$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RENREN/_F9HWSkwPxM_rgZlMZXc4u2-gAQ.roa File: _F9HWSkwPxM_rgZlMZXc4u2-gAQ.roa (raw, json) Hash identifier: Uqclujy13sm6o2TeHrYHd90VDlHR/prXhG2oC4lJmcg= Subject key identifier: FC:5F:47:59:29:30:3F:13:3F:AE:06:65:31:95:DC:E2:ED:BE:80:04 Certificate issuer: /CN=DB27F7B21D588E1F393973F41C56CA41F8099334 Certificate serial: 010C Authority key identifier: DB:27:F7:B2:1D:58:8E:1F:39:39:73:F4:1C:56:CA:41:F8:09:93:34 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2yf3sh1Yjh85OXP0HFbKQfgJkzQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RENREN/_F9HWSkwPxM_rgZlMZXc4u2-gAQ.roa Signing time: Sun 22 Sep 2024 18:05:20 +0000 ROA not before: Sun 22 Sep 2024 18:05:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 103.69.48.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/RENREN/2yf3sh1Yjh85OXP0HFbKQfgJkzQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/RENREN/2yf3sh1Yjh85OXP0HFbKQfgJkzQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/2yf3sh1Yjh85OXP0HFbKQfgJkzQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB27F7B21D588E1F393973F41C56CA41F8099334 Validity Not Before: Sep 22 18:05:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FC5F475929303F133FAE06653195DCE2EDBE8004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:86:dc:8d:0e:a6:7e:ee:46:2a:76:73:60:15: 02:01:0f:3a:12:f4:4d:5f:5a:85:c7:6c:4a:52:be: f9:5d:6a:c1:b1:ff:7b:3e:43:cd:24:45:ed:0a:b5: 9b:9a:e0:97:62:84:9d:97:d1:fe:c7:98:ba:11:d8: ea:45:96:24:fa:3a:c4:2c:1a:a8:63:f9:f2:91:43: 57:bc:50:cf:e5:ec:04:36:48:ae:b9:3f:35:7a:81: d2:93:58:3e:43:2c:68:dd:df:38:19:34:20:19:a4: e7:1d:c0:71:a2:c2:14:52:b1:eb:5b:11:41:6e:c8: 16:55:6f:46:97:a2:be:43:13:13:91:21:58:34:19: 2f:ec:c3:7c:ee:ce:40:47:11:90:a4:e4:83:27:f6: 5c:b2:dd:2d:08:77:9a:dd:d2:ac:8e:84:38:4d:b0: b5:c4:a6:b2:df:0a:e3:d0:0f:7d:8d:ca:4a:2f:86: 24:85:10:12:35:92:24:56:6b:b7:eb:e6:2e:19:a8: 00:cf:9a:83:db:7c:6f:c7:ec:42:af:0b:65:e0:73: 98:da:31:13:ea:0e:d3:ab:1b:99:71:dc:91:d9:8a: dc:6f:f7:cb:48:7e:4c:13:59:64:2a:3a:e7:6f:cc: e5:2d:81:6d:10:ee:42:2e:ab:6b:aa:a3:2b:ba:9e: 2a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:5F:47:59:29:30:3F:13:3F:AE:06:65:31:95:DC:E2:ED:BE:80:04 X509v3 Authority Key Identifier: keyid:DB:27:F7:B2:1D:58:8E:1F:39:39:73:F4:1C:56:CA:41:F8:09:93:34 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RENREN/2yf3sh1Yjh85OXP0HFbKQfgJkzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2yf3sh1Yjh85OXP0HFbKQfgJkzQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RENREN/_F9HWSkwPxM_rgZlMZXc4u2-gAQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.69.48.