$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/gjcM39pmUoxDEKPk0Il3JxhCQOA.roa File: gjcM39pmUoxDEKPk0Il3JxhCQOA.roa (raw, json) Hash identifier: wEZWnOucd71MSaMILc5ZWOYHeHoIJ5NMe9ENa6cVjBY= Subject key identifier: 82:37:0C:DF:DA:66:52:8C:43:10:A3:E4:D0:89:77:27:18:42:40:E0 Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Certificate serial: 12A2 Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/gjcM39pmUoxDEKPk0Il3JxhCQOA.roa Signing time: Mon 26 Aug 2024 05:34:52 +0000 ROA not before: Mon 26 Aug 2024 05:34:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131636 IP address blocks: 103.130.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 19:24:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4770 (0x12a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Validity Not Before: Aug 26 05:34:52 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=82370CDFDA66528C4310A3E4D0897727184240E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:62:a1:c0:7e:45:b0:f5:c0:d1:02:d3:ef:42: 8e:56:b1:33:59:1d:b0:cd:de:8e:2d:ae:ea:0e:bf: 49:e4:cf:26:72:87:89:29:67:c2:55:0c:68:02:a2: 6d:4d:0a:bc:94:9d:33:a1:77:b2:a4:54:ac:23:d0: 1e:06:09:1d:e8:0e:5d:36:20:64:16:f7:9e:10:f3: ae:b5:08:f3:ae:fe:9e:2f:46:8d:51:3a:07:9a:c8: f3:16:aa:08:4e:3c:d5:45:aa:f1:d7:29:e5:d5:15: 4b:1f:06:a3:da:ab:89:8c:4c:f6:40:d3:53:dd:7f: af:23:8e:9f:f9:8c:9f:b5:8d:51:9c:53:b6:f4:8c: 0b:41:e6:cd:21:75:ba:96:f9:b9:4e:d2:f3:36:55: 03:57:f9:49:da:0e:82:db:3e:c9:f3:b1:a7:dd:cc: 9c:97:3d:51:5c:c5:7e:59:61:d5:20:75:b7:72:cb: b1:ca:75:e2:33:de:6e:9d:b4:a5:9b:29:ad:0d:d7: 91:3d:7c:b4:fb:bc:dd:91:7d:19:99:d7:8f:0a:50: 52:a5:dd:63:89:5b:9a:04:71:87:ff:03:5f:52:14: 15:4a:fd:31:7f:f7:e9:86:65:1d:87:e7:08:eb:d4: 3a:db:ce:47:04:f1:d7:11:e2:33:b9:40:7b:6f:ef: b8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:37:0C:DF:DA:66:52:8C:43:10:A3:E4:D0:89:77:27:18:42:40:E0 X509v3 Authority Key Identifier: keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/gjcM39pmUoxDEKPk0Il3JxhCQOA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.125.0/24 Signature Algorithm: sha256WithRSAEncryption 07:f7:c6:d2:72:ad:83:9d:a4:6a:ed:aa:a0:31:e2:cf:c8:62: 9c:73:78:6d:4b:e5:85:df:fa:bd:e6:6f:6a:a4:ab:2a:79:59: d2:7c:e8:a8:31:6e:cf:62:41:cc:2b:aa:ed:47:2b:0a:af:d4: 06:43:48:25:85:0d:03:d7:e0:0a:36:53:88:da:e9:9d:1d:0b: b3:11:a5:4b:f2:84:0f:37:fc:de:17:cc:04:5f:5a:18:3b:b1: 3c:a0:c1:ad:cf:f0:ba:8a:59:38:cf:c4:fa:53:ae:01:91:1a: 00:7e:df:ae:c3:dc:e3:44:aa:ad:d6:67:9f:08:e3:e0:5b:72: b6:bc:54:37:47:7b:7a:e6:61:f0:76:99:bb:54:b4:45:22:1b: 7c:4b:a9:73:9b:fd:a8:f8:32:43:77:e2:d9:ca:25:72:8a:59: a3:4a:18:b0:9d:77:e1:30:91:b6:1b:79:e6:78:df:1e:b5:01: c7:13:19:83:62:ac:3c:71:16:e5:13:a9:47:50:49:b7:9b:7c: f6:98:72:5d:1d:64:f4:a3:3c:08:6e:57:0b:00:12:2b:eb:a1: 26:21:17:95:31:f0:a1:33:9f:1e:87:18:20:1c:8b:d9:dd:79: 83:a0:65:78:72:24:10:b5:28:59:cf:98:d3:ed:5e:39:60:cd: 3b:f8:2c:24 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEqIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzBE MkM4QzNENEMyRkJCQTI0RDNEODM1MDhBQjE0MkYyRDQ5NDI3RDAeFw0yNDA4MjYw NTM0NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgyMzcwQ0RGREE2NjUy OEM0MzEwQTNFNEQwODk3NzI3MTg0MjQwRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHYqHAfkWw9cDRAtPvQo5WsTNZHbDN3o4truoOv0nkzyZyh4kp Z8JVDGgCom1NCryUnTOhd7KkVKwj0B4GCR3oDl02IGQW954Q8661CPOu/p4vRo1R OgeayPMWqghOPNVFqvHXKeXVFUsfBqPaq4mMTPZA01Pdf68jjp/5jJ+1jVGcU7b0 jAtB5s0hdbqW+blO0vM2VQNX+UnaDoLbPsnzsafdzJyXPVFcxX5ZYdUgdbdyy7HK deIz3m6dtKWbKa0N15E9fLT7vN2RfRmZ148KUFKl3WOJW5oEcYf/A19SFBVK/TF/ 9+mGZR2H5wjr1DrbzkcE8dcR4jO5QHtv77hZAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUgjcM39pmUoxDEKPk0Il3JxhCQOAwHwYDVR0jBBgwFoAUwNLIw9TC+7ok09g1 CKsULy1JQn0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOSU4v d05MSXc5VEMtN29rMDlnMUNLc1VMeTFKUW4wLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS93TkxJdzlUQy03b2swOWcxQ0tzVUx5MUpRbjAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5JTi9namNNMzlwbVVveERFS1BrMEls M0p4aENRT0Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4J9 MA0GCSqGSIb3DQEBCwUAA4IBAQAH98bScq2DnaRq7aqgMeLPyGKcc3htS+WF3/q9 5m9qpKsqeVnSfOioMW7PYkHMK6rtRysKr9QGQ0glhQ0D1+AKNlOI2umdHQuzEaVL 8oQPN/zeF8wEX1oYO7E8oMGtz/C6ilk4z8T6U64BkRoAft+uw9zjRKqt1mefCOPg W3K2vFQ3R3t65mHwdpm7VLRFIht8S6lzm/2o+DJDd+LZyiVyilmjShiwnXfhMJG2 G3nmeN8etQHHExmDYqw8cRblE6lHUEm3m3z2mHJdHWT0ozwIblcLABIr66EmIReV MfChM58ehxggHIvZ3XmDoGV4ciQQtShZz5jT7V45YM07+Cwk -----END CERTIFICATE-----Generated at Fri Nov 22 16:40:22 2024 by rpki-client on console-fra.rpki-client.org