$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/zGsZ0QQqRH3BQt5O2MYlEHX9n7E.roa File: zGsZ0QQqRH3BQt5O2MYlEHX9n7E.roa (raw, json) Hash identifier: nbNRr9mC/NCh1L0lCg8JFqoMj2bN6JywlKbMwb8kDR4= Subject key identifier: CC:6B:19:D1:04:2A:44:7D:C1:42:DE:4E:D8:C6:25:10:75:FD:9F:B1 Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Certificate serial: 0B4D Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/zGsZ0QQqRH3BQt5O2MYlEHX9n7E.roa Signing time: Fri 01 Sep 2023 08:35:11 +0000 ROA not before: Fri 01 Sep 2023 08:35:11 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 20473 IP address blocks: 103.123.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:09:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2893 (0xb4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Validity Not Before: Sep 1 08:35:11 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CC6B19D1042A447DC142DE4ED8C6251075FD9FB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:88:d2:79:51:b6:54:17:fb:19:f3:db:a8:5c: d2:e3:0c:62:3f:0e:e7:61:33:a7:18:08:6e:fa:e7: a3:d6:c6:06:d7:cf:95:e7:e2:55:c3:13:d9:85:c2: 40:6c:39:1c:c2:fa:63:3b:05:07:4f:9f:cd:72:0d: 7b:04:01:60:4f:a7:69:b1:6d:25:4d:f5:58:da:1e: 4f:f3:0a:af:d9:63:a1:ff:56:f8:e3:f2:15:77:8c: 8b:9f:5c:a7:08:2d:72:b5:28:a4:bb:56:82:60:41: 09:58:a5:89:7b:5d:ec:58:53:da:25:de:46:44:bc: cd:a1:3e:9f:3c:7f:5d:50:44:1c:bf:b4:2b:0e:fc: d0:20:53:f9:b9:7f:0a:7d:83:eb:a2:51:09:a6:04: d7:ba:0b:a4:ee:8a:9d:25:9c:6d:4d:11:37:32:c2: f6:63:35:5c:c4:51:eb:5c:e4:1a:bb:29:79:47:d9: 84:2b:de:fe:d0:ea:1d:a1:8a:e7:4e:11:c1:39:43: 5d:12:f0:76:6d:cd:2c:56:52:5a:24:64:3f:13:c5: cf:7c:d1:2a:f3:b8:ad:b6:8d:2e:7b:6a:7d:a0:e0: 9f:8c:6c:ec:a9:10:08:35:2c:bf:b3:52:86:02:23: e2:22:32:1f:6a:47:c8:d1:e4:b6:6f:34:94:a3:77: 2a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:6B:19:D1:04:2A:44:7D:C1:42:DE:4E:D8:C6:25:10:75:FD:9F:B1 X509v3 Authority Key Identifier: keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/zGsZ0QQqRH3BQt5O2MYlEHX9n7E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.128.0/22 Signature Algorithm: sha256WithRSAEncryption d4:cd:e5:05:e4:ef:96:0f:97:91:58:80:55:e3:04:14:80:4c: c8:a8:e4:57:61:8c:ec:a2:cf:9b:93:c5:c9:4e:ea:cb:29:ff: c5:dc:c2:75:15:0c:63:1d:ad:90:52:3f:73:b1:fb:23:a7:0b: 69:3c:25:70:34:b0:cc:c5:45:9c:f1:d6:42:03:b6:61:71:21: b7:54:17:9d:95:46:cf:ca:90:db:77:2b:70:7b:ab:8d:a0:9a: bd:61:7c:9b:73:e4:8f:3f:86:83:da:23:80:d0:d2:9b:56:44: b3:35:8c:b3:e3:3b:70:e6:9e:55:1d:0b:c4:42:71:19:70:da: 30:20:9d:dc:ba:cc:06:4e:59:75:60:65:fb:a0:72:df:f8:8d: dc:4f:bb:1e:56:4d:d8:a1:1a:a9:d0:4e:58:62:e3:24:dc:ac: c5:57:d4:b1:51:cd:23:9e:52:c3:0d:42:07:cc:34:c9:79:1c: 50:4f:b5:18:93:9e:90:6b:44:42:ba:f4:21:df:e1:e3:bb:56: 77:be:6f:30:7b:3d:72:17:96:88:67:a3:e8:65:c9:64:8a:d7: 79:a4:51:15:d3:8c:ec:e9:93:08:23:56:00:35:a5:2e:8c:c9: e9:9d:34:35:79:36:7d:5c:d8:6c:b0:62:4e:37:5f:5b:fc:e2: 2f:a4:e5:75 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC00wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yMzA5MDEw ODM1MTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENDNkIxOUQxMDQyQTQ0 N0RDMTQyREU0RUQ4QzYyNTEwNzVGRDlGQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+iNJ5UbZUF/sZ89uoXNLjDGI/DudhM6cYCG7656PWxgbXz5Xn 4lXDE9mFwkBsORzC+mM7BQdPn81yDXsEAWBPp2mxbSVN9VjaHk/zCq/ZY6H/Vvjj 8hV3jIufXKcILXK1KKS7VoJgQQlYpYl7XexYU9ol3kZEvM2hPp88f11QRBy/tCsO /NAgU/m5fwp9g+uiUQmmBNe6C6Tuip0lnG1NETcywvZjNVzEUetc5Bq7KXlH2YQr 3v7Q6h2hiudOEcE5Q10S8HZtzSxWUlokZD8Txc980SrzuK22jS57an2g4J+MbOyp EAg1LL+zUoYCI+IiMh9qR8jR5LZvNJSjdyopAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUzGsZ0QQqRH3BQt5O2MYlEHX9n7EwHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vekdzWjBRUXFSSDNCUXQ1 TzJNWWxFSFg5bjdFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Amd7gDANBgkqhkiG9w0BAQsFAAOCAQEA1M3lBeTvlg+XkViAVeMEFIBMyKjkV2GM 7KLPm5PFyU7qyyn/xdzCdRUMYx2tkFI/c7H7I6cLaTwlcDSwzMVFnPHWQgO2YXEh t1QXnZVGz8qQ23crcHurjaCavWF8m3Pkjz+Gg9ojgNDSm1ZEszWMs+M7cOaeVR0L xEJxGXDaMCCd3LrMBk5ZdWBl+6By3/iN3E+7HlZN2KEaqdBOWGLjJNysxVfUsVHN I55Sww1CB8w0yXkcUE+1GJOekGtEQrr0Id/h47tWd75vMHs9cheWiGej6GXJZIrX eaRRFdOM7OmTCCNWADWlLozJ6Z00NXk2fVzYbLBiTjdfW/ziL6TldQ== -----END CERTIFICATE-----Generated at Mon May 6 01:02:46 2024 by rpki-client on console-ams.rpki-client.org