$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/any21vVqwgbMesqyBHyz3C4d2cM.roa File: any21vVqwgbMesqyBHyz3C4d2cM.roa (raw, json) Hash identifier: U2Krx6ILiv5thYY7mYg48cBQ/8pYbJCtQ3Oz5vjk+9k= Subject key identifier: 6A:7C:B6:D6:F5:6A:C2:06:CC:7A:CA:B2:04:7C:B3:DC:2E:1D:D9:C3 Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 12DF Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/any21vVqwgbMesqyBHyz3C4d2cM.roa Signing time: Tue 30 Apr 2024 12:46:28 +0000 ROA not before: Tue 30 Apr 2024 12:46:28 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 215913 IP address blocks: 103.123.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 01:41:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4831 (0x12df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Apr 30 12:46:28 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6A7CB6D6F56AC206CC7ACAB2047CB3DC2E1DD9C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:26:4f:fc:7b:0c:d9:5f:ed:ba:f4:f4:11:be: dd:cd:f7:ec:11:93:95:bd:55:e2:bf:a8:28:17:f8: 1b:aa:2d:ea:dd:c6:95:1a:aa:5a:31:0e:9d:0f:6e: 47:8e:b5:46:74:a3:6f:11:be:27:d5:b3:d2:3a:dc: 3b:5f:03:2e:5b:15:59:15:8a:d3:0f:76:6b:cb:67: be:e8:e2:4a:61:8c:1f:20:fd:bc:69:0f:51:a6:36: 65:e0:47:81:d1:e9:0f:08:61:5d:71:af:6d:aa:b2: b7:e7:ac:14:36:b3:b7:22:23:bb:17:c5:02:f6:39: 22:fa:82:fc:02:7b:f7:ee:0a:5b:24:f9:b4:50:eb: ab:09:52:6e:e5:af:80:90:39:af:28:bd:fc:4c:56: 5a:f4:6e:e6:b8:4b:7b:ee:9e:ed:8e:44:88:ad:2f: 63:b0:79:4d:b2:e1:6f:80:be:81:60:db:d7:c4:7b: fd:70:d7:27:ea:43:ac:af:34:dd:f2:8f:59:82:87: c3:c0:48:75:ed:b1:ce:5e:3d:f4:59:26:9c:86:cd: c3:05:04:52:87:57:01:b1:2f:d4:56:93:12:dd:2f: 78:df:2d:49:ef:86:5a:d4:72:da:5e:53:a3:9d:25: 51:0e:4e:f6:09:ae:04:42:98:4e:3c:bc:2b:0c:b1: 4b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:7C:B6:D6:F5:6A:C2:06:CC:7A:CA:B2:04:7C:B3:DC:2E:1D:D9:C3 X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/any21vVqwgbMesqyBHyz3C4d2cM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.217.0/24 Signature Algorithm: sha256WithRSAEncryption 14:c1:4d:05:f4:db:8e:d9:72:05:98:f1:ed:bd:72:4c:e3:83: f1:79:91:93:00:62:6b:d8:81:95:47:07:9c:d2:58:56:af:f8: 73:42:00:b2:24:c5:1d:e9:ee:b8:aa:92:2c:13:24:8d:10:dc: 67:aa:77:cb:44:ed:56:0d:0f:d8:ec:ca:4e:cc:ed:2e:06:d1: 5e:05:bc:be:0c:69:2e:17:36:25:e2:1a:b1:57:f6:93:0b:85: 70:75:8c:83:4d:ad:84:05:c6:a2:92:ef:a7:63:e1:b4:f4:2c: 0b:b0:fd:bf:13:ca:1b:b3:a9:0c:a8:59:03:d3:b5:a9:4f:4d: 73:b3:02:3c:51:e7:0f:1c:bb:f0:20:74:98:85:d9:8e:ea:ee: ef:8c:43:a4:7a:7f:97:00:c9:d7:db:38:36:70:09:44:af:a8: 3c:c6:17:2e:91:ae:8d:69:f7:ef:95:a6:fe:49:26:46:b8:91: 54:5a:90:89:4c:9e:06:84:35:5b:5c:b9:dd:d3:13:e6:94:32: 23:19:fa:16:4f:b4:f7:4d:38:06:66:2f:ff:79:63:5d:57:bc: cc:56:71:4f:ff:90:93:5b:f9:2c:55:17:ba:d9:33:e6:64:72: 77:04:36:62:dd:1d:eb:2c:35:a9:ce:63:1f:53:a6:4b:9e:fc: ad:21:d5:f2 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEt8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yNDA0MzAx MjQ2MjhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZBN0NCNkQ2RjU2QUMy MDZDQzdBQ0FCMjA0N0NCM0RDMkUxREQ5QzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0Jk/8ewzZX+269PQRvt3N9+wRk5W9VeK/qCgX+BuqLerdxpUa qloxDp0PbkeOtUZ0o28RvifVs9I63DtfAy5bFVkVitMPdmvLZ77o4kphjB8g/bxp D1GmNmXgR4HR6Q8IYV1xr22qsrfnrBQ2s7ciI7sXxQL2OSL6gvwCe/fuClsk+bRQ 66sJUm7lr4CQOa8ovfxMVlr0bua4S3vunu2ORIitL2OweU2y4W+AvoFg29fEe/1w 1yfqQ6yvNN3yj1mCh8PASHXtsc5ePfRZJpyGzcMFBFKHVwGxL9RWkxLdL3jfLUnv hlrUctpeU6OdJVEOTvYJrgRCmE48vCsMsUu9AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUany21vVqwgbMesqyBHyz3C4d2cMwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9hbnkyMXZWcXdnYk1lc3F5Qkh5 ejNDNGQyY00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vZ MA0GCSqGSIb3DQEBCwUAA4IBAQAUwU0F9NuO2XIFmPHtvXJM44PxeZGTAGJr2IGV Rwec0lhWr/hzQgCyJMUd6e64qpIsEySNENxnqnfLRO1WDQ/Y7MpOzO0uBtFeBby+ DGkuFzYl4hqxV/aTC4VwdYyDTa2EBcaiku+nY+G09CwLsP2/E8obs6kMqFkD07Wp T01zswI8UecPHLvwIHSYhdmO6u7vjEOken+XAMnX2zg2cAlEr6g8xhcuka6Naffv lab+SSZGuJFUWpCJTJ4GhDVbXLnd0xPmlDIjGfoWT7T3TTgGZi//eWNdV7zMVnFP /5CTW/ksVRe62TPmZHJ3BDZi3R3rLDWpzmMfU6ZLnvytIdXy -----END CERTIFICATE-----Generated at Sat Jun 8 07:13:32 2024 by rpki-client on console-fra.rpki-client.org