$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/Z7UDDbUPBHGoLEoan9_bSuWy7v0.roa File: Z7UDDbUPBHGoLEoan9_bSuWy7v0.roa (raw, json) Hash identifier: 28PUqvAR3IfniXHjK0HrUjZN9n8do0zTsibBjbRH0Xo= Subject key identifier: 67:B5:03:0D:B5:0F:04:71:A8:2C:4A:1A:9F:DF:DB:4A:E5:B2:EE:FD Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA Certificate serial: 043E Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/Z7UDDbUPBHGoLEoan9_bSuWy7v0.roa Signing time: Fri 01 Sep 2023 08:03:45 +0000 ROA not before: Fri 01 Sep 2023 08:03:45 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 56850 IP address blocks: 103.156.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 03:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1086 (0x43e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA Validity Not Before: Sep 1 08:03:45 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=67B5030DB50F0471A82C4A1A9FDFDB4AE5B2EEFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:cf:ee:2a:3c:fe:2c:e1:e2:b0:dc:0e:53:40: b4:a7:50:d2:66:54:31:1c:58:2c:11:51:8d:75:bd: 71:c2:d8:ca:1f:a0:10:bb:10:ec:58:fd:76:06:ac: 82:e0:db:87:96:b1:8c:75:a7:72:66:59:48:3e:26: 58:cf:92:a3:98:a1:78:b0:54:29:e9:64:7c:b5:1e: 0b:d8:f8:e6:2b:c2:bf:32:cf:6f:4a:f4:5d:26:63: 1a:41:15:a0:3a:6b:11:34:64:00:05:69:0a:a1:bf: ff:46:cb:c5:29:6c:00:ae:98:b0:0c:ed:a8:93:90: 42:0d:d4:f2:b3:7a:ca:f6:d0:51:95:6c:e9:38:32: 84:2e:d2:0e:59:0a:5e:40:d1:16:84:cb:d8:e8:26: 65:57:02:70:4f:a9:1b:66:80:ec:f2:4f:ce:24:69: ba:2f:43:4e:a0:bb:fe:18:20:35:1f:8b:a0:37:fc: b6:99:90:04:9f:17:4c:33:d4:24:65:89:67:97:a5: 30:c4:6f:38:77:ba:ec:6b:b9:96:e0:1f:49:07:5c: f9:9f:b9:e4:f4:3c:88:41:84:b0:c0:00:34:2b:b7: 29:21:44:2d:c2:f8:fb:4f:04:90:f4:d6:58:4b:2f: 12:6a:89:95:22:3a:3f:69:fb:10:c9:09:81:ea:be: f7:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:B5:03:0D:B5:0F:04:71:A8:2C:4A:1A:9F:DF:DB:4A:E5:B2:EE:FD X509v3 Authority Key Identifier: keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/Z7UDDbUPBHGoLEoan9_bSuWy7v0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.156.184.0/24 Signature Algorithm: sha256WithRSAEncryption 93:5f:d1:0d:6b:61:4f:2e:cc:44:d3:5a:a0:2e:f7:1f:11:9c: 80:f5:e6:9a:7d:e6:d0:23:93:73:bc:af:90:c8:94:68:0e:9f: df:49:16:ef:2d:87:1d:e0:74:a2:71:30:45:20:20:b6:74:a2: 78:a0:fe:63:17:27:e8:db:6f:ad:74:1f:19:7d:2b:d3:a6:e0: 8e:9d:39:8a:46:87:37:a7:f0:8f:27:a7:73:26:0d:86:b8:8b: cd:e1:11:f9:ae:f7:2a:9c:f8:52:dd:5c:b2:6e:71:3d:aa:56: 94:b2:1c:69:e3:56:87:61:ce:76:53:f6:74:0f:ae:de:6b:07: 33:67:ec:d7:f0:2e:e4:75:84:e5:ab:04:ba:11:9d:30:89:c0: 0f:38:2d:a5:53:c0:04:2e:ed:55:65:9d:88:fd:cd:0e:86:13: fc:26:f5:44:18:31:0c:5c:71:36:f9:e3:ff:a0:ef:51:a1:4e: 22:43:ae:01:cd:15:d1:54:94:c6:23:27:98:db:ff:77:2d:5c: 3c:71:d9:e7:25:bb:d9:ef:8f:ea:31:ab:cc:ff:23:d5:2b:de: 24:0c:52:35:96:ee:e1:a0:26:46:32:b3:02:0d:08:0d:fd:d4: 73:7d:f9:96:3b:b6:b8:cd:7e:09:16:1c:be:c8:80:d2:65:08: 3a:e2:50:ef -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBD4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yMzA5MDEw ODAzNDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY3QjUwMzBEQjUwRjA0 NzFBODJDNEExQTlGREZEQjRBRTVCMkVFRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEz+4qPP4s4eKw3A5TQLSnUNJmVDEcWCwRUY11vXHC2MofoBC7 EOxY/XYGrILg24eWsYx1p3JmWUg+JljPkqOYoXiwVCnpZHy1HgvY+OYrwr8yz29K 9F0mYxpBFaA6axE0ZAAFaQqhv/9Gy8UpbACumLAM7aiTkEIN1PKzesr20FGVbOk4 MoQu0g5ZCl5A0RaEy9joJmVXAnBPqRtmgOzyT84kabovQ06gu/4YIDUfi6A3/LaZ kASfF0wz1CRliWeXpTDEbzh3uuxruZbgH0kHXPmfueT0PIhBhLDAADQrtykhRC3C +PtPBJD01lhLLxJqiZUiOj9p+xDJCYHqvvfjAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUZ7UDDbUPBHGoLEoan9/bSuWy7v0wHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MvWjdVRERiVVBCSEdvTEVv YW45X2JTdVd5N3YwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGecuDANBgkqhkiG9w0BAQsFAAOCAQEAk1/RDWthTy7MRNNaoC73HxGcgPXmmn3m 0COTc7yvkMiUaA6f30kW7y2HHeB0onEwRSAgtnSieKD+Yxcn6NtvrXQfGX0r06bg jp05ikaHN6fwjyencyYNhriLzeER+a73Kpz4Ut1csm5xPapWlLIcaeNWh2HOdlP2 dA+u3msHM2fs1/Au5HWE5asEuhGdMInADzgtpVPABC7tVWWdiP3NDoYT/Cb1RBgx DFxxNvnj/6DvUaFOIkOuAc0V0VSUxiMnmNv/dy1cPHHZ5yW72e+P6jGrzP8j1Sve JAxSNZbu4aAmRjKzAg0IDf3Uc335lju2uM1+CRYcvsiA0mUIOuJQ7w== -----END CERTIFICATE-----Generated at Fri May 17 22:07:42 2024 by rpki-client on console-ams.rpki-client.org