$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/KX_QZaAmqc46OBqE_rexIbbkNic.roa File: KX_QZaAmqc46OBqE_rexIbbkNic.roa (raw, json) Hash identifier: 4/sCLsvGhtQ/1pCnet1aiEQ8qFytjBQO2MvyB8XMvxk= Subject key identifier: 29:7F:D0:65:A0:26:A9:CE:3A:38:1A:84:FE:B7:B1:21:B6:E4:36:27 Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Certificate serial: 1101 Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/KX_QZaAmqc46OBqE_rexIbbkNic.roa Signing time: Thu 13 Jun 2024 03:11:28 +0000 ROA not before: Thu 13 Jun 2024 03:11:28 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 152700 IP address blocks: 103.127.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 10:32:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4353 (0x1101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Validity Not Before: Jun 13 03:11:28 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=297FD065A026A9CE3A381A84FEB7B121B6E43627 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a5:11:93:fd:31:0f:c6:7e:d7:a9:be:01:63: 17:db:e5:a3:d7:ae:f6:d5:b7:4b:0c:70:c5:9b:fc: 61:3f:9e:e1:04:70:12:41:dc:a0:4a:5d:3d:b7:c7: b4:03:15:2e:49:1b:b5:5f:12:8e:48:b1:7a:c4:9f: 6c:7f:70:90:91:1d:05:55:4c:fd:b5:d2:ff:69:61: 97:a1:aa:de:ff:7b:0c:3c:9d:9e:43:d3:3b:ee:16: cf:d5:d9:25:4e:e9:5e:db:00:f9:7f:bb:41:95:cb: a5:e1:78:fa:5b:2a:0a:18:95:92:4b:aa:17:1b:f1: 5b:f2:bd:8e:d9:e6:43:5f:b5:6e:35:3e:3c:71:c6: b8:86:3f:14:94:20:12:a7:d7:c5:7e:f2:af:72:b9: 5c:77:3a:d3:4f:5a:0b:fb:e5:69:94:82:53:4b:2e: b6:d1:81:32:92:3f:ff:ff:20:78:cf:ae:06:7d:51: 47:03:b1:6b:c1:c5:e4:ed:e1:a3:de:29:81:e9:93: 41:38:d1:d1:e5:ae:4a:d1:74:cf:1b:bf:d0:23:a6: 51:38:af:e5:49:73:b7:b8:d9:dd:7b:cc:3f:42:19: 3c:04:38:e4:15:9f:b0:55:a9:b0:a3:cd:47:42:37: f5:0c:70:b5:20:ca:ba:76:76:db:1e:c8:c3:ee:a0: f8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:7F:D0:65:A0:26:A9:CE:3A:38:1A:84:FE:B7:B1:21:B6:E4:36:27 X509v3 Authority Key Identifier: keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/KX_QZaAmqc46OBqE_rexIbbkNic.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.238.0/24 Signature Algorithm: sha256WithRSAEncryption 57:06:6f:68:12:a0:44:16:a4:6c:47:9f:9c:fc:9b:a0:2e:e7: c5:51:1c:6d:24:ab:c5:1d:cf:52:9c:11:6a:ba:f9:71:f2:75: 14:52:2a:ce:62:7c:92:46:4f:62:e9:e3:47:49:35:9d:0d:f2: a1:62:7f:6a:d6:e8:18:16:c4:0d:f2:05:11:7f:d1:b4:7d:24: 8c:64:3d:0c:79:01:e8:cd:cc:fb:71:30:10:ae:be:02:03:be: 6d:12:0d:8d:4a:d8:8d:a4:4a:6d:32:2c:9a:ad:84:67:f2:15: 9e:ef:f9:d5:6c:9c:97:76:55:a9:ac:67:f6:d9:1f:6c:f7:a8: f5:70:ce:00:2c:1c:96:8e:a3:32:45:6c:8e:73:72:95:96:cf: fc:15:55:1a:b4:08:20:00:e0:cd:21:a6:81:c1:a2:5a:1c:95: f1:4a:41:22:b2:69:f6:a0:33:2d:c4:b2:c7:a7:21:72:0f:be: 43:15:af:0a:ab:2a:48:0c:e1:34:97:ae:db:3b:da:f0:39:98: 25:64:57:33:ca:c8:54:86:76:9f:36:dd:58:f3:98:e2:e7:33: d1:14:ff:92:91:10:c2:74:3a:63:a9:7e:05:26:45:a1:ae:eb: 94:80:d3:53:47:cf:bd:4d:11:a0:a8:db:df:9f:af:20:2f:e1: c1:9a:8c:bf -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEQEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQx ODZGNjMxNEQ3QjU3MTNFRkZFQ0ZCOTNFQkMzRTgyMTk3RTJFRjAeFw0yNDA2MTMw MzExMjhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI5N0ZEMDY1QTAyNkE5 Q0UzQTM4MUE4NEZFQjdCMTIxQjZFNDM2MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2pRGT/TEPxn7Xqb4BYxfb5aPXrvbVt0sMcMWb/GE/nuEEcBJB 3KBKXT23x7QDFS5JG7VfEo5IsXrEn2x/cJCRHQVVTP210v9pYZehqt7/eww8nZ5D 0zvuFs/V2SVO6V7bAPl/u0GVy6XhePpbKgoYlZJLqhcb8VvyvY7Z5kNftW41Pjxx xriGPxSUIBKn18V+8q9yuVx3OtNPWgv75WmUglNLLrbRgTKSP///IHjPrgZ9UUcD sWvBxeTt4aPeKYHpk0E40dHlrkrRdM8bv9AjplE4r+VJc7e42d17zD9CGTwEOOQV n7BVqbCjzUdCN/UMcLUgyrp2dtseyMPuoPgVAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUKX/QZaAmqc46OBqE/rexIbbkNicwHwYDVR0jBBgwFoAU7RhvYxTXtXE+/+z7 k+vD6CGX4u8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hVTllJ TkcvN1Jodll4VFh0WEUtXy16N2stdkQ2Q0dYNHU4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS83Umh2WXhUWHRYRS1fLXo3ay12RDZDR1g0dTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSFVOWUlORy9LWF9RWmFBbXFjNDZP QnFFX3JleEliYmtOaWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ3/uMA0GCSqGSIb3DQEBCwUAA4IBAQBXBm9oEqBEFqRsR5+c/JugLufFURxt JKvFHc9SnBFquvlx8nUUUirOYnySRk9i6eNHSTWdDfKhYn9q1ugYFsQN8gURf9G0 fSSMZD0MeQHozcz7cTAQrr4CA75tEg2NStiNpEptMiyarYRn8hWe7/nVbJyXdlWp rGf22R9s96j1cM4ALByWjqMyRWyOc3KVls/8FVUatAggAODNIaaBwaJaHJXxSkEi smn2oDMtxLLHpyFyD75DFa8KqypIDOE0l67bO9rwOZglZFczyshUhnafNt1Y85ji 5zPRFP+SkRDCdDpjqX4FJkWhruuUgNNTR8+9TRGgqNvfn68gL+HBmoy/ -----END CERTIFICATE-----Generated at Mon Jun 24 13:02:40 2024 by rpki-client on console-fra.rpki-client.org