$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XINAN/FVKGPgOYoyh7yOJmIfbmqeTqUuU.roa File: FVKGPgOYoyh7yOJmIfbmqeTqUuU.roa (raw, json) Hash identifier: PMXerfZYuUHXZ0RqJFHnGJlPQbbTWY7IDj4R0DcaMxo= Subject key identifier: 15:52:86:3E:03:98:A3:28:7B:C8:E2:66:21:F6:E6:A9:E4:EA:52:E5 Certificate issuer: /CN=27E1699C6CFBD770F943A6BDF38F6BF481BB1E97 Certificate serial: 0109 Authority key identifier: 27:E1:69:9C:6C:FB:D7:70:F9:43:A6:BD:F3:8F:6B:F4:81:BB:1E:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/J-FpnGz713D5Q6a9849r9IG7Hpc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/FVKGPgOYoyh7yOJmIfbmqeTqUuU.roa Signing time: Mon 26 Aug 2024 05:35:15 +0000 ROA not before: Mon 26 Aug 2024 05:35:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 103.64.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/J-FpnGz713D5Q6a9849r9IG7Hpc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/J-FpnGz713D5Q6a9849r9IG7Hpc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/J-FpnGz713D5Q6a9849r9IG7Hpc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Sep 2024 11:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27E1699C6CFBD770F943A6BDF38F6BF481BB1E97 Validity Not Before: Aug 26 05:35:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1552863E0398A3287BC8E26621F6E6A9E4EA52E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:64:c4:4e:0d:a9:de:53:56:6b:d8:dd:4e:01: cc:85:1b:ae:e5:bd:14:a8:67:3c:54:b3:76:b7:63: 52:97:e1:60:3b:6d:aa:b5:00:c1:24:75:ff:50:4f: c0:07:ed:f9:24:2f:82:30:91:87:39:bd:9c:5f:7c: eb:c0:8b:77:7e:a3:a6:0c:a8:a2:6b:84:67:16:24: 6e:c1:3e:3e:00:1f:3d:c2:c8:e6:d2:38:78:98:0e: 9f:ef:cc:f8:73:dd:6d:3a:80:48:8a:c1:4c:fc:0c: 14:89:e0:61:78:05:9a:30:ff:4d:d3:75:41:4d:68: 1d:20:59:ff:18:8b:f6:31:91:1a:fd:3e:21:30:47: 54:61:24:6d:ec:c2:94:80:57:82:94:ba:57:00:c3: 48:91:c7:fb:f7:a8:2a:41:8c:a7:b6:69:e5:7a:89: 61:f0:00:dc:a0:a8:3b:44:17:6e:e0:0a:61:df:9d: d7:da:14:e8:c8:b3:e4:1c:ca:fa:8a:66:e4:39:ab: 83:3f:87:f4:5f:2b:25:55:38:80:7b:9e:f8:91:a3: 22:72:8b:98:ea:b4:93:e0:1a:be:06:eb:6a:f5:0c: 98:8f:7f:fb:ad:c6:39:03:0e:09:d1:9a:6d:c0:58: d7:fd:85:2a:4f:d3:f9:b8:d5:5b:36:d8:8e:ba:bf: ee:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:52:86:3E:03:98:A3:28:7B:C8:E2:66:21:F6:E6:A9:E4:EA:52:E5 X509v3 Authority Key Identifier: keyid:27:E1:69:9C:6C:FB:D7:70:F9:43:A6:BD:F3:8F:6B:F4:81:BB:1E:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/J-FpnGz713D5Q6a9849r9IG7Hpc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/J-FpnGz713D5Q6a9849r9IG7Hpc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/FVKGPgOYoyh7yOJmIfbmqeTqUuU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.64.20.0/23 