$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/jXHq6VJTYPlWgsyHbDCGs3ysvGI.roa File: jXHq6VJTYPlWgsyHbDCGs3ysvGI.roa (raw, json) Hash identifier: WjwCjlpBqs38MDEoPRiIiTotngnfz8lbr0pUrV7ZyTw= Subject key identifier: 8D:71:EA:E9:52:53:60:F9:56:82:CC:87:6C:30:86:B3:7C:AC:BC:62 Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0C73 Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/jXHq6VJTYPlWgsyHbDCGs3ysvGI.roa Signing time: Mon 26 Aug 2024 04:56:18 +0000 ROA not before: Mon 26 Aug 2024 04:56:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131149 IP address blocks: 103.1.220.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3187 (0xc73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Aug 26 04:56:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8D71EAE9525360F95682CC876C3086B37CACBC62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:61:a1:f3:70:9a:da:a2:b5:98:bd:7b:f4:17: 2e:1a:b8:66:23:13:15:f7:57:2b:21:31:53:51:ae: 60:12:8c:1f:92:f4:f8:4f:30:bd:b4:2b:1c:1e:ee: 05:75:af:e0:03:3f:a4:a3:7c:4f:21:c5:c8:75:ba: 6a:9f:25:98:34:68:24:e4:5e:1d:ad:ec:74:7e:d6: fb:b2:d7:bf:bc:e6:40:e7:0f:2b:bd:3a:df:87:2c: a3:7f:6d:37:8c:44:f8:59:8f:7e:d5:68:59:33:1d: 6f:4b:56:d5:6a:80:77:8e:fb:a1:1b:7c:80:6b:2a: 6c:de:a7:56:0f:b3:9c:4f:ac:7b:21:4f:c8:da:b5: 68:53:e0:45:6f:1b:ac:e1:96:8c:35:9d:c4:a3:05: 95:9a:44:57:61:17:4e:5a:cc:8f:de:46:c7:68:d2: 1a:68:0f:86:6d:61:c3:eb:39:30:23:41:d7:f4:1a: d4:5e:13:7b:a3:7b:f5:6f:93:de:ce:87:35:e8:5f: f9:bf:45:3a:b6:ee:e8:b4:b9:b2:b7:35:7e:5a:5b: 78:20:d9:5b:be:24:16:f6:76:b0:47:37:c0:c3:82: 08:d9:f0:91:a6:8f:13:1d:4a:23:18:19:1d:ca:30: 8b:7e:a5:21:2b:24:3e:9d:d9:21:87:36:08:b1:b0: e1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:71:EA:E9:52:53:60:F9:56:82:CC:87:6C:30:86:B3:7C:AC:BC:62 X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/jXHq6VJTYPlWgsyHbDCGs3ysvGI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.1.220.0/22 Signature Algorithm: sha256WithRSAEncryption 00:35:87:15:77:d4:1b:2b:91:27:80:07:ef:86:5c:19:52:3c: 65:9f:a0:99:53:70:9a:13:70:a4:4b:04:18:38:9f:24:fc:98: e1:26:d2:35:ef:5c:ad:ab:7d:d8:ad:61:ce:5f:76:aa:2e:0e: 85:83:1a:21:d7:d7:4d:ca:c8:80:f0:0f:b5:31:10:a7:59:84: 17:7f:77:a1:b4:2a:7a:b5:1b:e4:59:e5:3a:de:81:52:08:b6: 40:93:bf:8a:91:3d:ae:c0:e2:2b:69:39:c2:16:55:d8:f2:63: c8:2e:f6:30:43:7a:b8:fc:a4:0a:6e:6b:36:b2:c0:35:c3:99: 00:67:e1:0d:6b:34:e4:9d:1d:44:a3:9f:f2:95:25:2a:e3:13: f0:11:36:0d:b8:2d:99:58:a6:bd:da:e4:40:57:e8:50:8b:f2: 8c:df:55:7a:f6:e4:e6:94:75:83:67:a2:b4:3b:4d:0e:72:bb: 37:26:e9:00:49:dd:7a:dd:4d:3e:af:d3:75:1e:36:74:4b:bf: 19:2f:db:1a:20:b6:f1:4f:3d:15:a8:e7:91:4f:9f:17:02:90: 34:18:6e:50:2b:ac:1f:d4:89:5c:e7:8d:47:6e:3d:d1:7c:70: c8:e9:5d:89:1b:00:f5:42:c2:91:78:8d:b0:0e:32:cd:f1:64: bf:74:41:b0 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDHMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNDA4MjYw NDU2MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhENzFFQUU5NTI1MzYw Rjk1NjgyQ0M4NzZDMzA4NkIzN0NBQ0JDNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEYaHzcJraorWYvXv0Fy4auGYjExX3VyshMVNRrmASjB+S9PhP ML20Kxwe7gV1r+ADP6SjfE8hxch1umqfJZg0aCTkXh2t7HR+1vuy17+85kDnDyu9 Ot+HLKN/bTeMRPhZj37VaFkzHW9LVtVqgHeO+6EbfIBrKmzep1YPs5xPrHshT8ja tWhT4EVvG6zhlow1ncSjBZWaRFdhF05azI/eRsdo0hpoD4ZtYcPrOTAjQdf0GtRe E3uje/Vvk97OhzXoX/m/RTq27ui0ubK3NX5aW3gg2Vu+JBb2drBHN8DDggjZ8JGm jxMdSiMYGR3KMIt+pSErJD6d2SGHNgixsOHJAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUjXHq6VJTYPlWgsyHbDCGs3ysvGIwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9qWEhxNlZKVFlQbFdn c3lIYkRDR3MzeXN2R0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZwHcMA0GCSqGSIb3DQEBCwUAA4IBAQAANYcVd9QbK5EngAfvhlwZUjxln6CZ U3CaE3CkSwQYOJ8k/JjhJtI171ytq33YrWHOX3aqLg6Fgxoh19dNysiA8A+1MRCn WYQXf3ehtCp6tRvkWeU63oFSCLZAk7+KkT2uwOIraTnCFlXY8mPILvYwQ3q4/KQK bms2ssA1w5kAZ+ENazTknR1Eo5/ylSUq4xPwETYNuC2ZWKa92uRAV+hQi/KM31V6 9uTmlHWDZ6K0O00Ocrs3JukASd163U0+r9N1HjZ0S78ZL9saILbxTz0VqOeRT58X ApA0GG5QK6wf1Ilc541Hbj3RfHDI6V2JGwD1QsKReI2wDjLN8WS/dEGw -----END CERTIFICATE-----Generated at Fri Sep 27 23:52:59 2024 by rpki-client on console-ams.rpki-client.org