$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/1Frj8dBjav7Wd7gYt8bmW_lVUBU.roa File: 1Frj8dBjav7Wd7gYt8bmW_lVUBU.roa (raw, json) Hash identifier: 0QaifYqzxeY93xpA2j/d2/ffReqyvdrliaWMhoK987U= Subject key identifier: D4:5A:E3:F1:D0:63:6A:FE:D6:77:B8:18:B7:C6:E6:5B:F9:55:50:15 Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 1273 Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/1Frj8dBjav7Wd7gYt8bmW_lVUBU.roa Signing time: Tue 19 Dec 2023 16:46:57 +0000 ROA not before: Tue 19 Dec 2023 16:46:57 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 14618 IP address blocks: 103.123.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 12:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4723 (0x1273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Dec 19 16:46:57 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D45AE3F1D0636AFED677B818B7C6E65BF9555015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:02:3e:6a:11:90:cc:15:86:b4:a3:cc:c9:70: b3:04:33:d3:e5:10:19:b1:53:4b:0a:98:4b:c8:74: f6:29:cb:95:ad:71:44:6e:e5:0d:49:54:e0:52:72: 2c:ed:5a:30:f9:27:2c:58:ff:c2:36:5e:d4:55:71: 9e:6e:ba:b7:a3:24:9f:55:c7:91:c6:b2:e0:85:2f: 98:4e:78:78:0f:fd:89:90:a9:3d:eb:cf:7b:38:92: 9f:32:fd:0a:82:05:c9:30:b2:9d:b9:67:a5:09:59: 32:2c:2d:69:c4:54:82:07:50:8f:ac:95:f5:5d:82: 35:2c:99:41:cf:42:e8:e8:c3:59:c9:42:59:9f:6e: ed:5e:f4:ee:e3:cc:ce:59:57:b6:a1:97:1a:2d:e4: d2:6e:7b:a5:6d:bb:00:7d:0a:96:ce:21:b0:3c:68: 50:16:9b:1a:91:52:d3:12:53:2e:8d:3a:4f:f1:c2: d9:5c:39:45:e9:ab:96:cb:a4:f8:51:d7:e2:24:31: 9a:29:5c:c1:46:37:1a:0a:5a:e5:9e:6f:39:6e:6b: 94:80:20:5b:ea:10:78:06:a6:d7:72:77:66:9b:9f: dc:0e:d1:69:66:c4:c5:97:81:f5:b8:a0:85:ee:eb: 07:8e:97:8c:70:89:ac:35:e4:db:9d:d4:bf:36:08: 24:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:5A:E3:F1:D0:63:6A:FE:D6:77:B8:18:B7:C6:E6:5B:F9:55:50:15 X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/1Frj8dBjav7Wd7gYt8bmW_lVUBU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.217.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:94:92:1a:e0:1a:95:ad:fa:dd:fd:d9:d3:4e:7e:90:7a:4e: 38:21:fd:fc:75:51:67:ca:dc:01:9d:e0:b7:55:bb:1c:49:f8: d5:e3:ad:1c:c7:b3:8e:ec:33:38:d2:4c:21:b1:4f:d4:e7:72: 65:8e:b0:9e:b2:e0:41:f4:8b:07:c5:e9:45:60:1d:13:68:b8: 1f:7f:31:13:a7:92:e9:77:85:b4:57:52:aa:81:dd:da:06:6f: ac:db:19:52:f0:da:b8:b0:6a:a6:8e:00:69:fa:7b:25:43:7c: e9:e4:11:19:fc:7a:b0:c9:6d:30:65:39:8f:b3:16:ad:9a:53: c6:83:09:21:ea:b3:62:43:25:aa:47:a6:bb:9c:65:38:c8:2a: 3d:86:4b:14:cc:d5:70:58:74:d7:14:53:b2:7a:8b:b1:cc:05: 6e:97:8b:3d:4e:da:37:77:69:2a:9a:c2:11:b4:d6:61:8c:ce: 33:bf:4e:44:2c:df:2e:92:2f:55:0f:bb:69:95:1e:43:58:be: 22:b6:3a:f4:51:e5:c4:ea:8f:14:98:a0:9d:0a:95:e2:f3:09: 86:f2:a2:62:37:2e:2f:b6:08:d9:39:0a:fb:e4:86:93:06:03: 2e:71:0d:07:e2:56:bc:cf:b8:d6:bb:4f:be:b7:30:ce:be:1d: 80:f1:2f:a4 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEnMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yMzEyMTkx NjQ2NTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ0NUFFM0YxRDA2MzZB RkVENjc3QjgxOEI3QzZFNjVCRjk1NTUwMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDAj5qEZDMFYa0o8zJcLMEM9PlEBmxU0sKmEvIdPYpy5WtcURu 5Q1JVOBSciztWjD5JyxY/8I2XtRVcZ5uurejJJ9Vx5HGsuCFL5hOeHgP/YmQqT3r z3s4kp8y/QqCBckwsp25Z6UJWTIsLWnEVIIHUI+slfVdgjUsmUHPQujow1nJQlmf bu1e9O7jzM5ZV7ahlxot5NJue6VtuwB9CpbOIbA8aFAWmxqRUtMSUy6NOk/xwtlc OUXpq5bLpPhR1+IkMZopXMFGNxoKWuWebzlua5SAIFvqEHgGptdyd2abn9wO0Wlm xMWXgfW4oIXu6weOl4xwiaw15Nud1L82CCRpAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU1Frj8dBjav7Wd7gYt8bmW/lVUBUwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC8xRnJqOGRCamF2N1dkN2dZdDhi bVdfbFZVQlUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vZ MA0GCSqGSIb3DQEBCwUAA4IBAQBflJIa4BqVrfrd/dnTTn6Qek44If38dVFnytwB neC3VbscSfjV460cx7OO7DM40kwhsU/U53JljrCesuBB9IsHxelFYB0TaLgffzET p5Lpd4W0V1Kqgd3aBm+s2xlS8Nq4sGqmjgBp+nslQ3zp5BEZ/HqwyW0wZTmPsxat mlPGgwkh6rNiQyWqR6a7nGU4yCo9hksUzNVwWHTXFFOyeouxzAVul4s9Tto3d2kq msIRtNZhjM4zv05ELN8uki9VD7tplR5DWL4itjr0UeXE6o8UmKCdCpXi8wmG8qJi Ny4vtgjZOQr75IaTBgMucQ0H4la8z7jWu0++tzDOvh2A8S+k -----END CERTIFICATE-----Generated at Wed May 1 15:29:35 2024 by rpki-client on console-fra.rpki-client.org