$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/Y2JPffOb82G-1WIGTpgXGc8Traw.roa File: Y2JPffOb82G-1WIGTpgXGc8Traw.roa (raw, json) Hash identifier: tb63tEeelCFza/OXJVsO2VvWz/OCM/GWlXADFzMyVvM= Subject key identifier: 63:62:4F:7D:F3:9B:F3:61:BE:D5:62:06:4E:98:17:19:CF:13:AD:AC Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 1356 Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/Y2JPffOb82G-1WIGTpgXGc8Traw.roa Signing time: Mon 26 Aug 2024 05:25:29 +0000 ROA not before: Mon 26 Aug 2024 05:25:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 16509 IP address blocks: 103.123.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 02:24:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4950 (0x1356) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Aug 26 05:25:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=63624F7DF39BF361BED562064E981719CF13ADAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d5:a5:f1:fd:81:4c:5c:a0:ba:a5:36:ee:94: 89:61:bf:58:d0:c5:5a:8c:8f:14:9d:2b:d1:59:b4: 6e:fe:ee:fa:25:83:35:c6:97:c3:fe:6e:4b:db:87: 40:d3:d9:eb:91:ac:e9:ae:eb:e5:d2:81:f8:c7:bd: 79:67:71:e9:02:fe:ab:6a:a1:ac:f7:d0:21:ef:c4: 78:43:24:15:dc:51:af:ff:9e:a0:b7:65:7d:4c:34: 4b:fc:0f:94:42:65:05:98:27:c7:68:62:38:23:54: 6a:d4:cc:c5:aa:a8:7e:78:3e:92:43:92:d3:8f:b0: 3a:16:fb:53:cc:6d:12:bc:23:3a:01:14:64:3e:9c: 6e:15:00:53:9d:1e:5c:68:44:d4:7f:40:9a:c3:61: 73:c0:55:59:08:c4:47:b3:65:6b:7a:53:70:75:10: da:d3:1f:7b:cb:d7:d2:55:74:98:a0:44:20:de:2c: 9c:63:86:3a:f7:c3:5e:7e:52:4f:34:f3:79:92:f2: 49:fd:9b:f5:1c:c9:8b:51:cb:ac:dc:8a:f6:cc:80: a1:94:b1:b6:8e:a7:fc:0f:09:e7:03:ce:cc:9b:76: 9c:82:a5:23:fa:38:01:60:c9:6f:6d:e3:60:0f:8c: 06:41:2b:87:4b:4a:1b:7d:96:f5:2c:df:4c:f5:ae: 00:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:62:4F:7D:F3:9B:F3:61:BE:D5:62:06:4E:98:17:19:CF:13:AD:AC X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/Y2JPffOb82G-1WIGTpgXGc8Traw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.216.0/24 Signature Algorithm: sha256WithRSAEncryption 47:9b:01:d8:50:57:8c:ab:de:eb:3c:db:49:4e:3f:86:36:19: b4:6e:d8:a5:76:86:8c:39:bd:ba:ff:8d:1d:bb:55:e4:b4:20: 08:ee:d2:ce:39:e7:01:67:50:76:79:94:0f:fb:4f:a2:87:e6: 16:a5:f0:d7:1e:fc:78:17:7e:7f:97:4b:80:7f:47:5e:b5:f0: d1:c2:3c:2e:cf:e4:cf:d2:fc:1f:dd:8d:21:fc:74:36:36:9a: ce:80:b9:98:0f:05:74:ed:d9:33:05:59:2c:01:55:e4:8b:fc: ae:ee:2e:10:cc:2e:ba:4d:88:17:ff:e8:e3:82:f2:00:d9:ad: fc:18:f6:e0:46:de:40:3f:73:7d:2e:cf:39:39:77:66:d9:c1: 40:58:bd:5f:dc:1c:4e:24:12:22:4f:88:d5:bc:21:49:44:5c: bb:25:6a:5f:d3:0a:cd:77:42:9c:c2:20:ab:d5:d4:7e:b5:a0: 95:00:d6:85:77:76:9e:af:2e:84:0f:a7:5c:52:62:69:12:fe: 79:d2:af:e9:8b:26:7c:27:64:c4:9e:62:07:28:6d:bc:40:a0: be:0c:d9:55:c7:ce:0e:07:a8:e6:75:d4:11:e3:0f:a7:bd:c0: b4:82:7e:94:87:1d:a7:a9:6d:27:6e:d2:96:9e:08:ba:73:22: 88:16:c8:3e -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICE1YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yNDA4MjYw NTI1MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYzNjI0RjdERjM5QkYz NjFCRUQ1NjIwNjRFOTgxNzE5Q0YxM0FEQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC1aXx/YFMXKC6pTbulIlhv1jQxVqMjxSdK9FZtG7+7volgzXG l8P+bkvbh0DT2euRrOmu6+XSgfjHvXlncekC/qtqoaz30CHvxHhDJBXcUa//nqC3 ZX1MNEv8D5RCZQWYJ8doYjgjVGrUzMWqqH54PpJDktOPsDoW+1PMbRK8IzoBFGQ+ nG4VAFOdHlxoRNR/QJrDYXPAVVkIxEezZWt6U3B1ENrTH3vL19JVdJigRCDeLJxj hjr3w15+Uk8083mS8kn9m/UcyYtRy6zcivbMgKGUsbaOp/wPCecDzsybdpyCpSP6 OAFgyW9t42APjAZBK4dLSht9lvUs30z1rgCzAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUY2JPffOb82G+1WIGTpgXGc8TrawwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9ZMkpQZmZPYjgyRy0xV0lHVHBn WEdjOFRyYXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vY MA0GCSqGSIb3DQEBCwUAA4IBAQBHmwHYUFeMq97rPNtJTj+GNhm0btildoaMOb26 /40du1XktCAI7tLOOecBZ1B2eZQP+0+ih+YWpfDXHvx4F35/l0uAf0detfDRwjwu z+TP0vwf3Y0h/HQ2NprOgLmYDwV07dkzBVksAVXki/yu7i4QzC66TYgX/+jjgvIA 2a38GPbgRt5AP3N9Ls85OXdm2cFAWL1f3BxOJBIiT4jVvCFJRFy7JWpf0wrNd0Kc wiCr1dR+taCVANaFd3aery6ED6dcUmJpEv550q/piyZ8J2TEnmIHKG28QKC+DNlV x84OB6jmddQR4w+nvcC0gn6Uhx2nqW0nbtKWngi6cyKIFsg+ -----END CERTIFICATE-----Generated at Sun Nov 24 21:02:00 2024 by rpki-client on console-fra.rpki-client.org