$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/DtMgBwl-k3SDrCcZ5ERXzV2-ds8.roa File: DtMgBwl-k3SDrCcZ5ERXzV2-ds8.roa (raw, json) Hash identifier: FbT75pGJTAkh7SHd4ZrSEiPcAHK3R2ROlR0bzo1E2Ak= Subject key identifier: 0E:D3:20:07:09:7E:93:74:83:AC:27:19:E4:44:57:CD:5D:BE:76:CF Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Certificate serial: 0B4C Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/DtMgBwl-k3SDrCcZ5ERXzV2-ds8.roa Signing time: Fri 01 Sep 2023 08:35:11 +0000 ROA not before: Fri 01 Sep 2023 08:35:11 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 396982 IP address blocks: 103.123.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:09:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2892 (0xb4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Validity Not Before: Sep 1 08:35:11 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0ED32007097E937483AC2719E44457CD5DBE76CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9f:c7:63:b0:ed:f4:54:2a:7a:9e:9b:d0:e5: 21:46:0d:32:4d:af:9c:f2:cd:24:dd:bf:75:2c:e7: 87:80:db:e0:16:b9:71:e9:0c:c5:85:12:f8:e4:38: 32:8b:02:4d:52:12:f4:2b:49:8b:26:f2:64:c6:ef: 2a:d3:46:1b:9b:ef:6f:8d:19:68:fe:6d:15:77:f7: 4a:ef:a9:e6:5e:e1:7c:a7:19:93:91:84:f5:07:a7: 2e:f2:29:aa:b2:d5:7e:fd:c7:4c:d2:fa:01:fb:12: 49:16:a9:31:10:98:ff:d8:bf:15:a0:27:1f:ed:93: 70:bf:b7:e5:28:f0:8d:c9:29:54:e9:d0:83:62:7e: 64:59:a6:a2:d4:a9:c1:93:4c:f5:e0:28:99:39:47: 96:c2:af:bb:44:ab:2d:bf:cb:f9:c1:3f:5e:cb:22: 9c:3f:b9:e3:58:55:39:46:02:e4:4e:41:17:c4:ac: 31:71:3b:ba:6b:8a:84:b9:7b:52:0b:f8:da:d4:17: 34:29:87:4a:12:83:d6:d4:4f:5c:3b:6b:5e:35:15: ae:64:89:c4:ad:0f:28:b4:25:94:90:57:36:a3:e6: ab:2c:4d:0f:cb:f9:83:71:2b:3e:06:e7:83:fe:47: 3b:ad:13:60:19:75:eb:1c:0e:96:f4:68:04:25:3a: 25:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D3:20:07:09:7E:93:74:83:AC:27:19:E4:44:57:CD:5D:BE:76:CF X509v3 Authority Key Identifier: keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/DtMgBwl-k3SDrCcZ5ERXzV2-ds8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.131.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:37:d6:5f:2c:4f:27:58:43:81:81:2c:a8:91:6f:6c:65:f8: cc:df:aa:66:ce:0b:2f:f8:6e:7c:48:19:67:03:b8:12:2d:2c: be:9f:84:5b:8e:7c:83:8e:df:82:b2:a3:3a:14:01:e0:63:a8: a8:5e:e8:d5:24:28:a3:98:1c:71:18:e8:d7:48:3f:8c:3a:3c: ce:76:fd:3d:cf:ca:29:e4:6c:40:4d:52:f0:de:9a:60:ef:1c: 95:b5:0e:ef:e0:28:c3:12:92:0a:54:9f:01:45:6f:58:2f:60: 77:17:66:33:3f:c6:e3:7c:9a:c5:01:ad:33:95:19:f8:31:0d: 96:8b:8a:97:73:fc:54:64:5a:97:94:04:05:28:a7:a1:a4:97: 36:5e:b5:9c:f7:e8:36:63:f4:9a:49:e8:16:93:02:3d:58:44: 0d:93:7c:1e:02:98:8e:35:a1:75:a0:ff:02:70:cb:b6:58:52: 2a:c8:71:a9:7a:40:cc:89:1e:d7:2b:6f:16:cc:45:14:42:3c: b0:0a:bb:41:c2:7e:be:0a:ee:8b:dc:2e:73:8a:05:6a:49:82: 43:4e:85:c5:58:24:e9:a9:7e:d7:03:3a:40:7f:14:62:68:a3: d0:17:6c:77:66:e0:24:d2:ad:f8:3a:4f:59:c1:85:52:63:9c: 47:83:88:f5 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC0wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yMzA5MDEw ODM1MTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBFRDMyMDA3MDk3RTkz NzQ4M0FDMjcxOUU0NDQ1N0NENURCRTc2Q0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKn8djsO30VCp6npvQ5SFGDTJNr5zyzSTdv3Us54eA2+AWuXHp DMWFEvjkODKLAk1SEvQrSYsm8mTG7yrTRhub72+NGWj+bRV390rvqeZe4XynGZOR hPUHpy7yKaqy1X79x0zS+gH7EkkWqTEQmP/YvxWgJx/tk3C/t+Uo8I3JKVTp0INi fmRZpqLUqcGTTPXgKJk5R5bCr7tEqy2/y/nBP17LIpw/ueNYVTlGAuROQRfErDFx O7prioS5e1IL+NrUFzQph0oSg9bUT1w7a141Fa5kicStDyi0JZSQVzaj5qssTQ/L +YNxKz4G54P+RzutE2AZdescDpb0aAQlOiWdAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUDtMgBwl+k3SDrCcZ5ERXzV2+ds8wHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vRHRNZ0J3bC1rM1NEckNj WjVFUlh6VjItZHM4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGd7gzANBgkqhkiG9w0BAQsFAAOCAQEAGjfWXyxPJ1hDgYEsqJFvbGX4zN+qZs4L L/hufEgZZwO4Ei0svp+EW458g47fgrKjOhQB4GOoqF7o1SQoo5gccRjo10g/jDo8 znb9Pc/KKeRsQE1S8N6aYO8clbUO7+AowxKSClSfAUVvWC9gdxdmMz/G43yaxQGt M5UZ+DENlouKl3P8VGRal5QEBSinoaSXNl61nPfoNmP0mknoFpMCPVhEDZN8HgKY jjWhdaD/AnDLtlhSKshxqXpAzIke1ytvFsxFFEI8sAq7QcJ+vgrui9wuc4oFakmC Q06FxVgk6al+1wM6QH8UYmij0Bdsd2bgJNKt+DpPWcGFUmOcR4OI9Q== -----END CERTIFICATE-----Generated at Mon May 6 00:10:58 2024 by rpki-client on console-fra.rpki-client.org