$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WNCL/L6FF2a2XhxgMiraYAjzfkSgUPeE.roa File: L6FF2a2XhxgMiraYAjzfkSgUPeE.roa (raw, json) Hash identifier: IwOh/XjdbTAcvY3/D9wmhXA0nOrl3PVezNhJ/n9Ypjs= Subject key identifier: 2F:A1:45:D9:AD:97:87:18:0C:8A:B6:98:02:3C:DF:91:28:14:3D:E1 Certificate issuer: /CN=9D441AADD239AD926010AFC4DB20454EF2C4B0C1 Certificate serial: 0B2F Authority key identifier: 9D:44:1A:AD:D2:39:AD:92:60:10:AF:C4:DB:20:45:4E:F2:C4:B0:C1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nUQardI5rZJgEK_E2yBFTvLEsME.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/L6FF2a2XhxgMiraYAjzfkSgUPeE.roa Signing time: Fri 01 Sep 2023 10:20:54 +0000 ROA not before: Fri 01 Sep 2023 10:20:54 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 134823 IP address blocks: 103.123.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/nUQardI5rZJgEK_E2yBFTvLEsME.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/nUQardI5rZJgEK_E2yBFTvLEsME.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/nUQardI5rZJgEK_E2yBFTvLEsME.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Jun 2024 17:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2863 (0xb2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D441AADD239AD926010AFC4DB20454EF2C4B0C1 Validity Not Before: Sep 1 10:20:54 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2FA145D9AD9787180C8AB698023CDF9128143DE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:f6:65:14:ff:36:13:d0:41:c1:14:16:c2:a0: b1:26:ee:54:fb:ac:7e:23:0c:62:f6:84:f7:4e:1e: 34:c3:ba:24:a3:a1:0e:96:61:b6:2d:e8:0b:be:ce: 27:b7:ca:f1:39:28:4f:51:0f:82:71:e9:b0:2d:0b: 1d:f9:a1:3a:f3:d9:a1:84:07:c0:11:b0:8b:73:3e: 1d:3a:34:5e:da:66:e7:43:37:ae:79:9e:fd:0c:97: 43:43:9a:9b:66:bc:42:60:45:05:7b:3d:8e:e7:23: fb:74:3c:6d:04:15:e6:b4:22:04:f2:8b:f6:16:b1: 2d:75:dd:7d:b2:06:a2:39:f1:51:e8:3e:92:18:2b: 75:a2:7f:82:7c:fc:d4:87:1b:d7:d0:89:01:9c:fa: d5:5f:b4:25:b3:98:09:a4:54:36:61:7b:9a:8e:90: f5:14:ff:6a:8d:a5:39:20:5d:7b:4a:f2:4b:90:2c: fa:11:42:00:78:c3:db:ed:1a:13:1a:c0:18:0f:64: 4c:41:cc:d2:d8:ac:eb:3e:fc:b0:34:02:57:71:ff: 2e:f5:93:20:21:81:c4:4a:d3:e9:74:e1:fd:b2:f4: 6d:d3:e7:97:c3:4e:27:08:a8:2a:4c:c6:47:d5:dd: 2d:d1:40:b8:ea:74:fa:f1:47:42:cc:ad:46:a9:b1: 21:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:A1:45:D9:AD:97:87:18:0C:8A:B6:98:02:3C:DF:91:28:14:3D:E1 X509v3 Authority Key Identifier: keyid:9D:44:1A:AD:D2:39:AD:92:60:10:AF:C4:DB:20:45:4E:F2:C4:B0:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/nUQardI5rZJgEK_E2yBFTvLEsME.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nUQardI5rZJgEK_E2yBFTvLEsME.