$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/YRtCtzkM1tr3L8l29ZXxjEeKtiQ.roa File: YRtCtzkM1tr3L8l29ZXxjEeKtiQ.roa (raw, json) Hash identifier: 9+duMiJYmHfrW24TO3QNdEYsN2iBz9AZK8ORZxNGavo= Subject key identifier: 61:1B:42:B7:39:0C:D6:DA:F7:2F:C9:76:F5:95:F1:8C:47:8A:B6:24 Certificate issuer: /CN=00DCF050C4CEAE5021AA8D311953F02D6121FD8D Certificate serial: 020F Authority key identifier: 00:DC:F0:50:C4:CE:AE:50:21:AA:8D:31:19:53:F0:2D:61:21:FD:8D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/YRtCtzkM1tr3L8l29ZXxjEeKtiQ.roa Signing time: Fri 01 Sep 2023 08:55:54 +0000 ROA not before: Fri 01 Sep 2023 08:55:54 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 20473 IP address blocks: 103.169.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:45:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 527 (0x20f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00DCF050C4CEAE5021AA8D311953F02D6121FD8D Validity Not Before: Sep 1 08:55:54 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=611B42B7390CD6DAF72FC976F595F18C478AB624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:20:97:ed:cd:c8:79:2b:98:ab:99:c7:97:27: 63:36:4d:e6:90:e9:34:bd:68:c7:e7:19:0f:fe:ed: 0f:72:41:bf:2a:da:59:aa:bd:ef:9d:61:78:86:48: 59:a0:5b:95:7b:a8:94:35:b4:96:fe:e4:ae:04:b7: e4:77:96:07:25:8b:f3:a8:fe:49:99:e7:cd:81:37: 13:a4:c7:26:57:57:94:4c:41:a9:eb:7b:d5:7a:92: f5:21:e5:96:fb:d1:d0:0b:8a:05:16:f7:2b:70:e2: b7:7b:5b:cc:6d:6e:2d:1e:55:6b:32:24:7f:b2:5c: 33:e2:78:6b:fe:0e:8c:34:db:1b:17:4b:e9:b0:32: cb:21:a3:dd:e0:c8:2d:76:93:98:7f:33:47:51:9f: a8:79:8b:82:96:e9:10:f5:88:53:fa:c2:27:a3:bf: 90:07:2c:5c:2b:93:d0:c0:7d:75:3a:de:79:c8:9d: 55:d9:a8:9b:ec:2d:2d:d8:b9:9b:89:d6:47:df:39: 0f:05:1d:e6:8f:84:0f:f8:ec:7b:28:96:a2:f1:0e: 23:45:a1:cf:6d:c8:b8:6d:b0:eb:91:27:53:e7:cb: 03:60:f2:87:2c:98:8a:44:d8:c4:d2:2d:06:08:ee: 9b:1d:12:8a:43:c3:9a:08:1e:a2:a2:9d:9c:b8:cb: 56:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:1B:42:B7:39:0C:D6:DA:F7:2F:C9:76:F5:95:F1:8C:47:8A:B6:24 X509v3 Authority Key Identifier: keyid:00:DC:F0:50:C4:CE:AE:50:21:AA:8D:31:19:53:F0:2D:61:21:FD:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/YRtCtzkM1tr3L8l29ZXxjEeKtiQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.169.212.0/24 Signature Algorithm: sha256WithRSAEncryption 70:ba:12:40:30:07:24:a2:08:2d:31:64:7b:15:c4:97:f6:2d: