$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/SONF6PKam2LwvxGvtNoLC3Ele1w.roa File: SONF6PKam2LwvxGvtNoLC3Ele1w.roa (raw, json) Hash identifier: Taqe4gsUDZM5EqtG3Yw/AIL7ona9f4PyVp/Iya3OfOU= Subject key identifier: 48:E3:45:E8:F2:9A:9B:62:F0:BF:11:AF:B4:DA:0B:0B:71:25:7B:5C Certificate issuer: /CN=98A5C390143149481DE79BC17BB62DBA2271F61F Certificate serial: 0294 Authority key identifier: 98:A5:C3:90:14:31:49:48:1D:E7:9B:C1:7B:B6:2D:BA:22:71:F6:1F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mKXDkBQxSUgd55vBe7YtuiJx9h8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/SONF6PKam2LwvxGvtNoLC3Ele1w.roa Signing time: Fri 01 Sep 2023 09:21:22 +0000 ROA not before: Fri 01 Sep 2023 09:21:22 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131618 IP address blocks: 103.159.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/mKXDkBQxSUgd55vBe7YtuiJx9h8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/mKXDkBQxSUgd55vBe7YtuiJx9h8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mKXDkBQxSUgd55vBe7YtuiJx9h8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 07:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 660 (0x294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98A5C390143149481DE79BC17BB62DBA2271F61F Validity Not Before: Sep 1 09:21:22 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=48E345E8F29A9B62F0BF11AFB4DA0B0B71257B5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:01:4e:d5:e2:41:2e:68:f0:84:61:4f:db:d9: 73:1c:05:bd:b3:ec:71:4d:43:05:30:f2:18:19:3c: 14:58:06:46:eb:d4:79:05:d0:45:7f:0d:6d:c0:d5: 34:c7:de:0c:70:68:92:40:c7:ea:aa:85:9e:5f:c2: bf:68:b3:9d:29:26:3c:a4:ed:f1:86:81:f0:5d:80: d8:f3:bc:11:9a:d5:16:86:ed:41:81:a4:c8:1d:2a: 97:09:6b:87:a1:f9:bd:13:f5:07:f9:e2:72:2d:87: e7:88:f9:04:8c:4c:17:50:fd:e5:1c:9e:41:11:d2: 5f:b7:e9:a3:40:9f:f2:8d:eb:f3:56:dd:09:3f:4e: f2:75:44:5b:e9:a9:11:ee:df:75:ff:7b:55:79:a8: cd:1c:13:1c:73:54:b8:85:66:a8:8d:c4:39:a1:31: a3:78:a2:bf:db:90:f6:24:4b:ac:49:d2:ac:95:e1: ea:13:f2:35:bd:19:87:49:4a:e4:18:a3:6c:fe:0e: 05:31:6b:0b:86:53:6a:1c:c0:85:9c:d4:57:4a:dc: 25:20:6e:97:2c:64:59:e6:87:ac:05:ee:5d:d2:22: 99:89:9a:1c:a1:4a:81:a4:bb:d8:da:22:d7:0a:65: 42:48:38:2c:d0:d7:16:a2:aa:37:da:ea:1d:d4:5e: 33:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:E3:45:E8:F2:9A:9B:62:F0:BF:11:AF:B4:DA:0B:0B:71:25:7B:5C X509v3 Authority Key Identifier: keyid:98:A5:C3:90:14:31:49:48:1D:E7:9B:C1:7B:B6:2D:BA:22:71:F6:1F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/mKXDkBQxSUgd55vBe7YtuiJx9h8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mKXDkBQxSUgd55vBe7YtuiJx9h8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/SONF6PKam2LwvxGvtNoLC3Ele1w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.159.120.0/23 