$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/o4ZoO2jNAXZDclMKcJpzB5zTgjo.roa File: o4ZoO2jNAXZDclMKcJpzB5zTgjo.roa (raw, json) Hash identifier: 1dqwazLbDAvYrIx4vcqUmvqhxuJvieNDVX44GJOBWQ8= Subject key identifier: A3:86:68:3B:68:CD:01:76:43:72:53:0A:70:9A:73:07:9C:D3:82:3A Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Certificate serial: 129E Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/o4ZoO2jNAXZDclMKcJpzB5zTgjo.roa Signing time: Mon 26 Aug 2024 05:34:52 +0000 ROA not before: Mon 26 Aug 2024 05:34:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131636 IP address blocks: 103.130.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 19:24:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4766 (0x129e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Validity Not Before: Aug 26 05:34:52 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A386683B68CD01764372530A709A73079CD3823A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:de:af:0f:c6:4a:5e:cb:af:7e:14:33:11:83: 24:c5:91:59:f1:ef:78:c5:6f:ef:f5:9d:c8:42:a8: 8c:05:5e:d7:a8:35:89:59:e0:b5:6a:5c:fe:f7:30: 85:09:3a:d0:b8:a7:0a:1d:67:c9:aa:d4:47:b7:7a: 94:e2:91:73:4a:03:5f:d3:99:b2:79:18:b9:93:b3: 49:69:c7:74:2b:7b:47:fd:66:c8:bc:5a:eb:72:bb: 9a:46:94:4a:94:0c:e9:d2:42:c6:39:52:c6:ef:d8: 88:76:1a:da:29:33:47:97:9b:0c:3d:5b:c0:41:bb: 68:25:11:bb:6a:ef:81:a8:17:ab:ad:7b:46:dd:60: b5:a3:68:20:cc:40:5e:61:be:c6:55:d6:7a:36:97: 22:83:5d:83:28:5f:2c:b0:38:95:9a:fc:ce:f5:87: 7b:e1:76:6d:1a:f6:1d:0c:54:30:09:e0:77:54:b9: 3a:44:b4:d7:a8:54:54:e2:e3:3d:4f:60:57:ab:00: 53:b0:74:fe:6e:23:51:25:4f:c9:c9:56:1c:9b:28: 07:05:99:34:ed:ed:76:f5:99:2d:bc:81:8a:fe:be: 67:1b:8e:7c:68:44:52:2e:79:75:33:6a:a9:b5:ed: 56:60:2f:aa:bd:db:41:2c:31:b1:31:5f:15:70:17: 20:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:86:68:3B:68:CD:01:76:43:72:53:0A:70:9A:73:07:9C:D3:82:3A X509v3 Authority Key Identifier: keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/o4ZoO2jNAXZDclMKcJpzB5zTgjo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.127.0/24 Signature Algorithm: sha256WithRSAEncryption 96:d6:16:73:ba:ac:ee:82:77:c9:eb:e4:dd:fb:b4:da:1f:cf: 2e:96:45:20:30:12:a9:4c:fc:5e:d6:18:ca:d1:5e:0f:63:28: 12:42:95:04:07:db:f9:ff:8e:a4:0f:1f:6f:bc:a6:b6:31:1c: 42:c2:93:85:03:8a:03:d1:ea:ba:f2:4b:f2:50:1c:cd:0e:92: e9:30:2e:c5:69:fb:4f:5e:ae:00:24:aa:cb:75:df:70:62:62: f9:fb:2b:4c:12:4f:5d:d2:e1:6c:93:f2:36:da:cb:4a:07:96: 66:f2:85:85:23:71:54:2c:3f:cc:30:35:58:2d:ab:96:a5:11: 07:e4:d0:7a:c5:c9:21:08:c7:e4:16:ad:14:93:6e:88:a1:87: 61:e8:3a:95:49:f1:6c:14:a7:a5:0b:15:fa:6f:cf:4c:22:b2: d6:6c:2a:23:2b:b9:74:1b:7b:4d:92:ef:52:a3:4a:1c:8d:59: 86:3e:2b:ed:3a:d3:5b:d3:74:cb:3b:be:62:8b:56:c6:42:29: 8e:be:a9:ce:67:89:74:87:7f:8c:bf:73:a1:09:33:7f:a2:bb: 47:1b:ec:27:ed:4d:95:28:87:13:ba:1c:8e:ea:09:7d:60:f1: 06:77:8c:33:fd:b4:5b:7b:e0:1e:26:00:59:dd:5f:87:95:7d: 59:32:00:b2 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEp4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzBE MkM4QzNENEMyRkJCQTI0RDNEODM1MDhBQjE0MkYyRDQ5NDI3RDAeFw0yNDA4MjYw NTM0NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEzODY2ODNCNjhDRDAx NzY0MzcyNTMwQTcwOUE3MzA3OUNEMzgyM0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/3q8Pxkpey69+FDMRgyTFkVnx73jFb+/1nchCqIwFXteoNYlZ 4LVqXP73MIUJOtC4pwodZ8mq1Ee3epTikXNKA1/TmbJ5GLmTs0lpx3Qre0f9Zsi8 Wutyu5pGlEqUDOnSQsY5Usbv2Ih2GtopM0eXmww9W8BBu2glEbtq74GoF6ute0bd YLWjaCDMQF5hvsZV1no2lyKDXYMoXyywOJWa/M71h3vhdm0a9h0MVDAJ4HdUuTpE tNeoVFTi4z1PYFerAFOwdP5uI1ElT8nJVhybKAcFmTTt7Xb1mS28gYr+vmcbjnxo RFIueXUzaqm17VZgL6q920EsMbExXxVwFyA5AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUo4ZoO2jNAXZDclMKcJpzB5zTgjowHwYDVR0jBBgwFoAUwNLIw9TC+7ok09g1 CKsULy1JQn0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOSU4v d05MSXc5VEMtN29rMDlnMUNLc1VMeTFKUW4wLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS93TkxJdzlUQy03b2swOWcxQ0tzVUx5MUpRbjAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5JTi9vNFpvTzJqTkFYWkRjbE1LY0pw ekI1elRnam8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4J/ MA0GCSqGSIb3DQEBCwUAA4IBAQCW1hZzuqzugnfJ6+Td+7TaH88ulkUgMBKpTPxe 1hjK0V4PYygSQpUEB9v5/46kDx9vvKa2MRxCwpOFA4oD0eq68kvyUBzNDpLpMC7F aftPXq4AJKrLdd9wYmL5+ytMEk9d0uFsk/I22stKB5Zm8oWFI3FULD/MMDVYLauW pREH5NB6xckhCMfkFq0Uk26IoYdh6DqVSfFsFKelCxX6b89MIrLWbCojK7l0G3tN ku9So0ocjVmGPivtOtNb03TLO75ii1bGQimOvqnOZ4l0h3+Mv3OhCTN/ortHG+wn 7U2VKIcTuhyO6gl9YPEGd4wz/bRbe+AeJgBZ3V+HlX1ZMgCy -----END CERTIFICATE-----Generated at Fri Nov 22 15:07:14 2024 by rpki-client on console-ams.rpki-client.org