$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/N1i2B6gEgBOa0JBGD1a2qcvp-1M.roa File: N1i2B6gEgBOa0JBGD1a2qcvp-1M.roa (raw, json) Hash identifier: LNL4K0fiFiPEZlxI+WYVHIoDX7LyDvEoXi0yna7mZ7U= Subject key identifier: 37:58:B6:07:A8:04:80:13:9A:D0:90:46:0F:56:B6:A9:CB:E9:FB:53 Certificate issuer: /CN=CA1B71EFAC6F6AA43027609C18A734982764554B Certificate serial: 0E00 Authority key identifier: CA:1B:71:EF:AC:6F:6A:A4:30:27:60:9C:18:A7:34:98:27:64:55:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/N1i2B6gEgBOa0JBGD1a2qcvp-1M.roa Signing time: Mon 26 Aug 2024 05:34:55 +0000 ROA not before: Mon 26 Aug 2024 05:34:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 103.138.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/yhtx76xvaqQwJ2CcGKc0mCdkVUs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/yhtx76xvaqQwJ2CcGKc0mCdkVUs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3584 (0xe00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA1B71EFAC6F6AA43027609C18A734982764554B Validity Not Before: Aug 26 05:34:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3758B607A80480139AD090460F56B6A9CBE9FB53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d4:6a:cd:d7:f2:7e:7f:b1:a1:88:fd:31:8d: 41:f0:3c:cf:ee:d4:e3:87:cf:2e:cb:f2:4c:30:ce: 52:26:86:cd:15:37:23:57:83:3f:ae:26:af:b6:b0: fc:bd:7b:6f:ea:7a:e8:2c:2e:c3:0e:f3:69:6b:88: 00:9f:80:d8:89:4a:b4:8a:79:f8:bd:28:5a:e6:66: b0:49:1c:57:c7:77:a3:b0:67:81:c8:a4:2c:ce:b4: 09:1f:c3:87:74:fc:65:ef:10:cf:59:a6:44:f0:e9: d2:60:25:55:f6:62:c7:73:fe:4b:36:be:60:16:db: 6e:91:70:2c:54:82:93:cb:48:a0:20:7a:71:45:d8: 1a:14:15:20:dc:a4:d8:f0:a4:bc:e2:83:86:81:c6: a4:ec:63:d0:2f:bb:4c:0b:23:a6:5d:36:28:6c:0b: 87:61:8c:57:36:d0:8d:69:7e:d4:3d:41:04:a0:d5: bf:70:31:c0:79:7d:0f:9b:c5:ad:fa:c4:36:f9:b1: 1d:7d:64:53:c7:69:ab:80:c2:e8:48:ee:1c:f1:da: 1c:29:19:4d:ab:c2:7a:a3:5f:2c:db:c8:27:49:2a: 39:95:fc:1d:42:85:c0:bc:c2:b8:a0:fa:98:ae:ad: 1e:8d:4c:77:d0:91:37:84:83:1d:a7:4c:5b:97:ac: 3f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:58:B6:07:A8:04:80:13:9A:D0:90:46:0F:56:B6:A9:CB:E9:FB:53 X509v3 Authority Key Identifier: keyid:CA:1B:71:EF:AC:6F:6A:A4:30:27:60:9C:18:A7:34:98:27:64:55:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/yhtx76xvaqQwJ2CcGKc0mCdkVUs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/N1i2B6gEgBOa0JBGD1a2qcvp-1M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.138.106.0/24 Signature Algorithm: sha256WithRSAEncryption 