$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/MJ8MDMU3s8Hwn8964Ew2Mv8SH_M.roa File: MJ8MDMU3s8Hwn8964Ew2Mv8SH_M.roa (raw, json) Hash identifier: oe6Z2xJDBRt9nQheOZuFn9iQpjRIxjy7SgzFKRy9QPs= Subject key identifier: 30:9F:0C:0C:C5:37:B3:C1:F0:9F:CF:7A:E0:4C:36:32:FF:12:1F:F3 Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7 Certificate serial: 0642 Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/MJ8MDMU3s8Hwn8964Ew2Mv8SH_M.roa Signing time: Mon 26 Aug 2024 05:26:42 +0000 ROA not before: Mon 26 Aug 2024 05:26:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9678 IP address blocks: 103.152.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1602 (0x642) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7 Validity Not Before: Aug 26 05:26:42 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=309F0C0CC537B3C1F09FCF7AE04C3632FF121FF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:cd:95:fd:e3:70:f1:52:10:9b:90:f7:d4:6e: 5c:32:71:cd:98:9f:81:68:35:fe:b6:f3:da:5c:02: 93:20:d5:ba:66:47:24:c9:fd:08:e1:b5:a4:5f:36: 94:d6:b2:82:f1:81:1d:e7:67:d8:25:3f:58:0a:42: 13:72:45:ca:33:d6:de:85:aa:72:55:c2:80:9d:f2: fa:dc:5b:d5:a5:5f:63:0d:5c:03:b9:d5:50:bc:9b: aa:8a:d6:31:39:6d:2e:b7:9f:ac:72:ae:01:2a:01: 3c:c5:62:e7:72:ce:38:42:29:27:33:09:ee:3c:38: 45:b7:a0:ae:ed:d3:dc:02:71:ab:d7:ce:95:ed:37: f6:f9:81:8e:44:1c:bd:84:00:3b:26:16:59:94:f7: 31:15:1b:81:2c:48:6c:a5:05:d0:71:60:b2:86:3f: b1:7d:fc:fd:b4:83:ed:ed:ac:ba:29:73:17:21:b1: 1b:f7:5c:36:37:f1:d3:fd:16:a3:b3:c9:79:cb:67: df:0a:38:09:ba:f4:b9:25:82:92:dc:36:0e:85:8a: 0f:82:f3:fd:a0:a6:85:b3:ee:28:0d:8f:8e:af:b0: b8:fc:d3:0d:79:62:5d:b1:7e:6c:9d:d7:18:2a:97: 19:cf:a9:16:99:dd:d5:ae:05:47:49:15:ae:e5:83: 11:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:9F:0C:0C:C5:37:B3:C1:F0:9F:CF:7A:E0:4C:36:32:FF:12:1F:F3 X509v3 Authority Key Identifier: keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/MJ8MDMU3s8Hwn8964Ew2Mv8SH_M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.152.150.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:99:6d:4e:83:f0:b0:b8:17:48:0b:07:00:20:33:ec:ff:b2: d5:fc:be:b7:46:ac:10:d2:4c:0a:91:b3:40:98:87:d3:11:a7: 5e:a5:bc:66:27:27:32:e2:8a:d2:86:62:d5:1a:d7:12:d8:8b: 2f:80:19:a7:4d:c8:b5:ba:4d:02:7c:54:cd:e9:17:bc:5d:cf: da:be:73:58:3b:f6:fb:e3:8f:fe:25:55:e6:1e:29:0c:93:61: 48:64:f3:e0:25:a9:df:59:4a:0a:bc:f6:4e:1d:be:b9:a9:48: 71:7d:d7:49:51:72:1b:01:61:6d:73:8b:f4:19:ae:23:0e:5e: 7c:40:4a:c3:b8:b5:a4:72:57:f5:f3:dc:0a:cf:6c:d8:79:f5: b0:71:fa:59:88:4c:10:0b:dc:cb:dd:b4:de:c9:5d:7a:23:9d: 31:f0:da:3a:52:80:b3:c8:44:c8:d4:76:7f:26:1e:21:2d:73: 5e:51:f5:56:ac:ab:79:ef:68:0e:0a:24:48:bc:28:02:11:0b: b5:ca:43:26:29:6d:65:ea:a7:e6:14:75:f0:44:bb:8d:d4:8b: b6:54:ed:34:c0:0c:bd:3f:91:db:5b:9f:61:6c:49:a3:75:53: 17:b3:ed:62:2e:d7:8d:08:39:ff:4f:b8:f6:e8:a3:f5:e8:25: 01:f3:0b:be -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBkIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjI4 MzlCRjdBNkM2QjE3RTdDRkNCMzczNEEzNkMwRTk4QzM3QTFCNzAeFw0yNDA4MjYw NTI2NDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMwOUYwQzBDQzUzN0Iz QzFGMDlGQ0Y3QUUwNEMzNjMyRkYxMjFGRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPzZX943DxUhCbkPfUblwycc2Yn4FoNf6289pcApMg1bpmRyTJ /QjhtaRfNpTWsoLxgR3nZ9glP1gKQhNyRcoz1t6FqnJVwoCd8vrcW9WlX2MNXAO5 1VC8m6qK1jE5bS63n6xyrgEqATzFYudyzjhCKSczCe48OEW3oK7t09wCcavXzpXt N/b5gY5EHL2EADsmFlmU9zEVG4EsSGylBdBxYLKGP7F9/P20g+3trLopcxchsRv3 XDY38dP9FqOzyXnLZ98KOAm69LklgpLcNg6Fig+C8/2gpoWz7igNj46vsLj80w15 Yl2xfmyd1xgqlxnPqRaZ3dWuBUdJFa7lgxEVAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUMJ8MDMU3s8Hwn8964Ew2Mv8SH/MwHwYDVR0jBBgwFoAUsoOb96bGsX58/LNz SjbA6Yw3obcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1VNQVRS QS9zb09iOTZiR3NYNThfTE56U2piQTZZdzNvYmMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3NvT2I5NmJHc1g1OF9MTnpTamJBNll3M29iYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NVTUFUUkEvTUo4TURNVTNzOEh3bjg5 NjRFdzJNdjhTSF9NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGeYljANBgkqhkiG9w0BAQsFAAOCAQEADpltToPwsLgXSAsHACAz7P+y1fy+t0as ENJMCpGzQJiH0xGnXqW8ZicnMuKK0oZi1RrXEtiLL4AZp03ItbpNAnxUzekXvF3P 2r5zWDv2++OP/iVV5h4pDJNhSGTz4CWp31lKCrz2Th2+ualIcX3XSVFyGwFhbXOL 9BmuIw5efEBKw7i1pHJX9fPcCs9s2Hn1sHH6WYhMEAvcy9203sldeiOdMfDaOlKA s8hEyNR2fyYeIS1zXlH1Vqyree9oDgokSLwoAhELtcpDJiltZeqn5hR18ES7jdSL tlTtNMAMvT+R21ufYWxJo3VTF7PtYi7XjQg5/0+49uij9eglAfMLvg== -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:13 2024 by rpki-client on console-fra.rpki-client.org