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/L6FF2a2XhxgMiraYAjzfkSgUPeE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.132.0/22 Signature Algorithm: sha256WithRSAEncryption 00:59:37:66:77:61:20:15:5b:2a:4f:44:eb:6b:bd:84:63:fa: d9:bb:88:ef:35:7a:d9:69:04:13:58:58:d7:ac:0b:18:54:0e: 9b:04:a7:e2:1b:b7:a7:79:27:38:33:fe:d6:be:2e:4b:55:3a: 41:e6:b4:79:04:2a:b9:bc:13:0a:63:16:3d:99:09:c4:2d:dc: e6:ab:23:c3:61:34:2f:53:cf:3f:3c:58:43:67:75:ca:fa:af: 21:97:32:98:84:f9:0e:1b:4a:33:58:4d:0d:90:02:dd:b1:1c: 3e:8a:bf:9c:2e:7f:15:b4:a7:84:8c:49:1b:d7:e3:a2:0e:ad: 18:ff:87:9b:33:8e:5b:9f:77:53:50:42:a2:3e:1d:49:b7:e5: 41:f9:3e:0c:98:5e:b4:22:7d:f1:d2:ea:6c:d3:63:71:df:54: 0f:60:21:dc:b8:8a:2e:1c:b7:c4:dd:d6:5d:f5:e5:5a:dd:e6: 9a:ed:9c:65:b0:e4:47:44:4e:c7:a5:a4:5c:b0:46:aa:03:77: a5:62:31:cf:11:14:39:06:06:56:b2:3d:dd:c1:c1:e9:e0:96: db:e8:f3:aa:0a:42:bc:92:fa:3e:ef:59:b0:6b:16:51:84:c2: 66:04:7d:c2:85:92:b3:86:de:09:36:26:6f:cc:96:89:5e:66: 22:e7:41:4e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICCy8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUQ0 NDFBQUREMjM5QUQ5MjYwMTBBRkM0REIyMDQ1NEVGMkM0QjBDMTAeFw0yMzA5MDEx MDIwNTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJGQTE0NUQ5QUQ5Nzg3 MTgwQzhBQjY5ODAyM0NERjkxMjgxNDNERTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDn9mUU/zYT0EHBFBbCoLEm7lT7rH4jDGL2hPdOHjTDuiSjoQ6W YbYt6Au+zie3yvE5KE9RD4Jx6bAtCx35oTrz2aGEB8ARsItzPh06NF7aZudDN655 nv0Ml0NDmptmvEJgRQV7PY7nI/t0PG0EFea0IgTyi/YWsS113X2yBqI58VHoPpIY K3Wif4J8/NSHG9fQiQGc+tVftCWzmAmkVDZhe5qOkPUU/2qNpTkgXXtK8kuQLPoR QgB4w9vtGhMawBgPZExBzNLYrOs+/LA0Aldx/y71kyAhgcRK0+l04f2y9G3T55fD TicIqCpMxkfV3S3RQLjqdPrxR0LMrUapsSGJAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUL6FF2a2XhxgMiraYAjzfkSgUPeEwHwYDVR0jBBgwFoAUnUQardI5rZJgEK/E 2yBFTvLEsMEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV05DTC9u VVFhcmRJNXJaSmdFS19FMnlCRlR2TEVzTUUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L25VUWFyZEk1clpKZ0VLX0UyeUJGVHZMRXNNRS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1dOQ0wvTDZGRjJhMlhoeGdNaXJhWUFqemZr U2dVUGVFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmd7hDAN BgkqhkiG9w0BAQsFAAOCAQEAAFk3ZndhIBVbKk9E62u9hGP62buI7zV62WkEE1hY 16wLGFQOmwSn4hu3p3knODP+1r4uS1U6Qea0eQQqubwTCmMWPZkJxC3c5qsjw2E0 L1PPPzxYQ2d1yvqvIZcymIT5DhtKM1hNDZAC3bEcPoq/nC5/FbSnhIxJG9fjog6t GP+HmzOOW593U1BCoj4dSbflQfk+DJhetCJ98dLqbNNjcd9UD2Ah3LiKLhy3xN3W XfXlWt3mmu2cZbDkR0ROx6WkXLBGqgN3pWIxzxEUOQYGVrI93cHB6eCW2+jzqgpC vJL6Pu9ZsGsWUYTCZgR9woWSs4beCTYmb8yWiV5mIudBTg== -----END CERTIFICATE-----Generated at Sat Jun 22 23:13:44 2024 by rpki-client on console-ams.rpki-client.org