$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/IvtPR3sIBFGl13xXMaY3RsY7_FE.roa File: IvtPR3sIBFGl13xXMaY3RsY7_FE.roa (raw, json) Hash identifier: cR8/Vt0C/muSqZZuc/6phwP0uKPcrLGbVvF5L9c/wDg= Subject key identifier: 22:FB:4F:47:7B:08:04:51:A5:D7:7C:57:31:A6:37:46:C6:3B:FC:51 Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 1241 Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/IvtPR3sIBFGl13xXMaY3RsY7_FE.roa Signing time: Mon 16 Oct 2023 12:27:53 +0000 ROA not before: Mon 16 Oct 2023 12:27:53 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 202525 IP address blocks: 103.123.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 01:41:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4673 (0x1241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Oct 16 12:27:53 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=22FB4F477B080451A5D77C5731A63746C63BFC51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f7:7d:08:e9:e4:51:eb:0a:42:a3:f8:9d:f7: a3:1a:23:b0:bb:fe:92:85:e6:6d:d2:18:31:9d:dc: fe:1e:4b:4f:d9:e7:68:02:26:b3:16:85:74:9d:23: a5:3f:36:6c:d4:2d:c3:f4:27:e2:8e:8f:08:4f:30: 37:cb:27:61:65:ca:16:24:19:4b:21:1e:bd:bd:63: ce:28:56:f2:d8:06:bf:01:bb:4d:81:a9:7d:79:45: b9:a8:7c:1f:27:90:93:39:8f:9d:a0:21:8e:a9:fc: 20:8c:2e:cb:53:75:43:c2:9e:df:6e:44:f0:7a:0c: 8a:15:cd:bd:b3:e0:ef:b7:8f:4b:d3:04:e9:02:fd: 8d:ba:c0:7e:72:f1:b9:c2:d6:09:84:a4:72:cf:1b: 90:f6:f5:6c:9d:b2:37:33:87:db:57:ce:8d:c1:dd: 7b:b3:4e:d1:31:7a:d7:20:59:88:53:e1:b7:62:a9: d8:8b:e0:b8:ba:33:0a:2c:03:72:e7:6d:67:6d:0e: d0:85:64:3f:31:97:af:bb:95:6a:71:1a:49:95:d0: a9:1f:51:00:56:7c:a7:f6:12:b7:f0:11:6a:37:81: 70:cb:75:25:ff:2e:4e:74:a9:e8:b5:f5:e1:38:42: e3:6a:c3:7c:80:20:39:cd:2a:8e:0a:6a:92:62:1f: 25:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:FB:4F:47:7B:08:04:51:A5:D7:7C:57:31:A6:37:46:C6:3B:FC:51 X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/IvtPR3sIBFGl13xXMaY3RsY7_FE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.219.0/24 Signature Algorithm: sha256WithRSAEncryption d3:52:4b:08:41:c4:8e:1e:a1:e1:db:43:40:b4:ef:b5:c7:cc: 08:a1:cc:57:eb:41:97:fe:69:57:c4:3e:8b:e4:58:54:eb:e9: 72:ec:19:bd:d6:cb:45:f9:3f:2c:ab:ab:dc:7a:be:92:9d:81: 0c:62:89:85:ab:a2:4b:b1:33:33:f7:2c:e9:f5:a8:09:16:a2: 5c:0d:7b:b1:41:88:f0:59:ba:15:30:ab:f4:0a:ad:56:3d:47: c5:da:47:7f:ed:ea:22:1a:6f:81:b4:51:6d:c2:11:d3:33:3c: 92:98:d5:b9:90:07:9d:6b:44:0a:0f:fe:65:67:07:ae:58:24: 0d:ed:36:df:23:03:7a:6a:df:56:f2:00:64:95:d5:e7:33:bd: 93:31:94:26:f1:a0:de:c7:b3:b1:29:56:c9:35:88:6b:6e:02: 2d:78:d9:6a:c7:c9:4e:85:83:5a:49:82:49:b3:85:47:30:53: a6:81:10:4f:d0:7d:d2:71:cd:96:3e:ef:11:7e:fa:db:38:d5: eb:bb:9f:55:6c:a1:7c:1c:95:eb:88:fe:56:e3:3a:4c:74:04: a2:60:6f:b8:94:f4:3f:7f:19:eb:9a:a9:a5:e8:cb:ec:e7:2c: fb:7a:d2:c7:8c:6b:59:81:d0:cd:40:9b:cb:18:5b:74:f4:ea: 69:21:9e:22 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEkEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yMzEwMTYx MjI3NTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDIyRkI0RjQ3N0IwODA0 NTFBNUQ3N0M1NzMxQTYzNzQ2QzYzQkZDNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDN930I6eRR6wpCo/id96MaI7C7/pKF5m3SGDGd3P4eS0/Z52gC JrMWhXSdI6U/NmzULcP0J+KOjwhPMDfLJ2FlyhYkGUshHr29Y84oVvLYBr8Bu02B qX15RbmofB8nkJM5j52gIY6p/CCMLstTdUPCnt9uRPB6DIoVzb2z4O+3j0vTBOkC /Y26wH5y8bnC1gmEpHLPG5D29Wydsjczh9tXzo3B3XuzTtExetcgWYhT4bdiqdiL 4Li6MwosA3LnbWdtDtCFZD8xl6+7lWpxGkmV0KkfUQBWfKf2ErfwEWo3gXDLdSX/ Lk50qei19eE4QuNqw3yAIDnNKo4KapJiHyWXAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUIvtPR3sIBFGl13xXMaY3RsY7/FEwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9JdnRQUjNzSUJGR2wxM3hYTWFZ M1JzWTdfRkUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vb MA0GCSqGSIb3DQEBCwUAA4IBAQDTUksIQcSOHqHh20NAtO+1x8wIocxX60GX/mlX xD6L5FhU6+ly7Bm91stF+T8sq6vcer6SnYEMYomFq6JLsTMz9yzp9agJFqJcDXux QYjwWboVMKv0Cq1WPUfF2kd/7eoiGm+BtFFtwhHTMzySmNW5kAeda0QKD/5lZweu WCQN7TbfIwN6at9W8gBkldXnM72TMZQm8aDex7OxKVbJNYhrbgIteNlqx8lOhYNa SYJJs4VHMFOmgRBP0H3Scc2WPu8RfvrbONXru59VbKF8HJXriP5W4zpMdASiYG+4 lPQ/fxnrmqml6Mvs5yz7etLHjGtZgdDNQJvLGFt09OppIZ4i -----END CERTIFICATE-----Generated at Sat Jun 8 00:06:50 2024 by rpki-client on console-fra.rpki-client.org