$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/-dWElYzaOiPIRWhdxCDVCiyZgQU.roa File: -dWElYzaOiPIRWhdxCDVCiyZgQU.roa (raw, json) Hash identifier: sOHGC0j0rchOFw8vLgR4tioLBC+y+MBFivvGdo1RcRE= Subject key identifier: F9:D5:84:95:8C:DA:3A:23:C8:45:68:5D:C4:20:D5:0A:2C:99:81:05 Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 121E Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/-dWElYzaOiPIRWhdxCDVCiyZgQU.roa Signing time: Fri 01 Sep 2023 09:41:08 +0000 ROA not before: Fri 01 Sep 2023 09:41:08 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 202525 IP address blocks: 103.123.217.0/24 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 01:41:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4638 (0x121e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Sep 1 09:41:08 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F9D584958CDA3A23C845685DC420D50A2C998105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ae:cc:84:9d:20:e0:0e:f0:a9:bb:52:b9:e4: d2:69:a5:71:47:94:81:e9:6d:41:fa:0a:06:72:7c: ab:83:da:57:b4:22:8c:62:a8:63:2b:de:57:a8:1e: 35:4e:c5:27:02:76:bc:08:93:8b:fa:76:4e:06:87: a1:31:6f:6c:76:46:dc:85:62:32:d7:5d:99:25:b0: 6e:de:e4:a4:86:61:69:6e:99:93:66:ff:8e:98:f4: b3:47:9f:5d:38:12:95:b4:be:88:47:ff:41:63:a1: 74:1b:0d:9a:f9:c4:b6:b7:5a:9b:4d:1b:93:d9:56: 83:50:a6:92:40:c4:1a:5c:58:64:d2:31:5f:e8:a4: 44:55:f1:ef:84:19:d9:0f:df:b6:af:70:28:22:b3: 17:bd:ca:78:75:07:13:ce:54:bd:30:17:bd:e2:0d: ed:b1:f8:29:6b:cc:ea:6a:7c:e4:55:0a:f2:b7:73: 6a:8b:34:30:f2:54:a2:7c:5a:92:ac:a9:28:f8:78: 56:fc:3b:3a:c7:2f:af:f8:c5:b0:7f:60:f1:63:33: 11:90:4c:aa:53:af:47:f1:8a:83:af:fb:9e:d9:e2: af:63:15:6a:8b:15:dc:6c:63:98:ca:81:2e:f0:b9: d0:1b:e9:c0:d2:76:e7:13:7d:21:b7:38:64:35:f3: 7e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:D5:84:95:8C:DA:3A:23:C8:45:68:5D:C4:20:D5:0A:2C:99:81:05 X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/-dWElYzaOiPIRWhdxCDVCiyZgQU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.217.0/24 Signature Algorithm: sha256WithRSAEncryption 91:0e:73:e2:4f:43:08:0f:d3:3f:61:5a:eb:f6:9e:ae:d3:b4: 9d:f1:f3:d1:45:32:98:24:23:52:85:f4:5a:e5:49:96:20:f6: 6f:64:a7:cf:80:96:f0:fb:64:cc:30:e5:41:cf:c6:fa:b2:a1: 03:d4:a8:46:f1:7d:92:a1:1f:47:c9:61:d4:f0:7e:ac:42:c1: d6:f4:cd:a0:fd:bd:d6:56:7f:fd:a4:8f:ae:d8:31:fe:6a:d2: 9f:c5:e2:87:d8:6f:40:f8:93:63:17:c4:64:e2:92:d3:9e:1e: 27:a4:23:59:0d:b8:12:fb:8e:6e:81:a2:58:ef:7f:4d:b6:f9: 7c:3e:01:34:f1:c5:91:85:88:9b:87:92:fc:de:64:2c:a6:4a: 45:aa:09:0c:1d:a6:88:98:04:28:0e:2f:4d:53:9a:5b:5a:d1: 3e:1a:a1:31:57:a4:bc:d9:03:37:48:f0:af:32:a1:70:3d:76: f9:e1:84:40:91:4a:97:76:fa:60:15:1a:49:8f:06:be:78:6c: 77:10:f4:1e:a4:55:18:1a:39:d0:4c:13:0e:e5:c2:85:fd:7d: cc:41:69:1e:e1:f5:da:12:35:cd:87:8c:ab:e9:85:78:89:cb: 01:89:8d:dc:01:33:1d:15:d3:0a:85:f3:60:17:14:9e:de:e6: a7:99:b8:f2 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEh4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yMzA5MDEw OTQxMDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY5RDU4NDk1OENEQTNB MjNDODQ1Njg1REM0MjBENTBBMkM5OTgxMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBrsyEnSDgDvCpu1K55NJppXFHlIHpbUH6CgZyfKuD2le0Ioxi qGMr3leoHjVOxScCdrwIk4v6dk4Gh6Exb2x2RtyFYjLXXZklsG7e5KSGYWlumZNm /46Y9LNHn104EpW0vohH/0FjoXQbDZr5xLa3WptNG5PZVoNQppJAxBpcWGTSMV/o pERV8e+EGdkP37avcCgisxe9ynh1BxPOVL0wF73iDe2x+ClrzOpqfORVCvK3c2qL NDDyVKJ8WpKsqSj4eFb8OzrHL6/4xbB/YPFjMxGQTKpTr0fxioOv+57Z4q9jFWqL FdxsY5jKgS7wudAb6cDSducTfSG3OGQ1836XAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU+dWElYzaOiPIRWhdxCDVCiyZgQUwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC8tZFdFbFl6YU9pUElSV2hkeENE VkNpeVpnUVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vZ MA0GCSqGSIb3DQEBCwUAA4IBAQCRDnPiT0MID9M/YVrr9p6u07Sd8fPRRTKYJCNS hfRa5UmWIPZvZKfPgJbw+2TMMOVBz8b6sqED1KhG8X2SoR9HyWHU8H6sQsHW9M2g /b3WVn/9pI+u2DH+atKfxeKH2G9A+JNjF8Rk4pLTnh4npCNZDbgS+45ugaJY739N tvl8PgE08cWRhYibh5L83mQspkpFqgkMHaaImAQoDi9NU5pbWtE+GqExV6S82QM3 SPCvMqFwPXb54YRAkUqXdvpgFRpJjwa+eGx3EPQepFUYGjnQTBMO5cKF/X3MQWke 4fXaEjXNh4yr6YV4icsBiY3cATMdFdMKhfNgFxSe3uanmbjy -----END CERTIFICATE-----Generated at Fri Jun 7 17:02:49 2024 by rpki-client on console-fra.rpki-client.org