$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/1GrjY_SVKrwBmc5AS6Xa-7i2N5g.roa File: 1GrjY_SVKrwBmc5AS6Xa-7i2N5g.roa (raw, json) Hash identifier: IqRIsa9zwgem7JWx5xtIeKCiXKSuwXH7pa3hl7WYKZQ= Subject key identifier: D4:6A:E3:63:F4:95:2A:BC:01:99:CE:40:4B:A5:DA:FB:B8:B6:37:98 Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C Certificate serial: 08BC Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/1GrjY_SVKrwBmc5AS6Xa-7i2N5g.roa Signing time: Fri 01 Sep 2023 08:50:36 +0000 ROA not before: Fri 01 Sep 2023 08:50:36 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131671 IP address blocks: 103.146.212.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:18:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2236 (0x8bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C Validity Not Before: Sep 1 08:50:36 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D46AE363F4952ABC0199CE404BA5DAFBB8B63798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dc:f6:93:8d:e9:f6:b4:a3:e7:49:1e:18:d0: df:70:ea:69:05:22:5b:31:de:2d:28:a2:f0:d9:fa: ee:00:cb:e6:02:8f:18:ec:90:2c:ab:9d:35:e8:c3: f5:79:64:e4:73:02:86:96:e6:c4:f0:4b:10:12:8a: ba:ef:e8:08:a5:39:44:28:e7:32:6b:76:0f:25:74: 8b:50:51:06:01:ad:1b:67:df:62:0a:36:1f:cc:e4: 2e:42:ad:00:77:7e:70:aa:91:99:79:87:29:65:59: 2d:58:bf:00:89:4a:2b:2a:d7:db:79:85:8e:8a:19: b2:d4:33:bf:4d:ae:85:69:8a:c5:b0:3a:30:4c:89: f1:76:8d:08:95:f0:96:33:06:bb:00:87:22:87:1a: f0:a7:b3:ef:84:fd:e8:b2:6a:16:0a:89:d7:39:22: ac:32:29:7b:dc:47:ce:f1:d8:b7:db:84:70:4a:0c: 04:cb:d9:34:17:43:db:16:14:38:01:13:91:a0:e0: f0:41:8c:ef:1b:f9:6b:db:7f:d6:c9:c9:01:91:f9: a5:0c:52:0e:e5:99:61:4c:96:a8:8f:a9:6b:1c:fc: ad:e7:72:c7:30:7e:40:27:69:a8:37:6e:c5:e2:37: d1:20:09:03:59:0a:ee:c5:32:52:80:23:23:41:09: 26:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:6A:E3:63:F4:95:2A:BC:01:99:CE:40:4B:A5:DA:FB:B8:B6:37:98 X509v3 Authority Key Identifier: keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/1GrjY_SVKrwBmc5AS6Xa-7i2N5g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.146.212.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:d9:ba:07:2a:f1:96:b1:55:04:7e:26:7c:19:87:86:56:b4: e9:92:de:f9:95:f2:ad:39:68:a3:9d:2b:7e:e1:00:20:48:9b: 25:60:44:bb:55:db:b0:e6:ac:e7:eb:ed:5e:ef:8d:ce:3a:63: 21:1f:8d:d1:16:47:98:7d:8c:a6:5c:9c:c5:d8:1c:03:9d:50: 09:b4:97:ae:ed:2a:e0:e2:99:a3:b6:bb:12:2a:5e:17:4e:ad: e8:14:67:33:e6:ad:97:d9:b6:c8:14:d8:11:53:81:3c:05:fb: 72:65:71:b3:01:6e:77:dc:8d:6c:44:b7:a4:d1:14:4c:6a:10: d6:f8:f4:d2:c6:f7:29:ff:a2:d3:79:22:8a:71:2f:74:60:2a: e1:6d:7c:fb:5b:17:1f:40:8b:6e:c7:ef:bc:fb:fe:5f:bd:93: 30:94:db:ec:bd:91:19:e3:7b:96:98:2c:18:95:81:f0:13:5a: 3c:8b:4e:f7:91:25:3b:98:30:a2:cc:6f:53:97:cb:c8:4c:3f: 4e:a0:d5:6b:79:f5:86:2e:61:00:68:05:7d:58:19:cc:e4:ea: e2:d6:ac:7f:59:b4:9b:9c:15:3f:08:e0:42:45:63:91:78:36: 97:7e:bf:0f:e6:2f:85:11:ae:2a:79:d3:14:74:be:24:4a:d6: 0c:62:61:74 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICCLwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTlE RUYyQ0Y4MjhGMEQ5QUI2QUQ5NEY0MjYxMzE3NjREMjU0Q0M1QzAeFw0yMzA5MDEw ODUwMzZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ0NkFFMzYzRjQ5NTJB QkMwMTk5Q0U0MDRCQTVEQUZCQjhCNjM3OTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDH3PaTjen2tKPnSR4Y0N9w6mkFIlsx3i0oovDZ+u4Ay+YCjxjs kCyrnTXow/V5ZORzAoaW5sTwSxASirrv6AilOUQo5zJrdg8ldItQUQYBrRtn32IK Nh/M5C5CrQB3fnCqkZl5hyllWS1YvwCJSisq19t5hY6KGbLUM79NroVpisWwOjBM ifF2jQiV8JYzBrsAhyKHGvCns++E/eiyahYKidc5IqwyKXvcR87x2LfbhHBKDATL 2TQXQ9sWFDgBE5Gg4PBBjO8b+Wvbf9bJyQGR+aUMUg7lmWFMlqiPqWsc/K3ncscw fkAnaag3bsXiN9EgCQNZCu7FMlKAIyNBCSabAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU1GrjY/SVKrwBmc5AS6Xa+7i2N5gwHwYDVR0jBBgwFoAUWd7yz4KPDZq2rZT0 JhMXZNJUzFwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkFOVEFT WS9XZDd5ejRLUERacTJyWlQwSmhNWFpOSlV6RncuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1dkN3l6NEtQRFpxMnJaVDBKaE1YWk5KVXpGdy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0ZBTlRBU1kvMUdyallfU1ZLcndCbWM1 QVM2WGEtN2kyTjVnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWeS1DANBgkqhkiG9w0BAQsFAAOCAQEAG9m6ByrxlrFVBH4mfBmHhla06ZLe+ZXy rTloo50rfuEAIEibJWBEu1XbsOas5+vtXu+NzjpjIR+N0RZHmH2MplycxdgcA51Q CbSXru0q4OKZo7a7EipeF06t6BRnM+atl9m2yBTYEVOBPAX7cmVxswFud9yNbES3 pNEUTGoQ1vj00sb3Kf+i03kiinEvdGAq4W18+1sXH0CLbsfvvPv+X72TMJTb7L2R GeN7lpgsGJWB8BNaPItO95ElO5gwosxvU5fLyEw/TqDVa3n1hi5hAGgFfVgZzOTq 4tasf1m0m5wVPwjgQkVjkXg2l36/D+YvhRGuKnnTFHS+JErWDGJhdA== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:00 2024 by rpki-client on console-fra.rpki-client.org