$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/9O6_MEPg_p6jmsu_TnRR8QjigIw.roa File: 9O6_MEPg_p6jmsu_TnRR8QjigIw.roa (raw, json) Hash identifier: yLSfah9dEUptbnJaXFxdx64DPNHZm/kN6XnyF0zkyBA= Subject key identifier: F4:EE:BF:30:43:E0:FE:9E:A3:9A:CB:BF:4E:74:51:F1:08:E2:80:8C Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 129E Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/9O6_MEPg_p6jmsu_TnRR8QjigIw.roa Signing time: Mon 12 Feb 2024 16:27:44 +0000 ROA not before: Mon 12 Feb 2024 16:27:44 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 202525 IP address blocks: 103.123.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 01:33:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4766 (0x129e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Feb 12 16:27:44 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F4EEBF3043E0FE9EA39ACBBF4E7451F108E2808C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:59:b0:85:7c:d6:cd:94:07:72:a0:88:8c:c9: 35:66:1b:73:44:68:df:5b:94:c3:8d:ef:8b:65:a0: 00:72:dc:8b:51:ab:f7:20:f7:ea:a6:27:03:de:a8: dd:9c:ca:20:8a:da:ea:f4:b5:55:7d:73:34:b3:29: 83:28:bb:f9:a0:ae:1b:24:cd:cc:5e:c3:28:8a:76: 49:a5:2a:8f:45:57:24:c0:5f:5f:39:3b:ba:93:f6: f3:eb:12:e4:6e:0c:16:a7:2d:64:f4:4c:48:32:7d: 21:ee:59:83:5c:67:fd:86:cb:c4:f5:00:4f:a4:99: 9e:dd:02:42:9d:f5:d5:ff:69:91:69:31:bd:bc:93: ca:57:06:ec:af:a0:39:c9:dc:c2:42:3b:94:a5:ac: c4:ad:31:26:e4:17:6d:02:b2:00:80:94:56:70:19: 8e:ca:61:2b:a2:ec:a6:dd:a8:71:50:c8:c3:1c:18: 0d:2e:f4:a3:b0:76:eb:c2:68:71:5b:ef:8c:90:20: ba:50:43:31:0b:b2:6d:cb:ef:36:6f:87:f0:22:7e: 60:35:6d:b4:46:ca:31:6b:9e:d6:a8:9e:75:8c:92: 91:fb:90:f6:b9:4c:d4:b5:8b:d1:09:27:e8:5c:55: 09:94:ab:a4:37:8d:24:9f:82:c9:7e:f8:98:6b:2b: c0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:EE:BF:30:43:E0:FE:9E:A3:9A:CB:BF:4E:74:51:F1:08:E2:80:8C X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/9O6_MEPg_p6jmsu_TnRR8QjigIw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.217.0/24 Signature Algorithm: sha256WithRSAEncryption 59:22:83:d2:a5:d1:67:20:34:e0:3e:1c:23:26:31:c2:11:d1: 19:30:a0:8c:2a:61:28:2e:55:78:21:cc:09:21:51:1c:7b:d7: 3e:1e:f0:25:9a:16:7b:66:b7:e2:e4:40:27:e9:ec:70:59:3a: 60:a9:be:2c:78:97:cc:29:41:d8:0a:e2:21:6c:66:2f:87:49: 3f:31:4c:50:d9:eb:14:77:45:c9:6b:ee:c4:b1:ef:47:ba:83: 1f:1e:5b:14:ad:c4:5a:e3:8d:d0:ac:34:16:28:db:07:f5:08: 7e:45:09:b4:d3:aa:7c:2d:fb:65:bd:de:94:b3:60:6d:43:eb: 3d:80:c8:79:5f:7b:4e:10:64:84:0e:5c:b5:cd:12:7c:f9:f4: 30:9f:bd:1e:28:8d:46:28:c2:2d:42:48:e1:91:cc:40:12:8d: e0:f3:0a:df:5e:9d:8f:a2:0f:0e:2f:48:d3:b6:5d:5d:c6:0a: 05:44:3f:44:04:5c:ad:50:16:32:d3:fa:ae:55:78:6e:74:ce: cb:e1:d2:a6:55:52:36:9f:62:bf:bc:81:d2:a6:ed:ce:8e:f7: d2:b7:2a:37:f6:95:f9:0e:47:91:5c:e5:50:43:00:72:76:be: 5e:34:af:1e:bd:54:15:91:2b:5c:ba:b9:ad:2a:c8:6a:8d:27: 04:b3:e6:b5 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEp4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yNDAyMTIx NjI3NDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY0RUVCRjMwNDNFMEZF OUVBMzlBQ0JCRjRFNzQ1MUYxMDhFMjgwOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEWbCFfNbNlAdyoIiMyTVmG3NEaN9blMON74tloABy3ItRq/cg 9+qmJwPeqN2cyiCK2ur0tVV9czSzKYMou/mgrhskzcxewyiKdkmlKo9FVyTAX185 O7qT9vPrEuRuDBanLWT0TEgyfSHuWYNcZ/2Gy8T1AE+kmZ7dAkKd9dX/aZFpMb28 k8pXBuyvoDnJ3MJCO5SlrMStMSbkF20CsgCAlFZwGY7KYSui7KbdqHFQyMMcGA0u 9KOwduvCaHFb74yQILpQQzELsm3L7zZvh/AifmA1bbRGyjFrntaonnWMkpH7kPa5 TNS1i9EJJ+hcVQmUq6Q3jSSfgsl++JhrK8A1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU9O6/MEPg/p6jmsu/TnRR8QjigIwwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC85TzZfTUVQZ19wNmptc3VfVG5S UjhRamlnSXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vZ MA0GCSqGSIb3DQEBCwUAA4IBAQBZIoPSpdFnIDTgPhwjJjHCEdEZMKCMKmEoLlV4 IcwJIVEce9c+HvAlmhZ7Zrfi5EAn6exwWTpgqb4seJfMKUHYCuIhbGYvh0k/MUxQ 2esUd0XJa+7Ese9HuoMfHlsUrcRa443QrDQWKNsH9Qh+RQm006p8Lftlvd6Us2Bt Q+s9gMh5X3tOEGSEDly1zRJ8+fQwn70eKI1GKMItQkjhkcxAEo3g8wrfXp2Pog8O L0jTtl1dxgoFRD9EBFytUBYy0/quVXhudM7L4dKmVVI2n2K/vIHSpu3OjvfStyo3 9pX5DkeRXOVQQwBydr5eNK8evVQVkStcurmtKshqjScEs+a1 -----END CERTIFICATE-----Generated at Sat Jun 1 17:04:07 2024 by rpki-client on console-ams.rpki-client.org