$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/iJkIM_2VRJljcmvx_foKA0UVeDs.roa File: iJkIM_2VRJljcmvx_foKA0UVeDs.roa (raw, json) Hash identifier: kLgq1eGDh2/tMp+smc/Hd8rCn5Iui8+Gs9T9ocMsxUA= Subject key identifier: 88:99:08:33:FD:95:44:99:63:72:6B:F1:FD:FA:0A:03:45:15:78:3B Certificate issuer: /CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Certificate serial: F3 Authority key identifier: 9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/iJkIM_2VRJljcmvx_foKA0UVeDs.roa Signing time: Tue 21 Nov 2023 15:31:03 +0000 ROA not before: Tue 21 Nov 2023 15:31:03 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131657 IP address blocks: 103.51.88.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 08:05:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Validity Not Before: Nov 21 15:31:03 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=88990833FD95449963726BF1FDFA0A034515783B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:3d:5b:ac:5c:42:c8:29:84:cf:e0:f5:ad:b4: 42:e2:64:97:50:df:63:35:03:68:f0:6f:12:8d:a0: 24:b6:e3:9b:45:0b:47:32:da:88:0c:55:02:4a:91: 64:49:30:95:72:93:7c:43:73:46:cd:5e:66:9c:ba: 76:76:b6:42:e9:0e:fb:d5:91:bb:03:1b:df:94:ad: 88:06:74:47:d1:fe:71:e6:ef:24:56:dd:09:f3:fb: 59:de:d1:3d:c4:83:d4:64:80:b2:7d:a5:6d:f6:65: 91:34:3d:f3:14:e8:da:26:18:ad:35:eb:fc:b4:9a: 7d:08:86:5d:fe:d5:16:42:e3:47:b2:78:a2:5e:d7: 27:b9:86:f7:cf:9b:1b:80:1b:16:e3:83:03:3c:3a: c0:b6:92:ce:0d:f7:f2:32:bd:d8:1e:69:8f:2a:ed: 2a:1e:fb:f6:81:df:c3:47:24:c4:cc:af:91:32:77: 98:a3:ec:64:33:8e:6d:53:b5:d7:b9:b9:2e:13:a5: 2e:a1:62:f8:58:a3:5c:a7:1f:96:3c:87:30:07:3c: 30:01:92:12:83:02:83:52:ca:65:c8:67:49:48:d6: b6:6b:5d:4f:0d:0e:ff:87:2d:b5:2d:cf:cb:eb:ef: 41:10:06:ea:60:c4:28:27:91:e8:d7:88:fa:56:3c: 8a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:99:08:33:FD:95:44:99:63:72:6B:F1:FD:FA:0A:03:45:15:78:3B X509v3 Authority Key Identifier: keyid:9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/iJkIM_2VRJljcmvx_foKA0UVeDs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.51.88.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:8b:56:0b:ed:4f:af:91:6f:bb:8a:63:34:7b:01:c6:71:fa: d6:a7:b4:bf:b9:a7:30:db:e4:4c:95:23:8b:13:ec:10:15:e4: 65:a9:e4:1b:dd:68:c6:fa:46:87:92:9e:65:44:36:76:45:60: 83:a0:01:a7:79:8c:59:a6:44:50:fc:7a:89:c7:e6:1e:1d:64: e9:5e:f0:55:10:79:5d:34:bd:07:97:89:07:dc:13:53:88:1b: a8:47:3c:7d:76:6c:82:e1:e3:3a:ed:f4:0d:ea:e6:3a:94:a1: 64:c2:2c:6c:40:d5:8c:22:88:3f:06:57:34:28:2c:d4:f8:96: ed:d8:f6:d9:a9:6a:3a:92:90:c0:8b:97:e2:d9:ea:0a:94:65: 10:ae:41:51:24:6a:b1:55:ea:d9:64:6d:14:d6:18:65:3a:ee: 71:c3:a3:16:23:94:02:ed:d3:7e:fb:3a:7a:35:61:8a:7a:e9: 2e:eb:87:48:99:3d:6f:e9:12:02:b7:de:4a:c1:5d:72:a1:48: ba:ae:f6:62:a1:53:c0:3d:10:0e:fc:45:61:58:f2:c6:df:c5: b7:bb:49:35:6c:ae:24:6f:35:6e:44:e7:e3:f7:e3:85:15:40: 8e:bb:9b:52:c2:5d:55:23:cd:e1:22:0e:96:c5:79:c3:ac:aa: 47:a7:3a:93 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUJG Q0ZBQTIxMDY3NDJCMkMwOTlFM0Y0QzJBNTA0MjhFNUNENjJEMzAeFw0yMzExMjEx NTMxMDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg4OTkwODMzRkQ5NTQ0 OTk2MzcyNkJGMUZERkEwQTAzNDUxNTc4M0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYPVusXELIKYTP4PWttELiZJdQ32M1A2jwbxKNoCS245tFC0cy 2ogMVQJKkWRJMJVyk3xDc0bNXmacunZ2tkLpDvvVkbsDG9+UrYgGdEfR/nHm7yRW 3Qnz+1ne0T3Eg9RkgLJ9pW32ZZE0PfMU6NomGK016/y0mn0Ihl3+1RZC40eyeKJe 1ye5hvfPmxuAGxbjgwM8OsC2ks4N9/IyvdgeaY8q7Soe+/aB38NHJMTMr5Eyd5ij 7GQzjm1Ttde5uS4TpS6hYvhYo1ynH5Y8hzAHPDABkhKDAoNSymXIZ0lI1rZrXU8N Dv+HLbUtz8vr70EQBupgxCgnkejXiPpWPIozAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUiJkIM/2VRJljcmvx/foKA0UVeDswHwYDVR0jBBgwFoAUm/z6ohBnQrLAmeP0 wqUEKOXNYtMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEVDSERS SVZFTi9tX3o2b2hCblFyTEFtZVAwd3FVRUtPWE5ZdE0uY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21fejZvaEJuUXJMQW1lUDB3cVVFS09YTll0TS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RFQ0hEUklWRU4vaUprSU1fMlZS SmxqY212eF9mb0tBMFVWZURzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWczWDANBgkqhkiG9w0BAQsFAAOCAQEAP4tWC+1Pr5Fvu4pjNHsBxnH6 1qe0v7mnMNvkTJUjixPsEBXkZankG91oxvpGh5KeZUQ2dkVgg6ABp3mMWaZEUPx6 icfmHh1k6V7wVRB5XTS9B5eJB9wTU4gbqEc8fXZsguHjOu30DermOpShZMIsbEDV jCKIPwZXNCgs1PiW7dj22alqOpKQwIuX4tnqCpRlEK5BUSRqsVXq2WRtFNYYZTru ccOjFiOUAu3Tfvs6ejVhinrpLuuHSJk9b+kSArfeSsFdcqFIuq72YqFTwD0QDvxF YVjyxt/Ft7tJNWyuJG81bkTn4/fjhRVAjrubUsJdVSPN4SIOlsV5w6yqR6c6kw== -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:43 2024 by rpki-client on console-fra.rpki-client.org