Signature Algorithm: sha256WithRSAEncryption 57:55:41:68:b0:88:b1:8e:86:f2:de:77:e2:f0:48:c9:82:9f: e5:12:0a:e0:5f:93:44:cd:f8:70:dc:6e:22:f3:f1:fd:42:5c: 4c:a5:5c:60:b9:17:c4:82:4d:ef:2f:cf:19:75:c9:b2:e6:b0: 05:6b:52:24:53:80:24:08:10:fc:f6:1e:02:22:7a:45:56:13: 44:97:62:8a:03:97:17:18:90:ff:e7:0b:e6:63:52:e2:7b:b3: 21:77:02:4a:bf:31:01:19:02:7d:69:79:88:ff:ad:37:2e:5b: d8:b8:e0:5a:f4:06:a5:49:26:66:fc:3f:0c:d8:12:4d:49:7d: 26:e3:ab:1b:10:45:43:db:d9:3f:d2:6c:b1:71:ab:76:bc:5d: 0b:b2:72:46:67:64:3d:0e:f5:80:3c:fe:a4:5d:a3:c0:03:23: 1e:a5:3c:17:3d:a7:98:00:61:d2:11:e3:c8:aa:ad:ae:b9:6d: 09:55:b1:54:c5:c5:c3:9d:81:cc:a3:96:34:af:7e:07:3f:6f: 2e:92:71:7d:fa:71:b9:98:e8:b9:16:07:7c:f3:ec:dc:3c:4f: 49:26:a9:b9:2d:22:b3:f3:15:cd:17:ff:a0:d4:8b:1a:78:04: 8b:ef:37:48:49:d0:5a:d4:d9:9a:60:bf:82:e0:f4:47:74:da: 9c:e2:e3:d9 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjdF MTY5OUM2Q0ZCRDc3MEY5NDNBNkJERjM4RjZCRjQ4MUJCMUU5NzAeFw0yNDA4MjYw NTM1MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE1NTI4NjNFMDM5OEEz Mjg3QkM4RTI2NjIxRjZFNkE5RTRFQTUyRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIZMRODaneU1Zr2N1OAcyFG67lvRSoZzxUs3a3Y1KX4WA7baq1 AMEkdf9QT8AH7fkkL4IwkYc5vZxffOvAi3d+o6YMqKJrhGcWJG7BPj4AHz3CyObS OHiYDp/vzPhz3W06gEiKwUz8DBSJ4GF4BZow/03TdUFNaB0gWf8Yi/YxkRr9PiEw R1RhJG3swpSAV4KUulcAw0iRx/v3qCpBjKe2aeV6iWHwANygqDtEF27gCmHfndfa FOjIs+QcyvqKZuQ5q4M/h/RfKyVVOIB7nviRoyJyi5jqtJPgGr4G62r1DJiPf/ut xjkDDgnRmm3AWNf9hSpP0/m41Vs22I66v+7DAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUFVKGPgOYoyh7yOJmIfbmqeTqUuUwHwYDVR0jBBgwFoAUJ+FpnGz713D5Q6a9 849r9IG7HpcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWElOQU4v Si1GcG5HejcxM0Q1UTZhOTg0OXI5SUc3SHBjLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9KLUZwbkd6NzEzRDVRNmE5ODQ5cjlJRzdIcGMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9YSU5BTi9GVktHUGdPWW95aDd5T0ptSWZi bXFlVHFVdVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0AU MA0GCSqGSIb3DQEBCwUAA4IBAQBXVUFosIixjoby3nfi8EjJgp/lEgrgX5NEzfhw 3G4i8/H9QlxMpVxguRfEgk3vL88Zdcmy5rAFa1IkU4AkCBD89h4CInpFVhNEl2KK A5cXGJD/5wvmY1Lie7MhdwJKvzEBGQJ9aXmI/603LlvYuOBa9AalSSZm/D8M2BJN SX0m46sbEEVD29k/0myxcat2vF0LsnJGZ2Q9DvWAPP6kXaPAAyMepTwXPaeYAGHS EePIqq2uuW0JVbFUxcXDnYHMo5Y0r34HP28uknF9+nG5mOi5Fgd88+zcPE9JJqm5 LSKz8xXNF/+g1IsaeASL7zdISdBa1NmaYL+C4PRHdNqc4uPZ -----END CERTIFICATE-----Generated at Fri Sep 20 08:12:21 2024 by rpki-client on console-fra.rpki-client.org