$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/I8rtPn4PnplvHlK0_PxZvtv99Ps.roa File: I8rtPn4PnplvHlK0_PxZvtv99Ps.roa (raw, json) Hash identifier: Nmc2PjA5rCEiRGAe+xBUcAUo7KZ+xUoI3rE/FKGT15I= Subject key identifier: 23:CA:ED:3E:7E:0F:9E:99:6F:1E:52:B4:FC:FC:59:BE:DB:FD:F4:FB Certificate issuer: /CN=52F9A727317A768DD89403B0D99CAAFA0BF7291F Certificate serial: 0234 Authority key identifier: 52:F9:A7:27:31:7A:76:8D:D8:94:03:B0:D9:9C:AA:FA:0B:F7:29:1F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/I8rtPn4PnplvHlK0_PxZvtv99Ps.roa Signing time: Mon 26 Aug 2024 05:20:32 +0000 ROA not before: Mon 26 Aug 2024 05:20:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7483 IP address blocks: 103.188.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/UvmnJzF6do3YlAOw2Zyq-gv3KR8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/UvmnJzF6do3YlAOw2Zyq-gv3KR8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52F9A727317A768DD89403B0D99CAAFA0BF7291F Validity Not Before: Aug 26 05:20:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=23CAED3E7E0F9E996F1E52B4FCFC59BEDBFDF4FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:7b:87:10:bc:4e:89:13:54:ec:2f:fd:b8:f3: 93:b8:84:2b:29:8f:a8:cb:0f:3f:be:e0:43:97:1b: ea:e5:20:2f:5e:d9:04:76:3d:c1:45:27:f0:d5:ec: c9:e0:8c:00:e6:86:73:e3:38:39:a0:fb:85:2f:47: 5a:41:c6:9d:f9:15:44:a6:1a:82:d3:0c:39:46:a6: 5c:d0:d2:eb:11:9c:94:0e:c1:37:db:25:c3:34:88: 83:a8:93:a9:2e:f6:79:0f:23:98:9b:67:bf:9f:2f: f8:f4:04:1e:93:96:28:ab:ba:0b:58:92:9d:7f:17: 87:81:f6:45:e4:b8:46:23:db:f6:8e:f0:90:43:14: 2d:89:d6:36:fd:6d:ee:5d:7c:40:76:7d:68:fd:b6: f5:4d:6a:7f:e9:97:ae:a6:27:e1:2a:ed:2c:85:34: e8:79:7a:62:05:32:b7:5d:58:ef:a5:5b:bd:fa:a3: 18:05:59:6b:d5:30:83:d6:62:14:60:84:67:63:6a: e6:a7:ba:fc:a5:fe:af:f1:fb:62:34:33:91:75:d4: 16:50:68:a3:c0:c0:25:b2:28:b6:5e:db:73:bf:09: 31:f6:d5:59:1e:ed:fa:c1:4a:ca:95:73:3d:da:23: 68:b9:e7:ff:e8:63:9a:76:7b:e0:f1:8c:0d:1a:5c: 5a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:CA:ED:3E:7E:0F:9E:99:6F:1E:52:B4:FC:FC:59:BE:DB:FD:F4:FB X509v3 Authority Key Identifier: keyid:52:F9:A7:27:31:7A:76:8D:D8:94:03:B0:D9:9C:AA:FA:0B:F7:29:1F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/UvmnJzF6do3YlAOw2Zyq-gv3KR8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/I8rtPn4PnplvHlK0_PxZvtv99Ps.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.188.120.