$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/9dL6JjEIRXxYdAQ3ZLUTeT4L_Ds.roa File: 9dL6JjEIRXxYdAQ3ZLUTeT4L_Ds.roa (raw, json) Hash identifier: 2Lhlq1A3r0KN3Zh4tmEjI6g9FT4MW2PxyDDLOnU76Zk= Subject key identifier: F5:D2:FA:26:31:08:45:7C:58:74:04:37:64:B5:13:79:3E:0B:FC:3B Certificate issuer: /CN=00DCF050C4CEAE5021AA8D311953F02D6121FD8D Certificate serial: 020E Authority key identifier: 00:DC:F0:50:C4:CE:AE:50:21:AA:8D:31:19:53:F0:2D:61:21:FD:8D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/9dL6JjEIRXxYdAQ3ZLUTeT4L_Ds.roa Signing time: Fri 01 Sep 2023 08:55:54 +0000 ROA not before: Fri 01 Sep 2023 08:55:54 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38852 IP address blocks: 103.169.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 07:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 526 (0x20e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00DCF050C4CEAE5021AA8D311953F02D6121FD8D Validity Not Before: Sep 1 08:55:54 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F5D2FA263108457C5874043764B513793E0BFC3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:06:91:97:89:14:ed:ea:8e:96:b5:52:2b:2a: e8:12:88:8f:8b:78:b2:71:a1:fe:57:fc:1e:a5:20: 58:8f:40:74:cb:af:0a:63:22:49:e6:b3:a3:15:a4: 2f:d0:c2:1b:3b:e1:35:e5:66:88:bc:9c:25:58:67: 6b:fd:d6:11:85:9a:90:73:61:1f:0a:61:b2:b9:f1: 63:ae:4a:44:a6:e7:16:bf:09:1f:52:47:46:e7:f2: 39:2c:fd:20:4b:81:a3:40:cf:f1:ca:90:e4:11:43: 1e:66:66:25:4d:75:db:7a:6e:0a:e5:66:74:7d:0a: 73:3a:af:4d:72:16:d9:c9:c6:21:b7:70:eb:54:42: 3d:41:71:cc:7d:d6:54:69:b1:41:82:fd:bc:f1:23: e1:39:4a:7d:65:84:e2:e4:6a:46:d1:b2:fc:c7:28: 56:ea:61:42:fe:34:3e:a7:a6:59:94:7b:15:43:a1: 78:89:fe:f7:cc:68:28:91:86:9c:05:79:f2:42:52: 0d:9b:83:b3:60:dc:69:a9:73:69:fb:7a:27:3d:70: 3c:3a:ce:63:fe:8c:f9:3c:62:41:66:a2:3d:26:7d: 7b:d9:3d:aa:f4:86:3a:93:30:26:28:74:3d:a1:5e: 43:a1:f0:f1:c8:14:f7:25:5b:4a:75:65:33:93:5a: 45:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:D2:FA:26:31:08:45:7C:58:74:04:37:64:B5:13:79:3E:0B:FC:3B X509v3 Authority Key Identifier: keyid:00:DC:F0:50:C4:CE:AE:50:21:AA:8D:31:19:53:F0:2D:61:21:FD:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/9dL6JjEIRXxYdAQ3ZLUTeT4L_Ds.