$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/AER4EDEid3mnfWpPRYfhAR_JhsE.roa File: AER4EDEid3mnfWpPRYfhAR_JhsE.roa (raw, json) Hash identifier: LJFz9uU4JIKuLioSnnBjKq9wSEJ1kbZK43WdATmzL2g= Subject key identifier: 00:44:78:10:31:22:77:79:A7:7D:6A:4F:45:87:E1:01:1F:C9:86:C1 Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Certificate serial: 0C4E Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/AER4EDEid3mnfWpPRYfhAR_JhsE.roa Signing time: Mon 26 Aug 2024 05:34:37 +0000 ROA not before: Mon 26 Aug 2024 05:34:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 103.123.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3150 (0xc4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Validity Not Before: Aug 26 05:34:37 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0044781031227779A77D6A4F4587E1011FC986C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bc:f6:0c:50:24:ce:c9:7d:4b:c0:67:53:d2: 1f:d6:bf:68:74:e7:d4:c1:d0:f8:c6:4a:b9:a9:ec: 79:62:95:67:e3:b7:08:f9:1e:b5:b8:9e:84:da:94: 41:60:a3:62:b4:89:32:f2:cc:11:62:fa:92:91:cb: 25:bb:a7:c2:2f:b4:9e:f0:c1:4e:41:eb:4f:0e:5c: 3a:57:f2:40:91:ee:24:b1:b5:d5:4e:e8:c4:1a:be: 01:34:ab:77:69:44:18:7b:ec:3b:ea:1e:c2:58:2f: 70:78:47:29:42:c8:13:67:7b:1f:99:f3:94:2b:8a: 70:f3:8f:39:5d:c2:ec:fa:f8:ec:6a:82:ff:14:33: da:c9:56:98:5d:67:27:6e:6e:65:6b:14:0c:57:6d: 11:6a:b9:be:67:54:cb:dc:b7:1d:79:91:46:e5:85: c3:b8:b4:a7:15:84:3e:e0:cb:42:4c:f2:02:3e:3d: 60:91:98:39:59:92:04:c0:12:8c:cb:46:ae:fc:13: 28:9a:d6:2f:40:37:94:b3:60:49:51:22:04:9c:d6: 23:0f:e9:b1:5e:81:d8:fe:2a:83:99:be:30:fe:6c: 4f:cf:42:c9:5d:fe:91:a3:71:88:b4:e0:54:dc:b9: 63:ae:36:fd:cb:28:d9:c9:15:a6:0e:83:fd:8f:0b: 9f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:44:78:10:31:22:77:79:A7:7D:6A:4F:45:87:E1:01:1F:C9:86:C1 X509v3 Authority Key Identifier: keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/AER4EDEid3mnfWpPRYfhAR_JhsE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.252.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:08:c2:c7:69:a4:ef:c1:53:ea:7d:9b:87:cd:d4:87:7d:30: 13:4a:a3:6d:ac:aa:91:ca:b7:e6:4f:ca:d0:af:47:a8:dd:48: 4b:c1:60:7c:c9:6a:6a:23:5a:dd:86:71:69:c2:fa:83:82:08: d2:e0:08:aa:6b:5f:de:7f:f4:22:e5:05:b3:68:6e:71:3b:5c: 63:c6:90:a9:9b:b9:e9:e3:5c:39:3e:6b:94:67:1e:ce:22:8e: c7:d8:59:29:74:c7:b2:71:50:5f:b7:5d:15:f9:75:9f:97:6b: 2d:b9:69:b0:79:1f:1b:36:44:ae:87:a9:00:e3:b0:99:8d:3a: 0d:52:16:1e:a4:b2:03:16:3e:98:79:e4:ed:0d:a6:72:3c:91: 6e:a9:6d:a7:9f:85:ad:bc:bc:a8:96:a6:28:17:16:97:7a:e6: 8d:fb:6a:99:fa:4a:fa:de:e0:eb:b8:bb:45:b9:80:c5:50:9a: cd:27:cf:95:55:54:26:d9:9d:55:b9:50:27:88:8d:24:a6:eb: ee:8a:bb:4a:a3:69:d3:b0:5e:a2:bc:2e:58:9b:73:01:48:39: e0:47:57:a8:1c:3a:ef:95:c4:53:53:4b:44:97:ca:6d:98:0b: fd:f9:47:8d:b7:b1:31:38:37:4f:47:a5:aa:c8:40:bb:b1:3c: 7f:bc:3c:5e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDE4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzkw QTA0MTJGOEI1RUM0RjNGOUZEQkIzQTYxMjcwREJEMEVBOUU2QjAeFw0yNDA4MjYw NTM0MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAwNDQ3ODEwMzEyMjc3 NzlBNzdENkE0RjQ1ODdFMTAxMUZDOTg2QzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHvPYMUCTOyX1LwGdT0h/Wv2h059TB0PjGSrmp7HlilWfjtwj5 HrW4noTalEFgo2K0iTLyzBFi+pKRyyW7p8IvtJ7wwU5B608OXDpX8kCR7iSxtdVO 6MQavgE0q3dpRBh77DvqHsJYL3B4RylCyBNnex+Z85QrinDzjzldwuz6+Oxqgv8U M9rJVphdZydubmVrFAxXbRFqub5nVMvctx15kUblhcO4tKcVhD7gy0JM8gI+PWCR mDlZkgTAEozLRq78Eyia1i9AN5SzYElRIgSc1iMP6bFegdj+KoOZvjD+bE/PQsld /pGjcYi04FTcuWOuNv3LKNnJFaYOg/2PC59pAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUAER4EDEid3mnfWpPRYfhAR/JhsEwHwYDVR0jBBgwFoAUOQoEEvi17E8/n9uz phJw29DqnmswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JR0FU RS9PUW9FRXZpMTdFOF9uOXV6cGhKdzI5RHFubXMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL09Rb0VFdmkxN0U4X245dXpwaEp3MjlEcW5tcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1VOSUdBVEUvQUVSNEVERWlkM21uZldw UFJZZmhBUl9KaHNFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Amd7/DANBgkqhkiG9w0BAQsFAAOCAQEAPAjCx2mk78FT6n2bh83Uh30wE0qjbayq kcq35k/K0K9HqN1IS8FgfMlqaiNa3YZxacL6g4II0uAIqmtf3n/0IuUFs2hucTtc Y8aQqZu56eNcOT5rlGceziKOx9hZKXTHsnFQX7ddFfl1n5drLblpsHkfGzZEroep AOOwmY06DVIWHqSyAxY+mHnk7Q2mcjyRbqltp5+Frby8qJamKBcWl3rmjftqmfpK +t7g67i7RbmAxVCazSfPlVVUJtmdVblQJ4iNJKbr7oq7SqNp07BeorwuWJtzAUg5 4EdXqBw675XEU1NLRJfKbZgL/flHjbexMTg3T0elqshAu7E8f7w8Xg== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:27 2024 by rpki-client on console-ams.rpki-client.org