$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLARK/x5FVjSMXeQ_SU0NWfyJKAQr0SBY.roa File: x5FVjSMXeQ_SU0NWfyJKAQr0SBY.roa (raw, json) Hash identifier: JlHqjy/vk5nqbOJh7MH+70nKGR+3kz5niT0d0LuOvMI= Subject key identifier: C7:91:55:8D:23:17:79:0F:D2:53:43:56:7F:22:4A:01:0A:F4:48:16 Certificate issuer: /CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Certificate serial: 8B Authority key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/x5FVjSMXeQ_SU0NWfyJKAQr0SBY.roa Signing time: Fri 13 Oct 2023 22:10:29 +0000 ROA not before: Fri 13 Oct 2023 22:10:29 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 63910 IP address blocks: 103.130.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 05:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Validity Not Before: Oct 13 22:10:29 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C791558D2317790FD25343567F224A010AF44816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a9:4d:b8:c7:9b:0e:bc:df:a7:1b:db:dd:94: 48:2d:13:69:cd:94:40:f5:af:ed:39:a9:05:68:92: 46:34:b6:89:f6:e5:f3:d5:d3:4c:98:77:d3:38:82: 6f:f6:2c:d9:95:3e:5e:37:51:42:86:8e:3f:2f:16: 37:5d:e9:2f:9c:a5:c8:dd:4e:e5:1f:fb:76:1a:b2: 86:25:40:1c:36:79:56:3d:50:dc:8e:a3:e2:8e:25: a3:60:9d:b7:d8:f1:ec:fa:53:60:e5:dd:31:e2:c4: 47:40:19:14:2f:2b:1a:ee:a4:8f:81:a7:fc:0b:47: c3:41:f6:a7:97:51:1e:9d:29:ec:1b:fc:42:50:86: 9d:b2:96:b6:87:74:e1:e4:ae:35:61:fb:cb:0d:f1: 5d:ef:eb:89:88:a7:70:04:a3:09:54:53:1e:93:19: be:9c:df:a8:b6:bc:ed:2e:3c:42:6a:6e:36:41:96: d2:53:ee:83:63:6a:9a:98:3b:17:7c:ab:03:e8:6d: f4:13:8d:78:cd:a6:a4:7a:b2:9c:d8:4c:1e:c5:5a: 77:f4:03:57:a6:40:15:11:ea:b4:68:4d:2f:1a:cf: 04:17:b3:9a:05:82:5b:47:cd:58:d9:6e:e9:5c:bc: 77:d4:94:1f:ad:5e:22:77:ba:04:88:b7:be:32:f7: cb:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:91:55:8D:23:17:79:0F:D2:53:43:56:7F:22:4A:01:0A:F4:48:16 X509v3 Authority Key Identifier: keyid:74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/x5FVjSMXeQ_SU0NWfyJKAQr0SBY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.237.0/24 Signature Algorithm: sha256WithRSAEncryption 31:5a:0d:e9:b1:a2:55:39:5f:20:88:b7:4a:be:3f:ef:6b:8d: 4e:47:17:bd:d0:00:ae:ba:12:24:b9:13:97:63:95:b1:11:dd: 4f:07:f7:ab:13:44:55:f9:01:fe:ba:c6:99:c3:ba:4f:14:78: fd:92:75:38:f2:9c:0c:0a:9d:5a:3c:47:0d:57:ce:9c:bb:a6: 12:61:ae:4b:a4:96:a3:36:f9:7a:d4:4a:d5:40:3d:d7:6c:0e: bb:0e:54:f8:05:42:00:32:cc:8e:65:61:f3:bf:33:78:7e:2c: 88:d7:9e:15:41:15:d9:6a:80:eb:28:5f:63:9e:55:34:82:d8: 37:f4:82:1a:9e:ff:80:05:ee:fc:e9:05:42:9d:b4:97:bb:d2: 3c:cc:02:5b:80:bf:46:f4:de:55:74:20:bb:d4:3a:7d:3e:6f: d1:e4:85:70:ba:33:01:e5:14:36:08:2c:5e:f7:da:72:2b:5f: db:a6:8e:df:d7:03:6d:af:51:c5:96:da:d1:76:9d:8a:55:f2: 3c:21:3d:54:2d:84:41:22:e0:d1:33:37:24:48:fb:28:24:a4: d5:a3:cc:16:f6:1a:6d:c2:31:5b:77:7e:bd:3c:04:20:5f:a2: 4b:a5:74:75:40:aa:ba:5e:68:13:f0:a8:9c:89:3a:82:15:69: 26:b8:84:d5 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzRB RjA0MDJGRUY1NkMzNEExOTJEMUQyMTg1RTZGQjU0NkFBNzAyQzAeFw0yMzEwMTMy MjEwMjlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM3OTE1NThEMjMxNzc5 MEZEMjUzNDM1NjdGMjI0QTAxMEFGNDQ4MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVqU24x5sOvN+nG9vdlEgtE2nNlED1r+05qQVokkY0ton25fPV 00yYd9M4gm/2LNmVPl43UUKGjj8vFjdd6S+cpcjdTuUf+3YasoYlQBw2eVY9UNyO o+KOJaNgnbfY8ez6U2Dl3THixEdAGRQvKxrupI+Bp/wLR8NB9qeXUR6dKewb/EJQ hp2ylraHdOHkrjVh+8sN8V3v64mIp3AEowlUUx6TGb6c36i2vO0uPEJqbjZBltJT 7oNjapqYOxd8qwPobfQTjXjNpqR6spzYTB7FWnf0A1emQBUR6rRoTS8azwQXs5oF gltHzVjZbulcvHfUlB+tXiJ3ugSIt74y98tLAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUx5FVjSMXeQ/SU0NWfyJKAQr0SBYwHwYDVR0jBBgwFoAUdK8EAv71bDShktHS GF5vtUaqcCwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xBUksv ZEs4RUF2NzFiRFNoa3RIU0dGNXZ0VWFxY0N3LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9kSzhFQXY3MWJEU2hrdEhTR0Y1dnRVYXFjQ3cuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTEFSSy94NUZWalNNWGVRX1NVME5XZnlK S0FRcjBTQlkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4Lt MA0GCSqGSIb3DQEBCwUAA4IBAQAxWg3psaJVOV8giLdKvj/va41ORxe90ACuuhIk uROXY5WxEd1PB/erE0RV+QH+usaZw7pPFHj9knU48pwMCp1aPEcNV86cu6YSYa5L pJajNvl61ErVQD3XbA67DlT4BUIAMsyOZWHzvzN4fiyI154VQRXZaoDrKF9jnlU0 gtg39IIanv+ABe786QVCnbSXu9I8zAJbgL9G9N5VdCC71Dp9Pm/R5IVwujMB5RQ2 CCxe99pyK1/bpo7f1wNtr1HFltrRdp2KVfI8IT1ULYRBIuDRMzckSPsoJKTVo8wW 9hptwjFbd369PAQgX6JLpXR1QKq6XmgT8KiciTqCFWkmuITV -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:41 2024 by rpki-client on console-ams.rpki-client.org