$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAIFOOD/2vfcTJCfn1d-jiUVAHsBMFcdIpQ.roa File: 2vfcTJCfn1d-jiUVAHsBMFcdIpQ.roa (raw, json) Hash identifier: T3ckslOjR0vzVWK6ZaaAuHUY7kaAAKXHi9vENRjpu5g= Subject key identifier: DA:F7:DC:4C:90:9F:9F:57:7E:8E:25:15:00:7B:01:30:57:1D:22:94 Certificate issuer: /CN=C760A0EC769BF57E048E5FC2BA95A5A023AC8CC9 Certificate serial: 0201 Authority key identifier: C7:60:A0:EC:76:9B:F5:7E:04:8E:5F:C2:BA:95:A5:A0:23:AC:8C:C9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/x2Cg7Hab9X4Ejl_CupWloCOsjMk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFOOD/2vfcTJCfn1d-jiUVAHsBMFcdIpQ.roa Signing time: Mon 26 Aug 2024 05:20:37 +0000 ROA not before: Mon 26 Aug 2024 05:20:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7483 IP address blocks: 103.190.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFOOD/x2Cg7Hab9X4Ejl_CupWloCOsjMk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFOOD/x2Cg7Hab9X4Ejl_CupWloCOsjMk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/x2Cg7Hab9X4Ejl_CupWloCOsjMk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C760A0EC769BF57E048E5FC2BA95A5A023AC8CC9 Validity Not Before: Aug 26 05:20:37 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DAF7DC4C909F9F577E8E2515007B0130571D2294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ec:e5:ce:f9:8a:e0:b5:24:e6:17:19:cf:4d: c4:77:35:81:64:85:2a:b7:52:db:70:7a:b9:5a:dd: 86:d9:e7:a4:d6:a1:8e:b6:82:ad:78:d0:f0:7b:ba: 7b:85:f2:a5:2c:b9:a8:87:dd:81:87:96:fb:9c:46: 25:ef:11:71:c9:34:66:bb:34:3f:6e:3b:a6:59:d5: d6:12:04:e0:2e:da:a7:bd:fd:09:7f:2c:db:a4:ba: 65:a7:3d:11:7b:7c:c5:1d:74:4b:46:83:1b:18:0e: 23:07:f2:49:e9:cf:ed:04:52:7a:c7:9d:89:a5:59: 19:26:f3:84:be:af:28:fb:61:4f:6d:7a:5e:03:fd: 64:95:69:c8:b4:c9:87:35:87:f5:8c:db:8c:a4:52: ec:c1:75:5c:bd:01:af:da:d2:ed:94:72:1b:b9:03: 87:82:5e:cd:b1:38:af:f0:54:2c:66:90:de:2d:82: ea:86:2f:fb:56:ae:99:06:91:04:75:4a:89:85:be: 41:4d:dc:e0:ef:75:13:a0:a6:78:ef:a7:37:ac:b5: 26:4b:73:44:ef:4e:dd:6f:8d:4b:98:2e:da:bf:f3: fc:36:14:e1:ab:1a:13:89:fc:71:b3:89:d6:41:e8: fe:13:ff:c4:b0:c9:c3:c4:88:0d:e4:0d:e5:21:81: b0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:F7:DC:4C:90:9F:9F:57:7E:8E:25:15:00:7B:01:30:57:1D:22:94 X509v3 Authority Key Identifier: keyid:C7:60:A0:EC:76:9B:F5:7E:04:8E:5F:C2:BA:95:A5:A0:23:AC:8C:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFOOD/x2Cg7Hab9X4Ejl_CupWloCOsjMk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/x2Cg7Hab9X4Ejl_CupWloCOsjMk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFOOD/2vfcTJCfn1d-jiUVAHsBMFcdIpQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.190.168.