$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JCA/MrM6MRCz-EnogqS5wOgpSEz2_QA.roa File: MrM6MRCz-EnogqS5wOgpSEz2_QA.roa (raw, json) Hash identifier: NGQzn52y45eFrC/v4iztvxlJYRXhnUOg37905p6TCmE= Subject key identifier: 32:B3:3A:31:10:B3:F8:49:E8:82:A4:B9:C0:E8:29:48:4C:F6:FD:00 Certificate issuer: /CN=83ACFC46609C1649AB4616D20D64C9D15D834C64 Certificate serial: 03 Authority key identifier: 83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/MrM6MRCz-EnogqS5wOgpSEz2_QA.roa Signing time: Wed 16 Aug 2023 07:26:39 +0000 ROA not before: Wed 16 Aug 2023 07:26:39 +0000 ROA not after: Wed 14 Aug 2024 15:30:16 +0000 asID: 131642 IP address blocks: 103.254.212.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83ACFC46609C1649AB4616D20D64C9D15D834C64 Validity Not Before: Aug 16 07:26:39 2023 GMT Not After : Aug 14 15:30:16 2024 GMT Subject: CN=32B33A3110B3F849E882A4B9C0E829484CF6FD00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:45:5f:27:4f:24:d5:04:0b:0e:e0:fc:10:f5: 39:52:8e:dc:a1:61:9e:86:05:bc:42:61:9d:ad:f6: 4e:3e:d6:f6:1a:26:10:a6:b9:0e:38:a2:8d:be:fe: 9e:38:16:ba:4c:e3:4a:e1:e3:a6:32:7d:1a:05:cf: 8e:61:b1:11:ea:31:36:fd:bd:5e:f1:0a:bc:04:4c: b7:f1:e2:7d:dc:ea:4b:a0:27:4c:c9:62:fe:87:6e: 68:4f:35:3b:8f:18:ba:7a:f1:e4:d1:5b:9d:68:b0: e4:b3:87:78:83:c4:e0:f1:9e:36:71:66:ad:59:6c: ee:3a:c0:71:08:76:45:47:21:97:a5:8c:2c:ff:9a: 09:28:27:04:51:94:f4:3d:4e:22:85:bc:82:36:46: 72:b4:84:e2:3a:a4:13:8c:ca:04:68:b4:61:f6:b0: 7a:79:7a:a8:ed:99:46:f1:2a:00:b6:c8:99:1a:23: 53:a2:97:9f:98:e4:21:81:ee:9e:3e:6d:10:67:34: bb:ae:f2:55:57:6e:cd:47:01:60:5b:d0:6c:ed:83: 28:ef:cb:2b:04:e3:7d:f0:e1:c0:68:13:38:87:d0: a7:9d:09:d1:6a:3f:ad:98:b2:dd:cb:a8:4d:2d:17: aa:76:9b:dd:6e:8f:f2:91:69:87:1e:a2:d6:f7:cb: 21:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:B3:3A:31:10:B3:F8:49:E8:82:A4:B9:C0:E8:29:48:4C:F6:FD:00 X509v3 Authority Key Identifier: keyid:83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/MrM6MRCz-EnogqS5wOgpSEz2_QA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.254.212.