Signature Algorithm: sha256WithRSAEncryption 22:3e:76:1e:38:c5:4f:e2:c3:f0:15:ff:c1:f3:18:c7:75:e9: 72:79:c5:be:0f:55:c3:df:dd:fa:70:e6:67:06:f6:03:ee:9b: 38:51:02:bd:d0:00:71:91:6e:87:36:e8:25:37:8a:5e:02:5e: 46:5d:99:b1:d2:49:b3:81:07:fc:db:47:de:90:9c:90:2e:6a: 0e:36:a7:d3:1c:13:e1:d6:21:6b:6f:f9:b6:0c:ca:e8:39:69: a1:07:73:01:3b:0b:98:f3:0e:3f:3b:6f:bf:0d:dd:df:2e:f8: ba:2e:64:d9:64:bd:ca:74:5f:8c:84:75:5b:0b:ad:ec:40:b0: b0:60:9c:24:fd:d8:ab:e8:17:dd:bd:ed:85:80:2d:17:c1:4d: ae:93:17:f7:1b:8d:16:6c:c6:c3:4e:8a:1f:cb:38:10:a8:71: 23:ce:72:59:8d:78:ec:35:53:11:33:91:40:e6:cb:a3:69:c8: 1d:83:85:00:b1:e0:49:f1:f3:d3:64:12:df:c5:8e:05:3d:f5: c4:99:fe:e2:a2:b2:6c:dc:f0:72:74:dc:2f:3f:5f:39:c4:b4: 8c:1a:f7:68:47:fe:56:6e:64:c2:65:ed:8a:c1:b4:71:51:f4: 6c:d9:61:b4:cc:6c:f5:a9:5a:37:7e:01:77:ae:2e:5b:db:d0: b7:d3:b4:d3 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICApQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOThB NUMzOTAxNDMxNDk0ODFERTc5QkMxN0JCNjJEQkEyMjcxRjYxRjAeFw0yMzA5MDEw OTIxMjJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQ4RTM0NUU4RjI5QTlC NjJGMEJGMTFBRkI0REEwQjBCNzEyNTdCNUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEAU7V4kEuaPCEYU/b2XMcBb2z7HFNQwUw8hgZPBRYBkbr1HkF 0EV/DW3A1TTH3gxwaJJAx+qqhZ5fwr9os50pJjyk7fGGgfBdgNjzvBGa1RaG7UGB pMgdKpcJa4eh+b0T9Qf54nIth+eI+QSMTBdQ/eUcnkER0l+36aNAn/KN6/NW3Qk/ TvJ1RFvpqRHu33X/e1V5qM0cExxzVLiFZqiNxDmhMaN4or/bkPYkS6xJ0qyV4eoT 8jW9GYdJSuQYo2z+DgUxawuGU2ocwIWc1FdK3CUgbpcsZFnmh6wF7l3SIpmJmhyh SoGku9jaItcKZUJIOCzQ1xaiqjfa6h3UXjMpAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUSONF6PKam2LwvxGvtNoLC3Ele1wwHwYDVR0jBBgwFoAUmKXDkBQxSUgd55vB e7YtuiJx9h8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTVlTRU5T RS9tS1hEa0JReFNVZ2Q1NXZCZTdZdHVpSng5aDguY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL21LWERrQlF4U1VnZDU1dkJlN1l0dWlKeDloOC5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL01ZU0VOU0UvU09ORjZQS2FtMkx3dnhH dnROb0xDM0VsZTF3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWefeDANBgkqhkiG9w0BAQsFAAOCAQEAIj52HjjFT+LD8BX/wfMYx3XpcnnFvg9V w9/d+nDmZwb2A+6bOFECvdAAcZFuhzboJTeKXgJeRl2ZsdJJs4EH/NtH3pCckC5q Djan0xwT4dYha2/5tgzK6DlpoQdzATsLmPMOPztvvw3d3y74ui5k2WS9ynRfjIR1 Wwut7ECwsGCcJP3Yq+gX3b3thYAtF8FNrpMX9xuNFmzGw06KH8s4EKhxI85yWY14 7DVTETORQObLo2nIHYOFALHgSfHz02QS38WOBT31xJn+4qKybNzwcnTcLz9fOcS0 jBr3aEf+Vm5kwmXtisG0cVH0bNlhtMxs9alaN34Bd64uW9vQt9O00w== -----END CERTIFICATE-----Generated at Sat May 18 07:29:30 2024 by rpki-client on console-fra.rpki-client.org