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:a3:56:90:75:20:64:fd:29:94:cb:96:a5:58:dd:e8:dd:e9: ac:20:5f:fa:c4:ad:6c:b8:cf:ab:c4:96:4c:4d:c3:54:e0:2d: ad:5e:28:36:dd:ef:5a:49:59:2a:3b:58:af:10:a8:13:03:46: 68:49:44:20:db:7d:62:f1:14:2f:d7:cb:f7:e7:47:3d:5b:29: c4:d7:27:77:1c:4a:c8:a3:aa:b0:5f:b9:b0:44:8a:54:87:ae: e0:87:bf:2f:de:4c:09:65:cb:eb:e9:c1:a0:5d:a5:95:e3:03: cc:33:a6:b7:74:3b:e2:ac:9e:59:e2:b2:e2:63:41:3e:e2:da: 6c:49:a0:6f:43:2a:72:93:f0:a7:fd:27:76:f0:23:cb:cf:3e: 2e:e5:7b:6e:c8:8e:64:c4:05:2e:4d:c1:e0:fb:fb:53:e2:99: 71:0f:5a:17:86:dd:a3:2b:63:0f:b2:5b:0a:2d:53:0b:60:c3: d4:a2:bd:da:c9:80:79:11:af:17:3e:00:2e:70:6c:c7:70:dc: b7:10:e4:33:30:f1:85:f3:e7:d1:fe:5a:38:fb:de:2d:f1:8b: 83:b6:a1:bc:c9:ac:94:b5:82:58:2a:df:f3:db:b1:58:f0:f4: 99:d6:96:cb:03:39:0b:53:0b:8d:94:6c:fa:f9:68:5e:7d:ab: 8e:18:bb:14 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzc2 MEEwRUM3NjlCRjU3RTA0OEU1RkMyQkE5NUE1QTAyM0FDOENDOTAeFw0yNDA4MjYw NTIwMzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERBRjdEQzRDOTA5RjlG NTc3RThFMjUxNTAwN0IwMTMwNTcxRDIyOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw7OXO+YrgtSTmFxnPTcR3NYFkhSq3Uttwerla3YbZ56TWoY62 gq140PB7unuF8qUsuaiH3YGHlvucRiXvEXHJNGa7ND9uO6ZZ1dYSBOAu2qe9/Ql/ LNukumWnPRF7fMUddEtGgxsYDiMH8knpz+0EUnrHnYmlWRkm84S+ryj7YU9tel4D /WSVaci0yYc1h/WM24ykUuzBdVy9Aa/a0u2Uchu5A4eCXs2xOK/wVCxmkN4tguqG L/tWrpkGkQR1SomFvkFN3ODvdROgpnjvpzestSZLc0TvTt1vjUuYLtq/8/w2FOGr GhOJ/HGzidZB6P4T/8SwycPEiA3kDeUhgbDNAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU2vfcTJCfn1d+jiUVAHsBMFcdIpQwHwYDVR0jBBgwFoAUx2Cg7Hab9X4Ejl/C upWloCOsjMkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFJRk9P RC94MkNnN0hhYjlYNEVqbF9DdXBXbG9DT3NqTWsuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3gyQ2c3SGFiOVg0RWpsX0N1cFdsb0NPc2pNay5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL01BSUZPT0QvMnZmY1RKQ2ZuMWQtamlV VkFIc0JNRmNkSXBRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWe+qDANBgkqhkiG9w0BAQsFAAOCAQEAfaNWkHUgZP0plMuWpVjd6N3prCBf+sSt bLjPq8SWTE3DVOAtrV4oNt3vWklZKjtYrxCoEwNGaElEINt9YvEUL9fL9+dHPVsp xNcndxxKyKOqsF+5sESKVIeu4Ie/L95MCWXL6+nBoF2lleMDzDOmt3Q74qyeWeKy 4mNBPuLabEmgb0MqcpPwp/0ndvAjy88+LuV7bsiOZMQFLk3B4Pv7U+KZcQ9aF4bd oytjD7JbCi1TC2DD1KK92smAeRGvFz4ALnBsx3DctxDkMzDxhfPn0f5aOPveLfGL g7ahvMmslLWCWCrf89uxWPD0mdaWywM5C1MLjZRs+vloXn2rjhi7FA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org