$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/7S9NDWbtive3QO7tcDxWIu083Jk.roa File: 7S9NDWbtive3QO7tcDxWIu083Jk.roa (raw, json) Hash identifier: SCQZY/ZcH5s7pYHtPiRVJcZtSXJMjk71jqI3zPf/fKw= Subject key identifier: ED:2F:4D:0D:66:ED:8A:F7:B7:40:EE:ED:70:3C:56:22:ED:3C:DC:99 Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 1220 Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/7S9NDWbtive3QO7tcDxWIu083Jk.roa Signing time: Fri 01 Sep 2023 09:41:08 +0000 ROA not before: Fri 01 Sep 2023 09:41:08 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 16509 IP address blocks: 103.123.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 11:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4640 (0x1220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Sep 1 09:41:08 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=ED2F4D0D66ED8AF7B740EEED703C5622ED3CDC99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6b:72:ed:d1:dc:88:ed:3b:26:37:0e:fa:64: c7:a9:e8:db:7b:61:e0:b0:18:59:20:25:d6:4d:ad: 37:f6:77:89:df:56:72:b1:55:0f:27:01:c0:93:63: f4:cc:d6:27:66:c0:63:9b:4c:f9:fd:79:1d:3f:b4: df:b7:1c:ce:f4:a0:8e:68:23:de:88:5f:5d:49:93: 5e:0b:db:a4:2f:52:72:44:eb:f7:b0:83:3b:15:bb: 77:65:55:66:46:a6:a6:43:ae:91:cd:77:62:17:c2: f7:b4:db:44:f8:0a:ad:ac:b0:74:16:e6:f7:8d:55: 52:fd:08:87:e4:d0:b9:c1:cd:70:0d:37:71:13:02: 3a:9e:51:b8:61:26:ba:d8:9f:cd:0a:9a:78:7b:8a: 07:5c:0f:d7:b4:13:55:ea:93:93:55:69:59:4e:17: 9a:44:99:f1:70:c8:8a:69:7a:f8:bc:1b:c5:92:bf: 39:72:8a:18:03:28:11:77:16:a8:dc:86:49:47:e4: a6:7b:c6:9c:a5:44:24:8c:92:32:d5:c5:a2:7e:2e: 6c:1a:e0:b1:bc:e5:38:81:5f:ed:06:21:0d:3f:16: d9:64:8c:2f:0f:cb:63:1e:61:66:87:4d:33:09:c1: 19:65:f4:b7:4d:6e:c3:42:ae:66:6a:9b:44:8f:a5: 88:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:2F:4D:0D:66:ED:8A:F7:B7:40:EE:ED:70:3C:56:22:ED:3C:DC:99 X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/7S9NDWbtive3QO7tcDxWIu083Jk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.219.0/24 Signature Algorithm: sha256WithRSAEncryption c6:4d:43:e9:cb:a9:80:d8:44:de:f2:0a:df:6d:03:2d:1d:19: 36:df:8c:cb:f5:d7:c0:64:37:f3:a1:94:4a:ff:7d:70:c7:2c: 2b:9f:7f:5b:a6:ec:52:c6:f0:ab:a2:46:63:45:b8:b9:de:98: 54:f8:87:58:cf:e0:33:e6:b9:4e:9f:d9:9d:2e:d7:1a:5d:48: 71:ed:0f:f2:d7:ce:cf:27:43:fb:ce:b3:ca:ca:ae:0a:02:c8: 9d:12:f0:1c:a8:eb:1e:67:d7:37:65:95:08:be:d7:86:b3:51: 4a:76:56:cd:a8:64:09:a4:5a:04:d6:ee:a6:df:72:4c:be:de: 79:c3:80:49:28:70:89:2c:54:b9:dc:62:95:2e:ea:ac:05:38: d2:45:ff:cf:2e:2c:75:b7:da:04:67:86:cb:64:c2:1d:65:21: 61:0a:bb:9d:74:6b:a3:97:3b:d0:fd:30:9d:4b:fd:47:6a:e6: 74:26:b5:2c:e9:c5:33:c3:28:8f:2f:2b:ee:4e:62:36:17:96: 38:bd:05:0c:cf:dc:33:f5:05:8b:68:05:28:01:14:5a:33:1c: f8:16:18:e5:eb:ba:69:75:4f:cd:7d:6b:63:f9:26:ac:8b:a7: f6:fb:8d:28:a5:24:09:61:81:66:5e:bf:9e:17:28:61:46:5e: bc:55:72:68 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEiAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yMzA5MDEw OTQxMDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVEMkY0RDBENjZFRDhB RjdCNzQwRUVFRDcwM0M1NjIyRUQzQ0RDOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGa3Lt0dyI7TsmNw76ZMep6Nt7YeCwGFkgJdZNrTf2d4nfVnKx VQ8nAcCTY/TM1idmwGObTPn9eR0/tN+3HM70oI5oI96IX11Jk14L26QvUnJE6/ew gzsVu3dlVWZGpqZDrpHNd2IXwve020T4Cq2ssHQW5veNVVL9CIfk0LnBzXANN3ET AjqeUbhhJrrYn80Kmnh7igdcD9e0E1Xqk5NVaVlOF5pEmfFwyIppevi8G8WSvzly ihgDKBF3FqjchklH5KZ7xpylRCSMkjLVxaJ+Lmwa4LG85TiBX+0GIQ0/FtlkjC8P y2MeYWaHTTMJwRll9LdNbsNCrmZqm0SPpYipAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU7S9NDWbtive3QO7tcDxWIu083JkwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC83UzlORFdidGl2ZTNRTzd0Y0R4 V0l1MDgzSmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vb MA0GCSqGSIb3DQEBCwUAA4IBAQDGTUPpy6mA2ETe8grfbQMtHRk234zL9dfAZDfz oZRK/31wxywrn39bpuxSxvCrokZjRbi53phU+IdYz+Az5rlOn9mdLtcaXUhx7Q/y 187PJ0P7zrPKyq4KAsidEvAcqOseZ9c3ZZUIvteGs1FKdlbNqGQJpFoE1u6m33JM vt55w4BJKHCJLFS53GKVLuqsBTjSRf/PLix1t9oEZ4bLZMIdZSFhCruddGujlzvQ /TCdS/1HauZ0JrUs6cUzwyiPLyvuTmI2F5Y4vQUMz9wz9QWLaAUoARRaMxz4Fhjl 67ppdU/NfWtj+Sasi6f2+40opSQJYYFmXr+eFyhhRl68VXJo -----END CERTIFICATE-----Generated at Thu May 2 22:39:42 2024 by rpki-client on console-ams.rpki-client.org