$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/DBjiD-4wXr4YbapmFeSNdvQCMq4.roa File: DBjiD-4wXr4YbapmFeSNdvQCMq4.roa (raw, json) Hash identifier: mDsW+kIPgAwofOwRK6gKAL4EclroGVEEDC2lyGDnUL8= Subject key identifier: 0C:18:E2:0F:EE:30:5E:BE:18:6D:AA:66:15:E4:8D:76:F4:02:32:AE Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Certificate serial: 0181 Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/DBjiD-4wXr4YbapmFeSNdvQCMq4.roa Signing time: Fri 01 Sep 2023 09:04:19 +0000 ROA not before: Fri 01 Sep 2023 09:04:19 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38047 IP address blocks: 103.182.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 04:02:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Validity Not Before: Sep 1 09:04:19 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0C18E20FEE305EBE186DAA6615E48D76F40232AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:46:6a:6f:90:e0:3c:25:d8:b3:4b:ee:78:0e: ad:84:5c:da:35:15:2e:81:5e:08:36:e5:73:5f:cf: 84:84:cb:14:61:d3:eb:75:d7:01:5b:57:cc:20:a3: 2d:7b:aa:1b:f7:1d:b8:37:39:56:b5:9f:24:c9:cc: b5:4e:33:5a:eb:f3:72:4c:99:52:a6:5e:9d:3f:39: 64:08:6b:f6:6c:86:3d:d6:0b:ae:34:05:f5:e1:de: cd:43:d4:1a:36:60:02:4c:aa:4e:f9:99:f6:fa:84: 72:46:8c:22:f7:72:84:89:3a:bd:b9:1e:79:db:83: fc:48:bc:8f:b7:80:db:5c:a7:e8:fc:4f:64:d1:a7: 88:49:59:5d:1c:3c:24:e7:f1:f1:3e:01:ef:4a:cf: 6c:b2:a5:f2:ad:c4:eb:3c:97:fb:1f:8c:17:2b:e3: 29:0c:bd:4e:97:64:8b:0f:c2:c8:85:a8:81:75:7d: 2a:ad:cb:b4:62:33:64:b6:b9:58:7c:76:cb:4f:59: ed:ae:1c:33:c6:2f:39:de:be:34:b2:88:7d:24:a9: 87:79:8b:c0:ff:f1:e8:81:bb:3e:8c:76:89:bd:e5: e0:f9:fa:f3:93:1a:43:d9:ff:6a:ba:99:20:d2:84: b4:64:74:47:dd:a6:8e:d1:73:a5:0f:f8:92:e4:42: ff:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:18:E2:0F:EE:30:5E:BE:18:6D:AA:66:15:E4:8D:76:F4:02:32:AE X509v3 Authority Key Identifier: keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/DBjiD-4wXr4YbapmFeSNdvQCMq4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.182.226.0/24 Signature Algorithm: sha256WithRSAEncryption 69:b8:8f:56:1c:d1:79:c4:e6:7c:fb:29:82:74:b7:6e:8c:e0: e6:3a:6b:31:59:23:30:3e:12:8e:e7:47:23:20:d0:49:a8:70: a0:9c:89:9d:e4:6c:de:44:9d:92:de:99:ef:3f:bc:54:8b:f9: c9:4b:24:f3:f4:77:1d:3f:fe:5a:98:2a:78:0f:e0:e0:b5:65: bb:ba:d9:37:e4:6c:7b:ab:67:cb:d0:26:f9:99:32:2e:a6:68: 71:be:74:a3:29:b6:f9:2a:31:a7:73:35:8b:59:da:38:2d:32: 49:9e:d6:2c:dc:79:9c:ff:6d:c6:df:71:1a:f7:c7:de:fa:69: 7d:e8:fc:47:84:eb:eb:1a:fe:2a:d1:2f:13:b2:0d:ea:61:c2: 8e:8d:bc:02:9e:c2:c7:fd:2a:5a:60:a3:24:f8:44:74:42:69: cb:a1:a2:cc:23:0b:b1:77:f9:4a:14:c4:e8:52:32:39:0a:f1: 1b:68:ea:ce:0a:98:60:f9:e1:83:14:dc:cf:23:00:e9:35:51: db:81:ec:a6:f3:ce:55:96:64:c5:f8:6e:29:b3:00:e6:29:6f: be:03:ab:cb:e0:45:02:af:d4:6d:19:9a:c1:40:3b:3c:4d:62: 29:27:ec:5c:05:ba:2c:65:c8:b8:c5:ab:04:ef:2b:09:63:e7: bc:18:bd:c0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Ux N0Q5MjNBQTBCQzZCMEEwOEI1QTE4N0JFRTlDQURFOEQ1MEVBRjAeFw0yMzA5MDEw OTA0MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBDMThFMjBGRUUzMDVF QkUxODZEQUE2NjE1RTQ4RDc2RjQwMjMyQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwRmpvkOA8JdizS+54Dq2EXNo1FS6BXgg25XNfz4SEyxRh0+t1 1wFbV8wgoy17qhv3Hbg3OVa1nyTJzLVOM1rr83JMmVKmXp0/OWQIa/Zshj3WC640 BfXh3s1D1Bo2YAJMqk75mfb6hHJGjCL3coSJOr25Hnnbg/xIvI+3gNtcp+j8T2TR p4hJWV0cPCTn8fE+Ae9Kz2yypfKtxOs8l/sfjBcr4ykMvU6XZIsPwsiFqIF1fSqt y7RiM2S2uVh8dstPWe2uHDPGLznevjSyiH0kqYd5i8D/8eiBuz6Mdom95eD5+vOT GkPZ/2q6mSDShLRkdEfdpo7Rc6UP+JLkQv/zAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUDBjiD+4wXr4YbapmFeSNdvQCMq4wHwYDVR0jBBgwFoAUfhfZI6oLxrCgi1oY e+6crejVDq8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNI L2ZoZlpJNm9MeHJDZ2kxb1llLTZjcmVqVkRxOC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZmhmWkk2b0x4ckNnaTFvWWUtNmNyZWpWRHE4LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNIL0RCamlELTR3WHI0WWJhcG1G ZVNOZHZRQ01xNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn tuIwDQYJKoZIhvcNAQELBQADggEBAGm4j1Yc0XnE5nz7KYJ0t26M4OY6azFZIzA+ Eo7nRyMg0EmocKCciZ3kbN5EnZLeme8/vFSL+clLJPP0dx0//lqYKngP4OC1Zbu6 2TfkbHurZ8vQJvmZMi6maHG+dKMptvkqMadzNYtZ2jgtMkme1izceZz/bcbfcRr3 x976aX3o/EeE6+sa/irRLxOyDephwo6NvAKewsf9KlpgoyT4RHRCacuhoswjC7F3 +UoUxOhSMjkK8Rto6s4KmGD54YMU3M8jAOk1UduB7KbzzlWWZMX4bimzAOYpb74D q8vgRQKv1G0ZmsFAOzxNYikn7FwFuixlyLjFqwTvKwlj57wYvcA= -----END CERTIFICATE-----Generated at Sun Jun 23 15:32:02 2024 by rpki-client on console-ams.rpki-client.org