$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/UFOZqo4zP8SdAQXIi2I3J2i_Rew.roa File: UFOZqo4zP8SdAQXIi2I3J2i_Rew.roa (raw, json) Hash identifier: LAwiUXp/l32JjQp9NLJDAev2TqSMW5ixA+fa9gDSxLU= Subject key identifier: 50:53:99:AA:8E:33:3F:C4:9D:01:05:C8:8B:62:37:27:68:BF:45:EC Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0C78 Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/UFOZqo4zP8SdAQXIi2I3J2i_Rew.roa Signing time: Mon 26 Aug 2024 04:56:19 +0000 ROA not before: Mon 26 Aug 2024 04:56:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131149 IP address blocks: 103.129.168.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3192 (0xc78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Aug 26 04:56:19 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=505399AA8E333FC49D0105C88B62372768BF45EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ca:67:ca:1d:1e:d2:58:15:5b:3d:7e:a9:cd: b7:6d:ed:ca:8e:3e:76:d7:1c:ac:63:09:af:28:d3: 14:7c:00:b7:8f:68:8b:ec:2d:04:a1:99:81:5a:a0: a9:8f:36:71:c7:63:5a:8f:a1:3e:fd:b5:11:13:31: a6:74:b9:bf:a7:9d:02:7f:90:07:a7:cc:d3:c5:70: 90:31:56:7a:c2:a4:ac:04:bd:90:6d:40:06:c2:07: 73:07:33:c6:bd:80:89:14:b1:39:a7:07:3a:b8:91: 92:f9:ff:e3:4b:df:ff:a5:83:10:24:f2:fc:d4:99: 54:b9:95:37:95:86:c5:52:45:57:24:40:79:62:75: fd:44:3f:cf:38:1a:1f:8c:47:47:df:58:44:7e:5f: e6:28:4e:55:c6:50:5b:bb:8e:8d:f9:f8:0e:85:c0: 39:39:c2:34:52:1f:db:ce:7b:5b:1c:57:26:77:6a: b1:98:8c:4b:ed:89:c2:b6:6f:b4:f1:6c:99:8c:2f: 1e:ed:25:90:26:cb:a8:b7:91:dc:f7:ac:e3:23:5c: 67:16:78:74:73:71:4c:2e:26:4e:a8:9e:cd:ab:1a: cd:8f:22:61:41:ff:d4:18:4b:7c:4b:13:41:6d:94: a9:6f:17:58:c6:3a:6a:1e:78:26:9c:a0:45:8d:ce: 68:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:53:99:AA:8E:33:3F:C4:9D:01:05:C8:8B:62:37:27:68:BF:45:EC X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/UFOZqo4zP8SdAQXIi2I3J2i_Rew.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.129.168.0/22 Signature Algorithm: sha256WithRSAEncryption 95:61:1e:b0:60:e3:0c:5f:0d:5a:4f:6e:2b:11:56:1f:52:ad: 17:5d:52:8e:de:c7:0a:9a:9a:fe:75:ce:2d:ca:ed:e6:7c:f1: cf:ef:5e:3e:a8:85:f5:f2:a8:64:53:f8:52:cb:78:82:c5:76: ce:c1:8f:fd:58:7e:1c:5f:e9:27:f7:79:a3:ad:df:6e:74:5c: 7b:44:ba:a3:a5:73:f2:17:3d:bc:70:89:91:ef:0a:b7:84:18: 70:20:e0:0f:c0:b0:d6:38:da:82:8a:86:69:9a:4d:59:22:49: 7a:a8:9f:2b:c5:0e:08:68:73:fd:d0:ae:1a:f3:34:5a:22:e2: 8f:01:77:05:31:30:ed:93:27:39:d1:16:7b:13:d5:16:d6:c7: 97:35:31:c2:93:50:f2:3a:7a:ea:d3:b4:1d:98:b0:8e:05:05: eb:fb:4f:2d:a9:c0:fc:cb:cf:88:e5:4c:eb:b0:76:c7:ef:e6: b4:96:a3:d0:29:ff:d0:25:33:c9:f1:64:ca:74:e6:82:76:a9: 44:b3:83:3e:eb:ce:91:4b:6b:ca:3d:7e:e0:31:c2:99:f5:fb: e9:73:67:96:e1:d9:49:af:63:17:41:b3:6b:c4:3a:ab:38:37: d5:32:55:e5:ce:92:20:40:e1:62:a2:a6:be:74:6c:ec:1a:89: 1c:6c:e8:18 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDHgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNDA4MjYw NDU2MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUwNTM5OUFBOEUzMzNG QzQ5RDAxMDVDODhCNjIzNzI3NjhCRjQ1RUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYymfKHR7SWBVbPX6pzbdt7cqOPnbXHKxjCa8o0xR8ALePaIvs LQShmYFaoKmPNnHHY1qPoT79tRETMaZ0ub+nnQJ/kAenzNPFcJAxVnrCpKwEvZBt QAbCB3MHM8a9gIkUsTmnBzq4kZL5/+NL3/+lgxAk8vzUmVS5lTeVhsVSRVckQHli df1EP884Gh+MR0ffWER+X+YoTlXGUFu7jo35+A6FwDk5wjRSH9vOe1scVyZ3arGY jEvticK2b7TxbJmMLx7tJZAmy6i3kdz3rOMjXGcWeHRzcUwuJk6ons2rGs2PImFB /9QYS3xLE0FtlKlvF1jGOmoeeCacoEWNzmhZAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUUFOZqo4zP8SdAQXIi2I3J2i/RewwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9VRk9acW80elA4U2RB UVhJaTJJM0oyaV9SZXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ4GoMA0GCSqGSIb3DQEBCwUAA4IBAQCVYR6wYOMMXw1aT24rEVYfUq0XXVKO 3scKmpr+dc4tyu3mfPHP714+qIX18qhkU/hSy3iCxXbOwY/9WH4cX+kn93mjrd9u dFx7RLqjpXPyFz28cImR7wq3hBhwIOAPwLDWONqCioZpmk1ZIkl6qJ8rxQ4IaHP9 0K4a8zRaIuKPAXcFMTDtkyc50RZ7E9UW1seXNTHCk1DyOnrq07QdmLCOBQXr+08t qcD8y8+I5UzrsHbH7+a0lqPQKf/QJTPJ8WTKdOaCdqlEs4M+686RS2vKPX7gMcKZ 9fvpc2eW4dlJr2MXQbNrxDqrODfVMlXlzpIgQOFioqa+dGzsGokcbOgY -----END CERTIFICATE-----Generated at Fri Sep 27 23:52:59 2024 by rpki-client on console-ams.rpki-client.org