$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/vFj2u87YIvzGnEXeBrDXeztys6g.roa File: vFj2u87YIvzGnEXeBrDXeztys6g.roa (raw, json) Hash identifier: J0nFcEIvIrXJM1A1hMRmA3BbJSJtRJOC0ImtBYPApB8= Subject key identifier: BC:58:F6:BB:CE:D8:22:FC:C6:9C:45:DE:06:B0:D7:7B:3B:72:B3:A8 Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 121A Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/vFj2u87YIvzGnEXeBrDXeztys6g.roa Signing time: Fri 01 Sep 2023 09:41:07 +0000 ROA not before: Fri 01 Sep 2023 09:41:07 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 14618 IP address blocks: 103.123.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 11:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4634 (0x121a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Sep 1 09:41:07 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=BC58F6BBCED822FCC69C45DE06B0D77B3B72B3A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:16:45:41:a1:22:9d:80:22:71:7f:d0:59:84: ce:e3:99:c5:9f:97:6e:33:c0:58:72:6b:62:bb:f6: 38:9c:5b:d1:f6:e0:0a:56:78:f7:b9:eb:c2:68:0b: 0c:61:6c:54:d6:bb:8d:60:4d:bd:7a:03:b3:4e:aa: 70:91:60:c3:5e:6f:5a:1d:77:d6:0f:5c:d9:1d:2f: fd:1f:d0:ec:37:22:df:ff:e7:5b:1d:01:68:48:45: 8a:7a:f0:69:23:8c:5c:00:d7:0a:12:c6:7c:7d:14: aa:3f:d0:45:61:93:a1:9b:57:6a:68:22:94:b7:81: 0a:fe:64:83:3b:53:ee:33:26:e5:13:5a:07:87:a3: 1a:59:a2:b2:6c:b5:7b:29:af:70:e8:01:eb:01:4f: cf:ae:aa:54:57:22:af:56:1a:e7:d4:41:76:a9:e0: d5:65:96:91:f6:a1:19:d5:a5:3b:86:2c:ea:e1:2d: bb:ac:dd:45:5c:0d:68:5a:fd:47:10:81:7a:f8:95: 0f:b9:5c:a0:03:ae:42:f1:a9:71:82:ec:fb:a5:8c: 1a:91:e0:58:7f:e0:05:7e:6d:52:fb:9e:23:aa:a2: 9d:e5:72:8e:2e:20:ef:fe:5e:a0:ec:a5:79:41:63: bc:6f:00:59:cd:1d:e1:1a:7f:2d:68:1f:2c:87:c4: fb:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:58:F6:BB:CE:D8:22:FC:C6:9C:45:DE:06:B0:D7:7B:3B:72:B3:A8 X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/vFj2u87YIvzGnEXeBrDXeztys6g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.219.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:2a:7d:97:c0:17:60:44:71:d6:d5:d7:4d:74:46:fc:36:86: 76:b4:10:d1:7e:37:e1:a9:7e:a2:a4:72:64:4c:c9:bd:bd:2f: 1b:db:e9:c6:76:5f:69:b8:42:bf:b7:53:cb:ac:e4:6d:c2:07: c6:f5:a8:37:ba:e0:3d:f6:30:72:ed:e7:99:16:f3:ee:48:af: cb:67:28:b9:53:3d:b1:50:c0:bd:a0:3f:5a:51:17:33:46:8c: 2b:58:7a:2c:7d:15:ff:5d:d4:72:11:bc:af:16:ed:41:e9:03: 95:f6:19:5b:70:fb:c4:fc:5a:7e:36:e5:11:2a:9c:43:91:5b: 2d:cd:a7:4f:ec:4a:bc:91:9e:bc:55:62:eb:e7:42:b6:13:9c: b8:4e:28:35:b9:91:12:91:08:66:3e:33:92:ad:11:5e:24:12: 3d:e2:5f:a6:37:6a:79:19:84:5f:63:e2:2b:14:35:ea:93:58: 84:2b:2e:9b:1b:89:0a:00:23:93:4d:ca:3e:be:7d:b3:5a:91: 4d:31:3a:fe:fe:03:8b:65:26:93:9f:a2:49:82:2e:28:3f:da: 4d:8d:04:92:48:68:7c:c4:c6:09:4c:b7:7c:21:86:b9:66:b3: ab:86:80:de:78:eb:1a:2f:13:20:f4:4a:bd:7e:ef:e4:4e:78: 77:75:6b:30 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEhowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yMzA5MDEw OTQxMDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEJDNThGNkJCQ0VEODIy RkNDNjlDNDVERTA2QjBENzdCM0I3MkIzQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIFkVBoSKdgCJxf9BZhM7jmcWfl24zwFhya2K79jicW9H24ApW ePe568JoCwxhbFTWu41gTb16A7NOqnCRYMNeb1odd9YPXNkdL/0f0Ow3It//51sd AWhIRYp68GkjjFwA1woSxnx9FKo/0EVhk6GbV2poIpS3gQr+ZIM7U+4zJuUTWgeH oxpZorJstXspr3DoAesBT8+uqlRXIq9WGufUQXap4NVllpH2oRnVpTuGLOrhLbus 3UVcDWha/UcQgXr4lQ+5XKADrkLxqXGC7PuljBqR4Fh/4AV+bVL7niOqop3lco4u IO/+XqDspXlBY7xvAFnNHeEafy1oHyyHxPu7AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUvFj2u87YIvzGnEXeBrDXeztys6gwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC92RmoydTg3WUl2ekduRVhlQnJE WGV6dHlzNmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vb MA0GCSqGSIb3DQEBCwUAA4IBAQBLKn2XwBdgRHHW1ddNdEb8NoZ2tBDRfjfhqX6i pHJkTMm9vS8b2+nGdl9puEK/t1PLrORtwgfG9ag3uuA99jBy7eeZFvPuSK/LZyi5 Uz2xUMC9oD9aURczRowrWHosfRX/XdRyEbyvFu1B6QOV9hlbcPvE/Fp+NuURKpxD kVstzadP7Eq8kZ68VWLr50K2E5y4Tig1uZESkQhmPjOSrRFeJBI94l+mN2p5GYRf Y+IrFDXqk1iEKy6bG4kKACOTTco+vn2zWpFNMTr+/gOLZSaTn6JJgi4oP9pNjQSS SGh8xMYJTLd8IYa5ZrOrhoDeeOsaLxMg9Eq9fu/kTnh3dWsw -----END CERTIFICATE-----Generated at Thu May 2 03:38:36 2024 by rpki-client on console-ams.rpki-client.org