$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/JVJqU8lWsnYL4cmHfw6snvBsxlw.roa File: JVJqU8lWsnYL4cmHfw6snvBsxlw.roa (raw, json) Hash identifier: xjDd6uPpcXQKcFjZwD1BC9heOhbQV2jl5/oBWK5dNAc= Subject key identifier: 25:52:6A:53:C9:56:B2:76:0B:E1:C9:87:7F:0E:AC:9E:F0:6C:C6:5C Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Certificate serial: 113F Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/JVJqU8lWsnYL4cmHfw6snvBsxlw.roa Signing time: Mon 26 Aug 2024 05:26:05 +0000 ROA not before: Mon 26 Aug 2024 05:26:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131633 IP address blocks: 103.127.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4415 (0x113f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Validity Not Before: Aug 26 05:26:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=25526A53C956B2760BE1C9877F0EAC9EF06CC65C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:58:c0:9d:3f:a2:d1:2a:b3:c4:da:e4:07:1f: b6:e5:a2:c5:ab:68:21:03:1a:fc:ab:af:e4:0d:08: 40:28:38:5c:c5:1d:95:ee:c6:34:44:4f:27:c1:fd: e0:15:09:fe:82:dc:1d:5d:40:f6:78:ea:24:26:65: 18:1e:dc:5f:a0:60:98:d9:1e:2e:36:82:0b:34:49: 49:81:09:c6:75:7e:50:db:42:d0:20:aa:56:53:50: 91:5c:69:d4:61:c9:4a:1d:6f:da:21:43:ff:b6:0c: e8:01:4c:51:0b:20:8e:08:d5:af:96:be:46:4e:d1: 30:58:e9:df:05:0c:a5:2e:63:af:fe:9f:fd:f9:3f: a4:8e:d0:12:89:61:0a:24:25:11:94:c1:49:a6:b9: 62:d1:63:79:de:f7:e3:27:f3:a3:53:53:f2:13:ef: 8d:e4:fd:ed:e0:1e:e8:37:96:ce:19:9a:73:c9:f1: 1c:20:58:19:f3:cf:09:97:9c:43:28:bc:e9:81:1b: aa:02:01:f1:d6:6d:bb:db:08:a1:33:51:e4:bc:d4: a8:53:10:8f:ca:9f:91:71:19:4f:b3:d8:2b:79:07: 07:6a:93:9a:dc:18:f3:b0:54:c5:3c:b5:b2:5b:f5: 45:ee:56:30:72:9c:50:78:97:2a:41:b9:7b:1c:6c: 26:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:52:6A:53:C9:56:B2:76:0B:E1:C9:87:7F:0E:AC:9E:F0:6C:C6:5C X509v3 Authority Key Identifier: keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/JVJqU8lWsnYL4cmHfw6snvBsxlw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.236.0/22 Signature Algorithm: sha256WithRSAEncryption 63:a8:32:17:f2:73:0f:a7:5e:78:b8:02:5b:08:2d:46:f1:6d: a5:27:5e:86:59:0c:cf:7c:ce:d1:69:23:f9:04:7a:a8:34:78: 6e:85:ee:b2:0c:4e:5b:43:04:d9:87:6f:da:df:d7:78:ed:ad: a9:11:64:92:f1:1c:3b:73:46:4d:77:1c:c3:42:8e:dc:90:62: 8a:23:f4:35:d5:b3:06:5c:f5:be:27:9c:80:e2:e3:15:e0:b2: 45:68:96:df:d3:f8:ef:42:70:df:2a:7a:aa:3b:3b:03:77:49: c8:a6:6a:4b:f7:24:b4:e4:da:a9:04:24:d4:85:91:12:d0:e7: 1c:a8:f0:97:41:c2:c4:0c:89:3f:95:86:ca:c4:5f:17:7c:76: ae:33:db:40:74:4d:0b:59:d6:8a:f8:b1:6f:1b:6f:ee:78:c0: e4:f2:cc:6f:ae:b8:ec:2c:b3:25:c3:19:c5:36:9c:d0:25:51: 58:c3:05:e6:ef:0f:63:fc:18:42:02:a9:55:ab:62:39:1c:a7: b2:73:13:3b:bd:14:65:06:2a:98:85:76:77:6c:36:76:d4:84: 35:e0:a0:4f:55:62:cf:71:da:1f:14:71:63:6a:77:51:29:5e: d5:a2:63:64:4b:e1:89:f5:63:e5:63:41:28:23:d3:df:73:ef: 00:c7:d7:64 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICET8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQx ODZGNjMxNEQ3QjU3MTNFRkZFQ0ZCOTNFQkMzRTgyMTk3RTJFRjAeFw0yNDA4MjYw NTI2MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI1NTI2QTUzQzk1NkIy NzYwQkUxQzk4NzdGMEVBQzlFRjA2Q0M2NUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvWMCdP6LRKrPE2uQHH7blosWraCEDGvyrr+QNCEAoOFzFHZXu xjRETyfB/eAVCf6C3B1dQPZ46iQmZRge3F+gYJjZHi42ggs0SUmBCcZ1flDbQtAg qlZTUJFcadRhyUodb9ohQ/+2DOgBTFELII4I1a+WvkZO0TBY6d8FDKUuY6/+n/35 P6SO0BKJYQokJRGUwUmmuWLRY3ne9+Mn86NTU/IT743k/e3gHug3ls4ZmnPJ8Rwg WBnzzwmXnEMovOmBG6oCAfHWbbvbCKEzUeS81KhTEI/Kn5FxGU+z2Ct5Bwdqk5rc GPOwVMU8tbJb9UXuVjBynFB4lypBuXscbCYXAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUJVJqU8lWsnYL4cmHfw6snvBsxlwwHwYDVR0jBBgwFoAU7RhvYxTXtXE+/+z7 k+vD6CGX4u8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hVTllJ TkcvN1Jodll4VFh0WEUtXy16N2stdkQ2Q0dYNHU4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS83Umh2WXhUWHRYRS1fLXo3ay12RDZDR1g0dTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSFVOWUlORy9KVkpxVThsV3NuWUw0 Y21IZnc2c252QnN4bHcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3/sMA0GCSqGSIb3DQEBCwUAA4IBAQBjqDIX8nMPp154uAJbCC1G8W2lJ16G WQzPfM7RaSP5BHqoNHhuhe6yDE5bQwTZh2/a39d47a2pEWSS8Rw7c0ZNdxzDQo7c kGKKI/Q11bMGXPW+J5yA4uMV4LJFaJbf0/jvQnDfKnqqOzsDd0nIpmpL9yS05Nqp BCTUhZES0OccqPCXQcLEDIk/lYbKxF8XfHauM9tAdE0LWdaK+LFvG2/ueMDk8sxv rrjsLLMlwxnFNpzQJVFYwwXm7w9j/BhCAqlVq2I5HKeycxM7vRRlBiqYhXZ3bDZ2 1IQ14KBPVWLPcdofFHFjandRKV7VomNkS+GJ9WPlY0EoI9Pfc+8Ax9dk -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:44 2024 by rpki-client on console-fra.rpki-client.org