$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VOCOM/cWZI8CpTBGKANcY1Y91oqB0h45A.roa File: cWZI8CpTBGKANcY1Y91oqB0h45A.roa (raw, json) Hash identifier: irj+E8qQ7gDWdwvW8YXJWK3yTjzh0O/TVfRfl7UtUus= Subject key identifier: 71:66:48:F0:2A:53:04:62:80:35:C6:35:63:DD:68:A8:1D:21:E3:90 Certificate issuer: /CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF Certificate serial: 0152 Authority key identifier: 9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/cWZI8CpTBGKANcY1Y91oqB0h45A.roa Signing time: Mon 26 Aug 2024 05:34:46 +0000 ROA not before: Mon 26 Aug 2024 05:34:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63897 IP address blocks: 103.178.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF Validity Not Before: Aug 26 05:34:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=716648F02A5304628035C63563DD68A81D21E390 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:25:85:80:b1:be:e5:a6:25:cb:6e:3b:cd:1c: 43:74:14:04:62:38:34:57:01:a8:72:2f:1e:2b:33: ef:38:4a:da:06:fb:91:ac:54:fb:43:26:4a:fa:84: 93:c3:a5:2a:8f:c6:69:ea:2e:1f:e3:42:00:e6:90: e1:39:f9:12:be:7b:56:d7:45:0d:90:74:dd:39:50: 14:0f:b8:9d:b3:fe:18:f1:2d:25:72:45:9c:a4:a3: c0:97:7f:28:d1:bd:d8:0f:e4:ca:93:41:e3:ad:8b: 40:38:d2:15:4a:c6:56:4e:da:17:c4:54:2c:bc:be: dc:d4:d4:c5:d1:6c:1a:f7:8e:fc:dd:2e:21:94:dc: 64:a1:4e:40:99:34:35:08:64:79:0e:36:e7:44:2a: 13:08:d3:84:e5:1f:7c:7b:f7:c8:72:8d:db:d6:8d: f4:c2:38:8b:d8:09:38:b6:70:3e:8b:76:8f:03:28: ee:e2:c5:5d:6a:24:4b:e9:8d:49:94:8a:d3:b5:8e: 4d:a6:0e:66:01:92:1c:bb:4f:e9:ab:d5:c8:3d:9a: ff:82:71:e1:e3:02:9e:fc:51:c2:6b:23:24:79:6f: b3:d2:9d:34:fa:26:7d:6a:75:a9:d5:ee:52:23:07: 73:1e:5f:ff:e0:c7:46:f8:b8:c0:93:cb:16:2c:3b: 5b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:66:48:F0:2A:53:04:62:80:35:C6:35:63:DD:68:A8:1D:21:E3:90 X509v3 Authority Key Identifier: keyid:9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/cWZI8CpTBGKANcY1Y91oqB0h45A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.178.37.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:51:65:45:b3:da:1b:46:f8:31:c8:2a:60:9c:9f:86:71:56: e7:a8:d8:cb:a6:5f:1f:80:2b:98:1b:d6:5a:d0:ae:7d:d7:e2: 72:00:ab:0b:1e:c1:a4:f7:2c:b9:6d:12:04:00:2f:9c:22:53: 8c:2a:61:f1:05:91:5f:76:c3:98:36:a4:d8:45:39:11:a7:ce: 85:26:e0:75:30:5c:a4:4d:ad:e8:b1:36:54:2b:81:dd:5d:10: ea:ab:a9:ac:c8:6c:4d:41:b7:0a:11:f9:3e:28:d6:26:68:5c: 79:0d:df:e8:2d:4c:6b:8d:ee:dc:2b:e1:0d:62:a9:33:f0:a1: 8a:a4:37:c2:46:0e:0b:fa:33:46:a4:dd:46:bb:6a:7d:93:8f: ff:40:ce:8d:39:53:c7:dc:b2:60:07:03:8d:87:c7:7a:d8:1e: 65:00:35:9b:3a:ee:47:1f:09:aa:43:98:6d:6a:22:25:df:0d: b8:ef:82:f7:29:f1:b1:3e:d4:cd:68:13:81:d1:fa:81:cc:0b: a1:38:d1:de:a2:12:f6:ed:9b:5a:03:b5:3a:20:dc:16:cb:f2: a1:65:82:d1:70:45:ee:27:9a:42:5b:59:54:1f:06:d6:27:a5: 75:6d:07:97:d6:0f:dd:b8:b9:98:c8:07:87:c5:9b:04:87:8e: 12:3a:70:42 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUU4 NDcxMDhFQkEwQjU1MEJDMDIwRkQ5QjFEQzZERUIyOUUwREJFRjAeFw0yNDA4MjYw NTM0NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcxNjY0OEYwMkE1MzA0 NjI4MDM1QzYzNTYzREQ2OEE4MUQyMUUzOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBJYWAsb7lpiXLbjvNHEN0FARiODRXAahyLx4rM+84StoG+5Gs VPtDJkr6hJPDpSqPxmnqLh/jQgDmkOE5+RK+e1bXRQ2QdN05UBQPuJ2z/hjxLSVy RZyko8CXfyjRvdgP5MqTQeOti0A40hVKxlZO2hfEVCy8vtzU1MXRbBr3jvzdLiGU 3GShTkCZNDUIZHkONudEKhMI04TlH3x798hyjdvWjfTCOIvYCTi2cD6Ldo8DKO7i xV1qJEvpjUmUitO1jk2mDmYBkhy7T+mr1cg9mv+CceHjAp78UcJrIyR5b7PSnTT6 Jn1qdanV7lIjB3MeX//gx0b4uMCTyxYsO1sVAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUcWZI8CpTBGKANcY1Y91oqB0h45AwHwYDVR0jBBgwFoAUnoRxCOugtVC8Ag/Z sdxt6yng2+8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVk9DT00v bm9SeENPdWd0VkM4QWdfWnNkeHQ2eW5nMi04LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ub1J4Q091Z3RWQzhBZ19ac2R4dDZ5bmcyLTguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WT0NPTS9jV1pJOENwVEJHS0FOY1kxWTkx b3FCMGg0NUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7Il MA0GCSqGSIb3DQEBCwUAA4IBAQBLUWVFs9obRvgxyCpgnJ+GcVbnqNjLpl8fgCuY G9Za0K591+JyAKsLHsGk9yy5bRIEAC+cIlOMKmHxBZFfdsOYNqTYRTkRp86FJuB1 MFykTa3osTZUK4HdXRDqq6msyGxNQbcKEfk+KNYmaFx5Dd/oLUxrje7cK+ENYqkz 8KGKpDfCRg4L+jNGpN1Gu2p9k4//QM6NOVPH3LJgBwONh8d62B5lADWbOu5HHwmq Q5htaiIl3w2474L3KfGxPtTNaBOB0fqBzAuhONHeohL27ZtaA7U6INwWy/KhZYLR cEXuJ5pCW1lUHwbWJ6V1bQeX1g/duLmYyAeHxZsEh44SOnBC -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:00 2024 by rpki-client on console-fra.rpki-client.org