$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/DOnv1x5FJFbeq79NqkQrlDBwoQo.roa File: DOnv1x5FJFbeq79NqkQrlDBwoQo.roa (raw, json) Hash identifier: Ni44xxkkteypoSej9TjPevtshXxLtuE8Z8IgGhlcGdc= Subject key identifier: 0C:E9:EF:D7:1E:45:24:56:DE:AB:BF:4D:AA:44:2B:94:30:70:A1:0A Certificate issuer: /CN=A2FB739525B742A28A743315C6C88E766A7E0DC3 Certificate serial: 0D50 Authority key identifier: A2:FB:73:95:25:B7:42:A2:8A:74:33:15:C6:C8:8E:76:6A:7E:0D:C3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/DOnv1x5FJFbeq79NqkQrlDBwoQo.roa Signing time: Fri 01 Sep 2023 08:06:08 +0000 ROA not before: Fri 01 Sep 2023 08:06:08 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131618 IP address blocks: 103.135.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 19:28:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3408 (0xd50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2FB739525B742A28A743315C6C88E766A7E0DC3 Validity Not Before: Sep 1 08:06:08 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0CE9EFD71E452456DEABBF4DAA442B943070A10A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6d:29:bf:72:93:c3:2e:13:bd:f1:fc:a6:da: 88:b1:ce:29:0c:52:9b:b2:f8:79:5b:1b:4f:5f:8d: 88:ee:62:4d:fc:17:27:46:09:05:ff:f8:e8:9e:0c: ef:d4:1e:6a:e7:6d:d8:a9:9c:54:38:79:ed:cc:ad: 5a:a0:f2:8f:aa:f9:f1:b6:f5:87:a4:29:4b:04:f5: 43:30:04:de:ed:3f:51:23:f6:54:20:50:11:46:09: 8a:d5:30:3e:99:1a:b8:2f:43:9e:93:9c:d9:4b:24: b9:12:a7:f1:92:45:b1:71:4f:c4:06:d6:d3:88:71: d3:27:bc:5c:78:65:cd:2d:40:60:f7:9e:0d:93:91: cb:cf:e6:6d:5f:57:d5:c2:19:65:bf:17:85:c6:5c: 40:59:6c:b9:02:15:9e:4e:0d:41:cd:75:a7:ef:89: df:b5:5a:7a:fe:b9:e6:4f:d9:be:c2:2b:3b:36:88: 9a:3c:ca:79:08:61:98:1d:ed:61:42:ae:a9:03:c3: f7:a1:66:81:4c:6e:d1:41:ac:0e:39:66:7d:ae:45: 9c:b2:95:49:86:47:ad:be:57:a2:b4:38:26:fe:86: 79:e8:06:15:2d:36:b7:b6:a3:58:4a:dd:53:de:91: 82:0c:d6:75:ef:a0:e2:f7:ea:96:eb:16:8d:ee:58: fc:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:E9:EF:D7:1E:45:24:56:DE:AB:BF:4D:AA:44:2B:94:30:70:A1:0A X509v3 Authority Key Identifier: keyid:A2:FB:73:95:25:B7:42:A2:8A:74:33:15:C6:C8:8E:76:6A:7E:0D:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/DOnv1x5FJFbeq79NqkQrlDBwoQo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.119.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:ce:1e:49:d4:b8:2f:eb:5d:0f:fc:de:7d:a6:48:06:73:61: fc:b6:ad:ce:bd:77:0e:95:be:76:81:d3:aa:93:21:62:56:84: 9e:d2:39:f5:c6:fb:d1:af:38:8a:9d:46:04:f5:85:2f:9d:05: d1:17:cb:0f:a6:26:47:78:b4:ec:32:bb:94:e1:a3:b7:e0:8f: 94:de:77:99:1b:83:6a:ae:d6:27:b9:79:ed:a3:a9:26:fa:2a: b9:bf:98:de:1e:ed:2f:2e:ad:e7:a7:0d:4a:f5:9c:ed:2b:37: 0a:a9:e1:9d:4e:f4:ca:35:21:27:63:15:d1:a7:7b:2b:87:8d: 77:80:e0:de:0c:c9:56:ab:a8:a8:77:3a:a0:43:95:42:a4:45: e6:19:ea:63:9a:54:57:d1:61:1d:c9:c7:77:7f:03:5d:2a:a7: 88:41:08:5e:0a:19:42:2c:d2:ec:99:49:52:61:05:db:cb:f5: d7:f4:75:7f:2f:25:ab:3c:16:39:d0:08:63:f9:bd:23:1b:5d: f0:44:2d:11:83:95:c2:c4:19:9a:9d:a2:36:ff:19:08:d7:23: 3b:d5:61:d1:e3:af:3a:3c:e5:14:1d:02:49:51:99:c2:c2:0a: 1d:0d:d7:d4:a7:af:cf:61:49:b8:9c:28:d0:fd:c7:cd:02:d8: ae:3a:7a:14 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDVAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTJG QjczOTUyNUI3NDJBMjhBNzQzMzE1QzZDODhFNzY2QTdFMERDMzAeFw0yMzA5MDEw ODA2MDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBDRTlFRkQ3MUU0NTI0 NTZERUFCQkY0REFBNDQyQjk0MzA3MEExMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjbSm/cpPDLhO98fym2oixzikMUpuy+HlbG09fjYjuYk38FydG CQX/+OieDO/UHmrnbdipnFQ4ee3MrVqg8o+q+fG29YekKUsE9UMwBN7tP1Ej9lQg UBFGCYrVMD6ZGrgvQ56TnNlLJLkSp/GSRbFxT8QG1tOIcdMnvFx4Zc0tQGD3ng2T kcvP5m1fV9XCGWW/F4XGXEBZbLkCFZ5ODUHNdafvid+1Wnr+ueZP2b7CKzs2iJo8 ynkIYZgd7WFCrqkDw/ehZoFMbtFBrA45Zn2uRZyylUmGR62+V6K0OCb+hnnoBhUt Nre2o1hK3VPekYIM1nXvoOL36pbrFo3uWPx9AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUDOnv1x5FJFbeq79NqkQrlDBwoQowHwYDVR0jBBgwFoAUovtzlSW3QqKKdDMV xsiOdmp+DcMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNJQUNM T1VEL292dHpsU1czUXFLS2RETVZ4c2lPZG1wLURjTS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0Evb3Z0emxTVzNRcUtLZERNVnhzaU9kbXAtRGNNLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNJQUNMT1VEL0RPbnYxeDVGSkZi ZXE3OU5xa1FybERCd29Rby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABnh3cwDQYJKoZIhvcNAQELBQADggEBAA3OHknUuC/rXQ/83n2mSAZzYfy2 rc69dw6VvnaB06qTIWJWhJ7SOfXG+9GvOIqdRgT1hS+dBdEXyw+mJkd4tOwyu5Th o7fgj5Ted5kbg2qu1ie5ee2jqSb6Krm/mN4e7S8ureenDUr1nO0rNwqp4Z1O9Mo1 ISdjFdGneyuHjXeA4N4MyVarqKh3OqBDlUKkReYZ6mOaVFfRYR3Jx3d/A10qp4hB CF4KGUIs0uyZSVJhBdvL9df0dX8vJas8FjnQCGP5vSMbXfBELRGDlcLEGZqdojb/ GQjXIzvVYdHjrzo85RQdAklRmcLCCh0N19Snr89hSbicKND9x80C2K46ehQ= -----END CERTIFICATE-----Generated at Sun May 19 18:40:55 2024 by rpki-client on console-ams.rpki-client.org