$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCRS/QDeQZZMxqKPjZJk2JWUd3yPd0Wo.roa File: QDeQZZMxqKPjZJk2JWUd3yPd0Wo.roa (raw, json) Hash identifier: 2nMOcSA3xCauKphbsA1b1O8zUZXAG35t2uLv+oucYZM= Subject key identifier: 40:37:90:65:93:31:A8:A3:E3:64:99:36:25:65:1D:DF:23:DD:D1:6A Certificate issuer: /CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Certificate serial: 01BA Authority key identifier: 22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/QDeQZZMxqKPjZJk2JWUd3yPd0Wo.roa Signing time: Fri 01 Sep 2023 09:03:52 +0000 ROA not before: Fri 01 Sep 2023 09:03:52 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38042 IP address blocks: 103.177.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:29:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Validity Not Before: Sep 1 09:03:52 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=403790659331A8A3E364993625651DDF23DDD16A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2d:43:16:34:be:d5:96:1d:dd:48:88:af:09: 78:aa:da:6b:30:35:03:34:9e:f0:3f:de:df:4c:93: 27:aa:25:67:f4:49:be:d5:a8:53:8e:65:bb:dc:0f: d5:b1:38:9c:3b:0b:7a:dd:0e:09:27:ed:87:2b:1f: c0:82:d0:ed:9c:f7:7f:f7:f5:20:35:05:04:b2:08: 41:0d:b0:2e:d6:e7:08:a3:51:7a:db:d2:59:4e:24: aa:c2:e6:9b:0c:58:3b:9c:22:1a:7b:9a:08:4d:d5: 2b:ab:c2:19:d9:78:6e:a8:c8:4c:e6:ea:57:33:4e: f4:a4:65:8f:52:9c:fc:75:15:3d:9d:46:08:9a:45: 66:78:1d:d9:12:73:92:dd:60:64:18:86:5e:d7:66: 1f:49:64:b4:cb:ff:8a:aa:52:6c:cd:a6:65:6b:01: ff:1e:64:73:90:60:be:6c:7b:a3:d9:b2:d1:bf:9a: 62:51:b9:e3:b1:2e:1b:8e:1c:d0:b4:c2:8d:29:fe: b0:d2:5c:d8:3a:d5:58:4e:42:be:f6:21:15:91:77: 32:43:8b:44:dd:42:98:98:39:e5:c2:0a:a4:eb:92: 58:68:7c:c2:5d:11:d6:5f:9e:89:bb:0f:d1:35:70: 54:f1:62:7b:f2:b6:06:7e:2d:29:74:3d:91:d7:5d: da:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:37:90:65:93:31:A8:A3:E3:64:99:36:25:65:1D:DF:23:DD:D1:6A X509v3 Authority Key Identifier: keyid:22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/QDeQZZMxqKPjZJk2JWUd3yPd0Wo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.177.32.0/23 Signature Algorithm: sha256WithRSAEncryption 74:08:9f:35:e6:ba:08:5d:d1:a3:ef:13:6f:48:2e:5b:4d:18: 88:cd:a1:09:40:29:f5:77:97:1f:e8:ed:1e:21:35:ef:b1:1a: 19:55:9c:36:de:2d:9a:47:d9:c7:a4:6c:ed:72:51:d6:d9:da: cf:14:9b:72:65:04:e8:5b:e2:9a:af:f2:12:ba:9c:3d:87:37: ed:50:23:db:b3:6a:f6:98:36:79:1f:de:e4:8c:e1:d1:f7:6f: f1:22:68:21:98:4d:44:e7:a3:5d:1e:54:59:bc:52:39:00:c0: 26:14:79:1f:c8:0d:9c:12:7e:57:ff:a0:01:73:42:5a:b7:86: 4c:75:a7:45:0c:fd:d9:da:8f:cc:cb:50:e8:1f:15:5c:ce:58: c9:97:96:e5:8a:fc:65:ea:1d:76:dd:24:2a:30:36:7c:af:3c: 2e:70:88:93:81:e0:75:fb:1a:ab:80:61:51:b9:9b:0d:30:21: 59:7a:16:b9:34:d5:a1:f8:e2:9a:8c:46:5f:e0:d4:32:04:75: 75:2b:28:40:31:c3:00:12:ee:11:d9:da:93:b5:d3:f6:a5:b5: 7b:fc:25:80:be:de:70:da:b3:e1:35:8c:0c:ee:9e:7e:4d:18: 47:3a:61:93:7c:1e:c7:2d:15:c4:d1:28:80:8c:13:5a:93:1b: e5:41:31:53 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAbowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjJD NTEyOThEOTdBMTAyOTAyNzMxRkRDNDlCREZBQjM5RDUyQUIyQjAeFw0yMzA5MDEw OTAzNTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQwMzc5MDY1OTMzMUE4 QTNFMzY0OTkzNjI1NjUxRERGMjNEREQxNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqLUMWNL7Vlh3dSIivCXiq2mswNQM0nvA/3t9MkyeqJWf0Sb7V qFOOZbvcD9WxOJw7C3rdDgkn7YcrH8CC0O2c93/39SA1BQSyCEENsC7W5wijUXrb 0llOJKrC5psMWDucIhp7mghN1SurwhnZeG6oyEzm6lczTvSkZY9SnPx1FT2dRgia RWZ4HdkSc5LdYGQYhl7XZh9JZLTL/4qqUmzNpmVrAf8eZHOQYL5se6PZstG/mmJR ueOxLhuOHNC0wo0p/rDSXNg61VhOQr72IRWRdzJDi0TdQpiYOeXCCqTrklhofMJd EdZfnom7D9E1cFTxYnvytgZ+LSl0PZHXXdopAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUQDeQZZMxqKPjZJk2JWUd3yPd0WowHwYDVR0jBBgwFoAUIsUSmNl6ECkCcx/c Sb36s51SqyswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DUlMv SXNVU21ObDZFQ2tDY3hfY1NiMzZzNTFTcXlzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Jc1VTbU5sNkVDa0NjeF9jU2IzNnM1MVNxeXMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTUNSUy9RRGVRWlpNeHFLUGpaSmsySldV ZDN5UGQwV28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7Eg MA0GCSqGSIb3DQEBCwUAA4IBAQB0CJ815roIXdGj7xNvSC5bTRiIzaEJQCn1d5cf 6O0eITXvsRoZVZw23i2aR9nHpGztclHW2drPFJtyZQToW+Kar/ISupw9hzftUCPb s2r2mDZ5H97kjOHR92/xImghmE1E56NdHlRZvFI5AMAmFHkfyA2cEn5X/6ABc0Ja t4ZMdadFDP3Z2o/My1DoHxVczljJl5blivxl6h123SQqMDZ8rzwucIiTgeB1+xqr gGFRuZsNMCFZeha5NNWh+OKajEZf4NQyBHV1KyhAMcMAEu4R2dqTtdP2pbV7/CWA vt5w2rPhNYwM7p5+TRhHOmGTfB7HLRXE0SiAjBNakxvlQTFT -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:01 2024 by rpki-client on console-fra.rpki-client.org