$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJING/LD5z4Ee3ypebvQX8JGWOo4Dd3YY.roa File: LD5z4Ee3ypebvQX8JGWOo4Dd3YY.roa (raw, json) Hash identifier: JNKv20DwEcmc6lBrjNkVLQ64+CvdG/dUA6A0kT2GK3Q= Subject key identifier: 2C:3E:73:E0:47:B7:CA:97:9B:BD:05:FC:24:65:8E:A3:80:DD:DD:86 Certificate issuer: /CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234 Certificate serial: 114A Authority key identifier: 4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/LD5z4Ee3ypebvQX8JGWOo4Dd3YY.roa Signing time: Mon 26 Aug 2024 05:20:51 +0000 ROA not before: Mon 26 Aug 2024 05:20:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 48024 IP address blocks: 103.127.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4426 (0x114a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234 Validity Not Before: Aug 26 05:20:51 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2C3E73E047B7CA979BBD05FC24658EA380DDDD86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f5:86:9f:e9:03:11:6a:63:6b:a4:72:49:1e: fe:96:91:48:bb:81:9f:18:47:d4:0d:45:30:6d:dd: ba:70:76:a3:56:ad:c1:47:17:b1:ed:3e:7f:e4:a8: 7a:4f:d8:c9:9d:55:f3:35:cf:92:1e:4a:3d:a3:68: 8f:ba:72:f1:f9:d5:eb:69:d7:43:2b:88:55:47:5a: f7:27:01:77:35:4c:a1:02:be:51:2b:8d:11:28:ec: 45:f9:37:2e:13:36:b8:01:38:bb:4e:9f:8e:d1:02: d3:d5:2a:3c:99:22:c9:bf:48:24:f1:a6:66:4e:e5: 40:28:e7:df:e3:20:32:5f:18:a2:4e:f1:96:68:31: 7f:54:36:c3:52:7a:9d:b0:fa:6f:28:5b:37:ce:87: 33:45:13:2c:79:35:97:f9:8b:3b:23:91:6f:98:74: 61:2d:1f:48:dc:d7:6a:a9:f2:76:83:65:f5:89:04: ad:74:8f:a6:88:88:3f:c9:f5:4d:04:39:70:a3:83: 33:7e:43:43:1f:95:db:07:ad:4a:c1:a1:84:35:4f: 07:67:cf:f1:67:24:c5:95:a6:3c:92:24:e4:a6:bf: aa:1f:66:8e:76:82:dd:fc:04:74:af:4b:46:85:8e: 07:a7:93:c8:d7:f8:d0:46:ab:5a:aa:1a:3a:7c:61: cf:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:3E:73:E0:47:B7:CA:97:9B:BD:05:FC:24:65:8E:A3:80:DD:DD:86 X509v3 Authority Key Identifier: keyid:4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/LD5z4Ee3ypebvQX8JGWOo4Dd3YY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.240.0/22 Signature Algorithm: sha256WithRSAEncryption 05:54:44:a6:f5:00:86:5e:bb:02:01:24:14:94:b4:26:b1:9d: 29:bc:44:c9:fe:b9:ff:3d:33:f4:b4:cf:b8:e6:75:e3:a0:04: 3a:88:36:1d:64:c3:db:0e:58:4b:e3:f3:f4:a3:ef:29:1b:80: 31:e3:d5:dc:97:1f:7e:0b:b6:ff:e1:2d:9d:2a:6b:e5:fc:33: ab:42:bf:ac:71:6a:a5:6c:d3:eb:bb:a1:97:4e:51:90:3a:0f: bf:82:49:fc:c1:d9:8a:83:16:31:b9:e4:bc:da:7f:02:c6:42: 16:7d:f8:36:8c:39:e5:ca:ba:1e:22:0a:e2:1d:df:bf:34:30: e4:9f:c2:96:61:4f:85:18:4e:01:52:4f:8b:43:9e:c9:4a:80: 57:8f:83:0c:4b:9b:29:65:60:04:10:ce:27:f5:1c:44:54:23: 4a:8d:09:83:aa:68:0e:83:41:af:53:a4:d5:5b:58:6b:e2:f1: 79:ec:51:c8:c4:61:1c:94:53:d1:0c:cc:60:44:70:fa:b4:cc: 0d:b7:f1:48:1a:25:eb:72:a4:32:68:29:3d:97:9d:e7:34:36: 42:3a:7d:b6:cb:73:49:5d:5f:30:ab:1c:8f:49:7f:2f:4d:5e: 98:12:ae:82:be:43:60:c9:f9:b5:69:8e:ea:4c:b9:35:21:9f: 12:8d:de:70 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEUowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEU3 MjFDNUREMzQ1OURGRjg1MzQ4RjFCMzlEREE5REQ1MDU4NjIzNDAeFw0yNDA4MjYw NTIwNTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJDM0U3M0UwNDdCN0NB OTc5QkJEMDVGQzI0NjU4RUEzODBEREREODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDd9Yaf6QMRamNrpHJJHv6WkUi7gZ8YR9QNRTBt3bpwdqNWrcFH F7HtPn/kqHpP2MmdVfM1z5IeSj2jaI+6cvH51etp10MriFVHWvcnAXc1TKECvlEr jREo7EX5Ny4TNrgBOLtOn47RAtPVKjyZIsm/SCTxpmZO5UAo59/jIDJfGKJO8ZZo MX9UNsNSep2w+m8oWzfOhzNFEyx5NZf5izsjkW+YdGEtH0jc12qp8naDZfWJBK10 j6aIiD/J9U0EOXCjgzN+Q0MfldsHrUrBoYQ1Twdnz/FnJMWVpjySJOSmv6ofZo52 gt38BHSvS0aFjgenk8jX+NBGq1qqGjp8Yc+ZAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQULD5z4Ee3ypebvQX8JGWOo4Dd3YYwHwYDVR0jBBgwFoAUTnIcXdNFnf+FNI8b Od2p3VBYYjQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkcvVG5JY1hkTkZuZi1GTkk4Yk9kMnAzVkJZWWpRLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9UbkljWGRORm5mLUZOSThiT2QycDNWQllZalEuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NSU5HSklORy9MRDV6NEVlM3lwZWJ2 UVg4SkdXT280RGQzWVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3/wMA0GCSqGSIb3DQEBCwUAA4IBAQAFVESm9QCGXrsCASQUlLQmsZ0pvETJ /rn/PTP0tM+45nXjoAQ6iDYdZMPbDlhL4/P0o+8pG4Ax49Xclx9+C7b/4S2dKmvl /DOrQr+scWqlbNPru6GXTlGQOg+/gkn8wdmKgxYxueS82n8CxkIWffg2jDnlyroe IgriHd+/NDDkn8KWYU+FGE4BUk+LQ57JSoBXj4MMS5spZWAEEM4n9RxEVCNKjQmD qmgOg0GvU6TVW1hr4vF57FHIxGEclFPRDMxgRHD6tMwNt/FIGiXrcqQyaCk9l53n NDZCOn22y3NJXV8wqxyPSX8vTV6YEq6CvkNgyfm1aY7qTLk1IZ8Sjd5w -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:40 2024 by rpki-client on console-fra.rpki-client.org