$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XINAN/BUygM-VlDp5-QnsNmvEPUNPKdrY.roa File: BUygM-VlDp5-QnsNmvEPUNPKdrY.roa (raw, json) Hash identifier: YcI8OWeA+j+IUntlIb26oqjkXhQU5Hts/hhBxdHsG1M= Subject key identifier: 05:4C:A0:33:E5:65:0E:9E:7E:42:7B:0D:9A:F1:0F:50:D3:CA:76:B6 Certificate issuer: /CN=27E1699C6CFBD770F943A6BDF38F6BF481BB1E97 Certificate serial: 011E Authority key identifier: 27:E1:69:9C:6C:FB:D7:70:F9:43:A6:BD:F3:8F:6B:F4:81:BB:1E:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/J-FpnGz713D5Q6a9849r9IG7Hpc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/BUygM-VlDp5-QnsNmvEPUNPKdrY.roa Signing time: Sun 22 Sep 2024 17:59:33 +0000 ROA not before: Sun 22 Sep 2024 17:59:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 103.64.20.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/J-FpnGz713D5Q6a9849r9IG7Hpc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/J-FpnGz713D5Q6a9849r9IG7Hpc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/J-FpnGz713D5Q6a9849r9IG7Hpc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27E1699C6CFBD770F943A6BDF38F6BF481BB1E97 Validity Not Before: Sep 22 17:59:33 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=054CA033E5650E9E7E427B0D9AF10F50D3CA76B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ad:69:4f:c0:aa:09:1c:47:85:95:50:d0:45: e9:52:f2:1d:68:1b:fa:4e:68:5e:0c:76:e4:88:fb: 14:8c:da:78:ae:6d:e7:ac:44:c5:0d:27:1a:17:e4: f8:d4:b8:b5:31:bb:51:05:06:32:cf:c5:fe:f2:93: 53:3d:54:2e:0c:38:7c:02:fd:b7:43:47:c3:3c:c4: c7:0f:d1:dd:c4:c6:02:bd:c5:9f:4f:13:39:22:b8: 0e:9c:a6:ce:60:fc:b3:43:a6:33:38:58:11:00:af: fb:db:b4:c6:a5:73:e7:e7:ae:ae:da:06:db:e7:46: e1:3f:fd:8c:32:00:12:13:a2:eb:e1:0b:e9:b7:a4: d3:f4:ca:a0:28:bb:2e:d9:e4:ce:82:68:f6:f8:b7: fa:1b:8b:82:cb:c1:22:ef:dd:5a:38:c2:0e:d0:67: d3:6d:38:04:8c:81:dc:cb:77:96:7a:3d:f8:68:18: 41:02:a6:82:91:b2:76:8f:4a:a5:00:2d:a1:d0:65: ea:b3:2e:51:b0:14:80:a3:e5:73:7b:7b:21:99:5d: 2c:a6:02:f5:97:1b:9e:45:17:2a:a9:07:ee:53:f0: 09:f2:33:e2:2e:0d:d8:c2:71:34:b8:d2:3e:c9:f6: 68:5a:ca:a5:57:1a:3b:d5:92:20:72:53:0a:91:43: ce:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:4C:A0:33:E5:65:0E:9E:7E:42:7B:0D:9A:F1:0F:50:D3:CA:76:B6 X509v3 Authority Key Identifier: keyid:27:E1:69:9C:6C:FB:D7:70:F9:43:A6:BD:F3:8F:6B:F4:81:BB:1E:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/J-FpnGz713D5Q6a9849r9IG7Hpc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/J-FpnGz713D5Q6a9849r9IG7Hpc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/BUygM-VlDp5-QnsNmvEPUNPKdrY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.64.20.0/23 