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:00:2e:77:ed:78:28:8e:eb:21:f0:db:b0:e4:38:49:54:91: b0:7c:de:a7:ec:a6:1d:66:06:9c:6a:fb:4b:50:19:45:79:51: d8:cd:88:3b:da:eb:3b:59:e8:03:a9:1a:1c:89:20:fa:36:30: a2:06:df:fb:69:9d:43:0f:80:9d:3c:46:9c:7c:a8:89:c9:c4: 0c:df:0a:01:fe:bb:7f:27:67:e2:e3:41:08:3a:e6:66:59:19: 5a:fa:e3:51:f5:79:a3:c7:8d:20:bd:4a:8e:26:37:c9:0f:71: 05:4b:5c:29:ed:6b:e1:4d:25:d5:98:bf:97:22:7c:59:a6:62: 17:5c:85:df:21:e8:cd:14:51:da:01:e4:3a:5a:c0:30:a5:67: cc:bf:c9:b4:d6:33:de:d5:b9:5c:0b:5d:60:32:7b:de:2c:6e: 38:6c:89:bd:6b:35:db:0f:f6:6a:49:3f:76:02:63:1d:64:7c: b0:6b:c4:38:74:5d:b5:52:f0:b8:71:ed:b2:1a:9c:bd:f7:49: 9d:32:90:b0:8e:7a:5c:ed:bf:f3:b8:24:d4:3f:a2:1b:55:72: 98:e2:71:67:27:6b:92:ee:f7:62:b7:9d:29:96:35:23:47:47: 48:84:ee:31:7c:54:ef:78:63:27:ad:99:e7:3f:45:0a:9c:1c: 58:e0:74:94 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTJG OUE3MjczMTdBNzY4REQ4OTQwM0IwRDk5Q0FBRkEwQkY3MjkxRjAeFw0yNDA4MjYw NTIwMzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIzQ0FFRDNFN0UwRjlF OTk2RjFFNTJCNEZDRkM1OUJFREJGREY0RkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDke4cQvE6JE1TsL/2485O4hCspj6jLDz++4EOXG+rlIC9e2QR2 PcFFJ/DV7MngjADmhnPjODmg+4UvR1pBxp35FUSmGoLTDDlGplzQ0usRnJQOwTfb JcM0iIOok6ku9nkPI5ibZ7+fL/j0BB6TliirugtYkp1/F4eB9kXkuEYj2/aO8JBD FC2J1jb9be5dfEB2fWj9tvVNan/pl66mJ+Eq7SyFNOh5emIFMrddWO+lW736oxgF WWvVMIPWYhRghGdjauanuvyl/q/x+2I0M5F11BZQaKPAwCWyKLZe23O/CTH21Vke 7frBSsqVcz3aI2i55//oY5p2e+DxjA0aXFoXAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUI8rtPn4PnplvHlK0/PxZvtv99PswHwYDVR0jBBgwFoAUUvmnJzF6do3YlAOw 2Zyq+gv3KR8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFJRkVO Ry9Vdm1uSnpGNmRvM1lsQU93Mlp5cS1ndjNLUjguY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1V2bW5KekY2ZG8zWWxBT3cyWnlxLWd2M0tSOC5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL01BSUZFTkcvSThydFBuNFBucGx2SGxL MF9QeFp2dHY5OVBzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWe8eDANBgkqhkiG9w0BAQsFAAOCAQEAjQAud+14KI7rIfDbsOQ4SVSRsHzep+ym HWYGnGr7S1AZRXlR2M2IO9rrO1noA6kaHIkg+jYwogbf+2mdQw+AnTxGnHyoicnE DN8KAf67fydn4uNBCDrmZlkZWvrjUfV5o8eNIL1KjiY3yQ9xBUtcKe1r4U0l1Zi/ lyJ8WaZiF1yF3yHozRRR2gHkOlrAMKVnzL/JtNYz3tW5XAtdYDJ73ixuOGyJvWs1 2w/2akk/dgJjHWR8sGvEOHRdtVLwuHHtshqcvfdJnTKQsI56XO2/87gk1D+iG1Vy mOJxZydrku73YredKZY1I0dHSITuMXxU73hjJ62Z5z9FCpwcWOB0lA== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:40 2024 by rpki-client on console-fra.rpki-client.org