$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/ZJF3iuFLVy81rvb6J5gioj8KvE8.roa File: ZJF3iuFLVy81rvb6J5gioj8KvE8.roa (raw, json) Hash identifier: RQ/ND2uj8ET3rIRUkX2HU1QSbrkK9LomwD4BbCXeiIM= Subject key identifier: 64:91:77:8A:E1:4B:57:2F:35:AE:F6:FA:27:98:22:A2:3F:0A:BC:4F Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Certificate serial: 0184 Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/ZJF3iuFLVy81rvb6J5gioj8KvE8.roa Signing time: Fri 01 Sep 2023 09:04:19 +0000 ROA not before: Fri 01 Sep 2023 09:04:19 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38047 IP address blocks: 103.182.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 04:02:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Validity Not Before: Sep 1 09:04:19 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6491778AE14B572F35AEF6FA279822A23F0ABC4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6d:e2:89:96:3a:4d:4c:53:91:a3:bb:fc:79: 35:af:7c:77:52:a9:24:5a:07:45:68:37:a8:d5:66: d6:ac:2f:9f:95:bb:e3:b8:0f:e4:e4:6c:d0:00:2d: 9d:f4:75:73:f2:b9:01:fd:d1:c6:7a:06:5d:f8:8d: 2f:69:76:e9:09:61:c6:22:00:95:0c:f0:30:2a:a5: 2d:c7:3f:b5:c0:65:a3:bb:bb:59:cf:27:8a:5e:86: 64:28:34:10:64:af:16:a6:e6:a9:15:14:56:01:36: 26:a6:57:6f:06:fd:7b:78:73:eb:8d:44:e2:05:9f: 29:42:b1:59:81:7e:8a:d0:98:52:5d:d9:f3:e1:be: 18:ad:52:0e:93:c5:3a:2f:ef:f5:cf:55:21:c1:d7: 66:16:95:f7:ec:96:ce:b8:73:63:da:a5:1e:55:d8: 15:a7:5a:99:0b:6b:f6:94:a6:34:5d:e1:59:ac:2c: 77:dc:33:ac:76:5d:76:1b:59:7e:e4:4f:35:9b:8e: 61:d9:6d:cb:6d:6c:bc:e3:6b:47:c8:57:75:35:bd: 20:ba:ad:46:dc:a4:d5:1c:16:56:bd:b9:7b:7a:b6: e1:11:75:38:64:20:94:d4:0b:ac:7c:8a:7e:ee:66: a2:bd:b0:c8:4a:9f:0e:e7:a1:db:c8:e8:d5:a3:fa: 94:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:91:77:8A:E1:4B:57:2F:35:AE:F6:FA:27:98:22:A2:3F:0A:BC:4F X509v3 Authority Key Identifier: keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/ZJF3iuFLVy81rvb6J5gioj8KvE8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.182.226.0/23 Signature Algorithm: sha256WithRSAEncryption 32:29:6d:97:73:9a:90:9c:03:08:d9:42:55:c1:8a:14:6e:84: 1f:15:a3:ac:05:66:14:1b:3c:c5:e8:c3:cb:0c:a6:69:71:63: dd:a5:84:61:59:92:eb:03:e0:fe:f9:10:85:d2:20:6c:02:c9: 2f:91:0c:77:99:76:5b:b3:89:d9:f8:e1:42:2f:ba:1d:6f:49: b2:e1:38:fa:39:2e:b4:d3:83:5d:db:7a:98:9f:a7:55:cc:32: 8a:70:24:e1:ad:72:2e:7b:ae:b9:7c:d1:ae:aa:87:9e:bb:9d: 34:bd:02:b5:e9:81:89:f4:6c:a6:60:5b:80:7b:29:05:7b:80: 6c:b5:29:b9:bb:61:1d:40:13:55:93:3d:fd:a9:30:1a:94:14: 1b:09:28:90:7b:45:0b:8a:42:06:f7:a8:2c:5a:92:3d:b5:9a: 57:be:56:78:40:96:13:c8:f2:bb:a6:55:98:53:32:a2:b3:9c: 29:ef:13:68:54:5a:cb:0e:3b:2f:26:20:7e:41:09:10:9f:4a: 81:85:66:f3:31:de:57:5c:bb:98:e8:2d:f9:d4:be:37:41:90: de:74:68:53:6f:d8:42:41:4a:49:32:0d:c2:1d:67:c4:c6:75: aa:68:4b:56:71:e2:ff:5c:fd:30:e2:3f:e1:ca:87:dd:19:d7: 4c:65:b3:96 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Ux N0Q5MjNBQTBCQzZCMEEwOEI1QTE4N0JFRTlDQURFOEQ1MEVBRjAeFw0yMzA5MDEw OTA0MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY0OTE3NzhBRTE0QjU3 MkYzNUFFRjZGQTI3OTgyMkEyM0YwQUJDNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7beKJljpNTFORo7v8eTWvfHdSqSRaB0VoN6jVZtasL5+Vu+O4 D+TkbNAALZ30dXPyuQH90cZ6Bl34jS9pdukJYcYiAJUM8DAqpS3HP7XAZaO7u1nP J4pehmQoNBBkrxam5qkVFFYBNiamV28G/Xt4c+uNROIFnylCsVmBforQmFJd2fPh vhitUg6TxTov7/XPVSHB12YWlffsls64c2PapR5V2BWnWpkLa/aUpjRd4VmsLHfc M6x2XXYbWX7kTzWbjmHZbcttbLzja0fIV3U1vSC6rUbcpNUcFla9uXt6tuERdThk IJTUC6x8in7uZqK9sMhKnw7nodvI6NWj+pQlAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUZJF3iuFLVy81rvb6J5gioj8KvE8wHwYDVR0jBBgwFoAUfhfZI6oLxrCgi1oY e+6crejVDq8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNI L2ZoZlpJNm9MeHJDZ2kxb1llLTZjcmVqVkRxOC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZmhmWkk2b0x4ckNnaTFvWWUtNmNyZWpWRHE4LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNIL1pKRjNpdUZMVnk4MXJ2YjZK NWdpb2o4S3ZFOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn tuIwDQYJKoZIhvcNAQELBQADggEBADIpbZdzmpCcAwjZQlXBihRuhB8Vo6wFZhQb PMXow8sMpmlxY92lhGFZkusD4P75EIXSIGwCyS+RDHeZdluzidn44UIvuh1vSbLh OPo5LrTTg13bepifp1XMMopwJOGtci57rrl80a6qh567nTS9ArXpgYn0bKZgW4B7 KQV7gGy1Kbm7YR1AE1WTPf2pMBqUFBsJKJB7RQuKQgb3qCxakj21mle+VnhAlhPI 8rumVZhTMqKznCnvE2hUWssOOy8mIH5BCRCfSoGFZvMx3ldcu5joLfnUvjdBkN50 aFNv2EJBSkkyDcIdZ8TGdapoS1Zx4v9c/TDiP+HKh90Z10xls5Y= -----END CERTIFICATE-----Generated at Sun Jun 23 13:19:16 2024 by rpki-client on console-fra.rpki-client.org