$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VOCOM/U1jcJP4b9rzkctnDQvgRPptTNYo.roa File: U1jcJP4b9rzkctnDQvgRPptTNYo.roa (raw, json) Hash identifier: NWQ4Xb1khjAyPmvMx5ol7Z3iZdVbnfG6yNWo1CMSpYk= Subject key identifier: 53:58:DC:24:FE:1B:F6:BC:E4:72:D9:C3:42:F8:11:3E:9B:53:35:8A Certificate issuer: /CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF Certificate serial: 014F Authority key identifier: 9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/U1jcJP4b9rzkctnDQvgRPptTNYo.roa Signing time: Mon 26 Aug 2024 05:34:46 +0000 ROA not before: Mon 26 Aug 2024 05:34:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63897 IP address blocks: 103.178.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF Validity Not Before: Aug 26 05:34:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5358DC24FE1BF6BCE472D9C342F8113E9B53358A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7f:dd:3f:6f:a7:30:2b:1e:73:92:d6:bc:9d: f9:45:1f:d6:a3:cf:1e:94:4c:8d:1d:3d:fa:5a:e6: 36:80:54:9c:ff:6f:44:b8:96:ba:62:e0:d2:cc:a7: ea:73:06:c2:15:b7:00:9b:4a:fe:26:43:f6:09:49: 6d:7f:c0:49:23:31:1c:10:a2:54:17:f1:99:56:bf: 67:3f:ed:5b:34:f0:1a:9c:eb:51:a2:bd:62:1c:b2: a4:0e:73:34:2d:99:fe:c1:17:76:c1:04:0d:56:17: a4:4d:df:26:2e:9c:aa:54:40:7d:92:5a:08:53:06: 80:7c:d7:01:5d:31:61:77:35:07:a0:4f:48:1e:f0: d5:c8:54:f3:15:44:bc:1d:a3:51:d5:d5:c0:58:8c: 09:b4:64:0c:d9:c5:b3:df:b2:41:d7:a4:8f:5f:d1: 63:52:72:61:14:aa:b2:48:31:02:67:18:33:99:34: a9:1a:22:5a:2a:41:d4:93:b0:86:45:2a:6b:56:d3: 74:e6:d3:2f:48:a9:47:f4:98:cb:c6:37:1b:2c:c3: fd:9b:87:ef:87:55:6c:4a:63:e4:2c:0f:97:52:8a: 74:81:6f:d8:d0:06:4e:52:d4:a1:d8:9c:6f:46:6d: 0d:86:a7:af:59:bb:ca:7f:32:48:96:b6:ea:be:ae: 0a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:58:DC:24:FE:1B:F6:BC:E4:72:D9:C3:42:F8:11:3E:9B:53:35:8A X509v3 Authority Key Identifier: keyid:9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/U1jcJP4b9rzkctnDQvgRPptTNYo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.178.36.0/24 Signature Algorithm: sha256WithRSAEncryption 27:3d:d5:b1:39:ad:d1:2f:6f:dc:99:dd:9c:8f:d9:de:36:27: 84:2c:7a:1e:71:b6:27:50:20:7f:5e:ed:bf:e6:60:69:de:9f: aa:5c:24:c7:b8:ee:9b:a7:ad:7f:80:ac:66:1f:08:b8:08:4a: 31:2a:ae:d8:f6:4c:e4:65:b6:8c:af:55:a9:da:ab:87:cf:45: 4a:b0:a1:06:fa:97:c0:66:85:14:b9:09:fe:48:68:42:89:f3: 9e:af:7b:7e:a9:f7:79:b4:b5:21:32:f3:64:fd:f0:8c:d9:25: 43:15:08:a5:36:f2:76:1c:df:b2:00:8f:d2:84:f4:7e:37:d3: 42:c9:54:9a:14:8c:24:3f:0b:fa:71:c3:7b:b7:dc:5c:1b:d8: 72:69:3e:80:da:50:34:ba:7b:62:aa:57:42:8e:2f:ae:45:95: fd:05:fa:65:67:39:78:3a:c9:bb:e3:45:f7:ff:7c:70:2c:08: 57:45:d3:58:b2:52:27:58:45:e0:0b:28:08:33:01:9d:db:c1: 93:62:60:9f:91:a3:2d:f4:34:d3:ba:ea:2f:c9:bf:cd:25:79: c3:cd:49:e2:43:5c:39:43:af:95:33:4f:5d:f6:1e:28:fc:2b: 7a:25:2f:79:8b:21:e5:de:3c:17:e6:57:08:f3:e5:c8:66:5e: cb:f5:65:43 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUU4 NDcxMDhFQkEwQjU1MEJDMDIwRkQ5QjFEQzZERUIyOUUwREJFRjAeFw0yNDA4MjYw NTM0NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUzNThEQzI0RkUxQkY2 QkNFNDcyRDlDMzQyRjgxMTNFOUI1MzM1OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCf90/b6cwKx5zkta8nflFH9ajzx6UTI0dPfpa5jaAVJz/b0S4 lrpi4NLMp+pzBsIVtwCbSv4mQ/YJSW1/wEkjMRwQolQX8ZlWv2c/7Vs08Bqc61Gi vWIcsqQOczQtmf7BF3bBBA1WF6RN3yYunKpUQH2SWghTBoB81wFdMWF3NQegT0ge 8NXIVPMVRLwdo1HV1cBYjAm0ZAzZxbPfskHXpI9f0WNScmEUqrJIMQJnGDOZNKka IloqQdSTsIZFKmtW03Tm0y9IqUf0mMvGNxssw/2bh++HVWxKY+QsD5dSinSBb9jQ Bk5S1KHYnG9GbQ2Gp69Zu8p/MkiWtuq+rgoHAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUU1jcJP4b9rzkctnDQvgRPptTNYowHwYDVR0jBBgwFoAUnoRxCOugtVC8Ag/Z sdxt6yng2+8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVk9DT00v bm9SeENPdWd0VkM4QWdfWnNkeHQ2eW5nMi04LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ub1J4Q091Z3RWQzhBZ19ac2R4dDZ5bmcyLTguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WT0NPTS9VMWpjSlA0YjlyemtjdG5EUXZn UlBwdFROWW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7Ik MA0GCSqGSIb3DQEBCwUAA4IBAQAnPdWxOa3RL2/cmd2cj9neNieELHoecbYnUCB/ Xu2/5mBp3p+qXCTHuO6bp61/gKxmHwi4CEoxKq7Y9kzkZbaMr1Wp2quHz0VKsKEG +pfAZoUUuQn+SGhCifOer3t+qfd5tLUhMvNk/fCM2SVDFQilNvJ2HN+yAI/ShPR+ N9NCyVSaFIwkPwv6ccN7t9xcG9hyaT6A2lA0untiqldCji+uRZX9BfplZzl4Osm7 40X3/3xwLAhXRdNYslInWEXgCygIMwGd28GTYmCfkaMt9DTTuuovyb/NJXnDzUni Q1w5Q6+VM09d9h4o/Ct6JS95iyHl3jwX5lcI8+XIZl7L9WVD -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:42 2024 by rpki-client on console-ams.rpki-client.org