$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/VmVPCawMx2PDqrqhXs7DnuBsH-c.roa File: VmVPCawMx2PDqrqhXs7DnuBsH-c.roa (raw, json) Hash identifier: uE34w6SZa0buB1Nc/lE5wk5sCJsHMiDdgnP5z2Cw+Qs= Subject key identifier: 56:65:4F:09:AC:0C:C7:63:C3:AA:BA:A1:5E:CE:C3:9E:E0:6C:1F:E7 Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Certificate serial: 0C0F Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/VmVPCawMx2PDqrqhXs7DnuBsH-c.roa Signing time: Mon 26 Aug 2024 05:25:17 +0000 ROA not before: Mon 26 Aug 2024 05:25:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18464 IP address blocks: 103.122.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3087 (0xc0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Validity Not Before: Aug 26 05:25:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=56654F09AC0CC763C3AABAA15ECEC39EE06C1FE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:56:0f:ff:ed:05:5a:b1:6d:c1:60:6f:4b:53: e9:b4:7f:e0:1d:ff:ca:d6:b2:5a:a3:82:58:8f:a0: a6:2d:7a:be:16:0e:79:d7:9f:74:4c:1d:b5:d4:1a: 66:50:63:ca:5f:99:db:81:2c:f6:b9:4c:64:24:9c: bb:c0:ee:bc:d0:ec:eb:bb:3e:5e:6a:e6:14:5d:ff: be:98:a8:92:e3:82:4f:d6:b2:b3:3f:48:4d:7e:83: c2:8b:e0:1f:20:d6:a2:26:7c:6d:20:e9:9a:40:d7: 2d:f5:80:68:37:4a:5c:0f:24:bf:96:3f:58:ca:5c: 9b:fb:84:bc:a4:7b:42:41:70:e9:30:68:73:cf:4e: 53:b3:58:2a:c6:c3:c0:e6:38:d2:2b:f8:67:1d:e1: b2:b6:2e:62:81:bc:7d:8a:7a:ff:40:cf:94:ed:02: db:1c:fd:13:11:ef:1f:95:9d:62:1a:be:20:79:fb: dd:09:3f:cc:2c:65:aa:cc:b9:83:0e:71:05:86:87: 3a:27:4a:75:1f:50:ca:76:da:a4:bc:dd:09:a4:79: 45:c6:8e:fa:28:bd:0a:c2:5b:72:19:43:b0:d7:22: 7e:6b:bf:47:2e:f4:3d:32:de:09:8e:26:8f:5b:70: a8:3d:fc:4c:1c:45:32:19:26:d0:99:01:df:3a:fa: 2a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:65:4F:09:AC:0C:C7:63:C3:AA:BA:A1:5E:CE:C3:9E:E0:6C:1F:E7 X509v3 Authority Key Identifier: keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/VmVPCawMx2PDqrqhXs7DnuBsH-c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.22.0/24 Signature Algorithm: sha256WithRSAEncryption 53:42:e2:d9:05:23:bb:f4:68:16:db:6a:e7:d6:01:24:03:53: 91:87:69:13:8c:90:d7:92:67:e8:c4:7f:1f:64:a4:7d:07:ff: 7b:91:02:c6:c0:bf:4e:d2:7f:24:58:1b:cd:78:75:07:b2:0e: 94:3d:af:5e:d7:40:c7:0d:1a:f6:31:b6:f5:4b:1d:46:cf:a1: 62:f4:77:88:89:01:48:9b:43:c2:9b:42:3a:7d:37:7c:5c:dc: 5a:5d:b8:6c:f8:d4:72:92:56:27:07:a1:02:ef:59:0d:d4:b2: 3d:ab:3c:a7:10:79:a9:4d:78:bc:6d:27:fd:75:ff:ad:71:99: b6:31:b1:98:c1:5a:a9:ad:c5:32:10:58:5c:a7:66:74:c1:6c: a6:3b:a1:7d:d9:c1:e8:13:4b:d2:ff:e5:c2:84:b2:f5:2c:32: 5f:f4:be:e2:48:5c:9f:f3:07:e4:09:a3:26:47:89:bf:a5:18: 94:36:ca:e0:74:31:fd:ce:28:b7:00:d3:2d:64:07:06:05:c9: a5:8f:a4:8e:76:a9:c1:99:48:52:45:50:7d:c3:2f:04:c1:ee: 00:ca:6d:75:d5:39:c6:d4:a8:44:56:07:73:cc:79:bd:34:6d: 12:7c:6f:eb:fc:cf:96:d5:68:7f:a5:1d:8a:00:f4:06:bc:5f: 36:d2:f7:d1 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDA8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTkz RjcyODBGMUY5QjY1NDM5REQ2NUFERkI2OENBMEQ2Qzk5QkVDNTAeFw0yNDA4MjYw NTI1MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU2NjU0RjA5QUMwQ0M3 NjNDM0FBQkFBMTVFQ0VDMzlFRTA2QzFGRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjVg//7QVasW3BYG9LU+m0f+Ad/8rWslqjgliPoKYter4WDnnX n3RMHbXUGmZQY8pfmduBLPa5TGQknLvA7rzQ7Ou7Pl5q5hRd/76YqJLjgk/WsrM/ SE1+g8KL4B8g1qImfG0g6ZpA1y31gGg3SlwPJL+WP1jKXJv7hLyke0JBcOkwaHPP TlOzWCrGw8DmONIr+Gcd4bK2LmKBvH2Kev9Az5TtAtsc/RMR7x+VnWIaviB5+90J P8wsZarMuYMOcQWGhzonSnUfUMp22qS83QmkeUXGjvoovQrCW3IZQ7DXIn5rv0cu 9D0y3gmOJo9bcKg9/EwcRTIZJtCZAd86+ip1AgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUVmVPCawMx2PDqrqhXs7DnuBsH+cwHwYDVR0jBBgwFoAUmT9ygPH5tlQ53WWt +2jKDWyZvsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FLVVJB SE9TVC9tVDl5Z1BINXRsUTUzV1d0LTJqS0RXeVp2c1UuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21UOXlnUEg1dGxRNTNXV3QtMmpLRFd5WnZzVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBS1VSQUhPU1QvVm1WUENhd014 MlBEcXJxaFhzN0RudUJzSC1jLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGd6FjANBgkqhkiG9w0BAQsFAAOCAQEAU0Li2QUju/RoFttq59YBJANT kYdpE4yQ15Jn6MR/H2SkfQf/e5ECxsC/TtJ/JFgbzXh1B7IOlD2vXtdAxw0a9jG2 9UsdRs+hYvR3iIkBSJtDwptCOn03fFzcWl24bPjUcpJWJwehAu9ZDdSyPas8pxB5 qU14vG0n/XX/rXGZtjGxmMFaqa3FMhBYXKdmdMFspjuhfdnB6BNL0v/lwoSy9Swy X/S+4khcn/MH5AmjJkeJv6UYlDbK4HQx/c4otwDTLWQHBgXJpY+kjnapwZlIUkVQ fcMvBMHuAMptddU5xtSoRFYHc8x5vTRtEnxv6/zPltVof6UdigD0BrxfNtL30Q== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org