$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SGU/x7E2fEp_IAPpBAaNxt6Q11GeStc.roa File: x7E2fEp_IAPpBAaNxt6Q11GeStc.roa (raw, json) Hash identifier: JQWLf010NcX37vqya3X87j8Bt3Tfh5Nan3XV2kmK/Sw= Subject key identifier: C7:B1:36:7C:4A:7F:20:03:E9:04:06:8D:C6:DE:90:D7:51:9E:4A:D7 Certificate issuer: /CN=3294E71902A4A5C31B987BD67D094AF5830A816D Certificate serial: 0236 Authority key identifier: 32:94:E7:19:02:A4:A5:C3:1B:98:7B:D6:7D:09:4A:F5:83:0A:81:6D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/x7E2fEp_IAPpBAaNxt6Q11GeStc.roa Signing time: Mon 26 Aug 2024 05:25:47 +0000 ROA not before: Mon 26 Aug 2024 05:25:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 103.186.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/MpTnGQKkpcMbmHvWfQlK9YMKgW0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/MpTnGQKkpcMbmHvWfQlK9YMKgW0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 566 (0x236) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3294E71902A4A5C31B987BD67D094AF5830A816D Validity Not Before: Aug 26 05:25:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C7B1367C4A7F2003E904068DC6DE90D7519E4AD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:04:b6:ec:33:e8:26:aa:a9:3e:28:e1:d9:55: 81:c2:72:39:75:51:18:11:d7:af:08:49:44:1c:27: 14:03:df:34:14:bb:f5:da:d4:32:39:30:cf:f7:c1: ce:2b:a9:c7:5c:73:0a:02:0c:5a:0e:3a:e7:ed:3b: 26:41:76:a3:c7:0a:94:e5:0b:23:4c:18:bc:de:cf: 77:c3:7d:73:66:e4:04:53:d4:09:bb:c1:b8:59:e7: 5f:96:6f:fd:91:04:32:ac:a7:89:c7:51:f7:35:22: ef:a7:4e:41:c6:51:58:2f:ff:f2:b0:97:31:c5:4a: a1:4c:29:83:6c:87:a6:d2:6b:38:db:9a:36:a8:22: 3e:30:c2:28:05:bd:33:a4:bd:94:fa:a5:3b:eb:27: 8b:10:37:f7:be:b2:96:cf:60:4b:8b:8c:8d:6c:e8: d3:68:e9:22:9b:d2:88:3f:b1:ac:26:11:d0:ae:8b: 53:ec:91:ba:4c:cf:32:54:c2:34:a1:8a:47:9c:b4: 7f:73:62:01:39:09:7f:94:0e:49:3d:dc:e2:43:8b: 89:4d:29:92:2d:e0:8d:7a:45:dc:12:46:9d:57:c8: a4:c8:77:1c:cb:50:50:c9:2e:f1:43:61:29:70:c6: 3a:49:cb:dc:6a:f2:db:26:e8:1e:9b:75:39:46:41: 91:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:B1:36:7C:4A:7F:20:03:E9:04:06:8D:C6:DE:90:D7:51:9E:4A:D7 X509v3 Authority Key Identifier: keyid:32:94:E7:19:02:A4:A5:C3:1B:98:7B:D6:7D:09:4A:F5:83:0A:81:6D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/MpTnGQKkpcMbmHvWfQlK9YMKgW0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/x7E2fEp_IAPpBAaNxt6Q11GeStc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.186.186.