$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/rcHrS_74yCI7k86NNG3DlIn-z20.roa File: rcHrS_74yCI7k86NNG3DlIn-z20.roa (raw, json) Hash identifier: ItQ/7k5nBa9/u2eshRFBOx0euqWXLxDN6s4G7tIYYRI= Subject key identifier: AD:C1:EB:4B:FE:F8:C8:22:3B:93:CE:8D:34:6D:C3:94:89:FE:CF:6D Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Certificate serial: 0C13 Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/rcHrS_74yCI7k86NNG3DlIn-z20.roa Signing time: Mon 26 Aug 2024 05:25:18 +0000 ROA not before: Mon 26 Aug 2024 05:25:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18464 IP address blocks: 103.122.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3091 (0xc13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Validity Not Before: Aug 26 05:25:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=ADC1EB4BFEF8C8223B93CE8D346DC39489FECF6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2e:07:73:90:62:69:4e:c9:4f:0d:2d:d1:59: b2:96:d7:bf:7e:15:a0:71:d3:0d:d3:9a:3a:95:0c: bd:c6:60:73:40:69:c5:e7:dd:22:ad:2f:da:37:c4: ce:6b:2f:81:f9:b3:f1:50:1e:39:97:ab:47:eb:92: 0c:54:e2:f0:fc:1f:8e:a2:e7:44:ea:a6:f1:3a:0a: f2:2e:29:90:87:1a:f4:d5:af:b1:25:a8:ff:69:87: f7:db:95:f3:a3:a8:95:9b:bd:61:97:bf:fc:9a:81: 63:fb:c1:c1:8c:66:50:8c:ca:4b:e8:40:2a:55:c5: 5e:78:2e:ae:cf:ff:1a:3a:c5:41:76:08:12:22:2c: 30:4b:69:65:a4:ac:79:6c:03:ea:f3:38:24:b9:9e: ae:3e:1a:e0:56:61:a6:24:1c:3f:9a:01:8a:b0:7d: 0f:1d:a7:20:27:44:de:b1:dc:6c:d3:35:a3:8d:a3: d8:8e:44:9f:a4:d7:2a:51:53:10:05:f7:72:76:0f: 32:a2:ac:4c:82:c7:50:d4:52:c2:1c:02:fb:05:7d: 29:e9:b1:07:85:89:16:7b:82:98:2c:de:62:ec:68: 7d:3d:2c:3e:81:8c:a7:5c:5e:8b:a5:3b:dd:e5:42: 7b:89:0a:a1:06:a4:4a:5c:c3:8d:d1:37:f5:d3:7f: e4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:C1:EB:4B:FE:F8:C8:22:3B:93:CE:8D:34:6D:C3:94:89:FE:CF:6D X509v3 Authority Key Identifier: keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/rcHrS_74yCI7k86NNG3DlIn-z20.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.20.0/24 Signature Algorithm: sha256WithRSAEncryption 12:b9:f3:61:b5:03:81:48:e5:2d:51:7b:c6:20:09:6b:0d:9c: e0:17:3a:cf:8a:26:ec:77:7a:fb:59:f0:be:1f:fd:89:80:a3: 6a:6c:85:21:ee:10:73:36:45:e9:10:75:a1:1e:c7:bb:2b:24: ba:7f:3b:84:16:ca:41:1d:ba:95:a1:c3:c0:ac:fc:65:ee:d6: 6f:80:7a:3b:1a:63:2e:f1:ff:dc:7e:85:80:d2:ea:70:05:65: 49:2f:4d:e3:d7:42:fa:8d:b5:25:72:aa:77:5c:49:84:de:f9: 4b:f7:53:59:33:15:c8:e9:df:4b:c4:5c:cf:fe:60:f7:2c:e7: 9e:97:42:81:e1:97:2f:6a:8b:b4:6f:67:09:46:b9:a1:c4:a7: 44:ce:36:17:8b:b4:32:74:80:5b:54:4a:20:c5:2e:13:56:b3: 2c:3d:b0:5c:de:bf:6c:92:cb:7c:63:8e:d3:54:17:c2:06:85: 5c:f5:4a:de:b0:aa:64:ca:1f:1f:27:d0:7f:da:1b:92:4e:ab: 4c:a8:21:7f:62:b2:a9:f5:a4:38:6f:af:6f:da:ee:c0:ba:7a: 59:2b:9f:b7:95:08:be:ce:0d:c0:26:ad:aa:1a:81:36:6f:eb: fb:4e:9c:b6:5b:14:e4:9f:ef:40:36:d7:65:b3:d0:97:59:24: a6:77:37:d0 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDBMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTkz RjcyODBGMUY5QjY1NDM5REQ2NUFERkI2OENBMEQ2Qzk5QkVDNTAeFw0yNDA4MjYw NTI1MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFEQzFFQjRCRkVGOEM4 MjIzQjkzQ0U4RDM0NkRDMzk0ODlGRUNGNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmLgdzkGJpTslPDS3RWbKW179+FaBx0w3TmjqVDL3GYHNAacXn 3SKtL9o3xM5rL4H5s/FQHjmXq0frkgxU4vD8H46i50TqpvE6CvIuKZCHGvTVr7El qP9ph/fblfOjqJWbvWGXv/yagWP7wcGMZlCMykvoQCpVxV54Lq7P/xo6xUF2CBIi LDBLaWWkrHlsA+rzOCS5nq4+GuBWYaYkHD+aAYqwfQ8dpyAnRN6x3GzTNaONo9iO RJ+k1ypRUxAF93J2DzKirEyCx1DUUsIcAvsFfSnpsQeFiRZ7gpgs3mLsaH09LD6B jKdcXoulO93lQnuJCqEGpEpcw43RN/XTf+RRAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUrcHrS/74yCI7k86NNG3DlIn+z20wHwYDVR0jBBgwFoAUmT9ygPH5tlQ53WWt +2jKDWyZvsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FLVVJB SE9TVC9tVDl5Z1BINXRsUTUzV1d0LTJqS0RXeVp2c1UuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21UOXlnUEg1dGxRNTNXV3QtMmpLRFd5WnZzVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBS1VSQUhPU1QvcmNIclNfNzR5 Q0k3azg2Tk5HM0RsSW4tejIwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGd6FDANBgkqhkiG9w0BAQsFAAOCAQEAErnzYbUDgUjlLVF7xiAJaw2c 4Bc6z4om7Hd6+1nwvh/9iYCjamyFIe4QczZF6RB1oR7Huyskun87hBbKQR26laHD wKz8Ze7Wb4B6OxpjLvH/3H6FgNLqcAVlSS9N49dC+o21JXKqd1xJhN75S/dTWTMV yOnfS8Rcz/5g9yznnpdCgeGXL2qLtG9nCUa5ocSnRM42F4u0MnSAW1RKIMUuE1az LD2wXN6/bJLLfGOO01QXwgaFXPVK3rCqZMofHyfQf9obkk6rTKghf2KyqfWkOG+v b9ruwLp6WSuft5UIvs4NwCatqhqBNm/r+06ctlsU5J/vQDbXZbPQl1kkpnc30A== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:44 2024 by rpki-client on console-fra.rpki-client.org