$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/ncXbw_kv5HT1BOmDeDMYofAZQBk.roa File: ncXbw_kv5HT1BOmDeDMYofAZQBk.roa (raw, json) Hash identifier: LxZsC/rpjCm3MEI6tbs5Wq3dhWXU04Sv5j5CgfPq3Rg= Subject key identifier: 9D:C5:DB:C3:F9:2F:E4:74:F5:04:E9:83:78:33:18:A1:F0:19:40:19 Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 121F Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/ncXbw_kv5HT1BOmDeDMYofAZQBk.roa Signing time: Fri 01 Sep 2023 09:41:08 +0000 ROA not before: Fri 01 Sep 2023 09:41:08 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 202525 IP address blocks: 103.123.218.0/24 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 01:35:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4639 (0x121f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Sep 1 09:41:08 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9DC5DBC3F92FE474F504E983783318A1F0194019 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:25:51:17:36:85:76:73:fd:01:0b:04:39:37: 91:70:fd:ff:12:ff:ea:d7:d8:97:cc:04:0e:7d:78: 62:fc:d0:9e:6b:22:35:7b:5a:95:c9:c9:55:61:2c: a5:e1:6d:ac:36:44:49:9f:38:93:56:de:2a:94:98: a5:d0:f7:ae:54:ad:58:f3:c7:07:d9:e6:90:a2:fe: 29:43:6e:3c:9e:b6:0b:56:c1:9e:59:1a:f7:94:01: f4:06:42:9b:e7:7d:38:3e:bc:b8:37:1f:ed:5e:09: a3:66:23:ba:4b:e8:84:f6:58:fb:c1:f4:cf:da:07: 49:49:fd:de:d6:54:bb:0e:b2:3c:f8:56:91:2f:60: 13:1d:af:29:40:14:65:6c:69:2c:20:d8:9f:0b:84: 18:60:75:b0:e5:fa:d0:76:3e:2a:90:be:12:a7:69: 9c:3f:f6:90:09:02:8c:4e:39:09:14:0f:e8:2b:7b: ce:e3:11:03:a1:1a:c7:94:08:3e:15:fd:df:f7:3e: d6:10:91:98:f8:bc:41:71:9c:5d:16:63:58:0e:52: 88:10:8c:a1:09:f3:d1:aa:26:35:03:5b:58:3c:37: 2b:c7:6d:ea:04:76:47:64:1e:06:a3:d1:6c:ac:fa: 32:95:52:07:4e:80:d7:25:87:c5:be:94:27:92:67: db:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:C5:DB:C3:F9:2F:E4:74:F5:04:E9:83:78:33:18:A1:F0:19:40:19 X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/ncXbw_kv5HT1BOmDeDMYofAZQBk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.218.0/24 Signature Algorithm: sha256WithRSAEncryption e2:a5:eb:eb:f8:ec:04:96:2d:8b:22:2a:f9:77:05:4a:11:40: 23:f5:89:09:74:ec:3c:9f:db:c4:c1:6d:68:c9:7f:db:2b:e5: 7c:2d:82:26:80:3c:6b:ba:c7:44:80:75:75:e7:93:31:25:1b: d5:44:02:c0:b3:8c:4a:33:9c:c2:04:98:ab:e0:01:6e:90:01: 19:d8:6c:d6:24:aa:be:8e:21:28:22:0f:24:cf:58:83:25:f1: c6:08:89:d3:08:bb:6c:d2:ba:de:64:86:f8:ca:e9:4a:3c:ad: ed:27:a6:18:ac:33:2a:4f:b3:9c:95:fa:f3:4c:55:dd:45:fa: 4c:7e:e9:b4:64:68:2f:d3:03:68:03:cb:a7:e9:c8:a4:32:e5: d3:59:55:99:23:71:8c:8d:63:fd:40:bd:70:ed:bb:ae:ac:e7: b9:42:02:28:2a:48:c5:45:f3:81:b6:90:3b:d9:b6:e3:46:c6: 60:d4:02:dd:84:eb:be:33:34:cf:81:f6:63:66:10:53:fb:01: a0:ee:4d:73:01:53:93:06:e5:a1:53:b0:90:f5:d3:d9:bb:9e: e0:ad:de:dd:e0:86:d4:30:58:98:27:78:cd:c5:57:f8:dc:57: be:b0:06:a5:ac:e3:f5:cd:51:64:f4:fb:0a:1e:be:50:ff:c9: 2b:33:2f:8c -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEh8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yMzA5MDEw OTQxMDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlEQzVEQkMzRjkyRkU0 NzRGNTA0RTk4Mzc4MzMxOEExRjAxOTQwMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3JVEXNoV2c/0BCwQ5N5Fw/f8S/+rX2JfMBA59eGL80J5rIjV7 WpXJyVVhLKXhbaw2REmfOJNW3iqUmKXQ965UrVjzxwfZ5pCi/ilDbjyetgtWwZ5Z GveUAfQGQpvnfTg+vLg3H+1eCaNmI7pL6IT2WPvB9M/aB0lJ/d7WVLsOsjz4VpEv YBMdrylAFGVsaSwg2J8LhBhgdbDl+tB2PiqQvhKnaZw/9pAJAoxOOQkUD+gre87j EQOhGseUCD4V/d/3PtYQkZj4vEFxnF0WY1gOUogQjKEJ89GqJjUDW1g8NyvHbeoE dkdkHgaj0Wys+jKVUgdOgNclh8W+lCeSZ9unAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUncXbw/kv5HT1BOmDeDMYofAZQBkwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9uY1hid19rdjVIVDFCT21EZURN WW9mQVpRQmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3va MA0GCSqGSIb3DQEBCwUAA4IBAQDipevr+OwEli2LIir5dwVKEUAj9YkJdOw8n9vE wW1oyX/bK+V8LYImgDxrusdEgHV155MxJRvVRALAs4xKM5zCBJir4AFukAEZ2GzW JKq+jiEoIg8kz1iDJfHGCInTCLts0rreZIb4yulKPK3tJ6YYrDMqT7OclfrzTFXd RfpMfum0ZGgv0wNoA8un6cikMuXTWVWZI3GMjWP9QL1w7buurOe5QgIoKkjFRfOB tpA72bbjRsZg1ALdhOu+MzTPgfZjZhBT+wGg7k1zAVOTBuWhU7CQ9dPZu57grd7d 4IbUMFiYJ3jNxVf43Fe+sAalrOP1zVFk9PsKHr5Q/8krMy+M -----END CERTIFICATE-----Generated at Sat Jun 1 06:15:07 2024 by rpki-client on console-ams.rpki-client.org