$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/KdVTSIoZQqXGjOTnjVF66HNfHO4.roa File: KdVTSIoZQqXGjOTnjVF66HNfHO4.roa (raw, json) Hash identifier: viSWQmndgZHWPjZ0h0DpKAzd12UOHeJSs+VkNKfzs+8= Subject key identifier: 29:D5:53:48:8A:19:42:A5:C6:8C:E4:E7:8D:51:7A:E8:73:5F:1C:EE Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Certificate serial: 0F45 Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/KdVTSIoZQqXGjOTnjVF66HNfHO4.roa Signing time: Thu 15 Sep 2022 02:47:38 +0000 ROA not before: Thu 15 Sep 2022 02:47:38 +0000 ROA not after: Wed 06 Sep 2023 03:00:35 +0000 asID: 399626 IP address blocks: 103.127.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 16 Mar 2023 06:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3909 (0xf45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Validity Not Before: Sep 15 02:47:38 2022 GMT Not After : Sep 6 03:00:35 2023 GMT Subject: CN=29D553488A1942A5C68CE4E78D517AE8735F1CEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:0c:89:38:4d:ff:a4:f7:8a:69:02:1d:6c:d1: 93:95:d2:bc:93:fb:9e:0a:f2:11:08:87:8d:8c:1e: 86:37:ac:04:0a:cf:93:76:c3:13:3b:27:df:ea:a3: 23:03:81:6f:78:49:33:ea:7b:71:19:d1:5c:74:ee: 52:32:25:68:d5:a2:cb:76:84:69:34:10:37:a3:8f: 8e:a0:e9:5b:e2:7c:62:d4:53:7c:4a:f7:1d:66:81: c7:13:e8:7f:46:32:65:d5:c9:66:f8:01:82:c5:c0: 18:71:0a:5c:39:b1:fe:18:9e:e6:25:04:2f:df:ed: 59:70:43:5e:c2:74:d7:c0:b6:87:98:84:7d:7c:0d: cb:7f:20:5a:88:d6:ad:e7:c7:52:2a:6f:02:46:34: 43:03:38:43:b8:09:a0:37:a3:f8:49:c8:21:d2:5b: 27:70:e5:e9:5f:a5:74:9e:d6:f9:8d:2a:67:0d:51: e6:da:5e:b6:8f:74:86:f2:45:c6:d4:2f:a7:f2:b4: 59:d6:1e:04:a1:0d:2b:21:a4:3f:8f:d2:55:39:75: 58:d7:cc:cc:bb:bd:33:57:11:87:63:73:ca:47:63: e8:25:5d:81:1a:82:73:e9:3a:53:b8:2d:39:f8:87: f4:59:c4:a7:75:18:30:2f:14:e3:7a:a3:e6:63:bd: 49:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D5:53:48:8A:19:42:A5:C6:8C:E4:E7:8D:51:7A:E8:73:5F:1C:EE X509v3 Authority Key Identifier: keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/KdVTSIoZQqXGjOTnjVF66HNfHO4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.236.0/22 Signature Algorithm: sha256WithRSAEncryption 75:f1:c2:dd:aa:bf:b7:9a:b6:6e:a1:4d:5a:41:11:73:22:61: 45:b4:83:0d:74:f1:e1:26:e5:69:0b:d2:23:5f:7e:5f:30:64: 82:64:a7:2a:80:a3:16:e6:c9:21:a4:9e:ee:94:fb:a6:5c:94: 56:97:4d:1a:3d:4f:d8:1c:19:13:51:e5:d4:29:11:12:4b:c4: 64:78:ab:29:f9:bd:ef:01:43:a9:99:8f:3e:cc:f3:bf:d3:ae: 78:cf:4a:99:56:13:0f:62:6b:51:67:e6:b3:fc:e6:da:1a:73: eb:d4:3f:f4:16:6a:9f:31:f1:e0:b5:5a:0b:e0:5a:75:74:58: 51:32:dc:2e:65:91:27:d0:7d:f5:4e:5e:a4:5e:58:ed:21:23: 9b:ea:8c:d9:86:d7:43:89:44:c2:01:60:3a:41:34:9a:f3:fe: 6b:5c:99:93:35:f5:af:5d:78:2e:cf:e0:f8:c2:e6:8d:ca:a0: 3e:fc:7d:c5:d7:bb:f8:8b:8e:78:bb:c2:01:45:8d:23:10:8e: ae:83:7c:3f:25:aa:ed:00:5e:7a:ef:37:eb:05:3b:d8:64:f2: 30:1e:38:5b:f5:bd:36:9c:f5:c7:4e:51:9b:d5:58:80:e1:da: 83:0e:5d:f6:ed:c3:34:f7:e3:49:db:a8:64:8e:7e:76:58:69: cc:da:66:e9 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD0UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQx ODZGNjMxNEQ3QjU3MTNFRkZFQ0ZCOTNFQkMzRTgyMTk3RTJFRjAeFw0yMjA5MTUw MjQ3MzhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDI5RDU1MzQ4OEExOTQy QTVDNjhDRTRFNzhENTE3QUU4NzM1RjFDRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPDIk4Tf+k94ppAh1s0ZOV0ryT+54K8hEIh42MHoY3rAQKz5N2 wxM7J9/qoyMDgW94STPqe3EZ0Vx07lIyJWjVost2hGk0EDejj46g6VvifGLUU3xK 9x1mgccT6H9GMmXVyWb4AYLFwBhxClw5sf4YnuYlBC/f7VlwQ17CdNfAtoeYhH18 Dct/IFqI1q3nx1IqbwJGNEMDOEO4CaA3o/hJyCHSWydw5elfpXSe1vmNKmcNUeba XraPdIbyRcbUL6fytFnWHgShDSshpD+P0lU5dVjXzMy7vTNXEYdjc8pHY+glXYEa gnPpOlO4LTn4h/RZxKd1GDAvFON6o+ZjvUnrAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUKdVTSIoZQqXGjOTnjVF66HNfHO4wHwYDVR0jBBgwFoAU7RhvYxTXtXE+/+z7 k+vD6CGX4u8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hVTllJ TkcvN1Jodll4VFh0WEUtXy16N2stdkQ2Q0dYNHU4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS83Umh2WXhUWHRYRS1fLXo3ay12RDZDR1g0dTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSFVOWUlORy9LZFZUU0lvWlFxWEdq T1RualZGNjZITmZITzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3/sMA0GCSqGSIb3DQEBCwUAA4IBAQB18cLdqr+3mrZuoU1aQRFzImFFtIMN dPHhJuVpC9IjX35fMGSCZKcqgKMW5skhpJ7ulPumXJRWl00aPU/YHBkTUeXUKRES S8RkeKsp+b3vAUOpmY8+zPO/0654z0qZVhMPYmtRZ+az/ObaGnPr1D/0FmqfMfHg tVoL4Fp1dFhRMtwuZZEn0H31Tl6kXljtISOb6ozZhtdDiUTCAWA6QTSa8/5rXJmT NfWvXXguz+D4wuaNyqA+/H3F17v4i454u8IBRY0jEI6ug3w/JartAF567zfrBTvY ZPIwHjhb9b02nPXHTlGb1ViA4dqDDl327cM09+NJ26hkjn52WGnM2mbp -----END CERTIFICATE-----Generated at Wed Mar 15 13:06:16 2023 by rpki-client on console-fra.rpki-client.org