7:8b:b3:01:ad:fa:3d:cb:b7:0f:51:f1:11:96:df:26: 22:23:a5:90:82:67:19:48:f1:1d:3f:9c:f2:ea:31:c3:3c:f2: 88:f7:dd:b5:e5:65:ab:e7:9a:23:14:43:68:0d:2c:68:d3:2c: 2f:ef:32:61:03:9f:ad:7d:44:bd:e6:cf:5d:55:15:fd:54:9c: 3c:e3:f1:80:62:da:c3:77:5b:9c:ef:9d:f3:4b:53:e4:8e:fa: 2c:e3:08:00 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDEkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzkw QTA0MTJGOEI1RUM0RjNGOUZEQkIzQTYxMjcwREJEMEVBOUU2QjAeFw0yNDA4MjYw NTM0MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ1MjNDRjdEMjg3NzVE QkNFNTE3RkFCQUQxRDFCRDRGNEMxQjExMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxNWYxsey40YvJP5UDjY+kUHu8itWKQZJempvaS5XnLZ3Nw+fe qIQ/mPu88Iwe7jl+VjIJvKXnNbt2ClDBldHqKHaXpPvya9ynDbDVK8kFV6dMLzsr WxJroxKvy5+pLv++5Gm7M2uqXSHhmUrxR9t666znNe8qnh9pJpwEkfjyYM4Oar81 5rDazAHxiTUHTS6VvAuyQSgYVXjLEDJBGkaCJ4CyLpyaVe5X7s38f0GpmTmlXO53 a0o6JtmJ/tSErkTE1r05H4rAjtWGAEpx2d+Mev0G6O8P1pCSJ9yk9Ef65O0vhU8n 651xCKcyhxSBJbRgPEaeDbEMaxC/DDcAM/4VAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU1SPPfSh3XbzlF/q60dG9T0wbEQMwHwYDVR0jBBgwFoAUOQoEEvi17E8/n9uz phJw29DqnmswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JR0FU RS9PUW9FRXZpMTdFOF9uOXV6cGhKdzI5RHFubXMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL09Rb0VFdmkxN0U4X245dXpwaEp3MjlEcW5tcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1VOSUdBVEUvMVNQUGZTaDNYYnpsRl9x NjBkRzlUMHdiRVFNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGd7jDANBgkqhkiG9w0BAQsFAAOCAQEAG/RrUHOItyDv5D49yyXv1Ac8pUun8T2m SJKc+ALJyv0hdvjjL2pkVsvD5z2NqEgtyS7LpohGAMB8ZANFeShvJzK7Y7SROCym 4dKiOhOUa65j6d0fyyeEdy2PHDThhjmsSdMO1HRYww40oGCXhccx0SDdnafECAZ0 WStIeC76695k+prWV49IBJGdME53k6HzpIiXAY+mmdweNvzE72Rr/QXajufHi7MB rfo9y7cPUfERlt8mIiOlkIJnGUjxHT+c8uoxwzzyiPfdteVlq+eaIxRDaA0saNMs L+8yYQOfrX1EvebPXVUV/VScPOPxgGLaw3dbnO+d80tT5I76LOMIAA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:00 2024 by rpki-client on console-fra.rpki-client.org