$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/ApqYYPRVddTskrOyv-MUM9hiePY.roa File: ApqYYPRVddTskrOyv-MUM9hiePY.roa (raw, json) Hash identifier: svOH/vaJgaoRTkwvFXyaSRff9L5pAWSUx4WN/NRM878= Subject key identifier: 02:9A:98:60:F4:55:75:D4:EC:92:B3:B2:BF:E3:14:33:D8:62:78:F6 Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 126A Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/ApqYYPRVddTskrOyv-MUM9hiePY.roa Signing time: Thu 14 Dec 2023 12:53:18 +0000 ROA not before: Thu 14 Dec 2023 12:53:18 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 202525 IP address blocks: 103.123.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 01:41:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4714 (0x126a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Dec 14 12:53:18 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=029A9860F45575D4EC92B3B2BFE31433D86278F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e4:ee:5d:42:37:28:f9:eb:2e:1a:ac:d6:1f: d3:83:78:65:08:a9:7e:2b:e4:ed:99:10:2e:b5:7f: c2:11:72:3c:dd:38:a6:09:89:32:fa:48:4f:13:34: 92:75:eb:4a:13:88:dd:22:81:57:b9:5e:0a:a5:ac: 64:ca:7d:c8:7c:b3:4d:ad:9e:92:74:5a:0d:db:cc: fa:03:c4:f8:5e:cf:8b:5e:d7:7a:6b:a2:bf:ca:38: 87:79:96:ad:34:89:bf:e5:22:87:42:05:d0:06:0c: 24:9d:95:28:61:b1:5a:c0:96:5c:05:96:60:a9:ae: 6a:72:b0:c0:12:b0:cb:ff:f0:fc:5b:25:2c:e9:37: 4a:16:4a:9c:97:4c:88:18:26:f3:46:8a:0d:1e:1e: f8:4b:a5:dd:d8:06:7c:24:04:ee:f6:8a:b8:e6:cd: 74:14:e0:e1:94:6c:cd:93:cb:fb:e0:ff:6e:92:b1: 90:15:92:46:cd:5e:0d:b3:26:d2:a0:65:36:91:02: 8a:c4:45:30:f8:14:8d:62:5d:a9:22:03:ba:14:d4: 02:42:ff:58:26:c1:96:5b:20:7b:9f:58:ee:7e:e1: 7d:a3:17:ff:d1:55:6d:70:5a:43:9e:4a:a0:6b:94: 2e:30:42:bd:5c:19:91:86:72:51:29:fe:ee:57:69: b6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:9A:98:60:F4:55:75:D4:EC:92:B3:B2:BF:E3:14:33:D8:62:78:F6 X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/ApqYYPRVddTskrOyv-MUM9hiePY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.216.0/24 Signature Algorithm: sha256WithRSAEncryption be:bb:bd:d1:28:1c:a1:60:3c:af:48:2d:ab:0e:7c:b2:dc:91: f4:f2:5c:b9:b0:72:95:2b:1a:49:4e:ee:69:c0:3b:2d:61:d4: e4:f7:70:46:e2:0f:ba:9e:41:b7:83:0d:fe:db:f8:cf:6f:9c: f5:88:0d:d7:e2:94:63:4b:62:f3:5d:a4:fa:fe:bf:aa:31:d3: 42:53:bf:de:c6:61:39:a7:6a:42:8b:60:6a:13:88:be:d6:7a: e7:56:cf:7a:97:4f:85:72:e7:41:50:b5:00:81:2f:6c:0b:43: 68:1c:a3:a3:28:8a:9b:9c:83:da:39:52:4b:0b:10:77:90:1c: 4c:a1:6f:30:cc:d2:e4:48:47:a1:6f:d4:30:94:7a:14:45:d7: 24:1d:46:9a:38:fb:d6:8b:0c:7b:c3:84:ef:48:18:3f:85:f1: 15:41:0e:70:df:4a:b7:30:27:fd:73:01:3e:f9:fa:d1:58:b8: d1:11:16:7f:1f:eb:b2:ad:1c:95:29:e6:aa:c1:cd:f3:d0:32: 52:2c:8b:35:73:63:53:ab:74:20:3d:06:03:4b:31:ed:e4:1e: 8f:a1:b4:bf:9b:f1:7a:41:74:c6:92:b5:db:35:36:32:1c:c9: 40:71:c4:11:b2:96:01:1b:6b:b2:38:b9:19:7a:77:74:7c:2d: b8:97:9c:bc -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEmowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yMzEyMTQx MjUzMThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAyOUE5ODYwRjQ1NTc1 RDRFQzkyQjNCMkJGRTMxNDMzRDg2Mjc4RjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM5O5dQjco+esuGqzWH9ODeGUIqX4r5O2ZEC61f8IRcjzdOKYJ iTL6SE8TNJJ160oTiN0igVe5XgqlrGTKfch8s02tnpJ0Wg3bzPoDxPhez4te13pr or/KOId5lq00ib/lIodCBdAGDCSdlShhsVrAllwFlmCprmpysMASsMv/8PxbJSzp N0oWSpyXTIgYJvNGig0eHvhLpd3YBnwkBO72irjmzXQU4OGUbM2Ty/vg/26SsZAV kkbNXg2zJtKgZTaRAorERTD4FI1iXakiA7oU1AJC/1gmwZZbIHufWO5+4X2jF//R VW1wWkOeSqBrlC4wQr1cGZGGclEp/u5XabalAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUApqYYPRVddTskrOyv+MUM9hiePYwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9BcHFZWVBSVmRkVHNrck95di1N VU05aGllUFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vY MA0GCSqGSIb3DQEBCwUAA4IBAQC+u73RKByhYDyvSC2rDnyy3JH08ly5sHKVKxpJ Tu5pwDstYdTk93BG4g+6nkG3gw3+2/jPb5z1iA3X4pRjS2LzXaT6/r+qMdNCU7/e xmE5p2pCi2BqE4i+1nrnVs96l0+FcudBULUAgS9sC0NoHKOjKIqbnIPaOVJLCxB3 kBxMoW8wzNLkSEehb9QwlHoURdckHUaaOPvWiwx7w4TvSBg/hfEVQQ5w30q3MCf9 cwE++frRWLjRERZ/H+uyrRyVKeaqwc3z0DJSLIs1c2NTq3QgPQYDSzHt5B6PobS/ m/F6QXTGkrXbNTYyHMlAccQRspYBG2uyOLkZend0fC24l5y8 -----END CERTIFICATE-----Generated at Sat Jun 8 09:03:25 2024 by rpki-client on console-ams.rpki-client.org