$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/Y5Nakt4ZPW461byay9KzZJhYygQ.roa File: Y5Nakt4ZPW461byay9KzZJhYygQ.roa (raw, json) Hash identifier: XGe1ehJvd8woWqqfpnKr9H13KIt5vmuDBUOPjQ2c/Ko= Subject key identifier: 63:93:5A:92:DE:19:3D:6E:3A:D5:BC:9A:CB:D2:B3:64:98:58:CA:04 Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 1271 Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/Y5Nakt4ZPW461byay9KzZJhYygQ.roa Signing time: Tue 19 Dec 2023 16:40:48 +0000 ROA not before: Tue 19 Dec 2023 16:40:48 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 14618 IP address blocks: 103.123.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 11:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4721 (0x1271) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Dec 19 16:40:48 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=63935A92DE193D6E3AD5BC9ACBD2B3649858CA04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:92:21:75:eb:43:5c:6e:a6:d9:98:96:1c:38: 8c:7d:a3:88:e2:e6:f6:aa:06:db:9f:27:c7:a3:36: d3:aa:d4:c1:3e:9b:c7:e0:72:9c:41:c3:19:35:bb: 0f:b3:e6:e0:bf:8a:50:aa:38:17:2f:5c:cf:41:78: 3b:18:07:0c:f3:d8:53:a4:a6:bd:61:36:62:f3:fe: 17:d3:c3:64:7f:f4:17:c5:6b:0f:d4:a8:ab:d8:ac: 89:7a:8e:dc:eb:a6:cd:a4:2a:5c:67:55:14:d3:46: 1e:14:b4:41:3e:d5:7e:70:38:9c:f4:52:d4:c2:85: 58:8b:c4:6b:44:92:2e:45:68:bd:d2:5c:1d:59:07: 04:02:ed:2e:62:52:9d:26:3f:98:af:2b:fb:69:c7: 1f:9a:6f:38:fa:09:f4:5e:fb:2f:de:0f:08:25:07: 4a:e9:ae:b9:23:1b:c4:d5:55:2a:b2:b6:dc:e2:ec: 05:e1:45:2d:c6:b7:0b:ca:af:79:29:3c:df:40:36: f6:c6:58:28:98:31:f6:89:1d:6b:6d:76:b3:0a:bd: 02:16:1c:f9:63:51:dc:2d:44:88:b8:91:a2:61:0b: 7c:6e:42:f9:64:27:6c:cc:bb:c1:d2:91:c7:c2:56: 84:b5:9a:09:e6:b9:31:32:ad:76:a9:0f:ab:a5:bb: d7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:93:5A:92:DE:19:3D:6E:3A:D5:BC:9A:CB:D2:B3:64:98:58:CA:04 X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/Y5Nakt4ZPW461byay9KzZJhYygQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.216.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:a1:ab:19:c1:0a:59:3c:8e:6a:fd:fb:d7:50:04:17:e9:87: 30:73:e1:4a:13:97:3e:1a:36:52:82:64:73:2c:ed:44:1c:9f: 43:bb:66:d8:0e:43:01:35:86:71:66:08:04:d9:00:ff:50:1d: 11:bd:b0:b4:9f:45:2c:d5:95:60:82:35:44:8b:e3:3c:38:74: 50:b1:a7:ec:0a:3c:dc:b9:39:0b:e9:1d:26:aa:08:02:4e:1b: 67:be:c0:5e:af:13:cf:af:b2:09:8a:e4:f0:44:3e:8f:76:3d: d0:16:61:b6:1d:82:2a:9e:4a:1e:c2:c7:78:c9:ec:77:b5:69: 32:94:8c:0e:3f:97:b1:91:11:07:16:66:33:50:67:e9:58:a1: 7a:d8:66:80:9c:65:65:95:b4:5a:22:a0:89:1e:ae:88:e2:78: 9a:17:6c:83:16:4d:6b:b5:97:f6:29:8f:51:63:f5:3f:f7:7c: 78:8a:4b:64:28:02:6d:19:d1:30:a0:67:69:17:42:b7:52:46: 10:dc:40:6f:0d:e2:96:aa:18:a4:b7:1a:97:19:fb:23:aa:1a: aa:15:e4:3d:a1:ca:c9:95:99:c0:19:6d:73:89:ec:79:62:a6: 6c:97:ff:d7:17:bc:84:d6:ef:a1:44:d8:7f:de:37:f6:43:34: cd:50:6f:0e -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEnEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yMzEyMTkx NjQwNDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDYzOTM1QTkyREUxOTNE NkUzQUQ1QkM5QUNCRDJCMzY0OTg1OENBMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD2kiF160NcbqbZmJYcOIx9o4ji5vaqBtufJ8ejNtOq1ME+m8fg cpxBwxk1uw+z5uC/ilCqOBcvXM9BeDsYBwzz2FOkpr1hNmLz/hfTw2R/9BfFaw/U qKvYrIl6jtzrps2kKlxnVRTTRh4UtEE+1X5wOJz0UtTChViLxGtEki5FaL3SXB1Z BwQC7S5iUp0mP5ivK/tpxx+abzj6CfRe+y/eDwglB0rprrkjG8TVVSqyttzi7AXh RS3GtwvKr3kpPN9ANvbGWCiYMfaJHWttdrMKvQIWHPljUdwtRIi4kaJhC3xuQvlk J2zMu8HSkcfCVoS1mgnmuTEyrXapD6ulu9e9AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUY5Nakt4ZPW461byay9KzZJhYygQwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9ZNU5ha3Q0WlBXNDYxYnlheTlL elpKaFl5Z1Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vY MA0GCSqGSIb3DQEBCwUAA4IBAQCboasZwQpZPI5q/fvXUAQX6Ycwc+FKE5c+GjZS gmRzLO1EHJ9Du2bYDkMBNYZxZggE2QD/UB0RvbC0n0Us1ZVggjVEi+M8OHRQsafs CjzcuTkL6R0mqggCThtnvsBerxPPr7IJiuTwRD6Pdj3QFmG2HYIqnkoewsd4yex3 tWkylIwOP5exkREHFmYzUGfpWKF62GaAnGVllbRaIqCJHq6I4niaF2yDFk1rtZf2 KY9RY/U/93x4iktkKAJtGdEwoGdpF0K3UkYQ3EBvDeKWqhiktxqXGfsjqhqqFeQ9 ocrJlZnAGW1ziex5YqZsl//XF7yE1u+hRNh/3jf2QzTNUG8O -----END CERTIFICATE-----Generated at Thu May 2 03:38:36 2024 by rpki-client on console-ams.rpki-client.org