$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7SvAJzzmJ532P_0GlGMD3N3BWIo.roa File: 7SvAJzzmJ532P_0GlGMD3N3BWIo.roa (raw, json) Hash identifier: MGw6OwS+SuY9/RGVfi1V2F98axIKSAkqQfenAAJbsZ4= Subject key identifier: ED:2B:C0:27:3C:E6:27:9D:F6:3F:FD:06:94:63:03:DC:DD:C1:58:8A Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Certificate serial: 107C Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7SvAJzzmJ532P_0GlGMD3N3BWIo.roa Signing time: Mon 04 Dec 2023 13:54:31 +0000 ROA not before: Mon 04 Dec 2023 13:54:31 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 63897 IP address blocks: 103.127.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 23:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4220 (0x107c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Validity Not Before: Dec 4 13:54:31 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=ED2BC0273CE6279DF63FFD06946303DCDDC1588A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:18:3d:e5:81:bf:12:58:72:e7:1e:69:83:0c: 8e:8a:1f:5a:23:98:ab:8e:ba:da:b2:fe:e3:9a:a5: aa:53:e4:ee:2b:8f:77:9b:79:dc:ce:42:93:b6:77: 1c:b2:59:1f:97:a2:03:ef:35:1e:68:52:ab:9c:c4: e3:d2:75:78:c6:f3:b5:99:26:0f:1e:f3:c7:b2:3f: 73:89:c6:9a:54:99:90:a2:7a:5d:4b:c0:9d:88:b5: e8:96:54:9e:e2:22:93:8c:0d:9e:31:ec:a5:d3:ec: 09:9e:30:87:44:7f:ea:85:24:58:d2:99:32:a2:26: 56:c9:ec:45:b3:ec:8c:9a:7d:08:f8:b4:92:24:ef: ed:f0:77:e4:5f:58:7d:f0:52:1a:d7:18:9b:b0:64: 67:53:bf:72:3e:82:f0:0c:95:8a:a2:e0:7e:b1:27: ec:8a:10:96:1d:a2:55:4c:1e:6e:ad:64:21:bd:88: 15:9d:64:15:3f:ee:37:8c:8a:b7:3e:73:d6:ec:4d: be:ec:12:de:af:c4:4e:5c:eb:02:28:33:6d:b9:2e: 99:df:12:f9:5a:80:87:e8:de:17:52:ad:02:1c:9e: 3f:5d:ee:3a:f7:10:aa:a1:91:ec:b3:b6:eb:06:e4: 84:a4:5c:80:9e:5d:d3:ef:6a:93:64:69:99:e2:5e: 30:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:2B:C0:27:3C:E6:27:9D:F6:3F:FD:06:94:63:03:DC:DD:C1:58:8A X509v3 Authority Key Identifier: keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7SvAJzzmJ532P_0GlGMD3N3BWIo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.237.0/24 Signature Algorithm: sha256WithRSAEncryption 03:e3:3b:67:37:58:59:69:fd:ad:fd:13:54:6e:a8:a3:6f:ba: ee:dd:17:8b:25:c6:34:e2:78:43:b4:a9:07:f7:a4:67:b3:74: ee:84:4a:39:56:35:11:1e:86:3a:04:57:c9:5c:f5:68:04:4a: 42:0b:65:ad:f1:45:e3:ea:1d:69:33:60:b4:9d:3e:33:a0:39: 68:6c:3c:28:57:53:82:e7:71:b3:c1:ad:39:d6:0d:83:5c:b8: 4d:8a:66:2c:ce:69:49:57:08:0c:e0:6e:0a:c0:86:7e:85:f6: f2:0a:06:5d:a7:4f:42:8e:be:6c:c6:b0:9e:65:e3:b2:24:92: 94:c2:73:e4:b4:5e:85:01:8a:a3:84:c5:19:97:f5:c3:5c:37: 64:e9:3e:34:50:37:7e:82:42:ab:b0:b5:fc:04:47:62:92:3a: 01:af:23:0d:27:5e:13:2f:70:93:42:f9:72:ae:c3:dd:17:8f: cf:5d:fb:a2:6e:6b:39:fd:70:57:22:4a:9f:78:d3:b8:e9:ff: 15:ef:b5:72:70:27:9c:5a:f5:b8:95:8d:c3:f0:db:16:27:9b: 94:ba:6c:f9:a9:3b:2e:62:9e:fc:5c:50:1e:24:85:00:49:96: 5a:c6:a9:39:39:47:05:d3:c9:25:eb:77:bc:fd:d6:23:78:25: 24:7c:98:21 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEHwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQx ODZGNjMxNEQ3QjU3MTNFRkZFQ0ZCOTNFQkMzRTgyMTk3RTJFRjAeFw0yMzEyMDQx MzU0MzFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVEMkJDMDI3M0NFNjI3 OURGNjNGRkQwNjk0NjMwM0RDRERDMTU4OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdGD3lgb8SWHLnHmmDDI6KH1ojmKuOutqy/uOapapT5O4rj3eb edzOQpO2dxyyWR+XogPvNR5oUqucxOPSdXjG87WZJg8e88eyP3OJxppUmZCiel1L wJ2IteiWVJ7iIpOMDZ4x7KXT7AmeMIdEf+qFJFjSmTKiJlbJ7EWz7IyafQj4tJIk 7+3wd+RfWH3wUhrXGJuwZGdTv3I+gvAMlYqi4H6xJ+yKEJYdolVMHm6tZCG9iBWd ZBU/7jeMirc+c9bsTb7sEt6vxE5c6wIoM225LpnfEvlagIfo3hdSrQIcnj9d7jr3 EKqhkeyztusG5ISkXICeXdPvapNkaZniXjB7AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU7SvAJzzmJ532P/0GlGMD3N3BWIowHwYDVR0jBBgwFoAU7RhvYxTXtXE+/+z7 k+vD6CGX4u8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hVTllJ TkcvN1Jodll4VFh0WEUtXy16N2stdkQ2Q0dYNHU4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS83Umh2WXhUWHRYRS1fLXo3ay12RDZDR1g0dTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSFVOWUlORy83U3ZBSnp6bUo1MzJQ XzBHbEdNRDNOM0JXSW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ3/tMA0GCSqGSIb3DQEBCwUAA4IBAQAD4ztnN1hZaf2t/RNUbqijb7ru3ReL JcY04nhDtKkH96Rns3TuhEo5VjURHoY6BFfJXPVoBEpCC2Wt8UXj6h1pM2C0nT4z oDlobDwoV1OC53Gzwa051g2DXLhNimYszmlJVwgM4G4KwIZ+hfbyCgZdp09Cjr5s xrCeZeOyJJKUwnPktF6FAYqjhMUZl/XDXDdk6T40UDd+gkKrsLX8BEdikjoBryMN J14TL3CTQvlyrsPdF4/PXfuibms5/XBXIkqfeNO46f8V77VycCecWvW4lY3D8NsW J5uUumz5qTsuYp78XFAeJIUASZZaxqk5OUcF08kl63e8/dYjeCUkfJgh -----END CERTIFICATE-----Generated at Tue Apr 30 21:02:35 2024 by rpki-client on console-ams.rpki-client.org