$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/ITKW-3AMr_qbIAVlHfsD8y_37oI.roa File: ITKW-3AMr_qbIAVlHfsD8y_37oI.roa (raw, json) Hash identifier: FN88IEw6hrwYqR3Sw4Lp+4dRyGwY2TOC+2vZAt17thw= Subject key identifier: 21:32:96:FB:70:0C:AF:FA:9B:20:05:65:1D:FB:03:F3:2F:F7:EE:82 Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B Certificate serial: 0C31 Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/ITKW-3AMr_qbIAVlHfsD8y_37oI.roa Signing time: Mon 26 Aug 2024 05:34:43 +0000 ROA not before: Mon 26 Aug 2024 05:34:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131618 IP address blocks: 103.122.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3121 (0xc31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B Validity Not Before: Aug 26 05:34:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=213296FB700CAFFA9B2005651DFB03F32FF7EE82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:48:2d:0e:7f:c4:78:ff:91:66:04:db:d3:4e: 2e:72:94:1e:00:b7:53:83:1d:d6:01:ac:98:e7:18: 46:a7:0b:cd:40:9e:e2:53:a7:f5:d1:9c:01:1b:0f: 13:07:33:db:dc:25:79:91:5e:e1:6d:90:21:13:19: e3:0e:6c:5e:c8:93:e1:64:41:95:09:7c:ab:89:cb: 69:5e:70:5d:55:9a:7c:57:72:56:f1:f8:48:0c:d3: db:7e:1b:35:70:d3:c2:6a:8a:6f:78:af:bf:58:00: d1:73:1d:d7:85:91:36:ef:c7:0b:f8:58:e5:b0:6e: 27:7f:75:18:19:20:0f:dd:75:93:1e:67:f3:2a:e9: 4e:d1:80:03:17:0e:2e:62:7d:2e:14:43:1e:58:ad: c6:4c:dd:7c:dc:ab:f6:8e:45:c1:60:f7:be:6e:4d: 68:69:28:5c:49:4b:98:b3:3b:bf:63:41:d4:70:1f: 64:84:b8:56:8c:c3:ef:74:d4:0d:f8:41:59:d9:86: f5:24:3f:d8:2f:1c:8d:a8:28:8a:3f:cf:8b:8b:b3: 33:a3:22:e2:cd:a7:73:72:27:cb:0b:37:61:39:22: 43:96:b1:3b:1c:74:ec:df:29:23:1e:8a:c0:7d:c3: 75:a4:c6:e9:8b:74:e2:df:0c:99:13:92:f7:83:7a: 08:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:32:96:FB:70:0C:AF:FA:9B:20:05:65:1D:FB:03:F3:2F:F7:EE:82 X509v3 Authority Key Identifier: keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/ITKW-3AMr_qbIAVlHfsD8y_37oI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.226.0/24 Signature Algorithm: sha256WithRSAEncryption 90:b1:89:fb:df:a2:5d:fb:35:52:a9:5a:d1:b8:b8:8f:39:d0: 92:b6:23:ba:9f:e5:ff:41:17:a1:c8:f8:0c:36:53:07:20:cd: c1:4e:a4:93:c1:e0:50:1e:89:de:c0:54:34:9b:73:62:04:90: 0d:f2:ec:18:8d:bf:8c:79:f9:8b:37:fc:d1:39:26:3d:1e:ab: ed:c0:00:17:6f:e6:a7:3d:0e:ed:a7:7b:a0:c4:39:fa:f4:7b: 6a:5f:b8:09:ee:fc:28:57:89:0d:d8:4d:67:f7:0c:99:b6:f8: 9b:87:79:ce:a8:06:60:46:40:2f:31:40:e3:01:04:59:55:12: cc:2b:2d:6d:21:36:a2:1b:ac:4d:b0:83:01:f1:5e:a1:bc:e4: 7a:6c:52:05:2f:79:69:5e:69:4d:41:2e:64:1e:61:1e:b3:9a: c7:06:a6:6c:0c:af:1f:03:4c:3a:ce:97:61:a1:c4:bf:3a:88: 46:f2:d1:74:47:1f:a2:2d:01:f8:86:51:41:95:eb:fa:f5:c3: ec:cf:7f:60:61:ba:7a:50:bd:e3:9a:2d:10:b0:62:87:24:da: 1c:c5:7f:00:7b:61:91:62:b5:3a:9e:05:35:88:08:bb:7b:b1: cd:ff:e5:46:df:e9:87:fc:a1:25:35:1f:10:e6:a6:15:15:ff: e9:aa:52:20 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDDEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjM0 MDBBQTZFNkM2OEIxM0REREM5QzAwQjgyNTg2MTI0MjczRkE5QjAeFw0yNDA4MjYw NTM0NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIxMzI5NkZCNzAwQ0FG RkE5QjIwMDU2NTFERkIwM0YzMkZGN0VFODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLSC0Of8R4/5FmBNvTTi5ylB4At1ODHdYBrJjnGEanC81AnuJT p/XRnAEbDxMHM9vcJXmRXuFtkCETGeMObF7Ik+FkQZUJfKuJy2lecF1VmnxXclbx +EgM09t+GzVw08Jqim94r79YANFzHdeFkTbvxwv4WOWwbid/dRgZIA/ddZMeZ/Mq 6U7RgAMXDi5ifS4UQx5YrcZM3Xzcq/aORcFg975uTWhpKFxJS5izO79jQdRwH2SE uFaMw+901A34QVnZhvUkP9gvHI2oKIo/z4uLszOjIuLNp3NyJ8sLN2E5IkOWsTsc dOzfKSMeisB9w3WkxumLdOLfDJkTkveDegjXAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUITKW+3AMr/qbIAVlHfsD8y/37oIwHwYDVR0jBBgwFoAUY0AKpubGixPd3JwA uCWGEkJz+pswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVklTSU9O NFlFUy9ZMEFLcHViR2l4UGQzSndBdUNXR0VrSnotcHMuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1kwQUtwdWJHaXhQZDNKd0F1Q1dHRWtKei1wcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1ZJU0lPTjRZRVMvSVRLVy0zQU1y X3FiSUFWbEhmc0Q4eV8zN29JLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGd64jANBgkqhkiG9w0BAQsFAAOCAQEAkLGJ+9+iXfs1Uqla0bi4jznQ krYjup/l/0EXocj4DDZTByDNwU6kk8HgUB6J3sBUNJtzYgSQDfLsGI2/jHn5izf8 0TkmPR6r7cAAF2/mpz0O7ad7oMQ5+vR7al+4Ce78KFeJDdhNZ/cMmbb4m4d5zqgG YEZALzFA4wEEWVUSzCstbSE2ohusTbCDAfFeobzkemxSBS95aV5pTUEuZB5hHrOa xwambAyvHwNMOs6XYaHEvzqIRvLRdEcfoi0B+IZRQZXr+vXD7M9/YGG6elC945ot ELBihyTaHMV/AHthkWK1Op4FNYgIu3uxzf/lRt/ph/yhJTUfEOamFRX/6apSIA== -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:49 2024 by rpki-client on console-ams.rpki-client.org