$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/EOzF-sLa6uEn06IL9E2OfiETBA0.roa File: EOzF-sLa6uEn06IL9E2OfiETBA0.roa (raw, json) Hash identifier: aoi9wcYf/1LWMSNsy5r0l5lo70AAaflSJbQEAKrGQdY= Subject key identifier: 10:EC:C5:FA:C2:DA:EA:E1:27:D3:A2:0B:F4:4D:8E:7E:21:13:04:0D Certificate issuer: /CN=A2FB739525B742A28A743315C6C88E766A7E0DC3 Certificate serial: 0D53 Authority key identifier: A2:FB:73:95:25:B7:42:A2:8A:74:33:15:C6:C8:8E:76:6A:7E:0D:C3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/EOzF-sLa6uEn06IL9E2OfiETBA0.roa Signing time: Fri 01 Sep 2023 08:06:09 +0000 ROA not before: Fri 01 Sep 2023 08:06:09 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131618 IP address blocks: 103.135.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 02:13:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3411 (0xd53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2FB739525B742A28A743315C6C88E766A7E0DC3 Validity Not Before: Sep 1 08:06:09 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=10ECC5FAC2DAEAE127D3A20BF44D8E7E2113040D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:27:33:f2:92:ad:ab:ba:2f:64:43:bc:d1:63: 0e:c4:0b:96:5f:cc:e7:3d:a4:0f:10:30:84:f4:12: c1:ee:d2:74:31:40:70:33:55:ff:a6:2f:f5:18:b2: f9:d4:a1:5f:04:ca:f8:54:96:03:e1:42:9a:53:ec: 6f:dc:7d:16:28:09:f6:be:b6:e8:aa:e3:19:84:bb: 41:dc:cb:7c:57:bf:52:10:28:e9:67:2c:c6:b3:19: 0a:0a:0b:9e:e1:56:76:71:25:89:b0:97:35:35:16: 14:0d:94:11:e6:39:93:97:a6:f1:bc:2f:6c:97:71: 86:02:de:da:86:c3:c7:c3:a6:66:9e:d7:6a:78:fe: e8:41:ba:18:55:93:2d:10:a1:39:70:1c:78:94:54: 42:ea:0b:94:88:b6:ee:00:7d:d9:6e:30:0e:6c:b2: cc:89:3d:0c:13:77:cc:e3:b7:15:01:28:06:56:4e: f0:de:a3:02:b3:d6:0c:9e:fc:6e:fa:f2:b0:69:99: 98:b4:a8:25:52:8c:9b:14:37:fa:c1:d2:8e:d8:c4: c5:3e:45:72:9e:9d:b8:ad:13:f8:5c:4b:c4:f5:82: eb:62:0f:66:d2:e6:f7:09:85:d7:6e:4b:72:34:c4: 52:d0:bb:b8:d4:5a:88:b8:61:26:0f:ca:0d:b5:d5: 3b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:EC:C5:FA:C2:DA:EA:E1:27:D3:A2:0B:F4:4D:8E:7E:21:13:04:0D X509v3 Authority Key Identifier: keyid:A2:FB:73:95:25:B7:42:A2:8A:74:33:15:C6:C8:8E:76:6A:7E:0D:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/EOzF-sLa6uEn06IL9E2OfiETBA0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.116.0/24 Signature Algorithm: sha256WithRSAEncryption 01:e3:0f:6c:d3:9f:27:4c:5b:8c:b5:9a:6a:99:60:e2:c7:8f: ab:3c:51:06:0a:d4:a4:c0:fa:bd:a9:f5:a5:6e:2a:ea:6f:a1: ad:6e:83:b8:72:28:04:c4:39:71:a9:a4:55:ef:12:b7:64:ea: 81:aa:91:bf:26:dc:ab:13:23:0f:dd:23:b6:a8:f8:b1:35:c6: 74:45:9f:d3:dc:7b:57:a3:8d:11:13:f8:13:49:a9:41:55:89: 16:89:1c:25:57:76:21:6a:59:76:da:0a:be:30:4c:e8:34:d9: 0d:0a:b9:4e:79:2b:77:ca:d1:a2:13:b1:6e:0c:91:8f:8e:2b: 07:07:40:eb:55:1c:da:0e:37:a8:e9:08:67:5e:c7:4e:60:71: 63:11:b4:bd:1a:8e:97:77:6d:a4:90:62:43:4c:de:74:87:da: 27:e0:8b:e1:82:37:74:6b:83:b1:dd:64:ca:6a:17:19:20:f3: ae:e9:9b:58:fe:c5:3e:bc:62:58:84:ad:72:64:2f:4a:e4:41: b6:03:4a:bc:39:e0:fe:bf:90:d7:cf:eb:dd:34:4f:7f:ad:dc: fd:09:1a:6c:69:2d:bf:ad:55:cc:6b:a0:15:a8:66:7b:79:20: ea:ca:c5:4f:ed:50:81:71:43:2c:68:15:6e:34:90:57:45:d0: da:18:33:f4 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDVMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTJG QjczOTUyNUI3NDJBMjhBNzQzMzE1QzZDODhFNzY2QTdFMERDMzAeFw0yMzA5MDEw ODA2MDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDEwRUNDNUZBQzJEQUVB RTEyN0QzQTIwQkY0NEQ4RTdFMjExMzA0MEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3JzPykq2rui9kQ7zRYw7EC5ZfzOc9pA8QMIT0EsHu0nQxQHAz Vf+mL/UYsvnUoV8EyvhUlgPhQppT7G/cfRYoCfa+tuiq4xmEu0Hcy3xXv1IQKOln LMazGQoKC57hVnZxJYmwlzU1FhQNlBHmOZOXpvG8L2yXcYYC3tqGw8fDpmae12p4 /uhBuhhVky0QoTlwHHiUVELqC5SItu4AfdluMA5sssyJPQwTd8zjtxUBKAZWTvDe owKz1gye/G768rBpmZi0qCVSjJsUN/rB0o7YxMU+RXKenbitE/hcS8T1gutiD2bS 5vcJhdduS3I0xFLQu7jUWoi4YSYPyg211TvfAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUEOzF+sLa6uEn06IL9E2OfiETBA0wHwYDVR0jBBgwFoAUovtzlSW3QqKKdDMV xsiOdmp+DcMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNJQUNM T1VEL292dHpsU1czUXFLS2RETVZ4c2lPZG1wLURjTS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0Evb3Z0emxTVzNRcUtLZERNVnhzaU9kbXAtRGNNLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNJQUNMT1VEL0VPekYtc0xhNnVF bjA2SUw5RTJPZmlFVEJBMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABnh3QwDQYJKoZIhvcNAQELBQADggEBAAHjD2zTnydMW4y1mmqZYOLHj6s8 UQYK1KTA+r2p9aVuKupvoa1ug7hyKATEOXGppFXvErdk6oGqkb8m3KsTIw/dI7ao +LE1xnRFn9Pce1ejjRET+BNJqUFViRaJHCVXdiFqWXbaCr4wTOg02Q0KuU55K3fK 0aITsW4MkY+OKwcHQOtVHNoON6jpCGdex05gcWMRtL0ajpd3baSQYkNM3nSH2ifg i+GCN3Rrg7HdZMpqFxkg867pm1j+xT68YliErXJkL0rkQbYDSrw54P6/kNfP6900 T3+t3P0JGmxpLb+tVcxroBWoZnt5IOrKxU/tUIFxQyxoFW40kFdF0NoYM/Q= -----END CERTIFICATE-----Generated at Sat May 18 20:13:54 2024 by rpki-client on console-fra.rpki-client.org