$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/hNognpYR0AiGKFwyIm6d3XT1cfs.roa File: hNognpYR0AiGKFwyIm6d3XT1cfs.roa (raw, json) Hash identifier: MdfHrCTuN/RwYxSwN8aQNzi8FylB7h6PLjAhmEUCo8g= Subject key identifier: 84:DA:20:9E:96:11:D0:08:86:28:5C:32:22:6E:9D:DD:74:F5:71:FB Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 12E1 Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/hNognpYR0AiGKFwyIm6d3XT1cfs.roa Signing time: Tue 30 Apr 2024 12:48:28 +0000 ROA not before: Tue 30 Apr 2024 12:48:28 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 215913 IP address blocks: 103.123.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 01:41:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4833 (0x12e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Apr 30 12:48:28 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=84DA209E9611D00886285C32226E9DDD74F571FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:90:9f:4a:96:ac:2f:4f:4b:67:0c:b4:4f:51: 67:3d:0a:27:c4:17:73:6b:d9:7e:36:eb:21:b0:36: 5b:59:55:52:88:98:92:4f:f1:c0:f1:d6:d3:94:1e: 28:09:75:e8:47:15:1c:4d:e2:24:6b:38:be:f6:12: 8a:10:94:1e:1b:8d:6d:35:75:b4:c8:9a:76:36:aa: 8a:7c:1d:4a:6e:77:8e:08:ca:f6:c8:91:22:ca:6a: a6:c0:fb:aa:6e:10:f6:62:84:35:15:23:ef:61:a6: b8:7b:29:c8:99:3a:0f:ae:96:24:90:e8:c2:38:3b: 6b:1d:cf:bc:60:0c:8e:cc:e4:1c:67:4f:d5:4b:82: c7:c0:26:b7:cf:af:81:8e:df:a6:be:f8:fd:37:a0: 5e:dc:43:4f:0b:43:d6:e6:cf:2d:7f:1a:73:56:af: c1:33:03:ff:26:b4:cf:12:67:ce:a4:34:9f:94:f2: 20:aa:9e:9a:24:c2:74:0e:86:68:15:bf:98:fb:d9: 15:31:bf:dc:fb:5c:e6:bd:77:df:ea:a7:c4:50:31: e4:68:1c:e4:8b:23:20:85:d3:62:68:7c:25:ed:f2: f3:69:49:a6:7e:c0:23:61:7b:ab:d2:c8:eb:f2:ae: 23:1a:3c:87:55:b2:7d:1f:ce:5d:58:f0:0a:f6:2b: 1c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:DA:20:9E:96:11:D0:08:86:28:5C:32:22:6E:9D:DD:74:F5:71:FB X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/hNognpYR0AiGKFwyIm6d3XT1cfs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.218.0/24 Signature Algorithm: sha256WithRSAEncryption 52:08:a0:1f:29:e9:ac:7f:63:78:37:da:4d:51:43:05:df:7b: 85:63:22:76:97:8d:9a:7d:12:70:d7:7c:d6:ed:e8:20:48:a1: 1a:12:e0:1a:6a:be:88:be:b6:9a:b8:b8:9d:9f:d5:c5:4a:b9: a2:db:da:af:93:0a:aa:0f:52:96:3f:20:b4:90:33:d4:6a:74: 6c:1e:3b:7b:5a:4e:ad:cc:70:5e:a3:3c:b1:42:1e:2f:4d:56: c4:a3:5e:46:84:85:15:51:cb:7b:13:fe:d9:48:69:6d:3a:4a: 0c:9b:eb:7b:9d:0c:13:33:67:a8:51:03:ed:f4:13:2f:3d:40: c9:08:ee:e0:f2:24:33:76:13:9d:6d:a0:f4:e6:af:8c:d8:6f: 1a:57:36:85:50:8c:7f:26:4a:59:11:62:55:27:71:1f:2f:b0: 79:76:79:7e:d8:83:ca:aa:47:1a:86:62:98:2a:15:57:bb:db: 0e:d2:13:fc:ac:b1:68:8b:14:ee:f6:dd:71:eb:17:1f:f5:0e: 7c:01:53:95:26:65:c2:a6:fa:72:fc:67:a1:a9:81:69:a4:56: 32:57:9b:a9:49:4a:fd:1b:77:2c:3a:f2:fd:73:3b:a4:a9:cb: fa:88:e3:0d:76:03:69:5e:5d:f5:b8:8a:3b:fe:eb:9c:23:44: da:bd:2a:54 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEuEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yNDA0MzAx MjQ4MjhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg0REEyMDlFOTYxMUQw MDg4NjI4NUMzMjIyNkU5RERENzRGNTcxRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDakJ9KlqwvT0tnDLRPUWc9CifEF3Nr2X426yGwNltZVVKImJJP 8cDx1tOUHigJdehHFRxN4iRrOL72EooQlB4bjW01dbTImnY2qop8HUpud44IyvbI kSLKaqbA+6puEPZihDUVI+9hprh7KciZOg+uliSQ6MI4O2sdz7xgDI7M5BxnT9VL gsfAJrfPr4GO36a++P03oF7cQ08LQ9bmzy1/GnNWr8EzA/8mtM8SZ86kNJ+U8iCq npokwnQOhmgVv5j72RUxv9z7XOa9d9/qp8RQMeRoHOSLIyCF02JofCXt8vNpSaZ+ wCNhe6vSyOvyriMaPIdVsn0fzl1Y8Ar2Kxy1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUhNognpYR0AiGKFwyIm6d3XT1cfswHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9oTm9nbnBZUjBBaUdLRnd5SW02 ZDNYVDFjZnMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3va MA0GCSqGSIb3DQEBCwUAA4IBAQBSCKAfKemsf2N4N9pNUUMF33uFYyJ2l42afRJw 13zW7eggSKEaEuAaar6IvraauLidn9XFSrmi29qvkwqqD1KWPyC0kDPUanRsHjt7 Wk6tzHBeozyxQh4vTVbEo15GhIUVUct7E/7ZSGltOkoMm+t7nQwTM2eoUQPt9BMv PUDJCO7g8iQzdhOdbaD05q+M2G8aVzaFUIx/JkpZEWJVJ3EfL7B5dnl+2IPKqkca hmKYKhVXu9sO0hP8rLFoixTu9t1x6xcf9Q58AVOVJmXCpvpy/GehqYFppFYyV5up SUr9G3csOvL9czukqcv6iOMNdgNpXl31uIo7/uucI0TavSpU -----END CERTIFICATE-----Generated at Fri Jun 7 17:02:49 2024 by rpki-client on console-fra.rpki-client.org