Signature Algorithm: sha256WithRSAEncryption ad:6b:ac:d3:55:8e:a3:26:4e:1a:1d:34:ed:4c:6e:ee:4d:ea: aa:61:51:27:b9:15:ba:ef:ae:f5:55:bd:9b:18:e2:62:4c:1f: f2:75:a0:1f:26:17:5b:20:96:2c:3d:03:82:bb:dd:6e:77:69: 51:a2:7b:20:7c:d3:c5:c8:69:a1:56:5c:ab:f2:c6:e9:96:7d: fa:e1:d4:7c:ad:aa:93:03:b9:9a:a3:d1:35:fe:4a:e4:95:14: ca:52:fe:ae:3a:86:91:f7:6f:59:1e:0a:43:2a:6b:3a:08:54: 0e:40:f1:8a:79:74:fc:8e:61:c9:62:b8:5a:42:ca:9f:55:6e: b3:dc:99:ca:a2:56:2c:55:7f:93:5b:5c:b2:a2:5b:b2:ed:62: 35:12:c2:3b:6a:36:be:83:a5:59:74:05:8b:c1:c4:ec:00:10: 09:92:a9:f2:43:a0:59:05:4c:76:e0:de:af:c4:76:4b:9b:83: 89:7c:14:28:59:35:9f:54:49:9f:06:30:da:3a:e7:ef:49:bf: 0c:5d:55:0b:35:12:e3:20:14:81:e2:fd:7e:56:0f:99:8f:a7: 79:d4:89:8e:8f:c3:59:43:79:84:26:91:f3:28:7a:d6:53:0a: 82:b4:f8:d4:ec:7b:54:93:0b:e8:20:d4:f3:5a:ec:4c:dd:fc: 52:9b:bb:c6 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjdF MTY5OUM2Q0ZCRDc3MEY5NDNBNkJERjM4RjZCRjQ4MUJCMUU5NzAeFw0yNDA5MjIx NzU5MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA1NENBMDMzRTU2NTBF OUU3RTQyN0IwRDlBRjEwRjUwRDNDQTc2QjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPrWlPwKoJHEeFlVDQRelS8h1oG/pOaF4MduSI+xSM2niubees RMUNJxoX5PjUuLUxu1EFBjLPxf7yk1M9VC4MOHwC/bdDR8M8xMcP0d3ExgK9xZ9P EzkiuA6cps5g/LNDpjM4WBEAr/vbtMalc+fnrq7aBtvnRuE//YwyABITouvhC+m3 pNP0yqAouy7Z5M6CaPb4t/obi4LLwSLv3Vo4wg7QZ9NtOASMgdzLd5Z6PfhoGEEC poKRsnaPSqUALaHQZeqzLlGwFICj5XN7eyGZXSymAvWXG55FFyqpB+5T8AnyM+Iu DdjCcTS40j7J9mhayqVXGjvVkiByUwqRQ85XAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUBUygM+VlDp5+QnsNmvEPUNPKdrYwHwYDVR0jBBgwFoAUJ+FpnGz713D5Q6a9 849r9IG7HpcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWElOQU4v Si1GcG5HejcxM0Q1UTZhOTg0OXI5SUc3SHBjLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9KLUZwbkd6NzEzRDVRNmE5ODQ5cjlJRzdIcGMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9YSU5BTi9CVXlnTS1WbERwNS1RbnNObXZF UFVOUEtkclkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0AU MA0GCSqGSIb3DQEBCwUAA4IBAQCta6zTVY6jJk4aHTTtTG7uTeqqYVEnuRW67671 Vb2bGOJiTB/ydaAfJhdbIJYsPQOCu91ud2lRonsgfNPFyGmhVlyr8sbpln364dR8 raqTA7mao9E1/krklRTKUv6uOoaR929ZHgpDKms6CFQOQPGKeXT8jmHJYrhaQsqf VW6z3JnKolYsVX+TW1yyoluy7WI1EsI7aja+g6VZdAWLwcTsABAJkqnyQ6BZBUx2 4N6vxHZLm4OJfBQoWTWfVEmfBjDaOufvSb8MXVULNRLjIBSB4v1+Vg+Zj6d51ImO j8NZQ3mEJpHzKHrWUwqCtPjU7HtUkwvoINTzWuxM3fxSm7vG -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:56 2024 by rpki-client on console-fra.rpki-client.org