$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NETEASE/BcOVhOjbi4qmjDkNykzoW2v11lQ.roa File: BcOVhOjbi4qmjDkNykzoW2v11lQ.roa (raw, json) Hash identifier: JA8IoX1v1neDnUyqHWMNs/MTvf4mLmKNH7ZnWE0nJck= Subject key identifier: 05:C3:95:84:E8:DB:8B:8A:A6:8C:39:0D:CA:4C:E8:5B:6B:F5:D6:54 Certificate issuer: /CN=DEA0948BB7791C4710993A8F1FCCE967ADA09C00 Certificate serial: 1172 Authority key identifier: DE:A0:94:8B:B7:79:1C:47:10:99:3A:8F:1F:CC:E9:67:AD:A0:9C:00 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3qCUi7d5HEcQmTqPH8zpZ62gnAA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/BcOVhOjbi4qmjDkNykzoW2v11lQ.roa Signing time: Fri 01 Sep 2023 09:26:18 +0000 ROA not before: Fri 01 Sep 2023 09:26:18 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131659 IP address blocks: 103.131.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/3qCUi7d5HEcQmTqPH8zpZ62gnAA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/3qCUi7d5HEcQmTqPH8zpZ62gnAA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3qCUi7d5HEcQmTqPH8zpZ62gnAA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:53:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4466 (0x1172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEA0948BB7791C4710993A8F1FCCE967ADA09C00 Validity Not Before: Sep 1 09:26:18 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=05C39584E8DB8B8AA68C390DCA4CE85B6BF5D654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b3:4e:3d:83:08:9c:7e:1b:d4:9a:8b:c8:24: 50:73:8a:b6:72:f8:ed:e8:88:b2:fd:b7:24:d0:06: d2:33:a9:9c:78:0d:5f:66:bb:0c:02:d7:57:86:b7: e9:ca:25:3a:2d:a9:86:72:f8:31:b2:03:07:3f:c3: 66:88:20:e3:7d:1b:7b:e3:c8:65:38:2e:03:21:0e: b1:a2:5e:60:b4:ed:3a:41:27:e2:b0:51:17:7e:33: 7a:64:6c:5e:55:62:9f:f2:96:e6:91:d5:a1:ae:68: 5a:61:58:a1:2c:5f:6a:bf:1f:9f:55:06:54:f1:81: e2:7a:e7:e8:46:67:dc:c5:d1:9b:7a:58:da:31:92: ab:63:f5:dd:84:32:50:1f:e2:2c:85:ac:76:df:05: f9:ae:17:a1:89:d7:46:b5:c6:d3:f5:b8:03:e1:96: b1:99:03:99:bb:8d:75:ba:42:b0:fe:90:2e:38:4e: 03:29:18:c5:c9:8a:78:8a:b2:5a:8a:7c:43:95:fc: dd:b1:10:69:85:c4:31:3e:67:53:45:5d:a2:15:68: 7a:f9:4c:3c:ad:e9:2a:e3:4c:08:8f:95:30:2c:c7: 2f:d5:3e:22:0a:9c:9d:10:30:b7:c9:4f:2a:83:9a: d7:5d:49:99:17:72:28:aa:fd:c3:c9:70:64:60:34: 33:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C3:95:84:E8:DB:8B:8A:A6:8C:39:0D:CA:4C:E8:5B:6B:F5:D6:54 X509v3 Authority Key Identifier: keyid:DE:A0:94:8B:B7:79:1C:47:10:99:3A:8F:1F:CC:E9:67:AD:A0:9C:00 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/3qCUi7d5HEcQmTqPH8zpZ62gnAA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3qCUi7d5HEcQmTqPH8zpZ62gnAA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/BcOVhOjbi4qmjDkNykzoW2v11lQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.131.252.0/22 