c9:61:19:d5:75:45:0d:bd:95:2b:ac:fa:f2:c3:fb:c8:f4:c6: d4:3c:eb:25:c5:54:4b:0e:db:38:0c:a3:5f:1f:e4:43:08:be: f6:4d:72:ee:60:c3:b9:a2:01:5b:e4:ac:a3:ab:cb:d5:57:9d: f4:f8:07:07:c5:b7:dc:c2:81:9b:56:38:34:5c:62:ec:63:02: 4b:25:cd:4c:ed:82:40:df:1c:ce:0f:e6:bf:d0:9b:a0:bd:40: 97:14:cc:58:0b:82:41:44:1d:9b:13:f5:c3:9a:c2:0f:ff:12: e1:1c:34:3c:17:22:95:da:a2:7f:f5:18:78:f4:ff:7d:fa:e1: bc:df:c1:31:0b:5d:9f:f2:0a:59:09:2f:4a:b5:8f:81:ce:f4: 54:b8:a9:9c:cd:98:84:64:2f:05:75:76:8c:6d:50:86:a3:9d: 58:f6:cf:7c:53:e7:b6:7e:3f:74:a2:bb:e3:7b:ec:ef:7e:d9: fd:7e:23:82:9b:20:bc:3d:04:71:99:d4:35:96:14:39:1d:85: 81:33:35:44:80:71:dc:dc:e9:9b:00:a0:d7:9f:73:13:14:b2: c6:5f:c6:b1:c0:f6:07:ac:90:77:af:93:ac:ab:0d:e2:44:d7: 7d:0e:c3:43 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAg8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDBE Q0YwNTBDNENFQUU1MDIxQUE4RDMxMTk1M0YwMkQ2MTIxRkQ4RDAeFw0yMzA5MDEw ODU1NTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDYxMUI0MkI3MzkwQ0Q2 REFGNzJGQzk3NkY1OTVGMThDNDc4QUI2MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/IJftzch5K5irmceXJ2M2TeaQ6TS9aMfnGQ/+7Q9yQb8q2lmq ve+dYXiGSFmgW5V7qJQ1tJb+5K4Et+R3lgcli/Oo/kmZ582BNxOkxyZXV5RMQanr e9V6kvUh5Zb70dALigUW9ytw4rd7W8xtbi0eVWsyJH+yXDPieGv+Dow02xsXS+mw Mssho93gyC12k5h/M0dRn6h5i4KW6RD1iFP6wiejv5AHLFwrk9DAfXU63nnInVXZ qJvsLS3YuZuJ1kffOQ8FHeaPhA/47HsolqLxDiNFoc9tyLhtsOuRJ1PnywNg8ocs mIpE2MTSLQYI7psdEopDw5oIHqKinZy4y1YzAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUYRtCtzkM1tr3L8l29ZXxjEeKtiQwHwYDVR0jBBgwFoAUANzwUMTOrlAhqo0x GVPwLWEh/Y0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSEFQUFlN T05FWS9BTnp3VU1UT3JsQWhxbzB4R1ZQd0xXRWhfWTAuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0FOendVTVRPcmxBaHFvMHhHVlB3TFdFaF9ZMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0hBUFBZTU9ORVkvWVJ0Q3R6a00x dHIzTDhsMjlaWHhqRWVLdGlRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGep1DANBgkqhkiG9w0BAQsFAAOCAQEAcLoSQDAHJKIILTFkexXEl/Yt yWEZ1XVFDb2VK6z68sP7yPTG1DzrJcVUSw7bOAyjXx/kQwi+9k1y7mDDuaIBW+Ss o6vL1Ved9PgHB8W33MKBm1Y4NFxi7GMCSyXNTO2CQN8czg/mv9CboL1AlxTMWAuC QUQdmxP1w5rCD/8S4Rw0PBcildqif/UYePT/ffrhvN/BMQtdn/IKWQkvSrWPgc70 VLipnM2YhGQvBXV2jG1QhqOdWPbPfFPntn4/dKK743vs737Z/X4jgpsgvD0EcZnU NZYUOR2FgTM1RIBx3NzpmwCg159zExSyxl/GscD2B6yQd6+TrKsN4kTXfQ7DQw== -----END CERTIFICATE-----Generated at Mon May 6 05:46:22 2024 by rpki-client on console-fra.rpki-client.org