$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/7WFBLhrl4x_W3JQS247bV3GbmQ8.roa File: 7WFBLhrl4x_W3JQS247bV3GbmQ8.roa (raw, json) Hash identifier: FSx5pJ+0fxRcigv+kE5Pg1xRb3p1arqiU1W58rB1gM0= Subject key identifier: ED:61:41:2E:1A:E5:E3:1F:D6:DC:94:12:DB:8E:DB:57:71:9B:99:0F Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2 Certificate serial: 580A Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/7WFBLhrl4x_W3JQS247bV3GbmQ8.roa Signing time: Fri 01 Sep 2023 09:33:49 +0000 ROA not before: Fri 01 Sep 2023 09:33:49 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38851 IP address blocks: 103.131.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 29 Jun 2024 22:33:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22538 (0x580a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2 Validity Not Before: Sep 1 09:33:49 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=ED61412E1AE5E31FD6DC9412DB8EDB57719B990F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b1:49:ce:fb:ee:aa:b2:0a:a4:df:f2:ba:01: 50:5c:42:fa:59:e0:28:41:21:24:88:a8:b8:e4:af: 32:04:24:9c:89:d7:b2:71:64:69:6e:02:da:99:90: e6:6d:67:21:27:dd:80:8e:6d:84:cc:6e:7c:2f:b1: 29:9d:27:e9:a7:d5:1f:a5:80:0d:6e:61:7d:80:49: a4:5e:c9:f5:9d:a6:ec:48:86:c9:39:a3:be:3a:76: ac:fe:f4:83:ce:d6:70:c0:02:6d:8b:d2:e6:8b:35: b1:a2:8c:a8:1a:3b:1f:af:2e:15:87:c3:d0:fd:f2: 0c:32:d5:81:a3:0e:cd:87:eb:1e:5f:a3:54:54:65: f1:1c:45:a6:1a:78:04:b9:a4:ad:c4:52:78:25:80: 79:62:c9:e1:3e:fa:09:73:e7:d3:5d:c4:33:77:a9: ad:38:06:26:ba:bc:c9:d6:9d:50:f6:0d:90:f5:b3: d4:6f:0c:7a:c2:7e:0c:55:b3:a5:3e:47:80:88:db: 95:66:59:50:54:d4:13:e6:0a:1d:cf:fc:41:c1:68: b3:6c:26:24:f4:78:8e:f4:43:e0:90:f1:d1:c6:2c: 43:ab:b6:9c:08:cf:bb:6e:0b:77:3a:c6:ea:c4:98: 97:1b:1c:23:67:d6:b7:30:06:7e:5a:48:be:8d:84: 18:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:61:41:2E:1A:E5:E3:1F:D6:DC:94:12:DB:8E:DB:57:71:9B:99:0F X509v3 Authority Key Identifier: keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/7WFBLhrl4x_W3JQS247bV3GbmQ8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.131.172.0/22 Signature Algorithm: sha256WithRSAEncryption 92:8d:10:24:db:5d:c8:3a:92:d3:ed:f4:b9:c9:8b:70:88:25: 63:55:cd:90:8d:19:e2:71:8e:28:bd:8a:c9:72:10:6b:fd:9d: 23:c9:e3:67:c5:d8:c8:7f:e4:f6:21:18:bb:36:e9:44:e0:27: ef:c1:97:6b:ef:59:1d:91:e8:9b:95:5e:a6:5f:e0:4a:1d:d6: c3:95:df:d8:0c:3d:cd:14:1c:d6:99:c8:9e:c6:75:e3:e9:e1: 1f:31:8f:0d:21:f4:c5:f2:01:eb:c9:b5:8c:0a:4c:c9:d0:25: e5:eb:3d:d7:63:f3:ca:a2:20:e5:58:4a:f8:4f:39:11:f3:cb: 16:fa:b1:e4:bd:a9:9a:b2:32:48:26:3e:f9:e9:d1:44:2c:15: a8:10:53:8f:73:56:f4:2e:b6:3d:24:a6:89:77:36:0d:42:d0: 49:3d:2e:dc:1f:48:e7:9d:eb:e0:df:cd:f6:eb:62:4f:a5:96: 9f:c5:30:23:2c:c2:17:8c:ba:8b:5a:7d:b0:df:3c:b0:44:ea: 2b:26:af:02:5a:7c:b8:e8:76:76:f3:2f:56:94:e2:0f:d8:8a: d3:0d:67:10:29:10:c9:03:d5:a4:85:89:9a:92:5b:07:3c:57: a8:d1:a6:12:e7:14:67:69:75:1c:b3:3e:70:b4:c7:3e:7d:5a: 65:ad:60:f4 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICWAowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjQz MjBGRDc4REZCNkE0RDFDOTIzMjJGNzk0OTY2Qjg1MjVERkREMjAeFw0yMzA5MDEw OTMzNDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVENjE0MTJFMUFFNUUz MUZENkRDOTQxMkRCOEVEQjU3NzE5Qjk5MEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHsUnO++6qsgqk3/K6AVBcQvpZ4ChBISSIqLjkrzIEJJyJ17Jx ZGluAtqZkOZtZyEn3YCObYTMbnwvsSmdJ+mn1R+lgA1uYX2ASaReyfWdpuxIhsk5 o746dqz+9IPO1nDAAm2L0uaLNbGijKgaOx+vLhWHw9D98gwy1YGjDs2H6x5fo1RU ZfEcRaYaeAS5pK3EUnglgHliyeE++glz59NdxDN3qa04Bia6vMnWnVD2DZD1s9Rv DHrCfgxVs6U+R4CI25VmWVBU1BPmCh3P/EHBaLNsJiT0eI70Q+CQ8dHGLEOrtpwI z7tuC3c6xurEmJcbHCNn1rcwBn5aSL6NhBhVAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU7WFBLhrl4x/W3JQS247bV3GbmQ8wHwYDVR0jBBgwFoAUtDIP1437ak0ckjIv eUlmuFJd/dIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlRDQ0FU Vi90RElQMTQzN2FrMGNrakl2ZVVsbXVGSmRfZEkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3RESVAxNDM3YWswY2tqSXZlVWxtdUZKZF9kSS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05UQ0NBVFYvN1dGQkxocmw0eF9XM0pR UzI0N2JWM0dibVE4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmeDrDANBgkqhkiG9w0BAQsFAAOCAQEAko0QJNtdyDqS0+30ucmLcIglY1XNkI0Z 4nGOKL2KyXIQa/2dI8njZ8XYyH/k9iEYuzbpROAn78GXa+9ZHZHom5Vepl/gSh3W w5Xf2Aw9zRQc1pnInsZ14+nhHzGPDSH0xfIB68m1jApMydAl5es912PzyqIg5VhK +E85EfPLFvqx5L2pmrIySCY++enRRCwVqBBTj3NW9C62PSSmiXc2DULQST0u3B9I 553r4N/N9utiT6WWn8UwIyzCF4y6i1p9sN88sETqKyavAlp8uOh2dvMvVpTiD9iK 0w1nECkQyQPVpIWJmpJbBzxXqNGmEucUZ2l1HLM+cLTHPn1aZa1g9A== -----END CERTIFICATE-----Generated at Sat Jun 29 09:26:08 2024 by rpki-client on console-ams.rpki-client.org