$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/bneXsa_NpvVoz88v_mV7vb_5SEU.roa File: bneXsa_NpvVoz88v_mV7vb_5SEU.roa (raw, json) Hash identifier: rtyZ/WW6nLUfmjvxDzcbkGju36c8ypobXAAjqRDPOJQ= Subject key identifier: 6E:77:97:B1:AF:CD:A6:F5:68:CF:CF:2F:FE:65:7B:BD:BF:F9:48:45 Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378 Certificate serial: 0B4F Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/bneXsa_NpvVoz88v_mV7vb_5SEU.roa Signing time: Fri 01 Sep 2023 10:14:09 +0000 ROA not before: Fri 01 Sep 2023 10:14:09 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38851 IP address blocks: 103.229.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:38:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2895 (0xb4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378 Validity Not Before: Sep 1 10:14:09 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6E7797B1AFCDA6F568CFCF2FFE657BBDBFF94845 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:58:3a:b1:7f:c4:44:b6:1b:5d:68:27:92:3c: 2e:10:71:74:5c:41:e4:a7:38:1e:3c:21:32:d5:70: 82:fb:a7:a0:83:eb:bf:65:d4:cb:8a:14:2f:99:61: 64:26:bd:da:b6:1a:e1:59:9d:04:26:c3:47:8d:9a: 41:7e:ef:b2:7d:d0:b3:13:e5:2f:f3:c2:a5:ba:83: e4:52:50:e2:2c:7a:17:ba:7c:8b:7c:05:39:73:a6: 90:02:4a:3d:f3:f2:09:9c:db:1a:73:dd:68:ea:0c: 47:88:3f:e0:8a:7f:f6:60:c5:60:d1:4d:a3:65:a5: f7:a5:aa:70:7a:30:b9:ca:da:8a:5a:d5:b6:f9:83: c7:43:20:47:ad:ad:0b:4c:38:65:63:07:f9:c3:31: 98:4f:57:c6:4f:3b:8f:ff:47:ea:8c:af:c7:2e:12: fa:92:c4:7c:ec:d2:4a:4a:c8:87:41:7f:71:b7:02: f3:68:da:5b:70:6f:e6:29:5f:da:33:61:1f:96:c8: 51:d6:0e:d4:54:b8:39:f9:b6:52:08:e2:ab:aa:86: 23:5e:77:74:ee:b7:09:74:6e:b7:e2:b4:02:90:0c: 8f:87:34:c9:fa:bc:6b:57:97:a6:c6:bd:40:01:32: ad:bc:51:6d:ee:24:d4:da:3c:8c:7a:91:f3:7d:0f: 36:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:77:97:B1:AF:CD:A6:F5:68:CF:CF:2F:FE:65:7B:BD:BF:F9:48:45 X509v3 Authority Key Identifier: keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/bneXsa_NpvVoz88v_mV7vb_5SEU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.229.100.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:66:2c:8c:93:91:f8:bb:ec:71:5f:5c:76:32:49:fe:8f:16: 9d:d8:83:5d:32:04:28:07:f6:1a:0c:c5:bf:dd:6e:31:c5:64: 52:b8:49:a0:5f:eb:62:fe:32:a5:79:32:0b:fd:c4:7c:4d:72: c9:14:8f:d2:fd:a9:f0:4d:39:0f:1b:36:5e:ff:0e:a8:98:fa: 63:29:1a:de:cd:c2:8c:ed:f8:fc:a9:ed:ae:9a:9f:83:83:cf: f3:9b:c3:a6:a1:39:a1:b9:26:be:ae:03:95:9e:06:ca:24:ac: ee:d5:91:57:b7:ef:9b:40:2a:3d:32:8c:61:02:ea:81:57:f7: 80:6f:c6:95:4f:e0:69:21:c8:4e:5e:f1:5a:42:a7:ee:a4:ae: a9:da:ba:fb:4e:5c:1d:dc:71:6d:2e:1f:01:c0:f4:29:72:2b: 6c:f9:d5:75:8e:b0:17:a5:bf:e6:c9:ab:27:d2:8e:3c:85:65: e5:0c:af:31:95:34:20:78:82:a5:1c:aa:8f:a4:68:74:13:5c: 99:ca:52:84:67:7f:f0:2e:ac:a9:47:a4:95:f0:be:33:6b:a4: 65:66:2c:c1:0a:9a:8e:b1:bf:bc:ac:87:05:ff:b0:d9:47:a8: 8b:7f:38:4b:e6:da:37:34:e9:49:65:8f:96:81:e7:6b:2c:37: 37:67:ff:ff -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICC08wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0VD N0YxNjc3QkI0OTIzODAyODIxNTNCQjc3RUMyRUJFMzE4NTM3ODAeFw0yMzA5MDEx MDE0MDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZFNzc5N0IxQUZDREE2 RjU2OENGQ0YyRkZFNjU3QkJEQkZGOTQ4NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4WDqxf8REthtdaCeSPC4QcXRcQeSnOB48ITLVcIL7p6CD679l 1MuKFC+ZYWQmvdq2GuFZnQQmw0eNmkF+77J90LMT5S/zwqW6g+RSUOIsehe6fIt8 BTlzppACSj3z8gmc2xpz3WjqDEeIP+CKf/ZgxWDRTaNlpfelqnB6MLnK2opa1bb5 g8dDIEetrQtMOGVjB/nDMZhPV8ZPO4//R+qMr8cuEvqSxHzs0kpKyIdBf3G3AvNo 2ltwb+YpX9ozYR+WyFHWDtRUuDn5tlII4quqhiNed3Tutwl0brfitAKQDI+HNMn6 vGtXl6bGvUABMq28UW3uJNTaPIx6kfN9DzZvAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUbneXsa/NpvVoz88v/mV7vb/5SEUwHwYDVR0jBBgwFoAUfsfxZ3u0kjgCghU7 t37C6+MYU3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL2Zz ZnhaM3Uwa2pnQ2doVTd0MzdDNi1NWVUzZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZnNmeFozdTBramdDZ2hVN3QzN0M2LU1ZVTNnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL2JuZVhzYV9OcHZWb3o4OHZfbVY3dmJf NVNFVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn5WQwDQYJ KoZIhvcNAQELBQADggEBACpmLIyTkfi77HFfXHYySf6PFp3Yg10yBCgH9hoMxb/d bjHFZFK4SaBf62L+MqV5Mgv9xHxNcskUj9L9qfBNOQ8bNl7/DqiY+mMpGt7Nwozt +Pyp7a6an4ODz/Obw6ahOaG5Jr6uA5WeBsokrO7VkVe375tAKj0yjGEC6oFX94Bv xpVP4GkhyE5e8VpCp+6krqnauvtOXB3ccW0uHwHA9ClyK2z51XWOsBelv+bJqyfS jjyFZeUMrzGVNCB4gqUcqo+kaHQTXJnKUoRnf/AurKlHpJXwvjNrpGVmLMEKmo6x v7yshwX/sNlHqIt/OEvm2jc06Ullj5aB52ssNzdn//8= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:01 2024 by rpki-client on console-ams.rpki-client.org