$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/76Ev_ZNsx0TJPEGhTUMEh03cd-w.roa File: 76Ev_ZNsx0TJPEGhTUMEh03cd-w.roa (raw, json) Hash identifier: vBFQ8IVz9bWw5kCEnKUzzsp9ffvmFIYvKApFBw808Is= Subject key identifier: EF:A1:2F:FD:93:6C:C7:44:C9:3C:41:A1:4D:43:04:87:4D:DC:77:EC Certificate issuer: /CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE Certificate serial: 1295 Authority key identifier: F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/76Ev_ZNsx0TJPEGhTUMEh03cd-w.roa Signing time: Mon 26 Aug 2024 05:13:47 +0000 ROA not before: Mon 26 Aug 2024 05:13:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 103.124.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4757 (0x1295) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE Validity Not Before: Aug 26 05:13:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EFA12FFD936CC744C93C41A14D4304874DDC77EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5f:43:9f:23:c4:4e:44:8f:8d:7f:dd:82:9a: 5f:6e:f8:4a:a9:56:ce:35:ef:81:58:e0:0a:13:cc: 73:38:2f:5c:07:c9:f3:fe:ca:0b:7f:8a:3c:7c:d7: 74:f2:7f:4e:bf:ee:cf:7c:31:51:56:c2:35:10:20: ad:8d:06:7d:96:15:8a:cc:97:86:31:b3:a9:14:df: 0a:0d:00:62:46:da:3f:7c:2f:ae:b9:fd:30:cf:db: f5:9b:9e:84:3c:8b:bd:4c:2a:7a:2e:0d:23:2b:44: 46:22:84:1a:e1:5f:e4:c9:f3:5f:20:2f:1e:d3:31: 64:2c:14:9a:28:1a:75:e1:bc:c6:b8:14:52:0f:ce: 72:c8:d7:44:93:e5:b1:b0:a5:04:d7:8b:c0:62:f5: 6e:e8:6f:cf:f2:72:14:87:4f:c6:e1:b7:b3:74:f6: 3c:d2:92:6f:6f:5c:54:1b:d9:27:5b:43:38:5d:af: 04:34:f0:a8:15:64:41:ae:49:c5:ef:52:e2:91:7d: 75:f4:07:a5:d2:de:39:95:f6:1f:77:bc:aa:fd:07: 6f:a3:03:c6:8e:cf:2a:10:d3:8a:fb:b6:82:12:46: 65:d0:ec:c2:92:ac:01:75:fa:c7:74:e4:8e:ce:fe: 32:e9:b1:3c:38:75:ba:c6:32:89:ef:ea:b2:97:53: 95:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:A1:2F:FD:93:6C:C7:44:C9:3C:41:A1:4D:43:04:87:4D:DC:77:EC X509v3 Authority Key Identifier: keyid:F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/76Ev_ZNsx0TJPEGhTUMEh03cd-w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.124.42.0/23 Signature Algorithm: sha256WithRSAEncryption 36:3c:86:18:8b:5c:2b:12:3d:8c:74:4e:0c:81:2b:66:2e:aa: 8d:76:2f:76:7f:9a:c3:2f:d6:91:dd:93:d6:cb:ce:ff:6d:6c: 56:d1:6a:56:f5:7f:df:6e:2b:1d:ce:e5:85:4a:fa:de:55:b3: 81:03:e1:b6:ed:a0:f5:31:c3:1d:42:0b:f6:07:28:23:6b:9e: d4:50:d6:fc:99:7a:fd:af:55:da:fc:29:36:41:b2:68:75:b5: 9f:8f:9d:95:20:55:5b:89:8e:76:db:f2:a5:92:66:e2:60:2c: 89:b8:aa:41:8e:a4:5f:f8:2b:ef:a7:ff:1e:dd:fa:3f:37:bc: 64:bf:a6:11:64:9e:ca:9c:15:58:aa:5e:f1:32:e5:53:93:ea: dd:ab:e5:e9:53:64:b0:12:25:39:30:3f:f4:51:7d:70:7a:5f: d9:1e:48:33:ce:ae:c6:e0:cc:78:52:94:96:28:0a:47:83:77: 6e:35:ed:91:b1:29:e8:4d:16:3a:75:9f:10:91:eb:42:e5:3f: 2d:38:57:64:72:a3:29:dc:e1:32:88:b5:8e:6b:3b:56:61:13: 6b:fd:a9:46:52:00:08:24:88:a3:c2:2d:4b:88:39:d7:95:fc: 6f:8f:20:1f:08:34:fb:fe:4d:aa:d5:ba:d7:0e:5b:23:7d:e5: 4d:01:51:7b -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICEpUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMx NzQ4MTNERkIxRjlCNDU2MDQ3MkMyNjdGNzZDRDBDMTQxRTVERTAeFw0yNDA4MjYw NTEzNDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVGQTEyRkZEOTM2Q0M3 NDRDOTNDNDFBMTRENDMwNDg3NEREQzc3RUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8X0OfI8RORI+Nf92Cml9u+EqpVs4174FY4AoTzHM4L1wHyfP+ ygt/ijx813Tyf06/7s98MVFWwjUQIK2NBn2WFYrMl4Yxs6kU3woNAGJG2j98L665 /TDP2/WbnoQ8i71MKnouDSMrREYihBrhX+TJ818gLx7TMWQsFJooGnXhvMa4FFIP znLI10ST5bGwpQTXi8Bi9W7ob8/ychSHT8bht7N09jzSkm9vXFQb2SdbQzhdrwQ0 8KgVZEGuScXvUuKRfXX0B6XS3jmV9h93vKr9B2+jA8aOzyoQ04r7toISRmXQ7MKS rAF1+sd05I7O/jLpsTw4dbrGMonv6rKXU5W9AgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU76Ev/ZNsx0TJPEGhTUMEh03cd+wwHwYDVR0jBBgwFoAU8xdIE9+x+bRWBHLC Z/ds0MFB5d4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkFNSUxZ UExVUy84eGRJRTkteC1iUldCSExDWl9kczBNRkI1ZDQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBLzh4ZElFOS14LWJSV0JITENaX2RzME1GQjVkNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0ZBTUlMWVBMVVMvNzZFdl9aTnN4 MFRKUEVHaFRVTUVoMDNjZC13LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWd8KjANBgkqhkiG9w0BAQsFAAOCAQEANjyGGItcKxI9jHRODIErZi6q jXYvdn+awy/Wkd2T1svO/21sVtFqVvV/324rHc7lhUr63lWzgQPhtu2g9THDHUIL 9gcoI2ue1FDW/Jl6/a9V2vwpNkGyaHW1n4+dlSBVW4mOdtvypZJm4mAsibiqQY6k X/gr76f/Ht36Pze8ZL+mEWSeypwVWKpe8TLlU5Pq3avl6VNksBIlOTA/9FF9cHpf 2R5IM86uxuDMeFKUligKR4N3bjXtkbEp6E0WOnWfEJHrQuU/LThXZHKjKdzhMoi1 jms7VmETa/2pRlIACCSIo8ItS4g515X8b48gHwg0+/5NqtW61w5bI33lTQFRew== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:36 2024 by rpki-client on console-fra.rpki-client.org