$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTUSTCCADM/SJCagB4xT4Lh6VSuiAdPjO73DAI.roa File: SJCagB4xT4Lh6VSuiAdPjO73DAI.roa (raw, json) Hash identifier: VBlAAPzM6jGv7d6LfN7OBQhQLIcj7hOgeJg7PfE6xPo= Subject key identifier: 48:90:9A:80:1E:31:4F:82:E1:E9:54:AE:88:07:4F:8C:EE:F7:0C:02 Certificate issuer: /CN=AEF6D09D9C14A108AA2051743C1379ED8FF25B48 Certificate serial: 01CD Authority key identifier: AE:F6:D0:9D:9C:14:A1:08:AA:20:51:74:3C:13:79:ED:8F:F2:5B:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rvbQnZwUoQiqIFF0PBN57Y_yW0g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTUSTCCADM/SJCagB4xT4Lh6VSuiAdPjO73DAI.roa Signing time: Mon 26 Aug 2024 05:23:32 +0000 ROA not before: Mon 26 Aug 2024 05:23:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63899 IP address blocks: 103.191.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTUSTCCADM/rvbQnZwUoQiqIFF0PBN57Y_yW0g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NTUSTCCADM/rvbQnZwUoQiqIFF0PBN57Y_yW0g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/rvbQnZwUoQiqIFF0PBN57Y_yW0g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 461 (0x1cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEF6D09D9C14A108AA2051743C1379ED8FF25B48 Validity Not Before: Aug 26 05:23:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=48909A801E314F82E1E954AE88074F8CEEF70C02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:00:f1:85:a6:a7:d8:b7:f1:74:48:5f:84:d4: 87:47:c6:af:3a:6e:c5:61:3f:44:6a:6a:12:d7:ef: 8e:50:89:03:62:fb:d8:5c:13:2f:3f:5f:23:52:4e: 5a:84:0f:09:36:0b:c8:53:36:ab:40:11:73:a5:c7: d4:5f:bb:76:93:76:14:56:bc:94:72:33:02:46:4d: f0:49:6d:13:c5:3e:26:32:9c:fd:9a:f1:c3:f2:db: d3:5a:9f:ae:23:13:e0:9a:30:75:af:28:04:35:47: 00:35:41:80:d6:09:dd:48:4a:cd:d1:c6:eb:ab:8b: 00:da:97:73:4c:3d:d4:3c:33:b5:f0:92:40:91:1d: a7:0a:40:b4:22:78:ca:c7:12:2d:48:c9:2a:d2:9c: bc:48:9f:7f:12:9b:fd:58:f3:35:24:ec:35:99:bf: ee:e3:e4:10:f9:d7:22:75:89:ff:55:6c:54:9f:5a: 5e:51:78:cc:da:74:36:90:28:0d:14:e2:57:b3:2e: 66:05:5f:4b:54:f1:4b:9a:1c:50:71:b2:35:7b:b4: 6e:64:61:f2:89:23:c2:ee:c0:75:26:0d:8a:15:b1: dc:33:1f:5d:f8:69:25:f0:cf:95:6e:01:ec:eb:fa: 22:f1:da:a5:f2:90:61:7a:24:d0:cc:8d:0f:98:22: 69:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:90:9A:80:1E:31:4F:82:E1:E9:54:AE:88:07:4F:8C:EE:F7:0C:02 X509v3 Authority Key Identifier: keyid:AE:F6:D0:9D:9C:14:A1:08:AA:20:51:74:3C:13:79:ED:8F:F2:5B:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTUSTCCADM/rvbQnZwUoQiqIFF0PBN57Y_yW0g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rvbQnZwUoQiqIFF0PBN57Y_yW0g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTUSTCCADM/SJCagB4xT4Lh6VSuiAdPjO73DAI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.191.22.0/23 