$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/42NzUlcIwnG5Kpe7DkxKDGxDoaA.roa File: 42NzUlcIwnG5Kpe7DkxKDGxDoaA.roa (raw, json) Hash identifier: EDcqMEDhEN4AvRT09laa6zV4KWOE3BfXznZ12TCe/Uw= Subject key identifier: E3:63:73:52:57:08:C2:71:B9:2A:97:BB:0E:4C:4A:0C:6C:43:A1:A0 Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Certificate serial: 0137 Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/42NzUlcIwnG5Kpe7DkxKDGxDoaA.roa Signing time: Fri 01 Sep 2023 08:49:57 +0000 ROA not before: Fri 01 Sep 2023 08:49:57 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38136 IP address blocks: 103.160.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Validity Not Before: Sep 1 08:49:57 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E36373525708C271B92A97BB0E4C4A0C6C43A1A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a2:f9:46:0b:d8:20:3b:8e:68:a9:b2:b8:3c: ba:8e:a9:d5:8b:00:26:3c:0c:98:1a:0e:e2:ff:68: c7:8a:45:ca:d0:7c:81:68:4d:d5:dd:ca:1a:ab:71: bb:57:10:4a:1b:7e:70:c9:d6:74:00:78:c9:c4:32: da:94:07:8d:2c:38:a8:9b:8e:05:89:e4:b6:78:a0: ec:66:ef:f6:eb:77:54:6c:4b:0b:64:00:b8:d1:54: 78:53:37:b2:07:53:af:70:87:5e:3d:96:92:e2:07: 36:38:df:14:27:d5:78:87:0e:cb:b7:8d:69:3c:2a: 3e:54:6e:a8:35:e6:fe:1a:48:36:cc:0f:3a:7f:9b: 8c:06:0e:43:54:66:ce:f8:46:15:8a:8a:7b:80:9f: f8:77:2f:bf:3e:99:b6:e0:a1:3d:96:45:b9:25:79: 20:06:cc:96:ed:fc:07:75:0c:b2:cb:bd:aa:6c:50: 72:dc:47:c9:86:fe:99:e3:16:06:50:81:7c:09:ab: 51:7c:00:dd:68:45:62:37:2e:b9:55:c1:12:6c:cd: 17:c6:c4:0c:42:83:7d:f1:f9:4d:33:b8:a2:53:0c: df:6e:e4:ee:2d:cd:76:89:70:c7:c3:24:34:29:73: 2a:6c:49:46:c7:71:8b:0f:5d:36:12:a7:43:f4:ba: cc:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:63:73:52:57:08:C2:71:B9:2A:97:BB:0E:4C:4A:0C:6C:43:A1:A0 X509v3 Authority Key Identifier: keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/42NzUlcIwnG5Kpe7DkxKDGxDoaA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.160.180.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:10:88:2f:33:62:8d:e1:30:64:19:20:e7:a7:98:5e:c3:bf: 0d:8e:f9:1a:72:9f:fd:b6:d1:a2:98:9f:bf:ce:27:16:a8:1a: a7:eb:4d:c4:17:e5:24:92:27:ae:5d:3b:fc:e1:e0:de:86:67: 68:26:ff:8c:fe:80:ad:dd:fd:73:d0:ef:e9:d0:af:89:57:d2: 6b:1b:3b:e5:8b:30:29:78:d1:47:63:20:8a:66:e3:34:48:f0: 1d:ff:96:93:cb:f7:75:43:b2:00:e9:22:d8:08:59:60:52:29: b4:65:4f:e9:5d:08:73:b1:24:d0:e2:46:04:1c:a5:3c:14:37: d2:46:60:63:b7:9b:66:21:68:f3:e4:9f:0a:fd:e8:8e:b2:c6: e6:3b:b9:28:8d:84:1e:28:58:d0:f4:bb:eb:4b:35:0a:9c:f1: 27:87:d8:de:61:d2:3f:4c:c8:ce:25:f6:b9:cf:aa:e8:cf:08: cf:71:88:88:73:83:e9:ae:13:f6:9a:63:21:26:a5:51:46:dc: 35:cb:f3:c3:b3:c9:c2:1a:32:e7:53:ae:8d:4d:45:04:0c:76: ce:9a:18:8a:22:7b:71:ab:7a:e0:06:48:1d:12:64:90:1c:9c: e7:70:63:2e:40:e5:7e:d6:fb:96:3d:c5:e4:01:e8:c6:a1:33: 97:f7:e5:5d -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICATcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JG NDQxQjU3Qzg2QkQ5RDE5MzQ1MUEwMDVEMjZDRTFBM0M2REVFNzAeFw0yMzA5MDEw ODQ5NTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEUzNjM3MzUyNTcwOEMy NzFCOTJBOTdCQjBFNEM0QTBDNkM0M0ExQTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKovlGC9ggO45oqbK4PLqOqdWLACY8DJgaDuL/aMeKRcrQfIFo TdXdyhqrcbtXEEobfnDJ1nQAeMnEMtqUB40sOKibjgWJ5LZ4oOxm7/brd1RsSwtk ALjRVHhTN7IHU69wh149lpLiBzY43xQn1XiHDsu3jWk8Kj5Ubqg15v4aSDbMDzp/ m4wGDkNUZs74RhWKinuAn/h3L78+mbbgoT2WRbkleSAGzJbt/Ad1DLLLvapsUHLc R8mG/pnjFgZQgXwJq1F8AN1oRWI3LrlVwRJszRfGxAxCg33x+U0zuKJTDN9u5O4t zXaJcMfDJDQpcypsSUbHcYsPXTYSp0P0usw/AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU42NzUlcIwnG5Kpe7DkxKDGxDoaAwHwYDVR0jBBgwFoAUO/RBtXyGvZ0ZNFGg BdJs4aPG3ucwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRVJBWUlO Rk8vT19SQnRYeUd2WjBaTkZHZ0JkSnM0YVBHM3VjLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9PX1JCdFh5R3ZaMFpORkdnQmRKczRhUEczdWMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FUkFZSU5GTy80Mk56VWxjSXduRzVL cGU3RGt4S0RHeERvYUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ6C0MA0GCSqGSIb3DQEBCwUAA4IBAQCbEIgvM2KN4TBkGSDnp5hew78Njvka cp/9ttGimJ+/zicWqBqn603EF+UkkieuXTv84eDehmdoJv+M/oCt3f1z0O/p0K+J V9JrGzvlizApeNFHYyCKZuM0SPAd/5aTy/d1Q7IA6SLYCFlgUim0ZU/pXQhzsSTQ 4kYEHKU8FDfSRmBjt5tmIWjz5J8K/eiOssbmO7kojYQeKFjQ9LvrSzUKnPEnh9je YdI/TMjOJfa5z6rozwjPcYiIc4PprhP2mmMhJqVRRtw1y/PDs8nCGjLnU66NTUUE DHbOmhiKIntxq3rgBkgdEmSQHJzncGMuQOV+1vuWPcXkAejGoTOX9+Vd -----END CERTIFICATE-----Generated at Tue May 21 06:28:40 2024 by rpki-client on console-ams.rpki-client.org