21:73:2b:0a:1b:68:8c:84:7f:01:fe:24:bf:37:c9:a0:12:c8: 4e:94:46:31:24:a4:99:8a:8c:51:05:91:94:fe:8f:2e:ea:46: a1:d7:20:32:5a:ba:3f:09:cc:21:bc:c5:2a:94:cb:f9:67:00: eb:93:17:8e:73:7d:08:86:4e:47:dd:7c:66:b7:0c:a3:6b:dc: e5:12:f7:40:ce:72:31:b6:a9:8a:25:3c:56:7d:ac:49:23:d1: f9:4e:32:08:ea:d4:61:ef:e8:24:c8:68:40:34:d0:4a:6f:3a: d3:21:a5:7b:ed:f9:1b:56:0f:6b:59:73:42:a8:2a:9c:ee:a0: 55:e1:65:53:a7:2e:de:71:33:72:4b:dd:61:40:d8:6b:11:fc: 13:3a:33:d9:20:11:76:78:30:8c:8d:dd:b9:93:74:7e:8e:6f: 9a:8a:ee:cf:ad:e6:cc:36:7a:8f:19:63:86:9c:30:86:99:76: cb:b8:91:31:2b:fd:19:dc:7a:98:40:89:fd:69:ae:b2:fc:ee: b1:51:9b:6d:26:a8:2f:7d:86:cc:65:07:47:7c:cc:40:bc:e1: 8d:6a:7f:92:53:9d:d1:6a:0e:85:37:24:53:71:ba:13:ac:24: eb:87:fc:ba:cc:88:64:fe:4f:39:75:f0:d6:f0:67:9f:9b:19: fe:e3:84:f7 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDgAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Ex QjcxRUZBQzZGNkFBNDMwMjc2MDlDMThBNzM0OTgyNzY0NTU0QjAeFw0yNDA4MjYw NTM0NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM3NThCNjA3QTgwNDgw MTM5QUQwOTA0NjBGNTZCNkE5Q0JFOUZCNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDh1GrN1/J+f7GhiP0xjUHwPM/u1OOHzy7L8kwwzlImhs0VNyNX gz+uJq+2sPy9e2/qeugsLsMO82lriACfgNiJSrSKefi9KFrmZrBJHFfHd6OwZ4HI pCzOtAkfw4d0/GXvEM9ZpkTw6dJgJVX2Ysdz/ks2vmAW226RcCxUgpPLSKAgenFF 2BoUFSDcpNjwpLzig4aBxqTsY9Avu0wLI6ZdNihsC4dhjFc20I1pftQ9QQSg1b9w McB5fQ+bxa36xDb5sR19ZFPHaauAwuhI7hzx2hwpGU2rwnqjXyzbyCdJKjmV/B1C hcC8wrig+piurR6NTHfQkTeEgx2nTFuXrD+BAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUN1i2B6gEgBOa0JBGD1a2qcvp+1MwHwYDVR0jBBgwFoAUyhtx76xvaqQwJ2Cc GKc0mCdkVUswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOVEVB U1kveWh0eDc2eHZhcVF3SjJDY0dLYzBtQ2RrVlVzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS95aHR4NzZ4dmFxUXdKMkNjR0tjMG1DZGtWVXMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5URUFTWS9OMWkyQjZnRWdCT2Ew SkJHRDFhMnFjdnAtMU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ4pqMA0GCSqGSIb3DQEBCwUAA4IBAQAhcysKG2iMhH8B/iS/N8mgEshOlEYx JKSZioxRBZGU/o8u6kah1yAyWro/CcwhvMUqlMv5ZwDrkxeOc30Ihk5H3Xxmtwyj a9zlEvdAznIxtqmKJTxWfaxJI9H5TjII6tRh7+gkyGhANNBKbzrTIaV77fkbVg9r WXNCqCqc7qBV4WVTpy7ecTNyS91hQNhrEfwTOjPZIBF2eDCMjd25k3R+jm+aiu7P rebMNnqPGWOGnDCGmXbLuJExK/0Z3HqYQIn9aa6y/O6xUZttJqgvfYbMZQdHfMxA vOGNan+SU53Rag6FNyRTcboTrCTrh/y6zIhk/k85dfDW8Gefmxn+44T3 -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:27 2024 by rpki-client on console-ams.rpki-client.org