$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/n3Niw6zhXZl31GjXbshPj26ZH3w.roa File: n3Niw6zhXZl31GjXbshPj26ZH3w.roa (raw, json) Hash identifier: EIgGtCVqwgRQtBenk5qlqRfrEw8FKxM3+egAOH2Sr2Q= Subject key identifier: 9F:73:62:C3:AC:E1:5D:99:77:D4:68:D7:6E:C8:4F:8F:6E:99:1F:7C Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 0D93 Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/n3Niw6zhXZl31GjXbshPj26ZH3w.roa Signing time: Mon 04 Dec 2023 13:50:55 +0000 ROA not before: Mon 04 Dec 2023 13:50:55 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 63897 IP address blocks: 103.135.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 13:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3475 (0xd93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: Dec 4 13:50:55 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9F7362C3ACE15D9977D468D76EC84F8F6E991F7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:eb:1c:10:36:2f:42:94:be:08:48:de:19:f0: 1e:e5:52:13:2a:87:8a:6f:39:c8:d1:16:67:7d:db: 03:dc:8e:c1:f8:36:b4:24:60:74:43:0d:00:0d:04: fe:62:c5:f0:7f:72:37:01:38:8c:8f:7f:78:22:b1: d5:5c:4d:70:b1:84:22:8e:7f:10:dc:23:60:21:62: c0:c6:4d:1f:86:d1:3f:ea:32:86:d7:ca:88:a0:2e: b9:77:ea:70:00:dd:eb:6e:3f:fe:2e:ac:80:31:07: 71:43:30:83:9f:37:6e:74:a8:fe:d1:02:4e:6f:49: ba:e0:44:2b:8c:65:8f:12:1b:cb:2f:5a:d3:7e:54: 4a:af:a7:7f:26:0c:89:19:d1:75:d2:e6:1d:0f:4b: fa:75:0c:37:e0:42:78:80:27:66:38:a2:34:42:9c: e2:41:a8:11:53:79:2e:f8:17:26:49:82:5a:49:2f: f4:81:b3:b9:19:b9:7b:8b:c0:f1:20:66:cb:d6:33: 38:09:3a:4f:44:19:9a:b3:8d:a3:48:24:33:a5:11: f3:f1:31:57:1f:7d:0b:84:d0:c5:89:37:d9:34:7b: 2c:8d:f6:68:a9:c7:18:a6:38:0b:c7:2a:f2:49:44: 3d:3f:8e:a6:87:c0:eb:c5:57:5c:a7:51:d5:6c:2b: 68:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:73:62:C3:AC:E1:5D:99:77:D4:68:D7:6E:C8:4F:8F:6E:99:1F:7C X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/n3Niw6zhXZl31GjXbshPj26ZH3w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.21.0/24 Signature Algorithm: sha256WithRSAEncryption 11:7b:84:92:c0:4e:96:4a:5e:3a:bc:87:9a:14:91:10:1d:56: f4:83:8f:26:57:60:8c:86:fd:c5:76:0d:58:9a:6b:ca:21:71: 4a:ad:64:d6:5d:d5:e7:dd:9b:2e:f3:25:e7:58:06:c1:e9:5d: 28:d6:92:26:3f:c0:54:c0:fa:24:05:e5:71:ff:53:71:03:98: 3a:d4:7a:21:e4:58:8b:f7:a5:0e:fd:1b:54:b3:83:12:f1:5c: 07:82:f1:34:00:4b:6a:6d:bf:f6:a4:c7:25:1d:c0:62:17:56: 71:8b:60:ca:5d:68:44:f3:4b:9f:e4:c3:8d:8f:87:b5:87:3b: b2:20:7c:21:4d:5a:5f:87:84:e1:ec:1b:d6:a9:d9:24:c2:60: 66:9a:b9:11:50:83:8f:3c:38:4e:3f:52:65:ac:89:c2:fc:88: 24:d0:64:1d:2f:a7:f0:7f:37:af:6c:e8:08:45:fa:e4:3a:ee: 71:fd:8e:eb:4d:75:e4:b1:32:19:86:2a:67:7f:eb:f4:c8:08: e8:f9:5a:54:f0:a4:2b:4d:1b:9e:b2:32:f9:ad:41:7a:41:92: c6:c8:88:a3:29:7c:97:b2:43:1b:55:52:84:62:c0:12:6e:65: d2:7f:91:e3:65:48:f2:05:04:61:c1:87:26:98:74:88:ad:6b: 22:97:ae:82 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDZMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yMzEyMDQx MzUwNTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlGNzM2MkMzQUNFMTVE OTk3N0Q0NjhENzZFQzg0RjhGNkU5OTFGN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO6xwQNi9ClL4ISN4Z8B7lUhMqh4pvOcjRFmd92wPcjsH4NrQk YHRDDQANBP5ixfB/cjcBOIyPf3gisdVcTXCxhCKOfxDcI2AhYsDGTR+G0T/qMobX yoigLrl36nAA3etuP/4urIAxB3FDMIOfN250qP7RAk5vSbrgRCuMZY8SG8svWtN+ VEqvp38mDIkZ0XXS5h0PS/p1DDfgQniAJ2Y4ojRCnOJBqBFTeS74FyZJglpJL/SB s7kZuXuLwPEgZsvWMzgJOk9EGZqzjaNIJDOlEfPxMVcffQuE0MWJN9k0eyyN9mip xximOAvHKvJJRD0/jqaHwOvFV1ynUdVsK2glAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUn3Niw6zhXZl31GjXbshPj26ZH3wwHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vbjNOaXc2emhY WmwzMUdqWGJzaFBqMjZaSDN3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGeHFTANBgkqhkiG9w0BAQsFAAOCAQEAEXuEksBOlkpeOryHmhSREB1W 9IOPJldgjIb9xXYNWJpryiFxSq1k1l3V592bLvMl51gGweldKNaSJj/AVMD6JAXl cf9TcQOYOtR6IeRYi/elDv0bVLODEvFcB4LxNABLam2/9qTHJR3AYhdWcYtgyl1o RPNLn+TDjY+HtYc7siB8IU1aX4eE4ewb1qnZJMJgZpq5EVCDjzw4Tj9SZayJwvyI JNBkHS+n8H83r2zoCEX65Drucf2O60115LEyGYYqZ3/r9MgI6PlaVPCkK00bnrIy +a1BekGSxsiIoyl8l7JDG1VShGLAEm5l0n+R42VI8gUEYcGHJph0iK1rIpeugg== -----END CERTIFICATE-----Generated at Sun Jun 2 09:37:17 2024 by rpki-client on console-ams.rpki-client.org