$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/39238BozqXpPox0uhpC8b6BIsQA.roa File: 39238BozqXpPox0uhpC8b6BIsQA.roa (raw, json) Hash identifier: 3u5f7gB7DHKfWaBmWQnVhf3LQdOm6lJCg5he+7SHjUk= Subject key identifier: DF:DD:B7:F0:1A:33:A9:7A:4F:A3:1D:2E:86:90:BC:6F:A0:48:B1:00 Certificate issuer: /CN=6E181085902F896294602D8B121C1E2E22B58CE7 Certificate serial: 1002 Authority key identifier: 6E:18:10:85:90:2F:89:62:94:60:2D:8B:12:1C:1E:2E:22:B5:8C:E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bhgQhZAviWKUYC2LEhweLiK1jOc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/39238BozqXpPox0uhpC8b6BIsQA.roa Signing time: Fri 01 Sep 2023 09:20:44 +0000 ROA not before: Fri 01 Sep 2023 09:20:44 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 396982 IP address blocks: 103.125.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/bhgQhZAviWKUYC2LEhweLiK1jOc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/bhgQhZAviWKUYC2LEhweLiK1jOc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bhgQhZAviWKUYC2LEhweLiK1jOc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 15:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4098 (0x1002) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E181085902F896294602D8B121C1E2E22B58CE7 Validity Not Before: Sep 1 09:20:44 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=DFDDB7F01A33A97A4FA31D2E8690BC6FA048B100 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a1:39:c0:67:a8:70:58:d1:38:73:b4:98:99: 7a:bb:6c:39:d1:bf:af:33:c9:07:22:50:60:74:29: 26:52:af:b9:9d:bd:45:ed:17:a5:2e:5f:cb:54:4c: e4:3a:da:d0:d0:cc:dd:e8:c1:d8:05:53:c9:ff:d8: d4:53:69:e9:9f:d8:70:4c:aa:a3:46:39:28:5b:9d: c9:6d:e2:76:3c:aa:6b:ad:81:dc:f8:78:bb:54:ff: 1e:f4:bd:fb:07:07:32:00:cb:ba:81:c3:98:0b:58: 90:46:82:79:28:5d:9f:67:1a:06:48:59:74:fc:2a: a0:04:08:28:67:e2:85:23:7d:97:4c:c6:2e:f7:b0: 81:a9:25:03:92:54:d7:55:07:f7:9a:ad:ec:00:c5: aa:13:65:8f:4d:40:23:c4:51:56:7f:14:c8:c9:ed: 91:fe:2e:57:b9:f7:db:14:8a:8f:07:a3:e5:5b:11: a7:b2:f2:aa:58:e9:fa:4e:63:b0:66:47:29:76:09: 3b:1a:e4:c1:44:f4:d7:14:31:b9:c0:4e:a6:31:fa: c1:e1:2a:74:20:29:4e:16:a4:ca:05:96:dd:db:07: 6b:4f:e2:88:d7:c4:83:d4:4a:8e:18:ef:56:4c:ad: cf:22:33:18:48:18:c0:03:6c:2d:bd:32:e5:6d:b7: 1b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:DD:B7:F0:1A:33:A9:7A:4F:A3:1D:2E:86:90:BC:6F:A0:48:B1:00 X509v3 Authority Key Identifier: keyid:6E:18:10:85:90:2F:89:62:94:60:2D:8B:12:1C:1E:2E:22:B5:8C:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/bhgQhZAviWKUYC2LEhweLiK1jOc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bhgQhZAviWKUYC2LEhweLiK1jOc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/39238BozqXpPox0uhpC8b6BIsQA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.125.224.0/24 