$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/BTfGaArZUJOFQv3XsALV4TOotLc.roa File: BTfGaArZUJOFQv3XsALV4TOotLc.roa (raw, json) Hash identifier: XtQEZBu/pRSSTCQMPhiDC/o9YnNnJuzF5nAI9cyj6o4= Subject key identifier: 05:37:C6:68:0A:D9:50:93:85:42:FD:D7:B0:02:D5:E1:33:A8:B4:B7 Certificate issuer: /CN=CA1B71EFAC6F6AA43027609C18A734982764554B Certificate serial: 0E02 Authority key identifier: CA:1B:71:EF:AC:6F:6A:A4:30:27:60:9C:18:A7:34:98:27:64:55:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/BTfGaArZUJOFQv3XsALV4TOotLc.roa Signing time: Mon 26 Aug 2024 05:34:56 +0000 ROA not before: Mon 26 Aug 2024 05:34:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 103.138.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/yhtx76xvaqQwJ2CcGKc0mCdkVUs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/yhtx76xvaqQwJ2CcGKc0mCdkVUs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3586 (0xe02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA1B71EFAC6F6AA43027609C18A734982764554B Validity Not Before: Aug 26 05:34:56 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0537C6680AD950938542FDD7B002D5E133A8B4B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a3:77:9f:21:a4:35:2c:e7:2b:26:7f:1a:4b: d5:ec:e0:12:bd:81:92:e9:08:2f:27:59:e4:62:f5: 86:0f:ea:30:b6:e1:57:dc:53:8a:1e:a4:54:12:45: 58:86:6a:d4:56:cb:bb:95:02:cb:f1:41:8c:c8:72: 1a:9c:b4:01:7b:64:03:d5:3d:df:65:30:bf:ed:cb: a1:46:17:2a:30:8d:bb:20:da:ea:8d:40:48:11:64: 74:72:a9:4f:a9:fb:e8:a9:3a:81:3f:80:66:15:c4: 86:60:34:95:71:3f:17:f6:92:b9:47:55:43:3d:bb: b2:a4:75:c2:95:c2:2a:27:4a:65:3d:00:c2:c0:9f: 9d:d0:52:d6:19:5f:66:cd:08:3f:fe:74:f3:87:08: 0f:65:c5:a7:c4:71:7e:e4:c8:f4:af:3b:ad:4e:eb: 02:1f:f5:35:0d:43:db:c8:a8:06:8d:f4:0c:c5:9b: f5:db:5c:b9:3c:ec:64:54:ea:64:63:d3:60:56:4d: 4f:30:b2:e9:39:7c:d8:38:d2:f3:60:34:0d:5f:c1: ac:b2:db:e9:3c:f5:25:7f:d0:b2:94:8b:14:61:4a: a5:dd:45:43:a2:88:c7:53:59:d8:ed:ae:b8:d6:51: 71:55:ea:56:0a:de:90:a0:c4:f6:2e:d8:b1:ee:3f: 11:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:37:C6:68:0A:D9:50:93:85:42:FD:D7:B0:02:D5:E1:33:A8:B4:B7 X509v3 Authority Key Identifier: keyid:CA:1B:71:EF:AC:6F:6A:A4:30:27:60:9C:18:A7:34:98:27:64:55:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/yhtx76xvaqQwJ2CcGKc0mCdkVUs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/BTfGaArZUJOFQv3XsALV4TOotLc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.138.106.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:e5:b5:34:5d:bd:c1:2c:11:c1:5b:b7:7c:f3:9d:4e:89:be: 41:f7:8d:11:46:4e:e8:6d:47:bc:20:a0:db:d1:e5:2a:e4:6f: 2a:b1:30:4c:18:8e:20:7c:6d:f4:0e:57:6c:c8:68:ab:61:a9: bd:a9:7a:2f:6b:9a:5f:4e:71:09:19:50:52:cf:2d:ad:31:12: de:d9:87:13:7f:cd:ea:22:1b:05:ff:3b:91:f2:1b:0a:16:ea: 52:e9:99:a1:c2:65:13:52:af:e3:27:78:39:7d:4b:51:5a:dd: 33:96:10:12:08:8c:7c:f8:86:42:46:2e:1e:0a:73:f8:46:51: 45:82:d4:08:74:eb:ce:e4:30:1f:fc:04:d9:53:ea:7d:4f:94: 4a:00:ac:09:fe:ee:d8:fd:7f:b8:07:c7:2d:92:44:11:95:0a: ea:8e:66:76:e2:00:3b:44:d6:4b:1c:32:f8:82:5b:ab:c9:44: b5:d4:97:f4:fe:65:8e:f2:01:88:02:78:03:f9:88:ea:a3:d9: 96:c5:2e:c2:55:7e:f6:81:2b:81:30:ac:0d:7c:32:b2:2b:33: 6d:96:d6:b9:5f:22:27:7f:f3:27:08:8a:9d:d7:f0:7b:32:34: c8:63:b4:ce:0b:a0:0b:5f:53:65:7f:bb:aa:68:e3:46:5c:06: ad:d1:aa:32 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDgIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Ex QjcxRUZBQzZGNkFBNDMwMjc2MDlDMThBNzM0OTgyNzY0NTU0QjAeFw0yNDA4MjYw NTM0NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA1MzdDNjY4MEFEOTUw OTM4NTQyRkREN0IwMDJENUUxMzNBOEI0QjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIo3efIaQ1LOcrJn8aS9Xs4BK9gZLpCC8nWeRi9YYP6jC24Vfc U4oepFQSRViGatRWy7uVAsvxQYzIchqctAF7ZAPVPd9lML/ty6FGFyowjbsg2uqN QEgRZHRyqU+p++ipOoE/gGYVxIZgNJVxPxf2krlHVUM9u7KkdcKVwionSmU9AMLA n53QUtYZX2bNCD/+dPOHCA9lxafEcX7kyPSvO61O6wIf9TUNQ9vIqAaN9AzFm/Xb XLk87GRU6mRj02BWTU8wsuk5fNg40vNgNA1fwayy2+k89SV/0LKUixRhSqXdRUOi iMdTWdjtrrjWUXFV6lYK3pCgxPYu2LHuPxGfAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUBTfGaArZUJOFQv3XsALV4TOotLcwHwYDVR0jBBgwFoAUyhtx76xvaqQwJ2Cc GKc0mCdkVUswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOVEVB U1kveWh0eDc2eHZhcVF3SjJDY0dLYzBtQ2RrVlVzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS95aHR4NzZ4dmFxUXdKMkNjR0tjMG1DZGtWVXMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5URUFTWS9CVGZHYUFyWlVKT0ZR djNYc0FMVjRUT290TGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ4pqMA0GCSqGSIb3DQEBCwUAA4IBAQBK5bU0Xb3BLBHBW7d8851Oib5B940R Rk7obUe8IKDb0eUq5G8qsTBMGI4gfG30DldsyGirYam9qXova5pfTnEJGVBSzy2t MRLe2YcTf83qIhsF/zuR8hsKFupS6ZmhwmUTUq/jJ3g5fUtRWt0zlhASCIx8+IZC Ri4eCnP4RlFFgtQIdOvO5DAf/ATZU+p9T5RKAKwJ/u7Y/X+4B8ctkkQRlQrqjmZ2 4gA7RNZLHDL4gluryUS11Jf0/mWO8gGIAngD+Yjqo9mWxS7CVX72gSuBMKwNfDKy KzNtlta5XyInf/MnCIqd1/B7MjTIY7TOC6ALX1Nlf7uqaONGXAat0aoy -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:42 2024 by rpki-client on console-ams.rpki-client.org