$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYVC/ypQxC7KDzRzUhBgoUXdhn07hr5o.roa File: ypQxC7KDzRzUhBgoUXdhn07hr5o.roa (raw, json) Hash identifier: YR5DJ6I7ruHUFxsrld3kppBJcye000Dt/yesIOA7eZ8= Subject key identifier: CA:94:31:0B:B2:83:CD:1C:D4:84:18:28:51:77:61:9F:4E:E1:AF:9A Certificate issuer: /CN=370F3943433AD963E299A9BE9239D0F3E37A082A Certificate serial: 0169 Authority key identifier: 37:0F:39:43:43:3A:D9:63:E2:99:A9:BE:92:39:D0:F3:E3:7A:08:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nw85Q0M62WPimam-kjnQ8-N6CCo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYVC/ypQxC7KDzRzUhBgoUXdhn07hr5o.roa Signing time: Fri 01 Sep 2023 08:34:19 +0000 ROA not before: Fri 01 Sep 2023 08:34:19 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 45102 IP address blocks: 103.183.154.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYVC/Nw85Q0M62WPimam-kjnQ8-N6CCo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYVC/Nw85Q0M62WPimam-kjnQ8-N6CCo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Nw85Q0M62WPimam-kjnQ8-N6CCo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 23:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=370F3943433AD963E299A9BE9239D0F3E37A082A Validity Not Before: Sep 1 08:34:19 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CA94310BB283CD1CD48418285177619F4EE1AF9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:60:33:52:2f:c2:86:91:58:d8:94:27:bc:5e: 37:49:a9:9a:a4:02:5a:6a:25:df:54:a7:c9:f7:4f: cd:d4:46:08:14:66:e9:04:f5:14:22:df:bb:74:d7: be:5a:c7:ca:04:67:d8:cc:72:b8:ac:57:aa:f5:a5: 03:40:51:69:a1:2e:f3:de:f5:eb:fd:d9:ed:f5:be: cb:ab:81:76:21:08:f1:e7:d3:85:f3:55:b4:8d:e9: e6:f5:bb:f8:31:66:70:92:26:05:bc:97:4b:38:50: c3:a1:a4:08:1c:40:84:9e:32:7a:f2:1e:e2:f6:c6: ed:8d:84:5b:42:77:88:a1:6c:92:fa:a8:d0:5a:c0: 9f:32:78:de:2c:20:01:fa:9e:ad:d1:5a:d4:e8:b1: 9b:36:17:35:25:14:ee:ae:48:30:5c:b9:58:4b:04: 8a:4a:dd:f3:65:dc:ee:b2:d4:e9:49:fc:97:6f:41: 85:4b:15:1b:a7:d5:75:13:92:63:19:4e:16:ef:28: b0:84:9c:56:85:f6:bc:d0:9c:20:ae:38:19:17:e4: bb:5c:33:57:2f:98:8c:49:bb:db:97:8c:bc:6a:b1: e5:c1:a3:74:c7:a4:c9:82:50:65:e2:34:e2:f9:a1: 78:52:e1:87:e0:08:9b:16:76:f1:62:88:71:cb:cd: 37:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:94:31:0B:B2:83:CD:1C:D4:84:18:28:51:77:61:9F:4E:E1:AF:9A X509v3 Authority Key Identifier: keyid:37:0F:39:43:43:3A:D9:63:E2:99:A9:BE:92:39:D0:F3:E3:7A:08:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYVC/Nw85Q0M62WPimam-kjnQ8-N6CCo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nw85Q0M62WPimam-kjnQ8-N6CCo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYVC/ypQxC7KDzRzUhBgoUXdhn07hr5o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.183.154.0/23 