Signature Algorithm: sha256WithRSAEncryption 56:5c:3d:26:55:2d:aa:e1:eb:37:aa:43:df:80:7c:af:45:39: 90:99:2c:39:f3:23:73:e8:01:c8:01:a9:a5:6f:b4:25:bc:f7: 9b:c1:3b:74:6f:6f:30:59:26:99:5d:8b:96:d1:97:5e:e6:05: a6:c1:cb:04:99:d5:ae:0f:be:fd:c1:31:aa:35:16:5a:d7:42: 9c:4b:fc:79:b6:07:99:6a:da:82:4b:cd:dd:30:77:21:d8:1b: c9:92:46:9e:25:cd:51:26:7e:70:ca:37:39:3a:2c:22:8a:28: bc:60:b5:44:42:aa:25:66:2a:2d:1a:ed:db:da:45:7b:ff:a7: 0d:df:d6:47:85:ff:5c:e2:4c:c3:f7:72:2f:ed:33:3a:8a:da: 56:28:05:f6:d3:91:2d:bd:fd:fa:89:d5:74:c1:fa:7c:10:f5: 99:5f:b6:24:45:9f:1e:3f:cc:6e:d8:39:a3:23:94:94:fd:aa: 56:9c:36:ed:e0:5a:17:9e:78:3e:9c:c0:ac:ab:72:fb:1d:ec: de:51:9b:c6:d3:6a:ec:12:a4:84:1c:32:f4:3a:d6:6e:8c:be: d5:3a:6d:03:84:57:35:8a:bd:70:54:57:57:7d:18:18:78:70: c2:c5:95:18:03:32:66:8f:1b:fc:8e:93:83:4e:a4:a5:a3:44: 50:86:a9:d3 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEAIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkUx ODEwODU5MDJGODk2Mjk0NjAyRDhCMTIxQzFFMkUyMkI1OENFNzAeFw0yMzA5MDEw OTIwNDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKERGRERCN0YwMUEzM0E5 N0E0RkEzMUQyRTg2OTBCQzZGQTA0OEIxMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8oTnAZ6hwWNE4c7SYmXq7bDnRv68zyQciUGB0KSZSr7mdvUXt F6UuX8tUTOQ62tDQzN3owdgFU8n/2NRTaemf2HBMqqNGOShbnclt4nY8qmutgdz4 eLtU/x70vfsHBzIAy7qBw5gLWJBGgnkoXZ9nGgZIWXT8KqAECChn4oUjfZdMxi73 sIGpJQOSVNdVB/earewAxaoTZY9NQCPEUVZ/FMjJ7ZH+Lle599sUio8Ho+VbEaey 8qpY6fpOY7BmRyl2CTsa5MFE9NcUMbnATqYx+sHhKnQgKU4WpMoFlt3bB2tP4ojX xIPUSo4Y71ZMrc8iMxhIGMADbC29MuVttxsZAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU39238BozqXpPox0uhpC8b6BIsQAwHwYDVR0jBBgwFoAUbhgQhZAviWKUYC2L EhweLiK1jOcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUxZVElD Uy9iaGdRaFpBdmlXS1VZQzJMRWh3ZUxpSzFqT2MuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2JoZ1FoWkF2aVdLVVlDMkxFaHdlTGlLMWpPYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL01MWVRJQ1MvMzkyMzhCb3pxWHBQb3gw dWhwQzhiNkJJc1FBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGd94DANBgkqhkiG9w0BAQsFAAOCAQEAVlw9JlUtquHrN6pD34B8r0U5kJksOfMj c+gByAGppW+0Jbz3m8E7dG9vMFkmmV2LltGXXuYFpsHLBJnVrg++/cExqjUWWtdC nEv8ebYHmWragkvN3TB3IdgbyZJGniXNUSZ+cMo3OTosIooovGC1REKqJWYqLRrt 29pFe/+nDd/WR4X/XOJMw/dyL+0zOoraVigF9tORLb39+onVdMH6fBD1mV+2JEWf Hj/Mbtg5oyOUlP2qVpw27eBaF554PpzArKty+x3s3lGbxtNq7BKkhBwy9DrWboy+ 1TptA4RXNYq9cFRXV30YGHhwwsWVGAMyZo8b/I6Tg06kpaNEUIap0w== -----END CERTIFICATE-----Generated at Mon May 6 00:11:02 2024 by rpki-client on console-fra.rpki-client.org