Signature Algorithm: sha256WithRSAEncryption 39:84:c2:73:c7:1d:7f:81:2a:92:6e:09:d9:37:51:a5:8a:3c: 7a:50:24:b0:99:f0:ae:be:2c:9d:e5:63:cd:4e:7c:ac:85:5a: 34:e4:b3:6b:17:c8:b5:53:1d:f2:d8:19:39:e0:95:f5:95:b5: dc:99:f8:21:05:ab:96:e7:61:af:e9:73:83:e5:07:83:52:81: 6e:e1:f2:bf:8f:d6:a4:26:19:47:9e:ca:ac:a3:3a:c0:3a:72: 43:2f:7c:32:57:a4:37:59:ea:18:fd:4c:86:40:02:e4:bf:19: 08:77:84:ed:ad:1b:ce:c4:fb:96:b9:f7:14:5e:f2:20:3d:12: 3a:b2:fe:81:ca:6c:b6:25:c7:0a:79:b1:13:5e:5d:90:fd:2c: a2:5f:84:79:6b:03:62:88:59:62:6b:de:89:25:c1:e6:c8:4b: 2e:c4:b6:97:14:8a:96:af:6a:c4:25:4d:d1:da:f7:a4:a0:a8: e1:af:8a:3a:c0:5c:51:1a:ff:e5:de:5a:22:8e:01:99:93:d7: 2e:d2:f6:89:8b:0e:e4:95:ff:6b:9c:f2:40:27:21:cc:69:c4: d8:de:42:da:e4:14:a3:23:6a:3b:da:64:03:9b:28:d6:82:3c: 44:0e:46:95:d2:65:c2:f5:00:c8:92:81:13:a8:fd:7b:5c:23: 56:22:ef:c0 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEXIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREVB MDk0OEJCNzc5MUM0NzEwOTkzQThGMUZDQ0U5NjdBREEwOUMwMDAeFw0yMzA5MDEw OTI2MThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDA1QzM5NTg0RThEQjhC OEFBNjhDMzkwRENBNENFODVCNkJGNUQ2NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXs049gwicfhvUmovIJFBzirZy+O3oiLL9tyTQBtIzqZx4DV9m uwwC11eGt+nKJTotqYZy+DGyAwc/w2aIION9G3vjyGU4LgMhDrGiXmC07TpBJ+Kw URd+M3pkbF5VYp/yluaR1aGuaFphWKEsX2q/H59VBlTxgeJ65+hGZ9zF0Zt6WNox kqtj9d2EMlAf4iyFrHbfBfmuF6GJ10a1xtP1uAPhlrGZA5m7jXW6QrD+kC44TgMp GMXJiniKslqKfEOV/N2xEGmFxDE+Z1NFXaIVaHr5TDyt6SrjTAiPlTAsxy/VPiIK nJ0QMLfJTyqDmtddSZkXciiq/cPJcGRgNDPHAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUBcOVhOjbi4qmjDkNykzoW2v11lQwHwYDVR0jBBgwFoAU3qCUi7d5HEcQmTqP H8zpZ62gnAAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkVURUFT RS8zcUNVaTdkNUhFY1FtVHFQSDh6cFo2MmduQUEuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBLzNxQ1VpN2Q1SEVjUW1UcVBIOHpwWjYyZ25BQS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05FVEVBU0UvQmNPVmhPamJpNHFtakRr Tnlrem9XMnYxMWxRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmeD/DANBgkqhkiG9w0BAQsFAAOCAQEAOYTCc8cdf4Eqkm4J2TdRpYo8elAksJnw rr4sneVjzU58rIVaNOSzaxfItVMd8tgZOeCV9ZW13Jn4IQWrludhr+lzg+UHg1KB buHyv4/WpCYZR57KrKM6wDpyQy98MlekN1nqGP1MhkAC5L8ZCHeE7a0bzsT7lrn3 FF7yID0SOrL+gcpstiXHCnmxE15dkP0sol+EeWsDYohZYmveiSXB5shLLsS2lxSK lq9qxCVN0dr3pKCo4a+KOsBcURr/5d5aIo4BmZPXLtL2iYsO5JX/a5zyQCchzGnE 2N5C2uQUoyNqO9pkA5so1oI8RA5GldJlwvUAyJKBE6j9e1wjViLvwA== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:50 2024 by rpki-client on console-ams.rpki-client.org