$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/CDmGq1wPteWO8RZIsYtgBTvDAME.roa File: CDmGq1wPteWO8RZIsYtgBTvDAME.roa (raw, json) Hash identifier: 5VwArQtgM7broaI1BIuBgexd1lrhpC1txD0dgHpF2sk= Subject key identifier: 08:39:86:AB:5C:0F:B5:E5:8E:F1:16:48:B1:8B:60:05:3B:C3:00:C1 Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0D9E Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/CDmGq1wPteWO8RZIsYtgBTvDAME.roa Signing time: Wed 18 Sep 2024 04:55:34 +0000 ROA not before: Wed 18 Sep 2024 04:55:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24168 IP address blocks: 103.30.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3486 (0xd9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Sep 18 04:55:34 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=083986AB5C0FB5E58EF11648B18B60053BC300C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8b:3d:a9:a1:2b:6a:4f:85:4f:0e:31:ce:d4: b5:c4:b9:4a:ba:53:46:81:e9:90:31:3e:38:f5:d8: ee:3d:73:5c:7e:24:c2:cc:b9:5a:ce:7c:10:ee:69: 99:e0:b5:3c:22:14:50:85:03:12:18:3d:72:37:71: 60:a1:16:26:55:9a:56:2f:39:d0:4c:ae:22:5e:cf: 54:68:a2:b2:9b:d8:aa:87:86:43:0b:85:9a:c2:49: d1:d3:fb:99:39:b0:71:da:91:05:a0:93:b5:18:09: 84:c3:5f:ba:15:cb:88:31:40:6d:dc:62:3e:bb:32: 1a:2e:6e:a9:f6:4f:a8:87:76:50:c2:b2:7b:39:dd: 3c:0c:36:79:f2:9d:6d:f0:45:6d:27:b8:75:7e:95: 09:84:b3:af:97:b3:d4:4e:8b:4e:ed:5d:3a:d3:2f: 06:7e:37:d2:8b:7c:40:8a:01:08:42:fc:08:85:55: 15:3a:f5:cf:28:95:ca:b0:30:a8:ad:b0:a9:00:df: ef:d0:c0:4d:8a:2e:41:e0:0e:c6:76:ac:7c:2d:d3: 26:16:f3:1f:03:ec:55:83:3d:82:42:c7:a0:be:85: ed:78:08:1c:ff:8a:31:88:12:25:25:b0:41:34:5c: a1:c5:ec:3f:da:03:3c:57:fd:ac:2d:7e:a3:43:08: a8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:39:86:AB:5C:0F:B5:E5:8E:F1:16:48:B1:8B:60:05:3B:C3:00:C1 X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/CDmGq1wPteWO8RZIsYtgBTvDAME.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.30.44.0/24 Signature Algorithm: sha256WithRSAEncryption c4:0b:4d:87:d1:db:da:d1:a2:87:7f:45:98:2a:1d:17:38:87: bf:09:66:cc:2c:e1:b7:63:fa:51:a4:c2:c5:3b:18:51:41:fc: 6e:17:0b:3a:f9:ea:c1:9f:a7:a6:2d:46:96:2d:b7:d5:d1:3d: 7c:00:c6:83:09:d2:9f:bd:8f:55:df:8d:81:1e:cc:bc:6b:fd: d1:fc:82:84:d6:30:e7:4e:5a:df:cf:41:15:89:a6:c8:26:62: e7:40:c1:d9:d0:d4:44:25:c2:eb:08:6d:0e:4f:b6:77:ff:fb: 16:63:ac:f3:70:e6:41:4e:47:86:ca:6e:74:22:ca:1c:83:9c: 68:fd:21:52:bf:e3:fc:de:13:ae:e9:51:ae:6a:c2:d2:70:cb: 9d:39:ec:ed:d2:67:18:ea:4b:90:12:3d:02:56:43:80:38:ee: 66:4d:97:ea:1c:d2:fc:c9:e0:94:b2:41:51:d1:e5:d2:98:9d: 42:44:a5:9c:d8:ff:6c:4a:dc:a2:99:7d:8a:fa:9d:dc:a1:5e: 69:d3:ca:cd:2f:cd:8e:e5:5f:b2:cf:b8:fe:44:15:e6:00:54: 52:ce:0a:b2:c7:89:bc:ac:65:c1:21:72:61:09:02:d3:c3:43: cb:e1:3e:6f:59:63:df:9a:c5:58:0e:d0:bf:a1:23:d6:a9:62: 16:56:69:74 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDZ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNDA5MTgw NDU1MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA4Mzk4NkFCNUMwRkI1 RTU4RUYxMTY0OEIxOEI2MDA1M0JDMzAwQzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHiz2poStqT4VPDjHO1LXEuUq6U0aB6ZAxPjj12O49c1x+JMLM uVrOfBDuaZngtTwiFFCFAxIYPXI3cWChFiZVmlYvOdBMriJez1RoorKb2KqHhkML hZrCSdHT+5k5sHHakQWgk7UYCYTDX7oVy4gxQG3cYj67Mhoubqn2T6iHdlDCsns5 3TwMNnnynW3wRW0nuHV+lQmEs6+Xs9ROi07tXTrTLwZ+N9KLfECKAQhC/AiFVRU6 9c8olcqwMKitsKkA3+/QwE2KLkHgDsZ2rHwt0yYW8x8D7FWDPYJCx6C+he14CBz/ ijGIEiUlsEE0XKHF7D/aAzxX/awtfqNDCKhVAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUCDmGq1wPteWO8RZIsYtgBTvDAMEwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL0NEbUdxMXdQdGVX TzhSWklzWXRnQlR2REFNRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABnHiwwDQYJKoZIhvcNAQELBQADggEBAMQLTYfR29rRood/RZgqHRc4h78J Zsws4bdj+lGkwsU7GFFB/G4XCzr56sGfp6YtRpYtt9XRPXwAxoMJ0p+9j1XfjYEe zLxr/dH8goTWMOdOWt/PQRWJpsgmYudAwdnQ1EQlwusIbQ5Ptnf/+xZjrPNw5kFO R4bKbnQiyhyDnGj9IVK/4/zeE67pUa5qwtJwy5057O3SZxjqS5ASPQJWQ4A47mZN l+oc0vzJ4JSyQVHR5dKYnUJEpZzY/2xK3KKZfYr6ndyhXmnTys0vzY7lX7LPuP5E FeYAVFLOCrLHibysZcEhcmEJAtPDQ8vhPm9ZY9+axVgO0L+hI9apYhZWaXQ= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:42 2024 by rpki-client on console-ams.rpki-client.org