$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/zmOuG3h-67ivAsCMMgwFMwnSWLo.roa File: zmOuG3h-67ivAsCMMgwFMwnSWLo.roa (raw, json) Hash identifier: LVZiL/rSgwnjUANhPoGHi2SlTqx4MLzjPLFqLojJ7Ag= Subject key identifier: CE:63:AE:1B:78:7E:EB:B8:AF:02:C0:8C:32:0C:05:33:09:D2:58:BA Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C Certificate serial: 08BD Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/zmOuG3h-67ivAsCMMgwFMwnSWLo.roa Signing time: Fri 01 Sep 2023 08:50:36 +0000 ROA not before: Fri 01 Sep 2023 08:50:36 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131671 IP address blocks: 103.146.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2237 (0x8bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C Validity Not Before: Sep 1 08:50:36 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CE63AE1B787EEBB8AF02C08C320C053309D258BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ab:4c:97:ce:6e:c3:ac:b0:32:64:86:70:c2: d7:d8:17:a2:b6:72:6e:26:87:a8:e8:b8:9f:a0:7e: 9d:b3:e8:fb:b7:2e:41:c9:95:5f:32:bd:48:15:bc: 04:9c:ac:92:1c:bb:02:7d:4d:b5:c4:43:8f:87:6c: 54:09:71:87:18:8e:65:17:f1:e7:ce:a4:cc:bf:ef: 3f:5a:0b:9c:38:4e:59:f1:8b:e9:a2:0d:0e:e5:f5: 00:81:f0:a5:a0:61:71:77:04:b8:43:2c:20:98:7c: b2:1e:1c:e3:83:b0:79:2d:ea:ba:46:0c:81:44:a3: 31:40:cf:84:e8:47:3e:63:22:0f:bc:b7:fd:fe:90: 93:2c:8f:50:4e:c5:11:c9:dc:c7:70:54:82:f4:43: 9d:a2:4e:37:e0:c1:5f:2c:4b:e4:ce:e2:7f:35:25: d3:22:a3:b3:b7:5a:c7:20:4c:14:17:67:0c:7d:ba: 8b:7e:39:49:1d:47:47:1e:76:bc:7d:a5:12:bf:cd: d7:c8:a2:e4:ba:6d:9d:bd:da:f2:ba:a2:d7:4a:68: 88:c8:3d:a8:76:87:6d:1b:57:6f:7e:bb:74:2c:14: c9:23:52:6f:01:87:2a:58:9b:d3:8e:42:74:c6:ba: 38:d6:2b:60:3c:b7:f8:70:c1:cf:52:d0:35:81:1b: 60:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:63:AE:1B:78:7E:EB:B8:AF:02:C0:8C:32:0C:05:33:09:D2:58:BA X509v3 Authority Key Identifier: keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/zmOuG3h-67ivAsCMMgwFMwnSWLo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.146.213.0/24 Signature Algorithm: sha256WithRSAEncryption 99:72:88:3b:94:5a:26:ec:56:06:16:73:0d:65:73:b2:4e:7e: d6:dd:fb:70:f4:c4:c4:9c:0d:45:fe:e6:39:39:29:79:93:f2: 6f:58:c0:ee:b3:0f:12:79:46:d6:d6:a3:8a:4f:67:a7:e4:35: c4:b1:9e:9e:f4:b8:b2:75:6e:be:7a:c6:3e:1b:66:f3:e7:1f: ea:dd:a3:6e:8d:f8:35:c2:b4:e2:a6:31:44:12:4e:d9:63:a6: 1a:6b:f3:b9:c7:a7:b1:95:b9:61:18:21:19:9c:8c:e5:62:1e: 82:7d:11:bd:dc:e9:85:e4:c9:72:f7:9d:f2:fe:ec:e2:4e:f0: 3c:9c:95:5d:ab:f8:0c:0f:78:d8:cf:a0:63:57:47:79:54:14: fc:d9:3d:9c:8b:fc:ca:97:c8:f5:b4:60:c7:a3:2f:97:fe:82: 9b:dc:1c:22:af:30:9f:2e:e3:78:19:06:f0:b2:64:d6:25:b1: fa:42:ff:ff:90:fa:d2:a4:b0:ef:fc:ca:50:d0:0c:0d:83:57: e1:56:60:28:eb:ff:9e:3c:3a:3d:ed:bd:d5:e5:aa:56:6d:1a: 67:9b:ec:39:a2:7d:06:85:fe:ee:b3:7b:08:af:0e:5d:84:12: 07:54:f2:16:5b:9a:5a:a4:45:9c:73:16:0e:b0:74:e3:9b:c7: 45:c8:78:ca -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICCL0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTlE RUYyQ0Y4MjhGMEQ5QUI2QUQ5NEY0MjYxMzE3NjREMjU0Q0M1QzAeFw0yMzA5MDEw ODUwMzZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENFNjNBRTFCNzg3RUVC QjhBRjAyQzA4QzMyMEMwNTMzMDlEMjU4QkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5q0yXzm7DrLAyZIZwwtfYF6K2cm4mh6jouJ+gfp2z6Pu3LkHJ lV8yvUgVvAScrJIcuwJ9TbXEQ4+HbFQJcYcYjmUX8efOpMy/7z9aC5w4Tlnxi+mi DQ7l9QCB8KWgYXF3BLhDLCCYfLIeHOODsHkt6rpGDIFEozFAz4ToRz5jIg+8t/3+ kJMsj1BOxRHJ3MdwVIL0Q52iTjfgwV8sS+TO4n81JdMio7O3WscgTBQXZwx9uot+ OUkdR0cedrx9pRK/zdfIouS6bZ292vK6otdKaIjIPah2h20bV29+u3QsFMkjUm8B hypYm9OOQnTGujjWK2A8t/hwwc9S0DWBG2A5AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUzmOuG3h+67ivAsCMMgwFMwnSWLowHwYDVR0jBBgwFoAUWd7yz4KPDZq2rZT0 JhMXZNJUzFwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkFOVEFT WS9XZDd5ejRLUERacTJyWlQwSmhNWFpOSlV6RncuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1dkN3l6NEtQRFpxMnJaVDBKaE1YWk5KVXpGdy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0ZBTlRBU1kvem1PdUczaC02N2l2QXND TU1nd0ZNd25TV0xvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGeS1TANBgkqhkiG9w0BAQsFAAOCAQEAmXKIO5RaJuxWBhZzDWVzsk5+1t37cPTE xJwNRf7mOTkpeZPyb1jA7rMPEnlG1tajik9np+Q1xLGenvS4snVuvnrGPhtm8+cf 6t2jbo34NcK04qYxRBJO2WOmGmvzucensZW5YRghGZyM5WIegn0RvdzpheTJcved 8v7s4k7wPJyVXav4DA942M+gY1dHeVQU/Nk9nIv8ypfI9bRgx6Mvl/6Cm9wcIq8w ny7jeBkG8LJk1iWx+kL//5D60qSw7/zKUNAMDYNX4VZgKOv/njw6Pe291eWqVm0a Z5vsOaJ9BoX+7rN7CK8OXYQSB1TyFluaWqRFnHMWDrB045vHRch4yg== -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:00 2024 by rpki-client on console-ams.rpki-client.org