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.169.212.0/24 Signature Algorithm: sha256WithRSAEncryption 41:0a:81:7d:06:5e:e8:bc:bc:0a:df:f2:b9:b2:7f:dd:16:db: 6a:b9:18:ea:4c:5e:18:e0:5d:21:d9:fb:b8:a3:1d:59:15:e8: df:f5:86:b1:c5:10:33:a5:95:63:6c:f3:af:6f:d2:7e:b8:cc: ed:ee:32:ba:93:ac:7d:44:2d:53:a2:73:52:26:36:75:09:a4: 85:30:67:cf:f0:d1:db:ac:54:f3:d3:34:cf:35:75:80:40:f9: d6:fc:d6:2c:09:a2:48:e3:59:94:b4:33:4d:eb:c8:50:68:c4: f7:0f:cc:2e:d9:1a:fd:4c:3f:06:ad:18:cb:2f:19:74:db:f4: 6d:9a:94:16:a6:a9:ad:b4:1f:a3:d5:de:92:be:df:18:03:ff: 82:92:a9:9a:d7:88:22:f1:24:55:bf:d0:67:e4:a6:75:f8:79: 35:ff:57:05:19:1b:9f:44:32:38:fe:c1:3b:60:ca:50:53:68: ae:55:f0:f7:bf:57:10:2d:bb:d2:59:8d:ef:23:ac:5f:a6:9e: f5:48:05:2d:17:aa:0c:fd:44:c5:40:fa:fe:9e:7d:95:b0:fe: 59:0a:33:23:42:1a:c3:b7:94:37:5d:c7:6c:95:22:98:20:a4: 77:a2:ab:83:4b:14:87:90:e7:e1:65:d5:9e:79:08:89:bf:15: 57:2c:59:28 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAg4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDBE Q0YwNTBDNENFQUU1MDIxQUE4RDMxMTk1M0YwMkQ2MTIxRkQ4RDAeFw0yMzA5MDEw ODU1NTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY1RDJGQTI2MzEwODQ1 N0M1ODc0MDQzNzY0QjUxMzc5M0UwQkZDM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJBpGXiRTt6o6WtVIrKugSiI+LeLJxof5X/B6lIFiPQHTLrwpj Iknms6MVpC/Qwhs74TXlZoi8nCVYZ2v91hGFmpBzYR8KYbK58WOuSkSm5xa/CR9S R0bn8jks/SBLgaNAz/HKkOQRQx5mZiVNddt6bgrlZnR9CnM6r01yFtnJxiG3cOtU Qj1Bccx91lRpsUGC/bzxI+E5Sn1lhOLkakbRsvzHKFbqYUL+ND6nplmUexVDoXiJ /vfMaCiRhpwFefJCUg2bg7Ng3Gmpc2n7eic9cDw6zmP+jPk8YkFmoj0mfXvZPar0 hjqTMCYodD2hXkOh8PHIFPclW0p1ZTOTWkVDAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU9dL6JjEIRXxYdAQ3ZLUTeT4L/DswHwYDVR0jBBgwFoAUANzwUMTOrlAhqo0x GVPwLWEh/Y0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSEFQUFlN T05FWS9BTnp3VU1UT3JsQWhxbzB4R1ZQd0xXRWhfWTAuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0FOendVTVRPcmxBaHFvMHhHVlB3TFdFaF9ZMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0hBUFBZTU9ORVkvOWRMNkpqRUlS WHhZZEFRM1pMVVRlVDRMX0RzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGep1DANBgkqhkiG9w0BAQsFAAOCAQEAQQqBfQZe6Ly8Ct/yubJ/3Rbb arkY6kxeGOBdIdn7uKMdWRXo3/WGscUQM6WVY2zzr2/SfrjM7e4yupOsfUQtU6Jz UiY2dQmkhTBnz/DR26xU89M0zzV1gED51vzWLAmiSONZlLQzTevIUGjE9w/MLtka /Uw/Bq0Yyy8ZdNv0bZqUFqaprbQfo9Xekr7fGAP/gpKpmteIIvEkVb/QZ+Smdfh5 Nf9XBRkbn0QyOP7BO2DKUFNorlXw979XEC270lmN7yOsX6ae9UgFLReqDP1ExUD6 /p59lbD+WQozI0Iaw7eUN13HbJUimCCkd6Krg0sUh5Dn4WXVnnkIib8VVyxZKA== -----END CERTIFICATE-----Generated at Sat May 18 04:02:51 2024 by rpki-client on console-fra.rpki-client.org