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:32:b6:48:d1:e2:d8:9f:78:c1:92:1d:52:6e:a0:1e:80:55: 4a:90:c6:48:10:22:39:9c:ce:75:91:21:2b:fa:c0:3b:ae:5e: 2b:59:91:4f:e4:1d:0e:92:7e:84:be:4a:3d:7f:11:a3:27:a3: 38:f0:c0:df:71:4a:25:b2:69:ad:0c:e9:69:41:0e:62:f8:8c: ce:32:61:bf:8a:84:0f:fe:7c:5e:20:07:be:87:dc:5e:60:ab: a0:6b:f0:ac:e6:a6:d1:11:cd:7f:ab:93:4d:27:91:10:70:5b: 03:cc:41:d2:71:3f:a6:15:73:a2:36:84:96:5c:72:fa:a2:1f: a5:46:09:ca:3f:97:47:2e:39:5e:df:99:f0:77:40:8a:20:35: b8:e6:92:e2:37:e3:a2:b3:14:23:93:46:ff:8e:e9:c5:45:5f: ef:b8:8a:45:fe:81:a7:87:ee:5b:69:3c:dd:bb:a4:f0:7f:3d: 54:2f:48:40:6e:4a:27:93:aa:1e:c8:f8:d0:b7:a9:cf:dc:49: ee:7e:54:ff:56:0b:01:52:9b:71:9c:fa:6f:ca:70:c2:68:d5: 6d:42:01:1e:83:ac:0e:88:eb:89:10:3f:52:fb:f8:53:51:37: bf:06:14:13:5c:d8:a4:7a:55:ed:c4:1b:76:bd:96:30:78:07: 71:12:14:62 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4M0FD RkM0NjYwOUMxNjQ5QUI0NjE2RDIwRDY0QzlEMTVEODM0QzY0MB4XDTIzMDgxNjA3 MjYzOVoXDTI0MDgxNDE1MzAxNlowMzExMC8GA1UEAxMoMzJCMzNBMzExMEIzRjg0 OUU4ODJBNEI5QzBFODI5NDg0Q0Y2RkQwMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMxFXydPJNUECw7g/BD1OVKO3KFhnoYFvEJhna32Tj7W9homEKa5 Djiijb7+njgWukzjSuHjpjJ9GgXPjmGxEeoxNv29XvEKvARMt/HifdzqS6AnTMli /oduaE81O48Yunrx5NFbnWiw5LOHeIPE4PGeNnFmrVls7jrAcQh2RUchl6WMLP+a CSgnBFGU9D1OIoW8gjZGcrSE4jqkE4zKBGi0Yfawenl6qO2ZRvEqALbImRojU6KX n5jkIYHunj5tEGc0u67yVVduzUcBYFvQbO2DKO/LKwTjffDhwGgTOIfQp50J0Wo/ rZiy3cuoTS0Xqnab3W6P8pFphx6i1vfLISMCAwEAAaOCAegwggHkMB0GA1UdDgQW BBQyszoxELP4SeiCpLnA6ClITPb9ADAfBgNVHSMEGDAWgBSDrPxGYJwWSatGFtIN ZMnRXYNMZDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFkGA1UdHwRSMFAwTqBM oEqGSHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9KQ0EvZzZ6 OFJtQ2NGa21yUmhiU0RXVEowVjJEVEdRLmNybDBgBggrBgEFBQcBAQRUMFIwUAYI KwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9n Nno4Um1DY0ZrbXJSaGJTRFdUSjBWMkRUR1EuY2VyMA4GA1UdDwEB/wQEAwIHgDCB mQYIKwYBBQUHAQsEgYwwgYkwVAYIKwYBBQUHMAuGSHJzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS9KQ0EvTXJNNk1SQ3otRW5vZ3FTNXdPZ3BTRXoy X1FBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAv bm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWf+1DANBgkq hkiG9w0BAQsFAAOCAQEAKzK2SNHi2J94wZIdUm6gHoBVSpDGSBAiOZzOdZEhK/rA O65eK1mRT+QdDpJ+hL5KPX8RoyejOPDA33FKJbJprQzpaUEOYviMzjJhv4qED/58 XiAHvofcXmCroGvwrOam0RHNf6uTTSeREHBbA8xB0nE/phVzojaEllxy+qIfpUYJ yj+XRy45Xt+Z8HdAiiA1uOaS4jfjorMUI5NG/47pxUVf77iKRf6Bp4fuW2k83buk 8H89VC9IQG5KJ5OqHsj40Lepz9xJ7n5U/1YLAVKbcZz6b8pwwmjVbUIBHoOsDojr iRA/Uvv4U1E3vwYUE1zYpHpV7cQbdr2WMHgHcRIUYg== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:01 2024 by rpki-client on console-fra.rpki-client.org