Signature Algorithm: sha256WithRSAEncryption a9:d6:d8:f6:28:83:b0:9e:89:22:61:a5:76:de:1d:2d:8b:60: d4:d0:20:10:b6:5a:17:b8:ed:76:e3:1f:b7:1b:12:86:e8:ab: a1:8f:75:ee:f1:f3:90:f2:cd:fa:89:ad:77:76:55:2f:4a:4d: a4:61:49:d5:5d:d2:53:ca:7f:fb:df:94:71:5b:61:c0:a3:61: 06:90:7b:ca:cf:d2:04:eb:65:de:2d:41:7b:2d:09:77:c9:ba: ee:5f:9d:85:ff:97:d9:3e:70:f4:c3:85:5e:27:7e:a4:bb:ba: 90:e3:38:66:3f:1b:b9:a7:88:60:34:2c:5d:b4:dd:cc:6b:af: 34:06:4d:41:1b:33:3f:90:06:b2:84:b3:21:19:e2:68:13:99: a4:4f:74:cc:a4:57:8b:10:81:c7:cb:be:d9:89:2c:45:b2:ba: df:51:ca:89:24:1c:d7:ce:c7:b7:07:b5:e8:38:04:3b:94:5c: 48:57:e3:5d:ff:c9:36:d8:10:32:83:17:46:ca:7a:c8:a3:24: 63:42:ad:0d:a3:66:60:85:0d:eb:a7:5a:97:52:c4:12:66:f2: c4:70:ea:52:55:81:5e:85:d9:99:d2:e3:ba:7c:09:87:f0:51: 17:90:1b:3d:38:b5:f9:8b:a4:8a:15:47:89:9f:b5:c2:ff:08: eb:4d:31:97 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzcw RjM5NDM0MzNBRDk2M0UyOTlBOUJFOTIzOUQwRjNFMzdBMDgyQTAeFw0yMzA5MDEw ODM0MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENBOTQzMTBCQjI4M0NE MUNENDg0MTgyODUxNzc2MTlGNEVFMUFGOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJYDNSL8KGkVjYlCe8XjdJqZqkAlpqJd9Up8n3T83URggUZukE 9RQi37t0175ax8oEZ9jMcrisV6r1pQNAUWmhLvPe9ev92e31vsurgXYhCPHn04Xz VbSN6eb1u/gxZnCSJgW8l0s4UMOhpAgcQISeMnryHuL2xu2NhFtCd4ihbJL6qNBa wJ8yeN4sIAH6nq3RWtTosZs2FzUlFO6uSDBcuVhLBIpK3fNl3O6y1OlJ/JdvQYVL FRun1XUTkmMZThbvKLCEnFaF9rzQnCCuOBkX5LtcM1cvmIxJu9uXjLxqseXBo3TH pMmCUGXiNOL5oXhS4YfgCJsWdvFiiHHLzTcLAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUypQxC7KDzRzUhBgoUXdhn07hr5owHwYDVR0jBBgwFoAUNw85Q0M62WPimam+ kjnQ8+N6CCowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lWQy9O dzg1UTBNNjJXUGltYW0ta2puUTgtTjZDQ28uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L053ODVRME02MldQaW1hbS1ram5ROC1ONkNDby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0NZVkMveXBReEM3S0R6UnpVaEJnb1VYZGhu MDdocjVvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe3mjAN BgkqhkiG9w0BAQsFAAOCAQEAqdbY9iiDsJ6JImGldt4dLYtg1NAgELZaF7jtduMf txsShuiroY917vHzkPLN+omtd3ZVL0pNpGFJ1V3SU8p/+9+UcVthwKNhBpB7ys/S BOtl3i1Bey0Jd8m67l+dhf+X2T5w9MOFXid+pLu6kOM4Zj8buaeIYDQsXbTdzGuv NAZNQRszP5AGsoSzIRniaBOZpE90zKRXixCBx8u+2YksRbK631HKiSQc187Htwe1 6DgEO5RcSFfjXf/JNtgQMoMXRsp6yKMkY0KtDaNmYIUN66dal1LEEmbyxHDqUlWB XoXZmdLjunwJh/BRF5AbPTi1+YukihVHiZ+1wv8I600xlw== -----END CERTIFICATE-----Generated at Sun May 12 05:20:57 2024 by rpki-client on console-fra.rpki-client.org