$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ETIME/ZGhNVHpgATx1qGceHf-gNFa2u4Q.roa File: ZGhNVHpgATx1qGceHf-gNFa2u4Q.roa (raw, json) Hash identifier: jHesQvZrIrOdepf9Q6fzkkJ4Oh5Lrdi0Lf812DLRsm4= Subject key identifier: 64:68:4D:54:7A:60:01:3C:75:A8:67:1E:1D:FF:A0:34:56:B6:BB:84 Certificate issuer: /CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F Certificate serial: 03AD Authority key identifier: E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/ZGhNVHpgATx1qGceHf-gNFa2u4Q.roa Signing time: Mon 26 Aug 2024 05:13:44 +0000 ROA not before: Mon 26 Aug 2024 05:13:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 103.158.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 941 (0x3ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F Validity Not Before: Aug 26 05:13:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=64684D547A60013C75A8671E1DFFA03456B6BB84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:97:03:96:bf:f0:54:91:1c:7f:21:8e:d6:36: 5b:27:9f:a9:49:b2:29:80:e8:c0:54:12:5e:0f:7b: ba:f2:f4:23:7b:9b:11:67:89:a6:43:23:1a:01:dc: 2c:61:fa:36:32:32:49:e0:3a:ac:d8:b8:5b:c8:eb: 66:ff:0e:a4:c6:e0:4a:c0:8f:67:6c:ab:22:3b:45: 4f:4f:27:54:49:06:fb:01:fc:74:08:25:6a:ba:2b: b9:c8:00:4f:2c:ac:1e:a2:11:e4:2c:ed:a9:44:22: 22:0b:32:6f:a3:82:bb:a7:2c:23:ef:2f:3a:8f:f4: 9b:fa:ed:77:84:0a:78:00:ad:84:a6:bb:bc:61:18: a5:e5:cb:99:55:96:39:b1:24:f4:d6:75:7f:9e:93: c2:e0:9f:9f:59:4f:5e:cd:b7:aa:3a:fc:19:5d:57: fd:b2:f2:b8:78:46:42:fc:1c:6d:c7:d9:bc:f4:e4: 3c:51:dc:d4:16:2e:a9:e8:9e:aa:79:bf:8c:a1:8b: e5:6a:df:1d:5d:bd:a0:7f:6a:7e:ef:70:98:a7:10: 34:86:1d:5c:43:02:c3:44:d3:89:70:09:9f:0c:73: 3f:b4:3c:19:bb:17:e6:9b:c0:f9:02:61:3e:d0:bb: 55:10:e2:26:b9:2f:1f:ac:9d:60:4f:4b:9d:8c:1e: 28:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:68:4D:54:7A:60:01:3C:75:A8:67:1E:1D:FF:A0:34:56:B6:BB:84 X509v3 Authority Key Identifier: keyid:E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/ZGhNVHpgATx1qGceHf-gNFa2u4Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.158.228.0/23 Signature Algorithm: sha256WithRSAEncryption c3:ee:c6:3b:f5:2f:3f:5e:24:d7:3f:57:65:d7:d8:09:53:21: 40:42:f9:79:d8:34:9a:5a:fa:ad:22:23:c7:4f:ba:06:c2:8e: eb:5d:38:98:7a:37:89:fe:ee:94:15:ef:fe:88:50:03:94:56: a8:37:65:90:d4:7d:0d:62:48:3c:3d:50:3c:07:3e:51:3b:a7: 87:33:0d:24:68:42:06:3a:f1:17:d4:ab:6a:fb:54:7d:40:6b: 49:32:a5:dc:ec:99:76:91:ad:82:a3:67:fb:09:70:b1:5a:02: 10:38:7e:e1:06:e1:cf:a0:56:0f:3d:76:f0:2c:8f:69:4c:bf: 09:e0:6d:a4:d3:84:de:67:8d:cc:ed:38:d2:24:f9:29:0a:22: fa:99:75:d4:89:b4:45:08:a7:7e:6e:ec:6b:3e:21:f8:01:f5: c7:6c:14:6b:6f:52:a2:c8:36:80:e4:31:5e:0b:51:90:7b:68: 09:84:c5:bf:f9:e3:3d:04:49:0a:a8:6d:ea:f4:f5:42:90:12: a0:b6:53:68:4b:c0:bb:db:ae:9b:fb:35:b3:e2:2a:96:39:9a: 83:39:65:a4:5d:d4:5a:06:bc:19:ca:07:f4:8f:ef:aa:70:06: 99:15:53:40:8a:62:30:45:35:be:d9:8d:7c:70:0b:5a:80:0f: d5:19:1d:8b -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICA60wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTBF QTg4NUE3RTY5NzFDOTkzNDI3NzdFN0REREJBNjVEMEVCMTMxRjAeFw0yNDA4MjYw NTEzNDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY0Njg0RDU0N0E2MDAx M0M3NUE4NjcxRTFERkZBMDM0NTZCNkJCODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxlwOWv/BUkRx/IY7WNlsnn6lJsimA6MBUEl4Pe7ry9CN7mxFn iaZDIxoB3Cxh+jYyMkngOqzYuFvI62b/DqTG4ErAj2dsqyI7RU9PJ1RJBvsB/HQI JWq6K7nIAE8srB6iEeQs7alEIiILMm+jgrunLCPvLzqP9Jv67XeECngArYSmu7xh GKXly5lVljmxJPTWdX+ek8Lgn59ZT17Nt6o6/BldV/2y8rh4RkL8HG3H2bz05DxR 3NQWLqnonqp5v4yhi+Vq3x1dvaB/an7vcJinEDSGHVxDAsNE04lwCZ8Mcz+0PBm7 F+abwPkCYT7Qu1UQ4ia5Lx+snWBPS52MHijhAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUZGhNVHpgATx1qGceHf+gNFa2u4QwHwYDVR0jBBgwFoAU4OqIWn5pccmTQnd+ fd26ZdDrEx8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRVRJTUUv NE9xSVduNXBjY21UUW5kLWZkMjZaZERyRXg4LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80T3FJV241cGNjbVRRbmQtZmQyNlpkRHJFeDguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FVElNRS9aR2hOVkhwZ0FUeDFxR2NlSGYt Z05GYTJ1NFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ57k MA0GCSqGSIb3DQEBCwUAA4IBAQDD7sY79S8/XiTXP1dl19gJUyFAQvl52DSaWvqt IiPHT7oGwo7rXTiYejeJ/u6UFe/+iFADlFaoN2WQ1H0NYkg8PVA8Bz5RO6eHMw0k aEIGOvEX1Ktq+1R9QGtJMqXc7Jl2ka2Co2f7CXCxWgIQOH7hBuHPoFYPPXbwLI9p TL8J4G2k04TeZ43M7TjSJPkpCiL6mXXUibRFCKd+buxrPiH4AfXHbBRrb1KiyDaA 5DFeC1GQe2gJhMW/+eM9BEkKqG3q9PVCkBKgtlNoS8C7266b+zWz4iqWOZqDOWWk XdRaBrwZygf0j++qcAaZFVNAimIwRTW+2Y18cAtagA/VGR2L -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:30 2024 by rpki-client on console-ams.rpki-client.org