Signature Algorithm: sha256WithRSAEncryption 88:85:97:5f:10:da:36:ac:3b:8b:f1:20:4e:dc:38:0a:e9:04: 8b:ec:e9:03:37:b2:98:75:92:9b:50:ce:63:2b:b7:ea:bc:fa: 45:da:ac:dd:d2:6e:47:1a:00:1c:8f:d5:e3:13:b6:7e:7c:8a: 7b:63:1c:b5:de:77:f0:67:86:4a:7a:49:39:26:13:1c:4e:ef: f2:79:9a:cc:34:d3:b8:09:67:6d:78:28:0a:0d:36:1c:f2:f2: 5b:24:41:99:0b:60:13:63:02:fc:97:fc:db:22:00:b1:9d:95: f0:4a:3c:6b:1c:30:cb:2c:8f:53:35:15:72:da:09:90:44:9d: 81:cd:63:fb:72:11:e2:0f:71:76:ea:cd:05:7d:6b:20:ae:90: 46:e9:b2:4c:63:dc:c4:9e:b5:27:3f:fe:51:4d:97:0d:28:60: 0f:40:c8:6a:54:d1:89:49:87:28:e8:7f:0e:cf:39:cf:8d:b2: 12:30:a4:95:d5:64:b4:02:cb:04:05:98:4c:ee:d8:80:f9:e6: d0:44:27:46:18:85:68:5c:7b:22:67:21:71:02:68:5d:7f:bf: f0:59:38:b9:2a:b7:52:e7:bc:3f:c2:2a:75:a7:fe:49:9d:16: 17:b0:2a:92:66:a9:47:85:38:c8:c3:d9:66:0f:92:a6:3b:d8: 1a:f5:37:36 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAc0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUVG NkQwOUQ5QzE0QTEwOEFBMjA1MTc0M0MxMzc5RUQ4RkYyNUI0ODAeFw0yNDA4MjYw NTIzMzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ4OTA5QTgwMUUzMTRG ODJFMUU5NTRBRTg4MDc0RjhDRUVGNzBDMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmAPGFpqfYt/F0SF+E1IdHxq86bsVhP0RqahLX745QiQNi+9hc Ey8/XyNSTlqEDwk2C8hTNqtAEXOlx9Rfu3aTdhRWvJRyMwJGTfBJbRPFPiYynP2a 8cPy29Nan64jE+CaMHWvKAQ1RwA1QYDWCd1ISs3RxuuriwDal3NMPdQ8M7XwkkCR HacKQLQieMrHEi1IySrSnLxIn38Sm/1Y8zUk7DWZv+7j5BD51yJ1if9VbFSfWl5R eMzadDaQKA0U4lezLmYFX0tU8UuaHFBxsjV7tG5kYfKJI8LuwHUmDYoVsdwzH134 aSXwz5VuAezr+iLx2qXykGF6JNDMjQ+YImlDAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUSJCagB4xT4Lh6VSuiAdPjO73DAIwHwYDVR0jBBgwFoAUrvbQnZwUoQiqIFF0 PBN57Y/yW0gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlRVU1RD Q0FETS9ydmJRblp3VW9RaXFJRkYwUEJONTdZX3lXMGcuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3J2YlFuWndVb1FpcUlGRjBQQk41N1lfeVcwZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL05UVVNUQ0NBRE0vU0pDYWdCNHhU NExoNlZTdWlBZFBqTzczREFJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWe/FjANBgkqhkiG9w0BAQsFAAOCAQEAiIWXXxDaNqw7i/EgTtw4CukE i+zpAzeymHWSm1DOYyu36rz6Rdqs3dJuRxoAHI/V4xO2fnyKe2Mctd538GeGSnpJ OSYTHE7v8nmazDTTuAlnbXgoCg02HPLyWyRBmQtgE2MC/Jf82yIAsZ2V8Eo8axww yyyPUzUVctoJkESdgc1j+3IR4g9xdurNBX1rIK6QRumyTGPcxJ61Jz/+UU2XDShg D0DIalTRiUmHKOh/Ds85z42yEjCkldVktALLBAWYTO7YgPnm0EQnRhiFaFx7Imch cQJoXX+/8Fk4uSq3Uue8P8Iqdaf+SZ0WF7AqkmapR4U4yMPZZg+SpjvYGvU3Ng== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org