$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/ugXN9gipRi2l8ODErAuJtOuIwjI.roa File: ugXN9gipRi2l8ODErAuJtOuIwjI.roa (raw, json) Hash identifier: S77FM9SE9IxFIPgFNV4LcV7k0HYHSVmR9kOfgk9Q4TQ= Subject key identifier: BA:05:CD:F6:08:A9:46:2D:A5:F0:E0:C4:AC:0B:89:B4:EB:88:C2:32 Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Certificate serial: 106C Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/ugXN9gipRi2l8ODErAuJtOuIwjI.roa Signing time: Mon 13 Nov 2023 03:08:22 +0000 ROA not before: Mon 13 Nov 2023 03:08:22 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 208932 IP address blocks: 103.127.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 23:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4204 (0x106c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Validity Not Before: Nov 13 03:08:22 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=BA05CDF608A9462DA5F0E0C4AC0B89B4EB88C232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:19:9b:1a:8d:07:53:54:5f:c1:47:7a:1f:7b: e5:48:d7:20:4b:8c:d4:2a:01:32:c4:19:df:64:ff: 0b:21:6e:52:66:03:d2:59:75:11:5c:df:ec:10:27: 9f:fc:10:9c:6e:94:e8:8d:99:e6:02:69:23:c3:95: c8:c8:e5:81:71:e4:74:9e:5e:c0:ce:30:c8:49:5f: 60:a5:78:c4:62:4f:f8:aa:95:b7:ad:ec:4b:0b:88: de:b9:ab:fe:69:68:c1:fe:d6:42:f8:2b:71:aa:da: 65:7a:30:9a:17:f8:bf:7e:d8:85:71:3e:22:c1:86: 19:c5:11:9b:b0:be:35:5d:d0:87:43:02:11:62:1f: e6:34:7f:aa:57:70:7a:b8:5b:38:fb:ab:ab:7a:16: 6d:3b:e8:3a:33:eb:69:2b:bc:b7:c3:90:81:f7:d3: 60:a7:b1:f1:c3:65:c7:7a:40:eb:07:71:76:05:3f: ea:45:a9:1a:6b:4c:2c:0e:69:2c:52:c8:0c:b1:97: 4f:9a:11:8a:01:75:72:23:77:25:b7:34:64:26:bd: 70:d7:ef:0d:f9:18:a4:c3:a8:4a:4c:cf:21:48:7c: 44:73:01:df:dc:ed:af:29:b1:78:46:e9:51:bd:08: 88:50:8e:dc:0f:b2:aa:34:82:26:48:25:df:87:4e: 15:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:05:CD:F6:08:A9:46:2D:A5:F0:E0:C4:AC:0B:89:B4:EB:88:C2:32 X509v3 Authority Key Identifier: keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/ugXN9gipRi2l8ODErAuJtOuIwjI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.236.0/24 Signature Algorithm: sha256WithRSAEncryption c5:f4:9c:9d:c8:cd:0e:49:c4:01:53:ca:da:0a:29:5d:df:c7: 62:63:64:c8:47:1d:00:32:07:dd:3d:ba:67:a4:43:66:29:1b: c5:e0:eb:d1:7c:34:97:15:1a:51:87:e0:5c:5f:c8:35:55:c3: 3b:ed:67:88:0c:b8:7b:85:e4:71:24:f4:92:08:28:20:27:ab: 4e:b9:e6:ff:54:2c:d7:5c:e6:e8:45:f1:09:ef:e3:c8:7b:c9: 23:82:93:1b:b6:5e:be:d8:c9:cb:f7:80:90:44:a7:9f:61:e6: 3f:b8:3e:5c:f9:02:b5:ca:63:c2:a3:fc:1e:bc:a0:a8:3b:b9: f0:e5:db:2d:de:29:0d:1c:95:f8:f3:7e:07:60:20:91:ef:12: 50:51:6d:e8:0f:1e:dd:b6:37:c6:34:41:38:79:b4:d4:60:e0: 29:15:54:4a:fc:77:d5:70:67:7d:7f:6a:75:a5:b4:3b:9f:fc: 15:e6:45:d4:7b:ce:bc:0c:aa:1c:80:e7:8e:c5:71:78:35:34: a1:e9:56:3c:f2:42:f4:6d:99:90:a1:24:b7:24:8e:79:d8:22: 28:21:fb:01:4c:89:50:37:17:6a:62:ba:1f:ff:1f:c2:3f:40: 90:49:a3:6f:9a:08:77:cf:81:b1:56:14:74:38:17:ce:6c:8a: 0a:45:af:ad -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEGwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQx ODZGNjMxNEQ3QjU3MTNFRkZFQ0ZCOTNFQkMzRTgyMTk3RTJFRjAeFw0yMzExMTMw MzA4MjJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEJBMDVDREY2MDhBOTQ2 MkRBNUYwRTBDNEFDMEI4OUI0RUI4OEMyMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvGZsajQdTVF/BR3ofe+VI1yBLjNQqATLEGd9k/wshblJmA9JZ dRFc3+wQJ5/8EJxulOiNmeYCaSPDlcjI5YFx5HSeXsDOMMhJX2CleMRiT/iqlbet 7EsLiN65q/5paMH+1kL4K3Gq2mV6MJoX+L9+2IVxPiLBhhnFEZuwvjVd0IdDAhFi H+Y0f6pXcHq4Wzj7q6t6Fm076Doz62krvLfDkIH302CnsfHDZcd6QOsHcXYFP+pF qRprTCwOaSxSyAyxl0+aEYoBdXIjdyW3NGQmvXDX7w35GKTDqEpMzyFIfERzAd/c 7a8psXhG6VG9CIhQjtwPsqo0giZIJd+HThWDAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUugXN9gipRi2l8ODErAuJtOuIwjIwHwYDVR0jBBgwFoAU7RhvYxTXtXE+/+z7 k+vD6CGX4u8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hVTllJ TkcvN1Jodll4VFh0WEUtXy16N2stdkQ2Q0dYNHU4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS83Umh2WXhUWHRYRS1fLXo3ay12RDZDR1g0dTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSFVOWUlORy91Z1hOOWdpcFJpMmw4 T0RFckF1SnRPdUl3akkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ3/sMA0GCSqGSIb3DQEBCwUAA4IBAQDF9JydyM0OScQBU8raCild38diY2TI Rx0AMgfdPbpnpENmKRvF4OvRfDSXFRpRh+BcX8g1VcM77WeIDLh7heRxJPSSCCgg J6tOueb/VCzXXOboRfEJ7+PIe8kjgpMbtl6+2MnL94CQRKefYeY/uD5c+QK1ymPC o/wevKCoO7nw5dst3ikNHJX4834HYCCR7xJQUW3oDx7dtjfGNEE4ebTUYOApFVRK /HfVcGd9f2p1pbQ7n/wV5kXUe868DKocgOeOxXF4NTSh6VY88kL0bZmQoSS3JI55 2CIoIfsBTIlQNxdqYrof/x/CP0CQSaNvmgh3z4GxVhR0OBfObIoKRa+t -----END CERTIFICATE-----Generated at Tue Apr 30 21:02:35 2024 by rpki-client on console-ams.rpki-client.org