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:9e:93:35:1b:21:33:69:d6:67:cd:2f:0b:a5:fa:1a:f1:53: 92:57:a5:8e:fb:66:6b:7d:5f:d6:eb:5e:99:6c:e9:7e:a2:0e: 76:49:5a:37:d2:56:a9:c5:6d:85:da:bf:32:8f:b7:48:ce:a3: e4:18:04:ff:e7:c4:b2:59:82:94:2e:1d:cd:83:a3:66:fa:b7: 91:6d:1e:42:df:55:64:ea:91:1a:54:d2:6f:99:87:05:ef:f9: d7:fb:af:e0:ef:76:af:3c:d5:47:80:e7:d3:1e:9b:06:7d:b1: ef:dc:66:a6:ca:e6:95:f2:71:80:b4:aa:50:32:f4:43:d7:2a: c6:4e:dc:a8:3d:a7:e8:9a:96:95:67:6d:e4:ed:f4:bd:01:5d: 78:a6:78:55:35:c7:62:c6:46:4a:24:f9:ab:97:a6:13:86:d1: 62:93:a2:23:bc:0d:4f:50:5a:79:5e:84:1f:85:7b:44:6d:b2: 72:b7:3d:5a:c7:44:38:6f:12:8e:e0:2d:78:f1:69:1c:31:90: 98:6f:42:d4:e2:96:00:0f:8c:ab:65:39:d7:53:e9:73:24:9e: 8b:80:70:54:b4:6f:73:fd:13:b7:91:fb:82:fb:eb:e3:bb:10: e5:d5:b9:1a:8a:e2:0a:58:b7:f8:03:61:39:00:13:44:f2:eb: 04:04:21:c8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREIy N0Y3QjIxRDU4OEUxRjM5Mzk3M0Y0MUM1NkNBNDFGODA5OTMzNDAeFw0yNDA5MjIx ODA1MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZDNUY0NzU5MjkzMDNG MTMzRkFFMDY2NTMxOTVEQ0UyRURCRTgwMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3htyNDqZ+7kYqdnNgFQIBDzoS9E1fWoXHbEpSvvldasGx/3s+ Q80kRe0KtZua4JdihJ2X0f7HmLoR2OpFliT6OsQsGqhj+fKRQ1e8UM/l7AQ2SK65 PzV6gdKTWD5DLGjd3zgZNCAZpOcdwHGiwhRSsetbEUFuyBZVb0aXor5DExORIVg0 GS/sw3zuzkBHEZCk5IMn9lyy3S0Id5rd0qyOhDhNsLXEprLfCuPQD32NykovhiSF EBI1kiRWa7fr5i4ZqADPmoPbfG/H7EKvC2Xgc5jaMRPqDtOrG5lx3JHZitxv98tI fkwTWWQqOudvzOUtgW0Q7kIuq2uqoyu6nirJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU/F9HWSkwPxM/rgZlMZXc4u2+gAQwHwYDVR0jBBgwFoAU2yf3sh1Yjh85OXP0 HFbKQfgJkzQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUkVOUkVO LzJ5ZjNzaDFZamg4NU9YUDBIRmJLUWZnSmt6US5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvMnlmM3NoMVlqaDg1T1hQMEhGYktRZmdKa3pRLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvUkVOUkVOL19GOUhXU2t3UHhNX3JnWmxN WlhjNHUyLWdBUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn RTAwDQYJKoZIhvcNAQELBQADggEBAI6ekzUbITNp1mfNLwul+hrxU5JXpY77Zmt9 X9brXpls6X6iDnZJWjfSVqnFbYXavzKPt0jOo+QYBP/nxLJZgpQuHc2Do2b6t5Ft HkLfVWTqkRpU0m+ZhwXv+df7r+Dvdq881UeA59MemwZ9se/cZqbK5pXycYC0qlAy 9EPXKsZO3Kg9p+ialpVnbeTt9L0BXXimeFU1x2LGRkok+auXphOG0WKToiO8DU9Q WnlehB+Fe0RtsnK3PVrHRDhvEo7gLXjxaRwxkJhvQtTilgAPjKtlOddT6XMknouA cFS0b3P9E7eR+4L76+O7EOXVuRqK4gpYt/gDYTkAE0Ty6wQEIcg= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:43 2024 by rpki-client on console-fra.rpki-client.org