$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJING/R-nX2n5OxMj51Gn6nXBSJeAZDJg.roa File: R-nX2n5OxMj51Gn6nXBSJeAZDJg.roa (raw, json) Hash identifier: ikYRCnrOnYtshgEOd/bwDGFTELhKL/5rZ1YahLKuaKY= Subject key identifier: 47:E9:D7:DA:7E:4E:C4:C8:F9:D4:69:FA:9D:70:52:25:E0:19:0C:98 Certificate issuer: /CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234 Certificate serial: 1032 Authority key identifier: 4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/R-nX2n5OxMj51Gn6nXBSJeAZDJg.roa Signing time: Fri 01 Sep 2023 09:19:46 +0000 ROA not before: Fri 01 Sep 2023 09:19:46 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 48024 IP address blocks: 103.127.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:45:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4146 (0x1032) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234 Validity Not Before: Sep 1 09:19:46 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=47E9D7DA7E4EC4C8F9D469FA9D705225E0190C98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d6:d9:0b:4d:75:97:82:b6:68:03:26:4b:7f: 24:4a:f6:eb:ce:ad:0d:46:0c:97:c7:5d:2f:7a:fe: 63:95:8b:86:30:11:e3:36:18:7d:6e:8a:5e:a7:6a: e1:e7:64:0b:9d:60:f2:cf:db:64:ec:a2:ad:f7:77: ea:30:ad:8d:6d:82:e4:63:61:43:02:ad:8e:ff:20: f4:2a:40:0d:e5:58:5b:df:c9:3b:0a:b9:e6:2a:4f: 71:2f:ba:48:5e:ac:98:bf:5b:f1:0f:5e:76:06:68: 9e:55:0a:8c:4d:f8:9c:71:a7:80:31:06:0f:6e:21: 6b:e1:85:17:7d:68:20:35:e2:aa:b2:0e:a5:e4:5d: 6d:d2:22:7a:50:02:8f:20:c8:f8:2f:90:ec:f9:43: ee:d6:71:f8:46:1d:1d:a5:4c:31:f8:c3:28:df:06: 06:51:29:ba:9c:25:e2:ab:da:66:3a:ba:5c:0b:fa: 1e:90:cf:c1:84:5f:77:4d:01:63:b3:4f:bf:7a:98: 59:b1:d6:d3:a9:9b:38:b7:5d:13:e3:71:04:65:f7: cb:65:96:ee:15:52:5d:91:97:f9:d3:38:51:64:1c: 28:b4:ae:ae:65:79:c2:2d:31:6c:0c:f2:88:96:63: e3:7d:de:a1:f2:ec:8a:1c:25:14:f8:1c:e9:c8:96: f4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:E9:D7:DA:7E:4E:C4:C8:F9:D4:69:FA:9D:70:52:25:E0:19:0C:98 X509v3 Authority Key Identifier: keyid:4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/R-nX2n5OxMj51Gn6nXBSJeAZDJg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.240.0/22 Signature Algorithm: sha256WithRSAEncryption 61:1e:a9:b1:aa:c2:ef:5f:ad:9a:cb:58:74:9a:9d:ed:c7:28: 04:90:0d:b6:7b:eb:01:63:ff:46:b9:a6:f1:96:a6:1a:6c:09: 90:18:66:c0:33:e3:8a:8f:ee:29:81:85:39:f5:f8:2b:9b:22: 2f:8d:77:2c:24:ab:75:89:78:2f:c9:be:35:cc:41:23:8a:5c: 30:06:97:89:8a:d2:42:d9:b6:64:6d:1b:4d:59:a7:dd:cf:23: c4:28:a0:88:1c:43:5c:2f:75:83:60:d1:ba:69:9f:05:84:cb: 54:3f:53:9d:5a:5f:65:ae:ce:14:18:00:09:1a:69:a4:d7:75: 67:9a:7e:c8:c9:2e:7e:99:fc:f1:ba:88:92:26:c6:76:38:47: 52:dc:71:d4:0b:ce:26:e4:ac:95:01:28:0d:e8:87:3f:94:c0: ac:cd:00:c9:ed:70:23:89:3f:7a:28:db:8d:19:2f:70:97:98: b8:76:ba:8c:a5:52:be:21:62:84:bd:29:4c:bb:22:b0:5f:7e: 1d:28:06:88:63:5e:a6:b2:5b:52:22:74:d2:73:15:b8:33:02: 4f:18:41:41:9a:60:ad:88:10:a7:ea:7f:29:bf:4a:5b:6e:ab: 92:91:4f:b2:61:44:f9:8f:71:dd:1e:eb:10:ed:b4:06:32:a9: c3:b7:5c:37 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEDIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEU3 MjFDNUREMzQ1OURGRjg1MzQ4RjFCMzlEREE5REQ1MDU4NjIzNDAeFw0yMzA5MDEw OTE5NDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQ3RTlEN0RBN0U0RUM0 QzhGOUQ0NjlGQTlENzA1MjI1RTAxOTBDOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx1tkLTXWXgrZoAyZLfyRK9uvOrQ1GDJfHXS96/mOVi4YwEeM2 GH1uil6nauHnZAudYPLP22Tsoq33d+owrY1tguRjYUMCrY7/IPQqQA3lWFvfyTsK ueYqT3EvukherJi/W/EPXnYGaJ5VCoxN+Jxxp4AxBg9uIWvhhRd9aCA14qqyDqXk XW3SInpQAo8gyPgvkOz5Q+7WcfhGHR2lTDH4wyjfBgZRKbqcJeKr2mY6ulwL+h6Q z8GEX3dNAWOzT796mFmx1tOpmzi3XRPjcQRl98tllu4VUl2Rl/nTOFFkHCi0rq5l ecItMWwM8oiWY+N93qHy7IocJRT4HOnIlvSzAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUR+nX2n5OxMj51Gn6nXBSJeAZDJgwHwYDVR0jBBgwFoAUTnIcXdNFnf+FNI8b Od2p3VBYYjQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkcvVG5JY1hkTkZuZi1GTkk4Yk9kMnAzVkJZWWpRLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9UbkljWGRORm5mLUZOSThiT2QycDNWQllZalEuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NSU5HSklORy9SLW5YMm41T3hNajUx R242blhCU0plQVpESmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3/wMA0GCSqGSIb3DQEBCwUAA4IBAQBhHqmxqsLvX62ay1h0mp3txygEkA22 e+sBY/9GuabxlqYabAmQGGbAM+OKj+4pgYU59fgrmyIvjXcsJKt1iXgvyb41zEEj ilwwBpeJitJC2bZkbRtNWafdzyPEKKCIHENcL3WDYNG6aZ8FhMtUP1OdWl9lrs4U GAAJGmmk13Vnmn7IyS5+mfzxuoiSJsZ2OEdS3HHUC84m5KyVASgN6Ic/lMCszQDJ 7XAjiT96KNuNGS9wl5i4drqMpVK+IWKEvSlMuyKwX34dKAaIY16msltSInTScxW4 MwJPGEFBmmCtiBCn6n8pv0pbbquSkU+yYUT5j3HdHusQ7bQGMqnDt1w3 -----END CERTIFICATE-----Generated at Mon May 6 05:46:22 2024 by rpki-client on console-fra.rpki-client.org