$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/JDxX9Dj060grtiAHzD6NI9aFx3Q.roa File: JDxX9Dj060grtiAHzD6NI9aFx3Q.roa (raw, json) Hash identifier: 4FJFRrHbD0GZNx07Tyz21aZFmZOJrEoXRdkoJg39FSs= Subject key identifier: 24:3C:57:F4:38:F4:EB:48:2B:B6:20:07:CC:3E:8D:23:D6:85:C7:74 Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6 Certificate serial: 0136 Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/JDxX9Dj060grtiAHzD6NI9aFx3Q.roa Signing time: Sun 07 Jan 2024 14:11:36 +0000 ROA not before: Sun 07 Jan 2024 14:11:36 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 152179 IP address blocks: 103.14.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 05:46:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6 Validity Not Before: Jan 7 14:11:36 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=243C57F438F4EB482BB62007CC3E8D23D685C774 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:28:62:3f:09:9e:f9:c3:bb:13:f0:82:1f:07: f9:00:4c:7a:04:26:25:31:64:6e:a0:a1:bb:7a:fe: e0:72:07:28:fe:24:f4:ea:c5:66:c9:a6:fd:d7:72: bb:7b:f7:db:82:9d:a0:e1:48:03:4b:96:0d:00:73: 50:4a:c2:63:2b:d9:42:5e:e5:b1:f0:fb:41:29:a3: 0e:e1:85:98:62:60:16:54:35:89:c4:d0:27:ac:16: b7:b0:67:f9:8f:8b:59:36:84:21:ab:61:96:08:89: 3e:ff:97:52:cf:2f:3b:67:4a:d2:d3:73:fd:1a:33: 90:cd:d8:21:34:7f:d8:5e:40:f1:8f:b7:b5:af:6e: 5a:38:06:69:06:6e:e3:d5:be:91:a3:39:79:cd:f6: 2a:85:70:45:d2:73:71:be:c7:b8:46:7a:16:fb:a5: 22:cd:8f:01:23:84:7c:62:60:b6:dc:53:b3:1a:23: a4:11:7b:2b:e1:64:06:07:f5:4f:95:61:6d:e8:92: 41:b2:fe:63:41:56:3b:c5:5c:a1:f4:01:f6:20:b4: b2:65:2d:de:e0:b0:66:ad:2e:56:4f:f0:d8:80:f4: 14:9c:6a:65:44:16:66:e3:0d:bc:ce:87:87:c3:28: 00:db:0c:29:ef:25:ab:8f:fd:a9:48:93:10:f2:0a: a8:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:3C:57:F4:38:F4:EB:48:2B:B6:20:07:CC:3E:8D:23:D6:85:C7:74 X509v3 Authority Key Identifier: keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/JDxX9Dj060grtiAHzD6NI9aFx3Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.14.170.0/23 Signature Algorithm: sha256WithRSAEncryption 01:4e:9b:ed:e6:8b:aa:68:2a:90:b4:af:33:13:d2:b9:39:cc: 61:70:c9:79:8e:a5:7a:2d:57:0d:b2:37:1f:3a:89:61:0a:d9: 85:2d:3e:82:ab:b1:23:64:f8:8e:39:60:b6:2a:56:b1:94:01: 96:83:5a:f5:f7:5b:ad:97:1e:1f:ea:52:eb:1f:25:11:c0:7f: f4:35:94:5e:f9:06:84:f9:92:55:b4:79:01:2c:f2:45:7a:d0: bf:30:26:a6:de:f6:80:03:53:4d:f4:6b:5a:a3:41:88:8c:e3: 49:c9:7b:d5:78:63:51:8c:92:43:0d:96:05:f0:28:72:50:51: 09:be:cd:24:74:6f:4e:3c:2a:1a:9c:32:22:e5:d7:c4:2d:aa: 6a:0b:d3:19:71:32:4d:af:62:51:43:de:6e:6a:51:ba:ca:27: 67:d7:10:ac:e4:d6:6e:94:db:7c:21:f2:a0:93:ee:17:04:77: 15:60:ef:44:0b:99:cc:b5:2f:6a:17:29:cd:84:82:67:d6:1a: a6:d7:d4:66:9d:15:93:26:c2:b9:df:70:18:b3:71:29:57:51: f3:b5:1a:11:3c:95:ee:b0:df:ac:34:6b:fb:b5:47:38:f6:21: 21:3e:ff:6c:ac:10:43:0e:c3:8f:e7:29:23:05:89:e4:ef:d8: 74:11:d8:79 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICATYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY4 Nzc5ODM1Mjc0NzBFMjAwRDVBRTA2QTAxNTg4MjEzNTU1RkVFNjAeFw0yNDAxMDcx NDExMzZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI0M0M1N0Y0MzhGNEVC NDgyQkI2MjAwN0NDM0U4RDIzRDY4NUM3NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRKGI/CZ75w7sT8IIfB/kATHoEJiUxZG6gobt6/uByByj+JPTq xWbJpv3Xcrt799uCnaDhSANLlg0Ac1BKwmMr2UJe5bHw+0Epow7hhZhiYBZUNYnE 0CesFrewZ/mPi1k2hCGrYZYIiT7/l1LPLztnStLTc/0aM5DN2CE0f9heQPGPt7Wv blo4BmkGbuPVvpGjOXnN9iqFcEXSc3G+x7hGehb7pSLNjwEjhHxiYLbcU7MaI6QR eyvhZAYH9U+VYW3okkGy/mNBVjvFXKH0AfYgtLJlLd7gsGatLlZP8NiA9BScamVE FmbjDbzOh4fDKADbDCnvJauP/alIkxDyCqjdAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUJDxX9Dj060grtiAHzD6NI9aFx3QwHwYDVR0jBBgwFoAUH4d5g1J0cOIA1a4G oBWIITVV/uYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1BTWVMv SDRkNWcxSjBjT0lBMWE0R29CV0lJVFZWX3VZLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9INGQ1ZzFKMGNPSUExYTRHb0JXSUlUVlZfdVkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DUFNZUy9KRHhYOURqMDYwZ3J0aUFIekQ2 Tkk5YUZ4M1Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZw6q MA0GCSqGSIb3DQEBCwUAA4IBAQABTpvt5ouqaCqQtK8zE9K5OcxhcMl5jqV6LVcN sjcfOolhCtmFLT6Cq7EjZPiOOWC2KlaxlAGWg1r191utlx4f6lLrHyURwH/0NZRe +QaE+ZJVtHkBLPJFetC/MCam3vaAA1NN9Gtao0GIjONJyXvVeGNRjJJDDZYF8Chy UFEJvs0kdG9OPCoanDIi5dfELapqC9MZcTJNr2JRQ95ualG6yidn1xCs5NZulNt8 IfKgk+4XBHcVYO9EC5nMtS9qFynNhIJn1hqm19RmnRWTJsK533AYs3EpV1HztRoR PJXusN+sNGv7tUc49iEhPv9srBBDDsOP5ykjBYnk79h0Edh5 -----END CERTIFICATE-----Generated at Sat Jun 8 00:06:46 2024 by rpki-client on console-fra.rpki-client.org