$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLARK/QkQca3VzDjiVxqHQk1W7VpG1ftg.roa File: QkQca3VzDjiVxqHQk1W7VpG1ftg.roa (raw, json) Hash identifier: V1+2Fd/djNJN2PtPjW9G6w8bVFMGHgIfeYIkN3kjmkk= Subject key identifier: 42:44:1C:6B:75:73:0E:38:95:C6:A1:D0:93:55:BB:56:91:B5:7E:D8 Certificate issuer: /CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Certificate serial: 89 Authority key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/QkQca3VzDjiVxqHQk1W7VpG1ftg.roa Signing time: Fri 13 Oct 2023 22:09:41 +0000 ROA not before: Fri 13 Oct 2023 22:09:41 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 63910 IP address blocks: 103.130.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 05:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Validity Not Before: Oct 13 22:09:41 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=42441C6B75730E3895C6A1D09355BB5691B57ED8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:28:72:27:dd:78:e1:d9:dc:f9:f6:2f:0b:a3: 6d:ca:57:00:71:d0:ed:67:03:fb:06:80:97:af:de: 9d:9d:0c:fa:e9:ec:3e:9d:5e:95:6d:4d:22:bd:fe: 0e:c4:c9:b4:4b:a4:98:b6:fc:d1:28:1d:b8:25:75: 9f:23:0b:7d:ec:e8:3e:b4:3e:61:bf:3c:4a:7a:9b: 18:8d:7d:5a:6e:b1:91:06:43:8f:ab:b1:ea:83:48: eb:71:b5:8d:35:b0:bf:c0:16:f2:a3:12:02:b1:7b: b9:37:43:d3:8e:3b:07:18:56:9d:10:fa:aa:f4:00: cf:f1:e3:6a:dd:57:77:82:f9:28:ec:c6:86:36:c2: 3d:8e:22:8c:f5:e6:d3:dd:b8:7e:8e:8c:3d:bf:5b: 3a:a3:78:d7:6f:de:53:7e:f5:c4:f7:9f:50:dc:61: a3:de:bd:f4:0b:76:e8:8b:4c:b4:d6:89:a4:1a:fb: b7:34:1b:dc:c6:15:cf:7b:3a:c7:03:54:51:c5:75: 50:8d:fa:80:94:35:6c:40:3d:36:68:f6:23:2b:43: 44:eb:2c:9f:07:31:27:54:6f:6f:12:6a:76:e1:6d: e5:73:0f:0d:fc:44:89:be:39:f5:19:31:58:06:95: 84:01:bf:c4:de:ba:ea:19:52:f5:12:21:06:da:52: 27:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:44:1C:6B:75:73:0E:38:95:C6:A1:D0:93:55:BB:56:91:B5:7E:D8 X509v3 Authority Key Identifier: keyid:74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/QkQca3VzDjiVxqHQk1W7VpG1ftg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.236.0/24 Signature Algorithm: sha256WithRSAEncryption ab:bb:f5:cb:ea:15:94:fc:d3:4a:c8:fc:c0:b5:fa:c2:af:f3: de:92:07:26:d7:66:a9:b7:2e:4d:c4:c4:3a:28:30:92:0d:e9: b9:16:5e:7a:5b:d6:27:13:18:89:15:37:bc:6b:63:86:fc:47: 90:ce:b6:68:b8:9c:0e:37:f6:bf:53:38:a0:36:6a:97:ee:38: d8:4b:6f:4e:6c:ba:af:03:a9:91:42:94:ad:d9:a3:2b:f6:75: ba:ea:67:c2:af:54:5c:71:8a:db:06:28:cb:ab:ae:b2:d8:40: c1:81:56:b0:d7:9f:28:25:75:b1:43:98:04:07:32:da:f3:85: 90:34:55:20:65:c4:41:87:5b:85:fe:f4:6f:11:bf:bb:77:22: 97:3f:b4:1c:fe:f2:e7:1e:6e:d8:9f:e2:75:9e:f8:33:d6:89: c2:c1:86:ce:78:8a:72:29:41:9b:95:0d:de:ac:c1:8e:14:43: 43:66:22:79:b7:b6:32:2e:67:e9:8d:1b:e0:ce:6f:fd:b5:1f: 8d:9a:7f:ea:d7:a5:ec:94:2d:ad:b4:88:4c:fd:3e:cc:33:89: 6f:6b:e1:2c:10:b8:a1:ab:bd:18:78:4c:a7:f2:ee:53:19:51: 23:30:80:50:fb:03:a6:1b:c4:4b:4d:6f:67:94:d9:7e:53:7c: bd:51:96:bc -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzRB RjA0MDJGRUY1NkMzNEExOTJEMUQyMTg1RTZGQjU0NkFBNzAyQzAeFw0yMzEwMTMy MjA5NDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQyNDQxQzZCNzU3MzBF Mzg5NUM2QTFEMDkzNTVCQjU2OTFCNTdFRDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAKHIn3Xjh2dz59i8Lo23KVwBx0O1nA/sGgJev3p2dDPrp7D6d XpVtTSK9/g7EybRLpJi2/NEoHbgldZ8jC33s6D60PmG/PEp6mxiNfVpusZEGQ4+r seqDSOtxtY01sL/AFvKjEgKxe7k3Q9OOOwcYVp0Q+qr0AM/x42rdV3eC+SjsxoY2 wj2OIoz15tPduH6OjD2/WzqjeNdv3lN+9cT3n1DcYaPevfQLduiLTLTWiaQa+7c0 G9zGFc97OscDVFHFdVCN+oCUNWxAPTZo9iMrQ0TrLJ8HMSdUb28SanbhbeVzDw38 RIm+OfUZMVgGlYQBv8TeuuoZUvUSIQbaUicnAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUQkQca3VzDjiVxqHQk1W7VpG1ftgwHwYDVR0jBBgwFoAUdK8EAv71bDShktHS GF5vtUaqcCwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xBUksv ZEs4RUF2NzFiRFNoa3RIU0dGNXZ0VWFxY0N3LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9kSzhFQXY3MWJEU2hrdEhTR0Y1dnRVYXFjQ3cuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTEFSSy9Ra1FjYTNWekRqaVZ4cUhRazFX N1ZwRzFmdGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4Ls MA0GCSqGSIb3DQEBCwUAA4IBAQCru/XL6hWU/NNKyPzAtfrCr/Pekgcm12apty5N xMQ6KDCSDem5Fl56W9YnExiJFTe8a2OG/EeQzrZouJwON/a/UzigNmqX7jjYS29O bLqvA6mRQpSt2aMr9nW66mfCr1RccYrbBijLq66y2EDBgVaw158oJXWxQ5gEBzLa 84WQNFUgZcRBh1uF/vRvEb+7dyKXP7Qc/vLnHm7Yn+J1nvgz1onCwYbOeIpyKUGb lQ3erMGOFENDZiJ5t7YyLmfpjRvgzm/9tR+Nmn/q16XslC2ttIhM/T7MM4lva+Es ELihq70YeEyn8u5TGVEjMIBQ+wOmG8RLTW9nlNl+U3y9UZa8 -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:41 2024 by rpki-client on console-ams.rpki-client.org