$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/Fbrz8O-TJCjSxgvZ_3JTQlZCV2s.roa File: Fbrz8O-TJCjSxgvZ_3JTQlZCV2s.roa (raw, json) Hash identifier: syb8YoCtR8gve17iVIb/uEqoIZCZUOiBkFO/zKiL4Fg= Subject key identifier: 15:BA:F3:F0:EF:93:24:28:D2:C6:0B:D9:FF:72:53:42:56:42:57:6B Certificate issuer: /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864 Certificate serial: 05DF Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/Fbrz8O-TJCjSxgvZ_3JTQlZCV2s.roa Signing time: Fri 01 Sep 2023 09:20:04 +0000 ROA not before: Fri 01 Sep 2023 09:20:04 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17415 IP address blocks: 103.152.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:48:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1503 (0x5df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864 Validity Not Before: Sep 1 09:20:04 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=15BAF3F0EF932428D2C60BD9FF7253425642576B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:53:ab:d0:8f:5f:2a:5c:18:1a:9e:39:33:a9: fb:22:c3:80:4c:86:6a:74:3f:13:03:8e:76:6d:71: bd:08:49:23:f7:d2:a3:17:4b:5a:29:15:1c:86:0f: e9:4a:5d:d5:02:e6:37:06:53:3c:70:c3:15:8f:72: 7c:50:b7:d8:c7:97:32:84:86:f3:aa:91:8e:58:ec: a9:ac:4a:e0:6d:7e:f3:fe:ca:49:68:39:5e:cc:6f: 00:a8:5c:75:75:05:3b:2a:24:81:51:d8:c4:3b:ec: dc:f6:d6:5f:0c:80:c5:7c:39:d6:cb:8a:af:72:5c: 74:72:8b:a9:08:7d:dc:be:cf:6d:f6:5b:61:58:ed: db:8c:34:8e:9a:c3:0a:7f:e6:c9:6a:91:20:21:ba: 1b:a2:c2:9f:45:43:2f:7a:27:4e:19:67:e1:ff:4d: b1:99:4b:eb:5a:13:5e:cc:d0:7a:40:14:e5:c4:dc: 48:1d:65:73:25:bf:97:9f:c5:91:35:8b:56:19:10: 51:b8:b5:4f:3d:5e:89:34:9d:19:ac:a7:89:b9:d4: cf:33:e4:f7:30:60:54:91:1f:5a:df:ad:86:fd:8f: da:c2:6f:54:1d:af:b8:e5:50:6c:9d:d5:3a:69:a2: d4:c1:46:27:2a:95:72:7c:10:e2:08:2f:0a:00:c2: 2b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:BA:F3:F0:EF:93:24:28:D2:C6:0B:D9:FF:72:53:42:56:42:57:6B X509v3 Authority Key Identifier: keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/Fbrz8O-TJCjSxgvZ_3JTQlZCV2s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.152.202.0/24 Signature Algorithm: sha256WithRSAEncryption 32:5e:e4:61:aa:85:ab:14:fb:ac:ac:55:00:f1:fa:4a:4e:17: 55:a5:d8:15:5d:e5:37:98:88:5e:e4:11:ee:42:78:6b:ff:78: 84:40:a2:77:be:12:dd:41:49:8f:38:0c:23:72:b3:92:e6:8f: e0:a1:d0:3b:eb:78:39:52:b8:d6:b0:26:56:d6:1f:55:f7:05: ef:13:9b:a8:7e:14:39:b1:2d:4e:62:1e:a6:90:51:a8:69:ee: 62:63:f9:f6:3c:d7:6e:b4:8f:17:b7:f7:e2:d9:b7:c3:8a:b4: ae:fc:13:56:64:e3:ab:41:68:f8:4b:4b:97:13:00:ea:02:e3: 73:25:05:45:6c:3e:05:f0:a7:b4:f9:e2:b7:8b:13:7c:db:55: 27:2d:83:05:82:3b:43:b5:e2:3b:12:27:c3:f1:02:7d:f4:f2: 97:08:ca:f1:57:79:99:90:f5:df:70:41:79:dc:4c:8d:1f:11: 66:ee:03:a5:6e:c0:84:d4:66:34:5c:f7:53:4e:fd:cb:3c:e5: 21:7e:de:fe:c4:93:72:49:a4:c2:ef:ed:89:40:cd:36:23:86: 75:63:af:74:b3:e0:3f:01:1c:70:11:ea:6e:0d:b7:7d:79:9f: 8e:06:ed:ee:25:0d:df:20:16:df:1d:9e:f2:d6:3a:17:96:5f: 71:58:fb:6c -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICBd8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQURG RTZFNTZEQUY4NDkyRUM3REU4OEIzQTkwNkIzMTM5QjU1Qjg2NDAeFw0yMzA5MDEw OTIwMDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE1QkFGM0YwRUY5MzI0 MjhEMkM2MEJEOUZGNzI1MzQyNTY0MjU3NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPU6vQj18qXBganjkzqfsiw4BMhmp0PxMDjnZtcb0ISSP30qMX S1opFRyGD+lKXdUC5jcGUzxwwxWPcnxQt9jHlzKEhvOqkY5Y7KmsSuBtfvP+yklo OV7MbwCoXHV1BTsqJIFR2MQ77Nz21l8MgMV8OdbLiq9yXHRyi6kIfdy+z232W2FY 7duMNI6awwp/5slqkSAhuhuiwp9FQy96J04ZZ+H/TbGZS+taE17M0HpAFOXE3Egd ZXMlv5efxZE1i1YZEFG4tU89Xok0nRmsp4m51M8z5PcwYFSRH1rfrYb9j9rCb1Qd r7jlUGyd1TppotTBRicqlXJ8EOIILwoAwitXAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUFbrz8O+TJCjSxgvZ/3JTQlZCV2swHwYDVR0jBBgwFoAUrf5uVtr4SS7H3oiz qQazE5tVuGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJ VEVBL3JmNXVWdHI0U1M3SDNvaXpxUWF6RTV0VnVHUS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcmY1dVZ0cjRTUzdIM29penFRYXpFNXRWdUdRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJVEVBL0Zicno4Ty1USkNq U3hndlpfM0pUUWxaQ1Yycy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABnmMowDQYJKoZIhvcNAQELBQADggEBADJe5GGqhasU+6ysVQDx+kpOF1Wl 2BVd5TeYiF7kEe5CeGv/eIRAone+Et1BSY84DCNys5Lmj+Ch0DvreDlSuNawJlbW H1X3Be8Tm6h+FDmxLU5iHqaQUahp7mJj+fY81260jxe39+LZt8OKtK78E1Zk46tB aPhLS5cTAOoC43MlBUVsPgXwp7T54reLE3zbVSctgwWCO0O14jsSJ8PxAn308pcI yvFXeZmQ9d9wQXncTI0fEWbuA6VuwITUZjRc91NO/cs85SF+3v7Ek3JJpMLv7YlA zTYjhnVjr3Sz4D8BHHAR6m4Nt315n44G7e4lDd8gFt8dnvLWOheWX3FY+2w= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:47 2024 by rpki-client on console-ams.rpki-client.org