$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/t9xH0MJ8l7kUq8ahtZCBmjPFz5Y.roa File: t9xH0MJ8l7kUq8ahtZCBmjPFz5Y.roa (raw, json) Hash identifier: f2iO5MA6ySJnAvg6hjichVD/enAUnX59wOphNOkd1fo= Subject key identifier: B7:DC:47:D0:C2:7C:97:B9:14:AB:C6:A1:B5:90:81:9A:33:C5:CF:96 Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Certificate serial: 0233 Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/t9xH0MJ8l7kUq8ahtZCBmjPFz5Y.roa Signing time: Mon 26 Aug 2024 05:13:41 +0000 ROA not before: Mon 26 Aug 2024 05:13:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 983 IP address blocks: 103.160.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 563 (0x233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Validity Not Before: Aug 26 05:13:41 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B7DC47D0C27C97B914ABC6A1B590819A33C5CF96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:71:2f:64:e3:a0:2a:b9:7e:a7:96:d6:0f:d9: 84:c4:22:63:19:71:d9:29:16:b8:89:ad:3b:bd:51: 48:83:8a:22:07:73:ad:e4:b6:4c:c3:7a:06:79:37: 2a:e7:b4:5f:aa:32:cc:02:80:a2:0d:a9:27:be:a5: d0:a3:cf:e7:b3:4d:50:e0:25:2c:29:a0:e5:63:cc: 01:47:de:26:62:c3:cb:67:ab:79:11:f2:2b:40:e1: 61:46:e7:bf:94:97:11:d7:01:a9:79:07:b9:da:7f: 76:49:32:d6:bf:a7:ad:82:06:e6:6d:78:d3:5c:35: 0b:22:33:e6:5e:ae:0d:60:25:44:6e:91:54:15:1c: 3c:58:f7:db:16:2c:68:83:f2:d5:44:54:49:91:7b: ed:c8:98:64:f8:25:10:95:0f:f1:bd:99:be:4d:34: e3:0c:48:56:35:44:0b:76:b0:17:80:4f:16:8b:7a: f1:0c:b6:68:bf:c2:f0:14:8b:87:d2:37:d7:4a:da: 56:67:27:92:c8:e7:48:8d:6a:ca:56:a4:03:22:63: d8:ae:33:c3:67:89:ba:ce:c3:8f:5e:d5:df:2c:9f: 08:d1:23:9c:a5:53:40:ee:fc:bf:4a:e9:6c:d6:25: ed:f9:7a:c9:39:7a:39:ba:ec:49:e9:79:8f:17:13: 49:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:DC:47:D0:C2:7C:97:B9:14:AB:C6:A1:B5:90:81:9A:33:C5:CF:96 X509v3 Authority Key Identifier: keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/t9xH0MJ8l7kUq8ahtZCBmjPFz5Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.160.180.0/23 Signature Algorithm: sha256WithRSAEncryption 81:e9:66:92:3d:67:80:fe:92:d2:48:39:b2:ff:81:c5:f1:c1: 88:a5:e3:b4:99:f7:a1:c0:91:6e:5d:fa:9b:07:cb:c0:81:a2: ec:20:9c:99:86:ad:63:68:8e:29:49:9c:ef:d5:5b:c9:f0:4e: 96:84:c2:49:04:3b:56:b7:72:bf:91:72:b7:e8:8e:ba:8e:5d: f2:5f:ac:1a:a3:ba:9a:51:99:84:f8:0a:a5:8b:66:75:df:98: dc:9f:9c:7e:29:18:3e:41:29:ce:da:ed:bc:1d:8c:f3:07:a5: ba:7c:37:32:0e:da:96:2e:d3:e7:6b:14:01:c2:e0:b1:73:73: 44:1f:bd:e5:53:2f:5c:56:57:e2:89:73:9d:04:03:c7:90:c9: f9:11:a6:1f:0d:59:c2:ae:8d:07:b3:d6:02:31:63:ef:36:0e: 27:b7:c9:fd:16:96:0e:f0:40:8f:2a:96:98:7c:96:4b:23:1f: f8:69:d2:85:34:47:0d:b3:00:d8:09:dd:b0:a5:31:9a:23:6e: b4:1e:b7:6a:2d:67:3b:c8:aa:fd:25:a2:1b:fe:d7:94:0c:91: 5c:ad:24:6d:02:20:2b:cb:8b:bc:60:02:df:38:e6:f5:18:e3: ff:4a:c3:c3:a9:eb:2c:b1:c5:19:2b:28:41:47:27:b3:1d:2e: eb:e9:e7:ea -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAjMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JG NDQxQjU3Qzg2QkQ5RDE5MzQ1MUEwMDVEMjZDRTFBM0M2REVFNzAeFw0yNDA4MjYw NTEzNDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI3REM0N0QwQzI3Qzk3 QjkxNEFCQzZBMUI1OTA4MTlBMzNDNUNGOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqcS9k46AquX6nltYP2YTEImMZcdkpFriJrTu9UUiDiiIHc63k tkzDegZ5NyrntF+qMswCgKINqSe+pdCjz+ezTVDgJSwpoOVjzAFH3iZiw8tnq3kR 8itA4WFG57+UlxHXAal5B7naf3ZJMta/p62CBuZteNNcNQsiM+Zerg1gJURukVQV HDxY99sWLGiD8tVEVEmRe+3ImGT4JRCVD/G9mb5NNOMMSFY1RAt2sBeATxaLevEM tmi/wvAUi4fSN9dK2lZnJ5LI50iNaspWpAMiY9iuM8NnibrOw49e1d8snwjRI5yl U0Du/L9K6WzWJe35esk5ejm67EnpeY8XE0l9AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUt9xH0MJ8l7kUq8ahtZCBmjPFz5YwHwYDVR0jBBgwFoAUO/RBtXyGvZ0ZNFGg BdJs4aPG3ucwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRVJBWUlO Rk8vT19SQnRYeUd2WjBaTkZHZ0JkSnM0YVBHM3VjLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9PX1JCdFh5R3ZaMFpORkdnQmRKczRhUEczdWMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FUkFZSU5GTy90OXhIME1KOGw3a1Vx OGFodFpDQm1qUEZ6NVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ6C0MA0GCSqGSIb3DQEBCwUAA4IBAQCB6WaSPWeA/pLSSDmy/4HF8cGIpeO0 mfehwJFuXfqbB8vAgaLsIJyZhq1jaI4pSZzv1VvJ8E6WhMJJBDtWt3K/kXK36I66 jl3yX6wao7qaUZmE+Aqli2Z135jcn5x+KRg+QSnO2u28HYzzB6W6fDcyDtqWLtPn axQBwuCxc3NEH73lUy9cVlfiiXOdBAPHkMn5EaYfDVnCro0Hs9YCMWPvNg4nt8n9 FpYO8ECPKpaYfJZLIx/4adKFNEcNswDYCd2wpTGaI260HrdqLWc7yKr9JaIb/teU DJFcrSRtAiAry4u8YALfOOb1GOP/SsPDqessscUZKyhBRyezHS7r6efq -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org