$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/wRFj0dILeqC4n3yuTUJb3pnxoDE.roa File: wRFj0dILeqC4n3yuTUJb3pnxoDE.roa (raw, json) Hash identifier: N1IinwwubwQ0q8EsJf4cUbjue2NYOto+Z3MaBsY+71o= Subject key identifier: C1:11:63:D1:D2:0B:7A:A0:B8:9F:7C:AE:4D:42:5B:DE:99:F1:A0:31 Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Certificate serial: 0C12 Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/wRFj0dILeqC4n3yuTUJb3pnxoDE.roa Signing time: Mon 26 Aug 2024 05:25:18 +0000 ROA not before: Mon 26 Aug 2024 05:25:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 48024 IP address blocks: 103.122.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3090 (0xc12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Validity Not Before: Aug 26 05:25:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C11163D1D20B7AA0B89F7CAE4D425BDE99F1A031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:63:11:cc:e9:6c:2f:3a:2e:a5:fc:da:90:f5: fe:7b:2e:9b:e7:06:33:9d:41:b1:b9:c1:31:5a:a4: ff:78:a5:47:90:2d:fa:1a:ee:9b:93:53:c6:6d:cb: 9d:d3:36:7c:86:02:fe:cd:54:2b:30:d3:ba:74:8c: 20:d4:2d:8a:d8:82:39:d4:f3:53:ee:7b:e9:1a:17: 46:5f:ae:00:83:f4:8f:bd:ff:ab:80:af:95:0f:ac: 3b:5b:a3:d5:17:57:d9:13:0c:7b:58:d9:08:95:8a: 58:0f:27:ab:23:48:cb:bd:66:39:09:ab:a4:d8:aa: 51:0a:60:9a:bb:c7:dd:12:f2:eb:79:6b:1e:a5:d7: 88:8c:11:45:e0:c8:bd:38:89:06:c5:27:3c:68:cc: 22:79:e0:74:6f:ad:3b:cb:a5:d0:4d:f8:a6:74:d9: c7:85:31:a9:03:df:3c:7f:35:7b:88:b9:a4:bb:5f: fb:c1:bf:08:73:c0:f1:b6:78:55:4c:7b:90:21:61: 49:af:35:45:47:ab:f9:3d:a8:0c:93:19:f1:50:e0: 9e:5e:52:b8:c7:c2:79:81:8d:50:75:79:1c:ff:06: 6c:fa:90:e2:69:3b:4b:de:e1:c5:66:59:b7:40:de: 0e:d5:49:e6:aa:29:db:cc:12:59:04:cf:af:e8:7b: d4:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:11:63:D1:D2:0B:7A:A0:B8:9F:7C:AE:4D:42:5B:DE:99:F1:A0:31 X509v3 Authority Key Identifier: keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/wRFj0dILeqC4n3yuTUJb3pnxoDE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.20.0/22 Signature Algorithm: sha256WithRSAEncryption 9e:4d:94:e0:ac:7f:28:9d:ce:f3:0d:45:eb:66:ee:7e:ce:37: 89:2e:99:f0:36:12:e5:31:4a:14:0b:71:66:cc:3a:40:de:76: 51:43:a6:02:c8:95:c2:c6:ef:c5:28:45:c8:4d:28:ed:d9:87: e9:82:3a:0e:20:34:16:5b:08:06:06:09:46:2f:09:a6:7e:52: b7:39:a3:70:79:6e:8f:6a:15:47:13:7c:f2:85:87:99:02:71: 8a:1a:cb:be:a4:d8:8a:22:d0:b3:e8:e3:bf:fe:df:0d:d7:33: 75:c7:80:8c:1a:8a:30:fe:b0:62:7e:cb:26:a7:18:43:a9:e3: 71:5e:ac:64:75:6b:b2:66:3c:21:16:6e:d6:6d:63:d1:99:ab: 64:ad:91:ac:d7:c8:69:8a:b6:56:83:93:16:31:05:07:b7:c9: f5:74:c3:7a:69:16:35:34:15:0b:19:5a:af:63:fe:90:94:f5: d0:e1:1e:ab:c5:f2:7a:4f:29:79:44:57:a4:b1:80:e5:cf:5a: d5:52:0b:44:87:69:af:20:c9:0e:7c:33:0e:99:a7:ed:d2:7b: 6d:5e:4e:62:11:77:24:fe:78:05:49:a8:77:40:40:2c:74:4a: 7f:6e:cf:59:c9:6a:48:7c:a2:c7:d2:05:84:6b:6c:86:a8:95: 79:02:34:29 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDBIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTkz RjcyODBGMUY5QjY1NDM5REQ2NUFERkI2OENBMEQ2Qzk5QkVDNTAeFw0yNDA4MjYw NTI1MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMxMTE2M0QxRDIwQjdB QTBCODlGN0NBRTRENDI1QkRFOTlGMUEwMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYYxHM6WwvOi6l/NqQ9f57LpvnBjOdQbG5wTFapP94pUeQLfoa 7puTU8Zty53TNnyGAv7NVCsw07p0jCDULYrYgjnU81Pue+kaF0ZfrgCD9I+9/6uA r5UPrDtbo9UXV9kTDHtY2QiVilgPJ6sjSMu9ZjkJq6TYqlEKYJq7x90S8ut5ax6l 14iMEUXgyL04iQbFJzxozCJ54HRvrTvLpdBN+KZ02ceFMakD3zx/NXuIuaS7X/vB vwhzwPG2eFVMe5AhYUmvNUVHq/k9qAyTGfFQ4J5eUrjHwnmBjVB1eRz/Bmz6kOJp O0ve4cVmWbdA3g7VSeaqKdvMElkEz6/oe9RVAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUwRFj0dILeqC4n3yuTUJb3pnxoDEwHwYDVR0jBBgwFoAUmT9ygPH5tlQ53WWt +2jKDWyZvsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FLVVJB SE9TVC9tVDl5Z1BINXRsUTUzV1d0LTJqS0RXeVp2c1UuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21UOXlnUEg1dGxRNTNXV3QtMmpLRFd5WnZzVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBS1VSQUhPU1Qvd1JGajBkSUxl cUM0bjN5dVRVSmIzcG54b0RFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmd6FDANBgkqhkiG9w0BAQsFAAOCAQEAnk2U4Kx/KJ3O8w1F62bufs43 iS6Z8DYS5TFKFAtxZsw6QN52UUOmAsiVwsbvxShFyE0o7dmH6YI6DiA0FlsIBgYJ Ri8Jpn5StzmjcHluj2oVRxN88oWHmQJxihrLvqTYiiLQs+jjv/7fDdczdceAjBqK MP6wYn7LJqcYQ6njcV6sZHVrsmY8IRZu1m1j0ZmrZK2RrNfIaYq2VoOTFjEFB7fJ 9XTDemkWNTQVCxlar2P+kJT10OEeq8Xyek8peURXpLGA5c9a1VILRIdpryDJDnwz Dpmn7dJ7bV5OYhF3JP54BUmod0BALHRKf27PWclqSHyix9IFhGtshqiVeQI0KQ== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:44 2024 by rpki-client on console-fra.rpki-client.org