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:77:94:0d:b9:a7:a2:92:0b:21:16:45:7e:bd:4e:77:e1:c7: 38:46:b1:d0:2a:6f:4a:f4:d3:98:ad:d8:94:57:9c:24:5f:5d: 30:2d:3d:90:73:26:8e:96:b6:aa:3b:eb:0e:f4:fb:a2:3f:62: 0b:cf:17:5a:9f:00:ea:41:16:cb:6e:09:84:82:13:93:3d:01: a6:3f:dc:c5:df:fa:80:08:aa:70:25:1b:e0:6a:8e:e0:15:9e: 84:c1:3e:57:ba:95:db:e9:b2:8c:ce:68:7c:7c:4e:74:6b:e1: 0b:f5:89:37:3a:35:4e:be:fe:4d:98:77:0b:78:c9:64:e4:fc: 4c:d7:46:0f:5a:81:da:e1:90:46:75:8b:bc:50:e6:ca:0d:9c: 60:60:d3:d1:6d:2f:95:2c:6f:2c:a1:84:aa:78:99:1c:8e:c1: ac:36:a5:86:36:ec:91:91:59:e4:84:79:f5:e7:84:9e:9c:3c: 52:9b:aa:f3:e8:3f:f6:ae:90:d6:ca:74:6e:28:0c:14:fb:fc: 49:81:a8:db:4b:bf:d0:1d:3b:56:ba:21:82:0f:e1:33:5a:6e: d9:b3:05:3e:f4:70:34:9f:89:f2:82:8c:63:70:c2:4d:c3:96: d0:6c:a8:f9:4f:07:8d:c2:8a:2e:30:05:09:1c:3c:d5:d0:91: d6:12:ad:7a -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICAjYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzI5 NEU3MTkwMkE0QTVDMzFCOTg3QkQ2N0QwOTRBRjU4MzBBODE2RDAeFw0yNDA4MjYw NTI1NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM3QjEzNjdDNEE3RjIw MDNFOTA0MDY4REM2REU5MEQ3NTE5RTRBRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvBLbsM+gmqqk+KOHZVYHCcjl1URgR168ISUQcJxQD3zQUu/Xa 1DI5MM/3wc4rqcdccwoCDFoOOuftOyZBdqPHCpTlCyNMGLzez3fDfXNm5ART1Am7 wbhZ51+Wb/2RBDKsp4nHUfc1Iu+nTkHGUVgv//KwlzHFSqFMKYNsh6bSazjbmjao Ij4wwigFvTOkvZT6pTvrJ4sQN/e+spbPYEuLjI1s6NNo6SKb0og/sawmEdCui1Ps kbpMzzJUwjShikectH9zYgE5CX+UDkk93OJDi4lNKZIt4I16RdwSRp1XyKTIdxzL UFDJLvFDYSlwxjpJy9xq8tsm6B6bdTlGQZH7AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUx7E2fEp/IAPpBAaNxt6Q11GeStcwHwYDVR0jBBgwFoAUMpTnGQKkpcMbmHvW fQlK9YMKgW0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0dVL01w VG5HUUtrcGNNYm1IdldmUWxLOVlNS2dXMC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TXBUbkdRS2twY01ibUh2V2ZRbEs5WU1LZ1cwLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvU0dVL3g3RTJmRXBfSUFQcEJBYU54dDZRMTFH ZVN0Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnurowDQYJ KoZIhvcNAQELBQADggEBADx3lA25p6KSCyEWRX69TnfhxzhGsdAqb0r005it2JRX nCRfXTAtPZBzJo6Wtqo76w70+6I/YgvPF1qfAOpBFstuCYSCE5M9AaY/3MXf+oAI qnAlG+BqjuAVnoTBPle6ldvpsozOaHx8TnRr4Qv1iTc6NU6+/k2Ydwt4yWTk/EzX Rg9agdrhkEZ1i7xQ5soNnGBg09FtL5UsbyyhhKp4mRyOwaw2pYY27JGRWeSEefXn hJ6cPFKbqvPoP/aukNbKdG4oDBT7/EmBqNtLv9AdO1a6IYIP4TNabtmzBT70cDSf ifKCjGNwwk3DltBsqPlPB43Cii4wBQkcPNXQkdYSrXo= -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:31 2024 by rpki-client on console-fra.rpki-client.org