$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/m1CeNY7cjCIrSuvWn4Q3eXAbFdI.roa File: m1CeNY7cjCIrSuvWn4Q3eXAbFdI.roa (raw, json) Hash identifier: Us9K6MFUwTKHVquwr58inFE9jbMnew1VCG0sUpo4Bbo= Subject key identifier: 9B:50:9E:35:8E:DC:8C:22:2B:4A:EB:D6:9F:84:37:79:70:1B:15:D2 Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Certificate serial: 0C50 Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/m1CeNY7cjCIrSuvWn4Q3eXAbFdI.roa Signing time: Mon 26 Aug 2024 05:34:38 +0000 ROA not before: Mon 26 Aug 2024 05:34:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 103.130.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3152 (0xc50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Validity Not Before: Aug 26 05:34:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9B509E358EDC8C222B4AEBD69F843779701B15D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:72:84:bb:ab:bc:fe:e3:31:7f:99:8f:7c:be: f1:92:8f:a9:24:f3:e6:2a:2a:4e:85:d6:e7:7a:97: 35:ff:52:e9:bb:40:c2:28:96:b2:07:36:09:3b:f6: 8b:fa:72:93:e5:b7:96:62:8b:67:36:37:e2:74:55: 8f:20:07:8b:87:73:8a:5b:2b:0c:8a:8c:e4:7e:a9: 00:2e:75:5a:ae:b8:9a:43:be:85:95:a8:dd:98:bb: 1e:02:0d:6d:e0:f6:79:52:c3:4e:d6:22:90:e6:1b: 4f:44:c7:f2:b6:c1:0e:86:ef:0d:dc:01:24:74:e4: 1f:dc:05:f5:a4:b0:26:2b:5b:04:35:0e:39:2c:4b: 2f:aa:fb:92:3f:d9:a9:bc:de:fd:37:00:c1:25:3d: 82:26:a8:e1:97:95:6e:d9:bb:a4:c8:3b:07:de:c9: f3:41:3f:33:2d:f1:85:e1:7b:dd:2c:5f:c0:79:c2: 4c:1a:dc:83:27:29:a9:91:17:62:a5:28:10:17:2e: d7:ad:fe:0c:3d:dc:0f:39:7f:e7:b0:59:b9:73:a0: ed:b9:01:c4:0e:14:e0:06:e8:d5:b7:47:14:67:96: 21:d8:5a:56:39:cc:e0:11:4a:5a:b9:21:ca:5d:f5: d6:1b:45:ac:03:66:ea:e0:4b:21:f8:f8:80:39:d2: f0:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:50:9E:35:8E:DC:8C:22:2B:4A:EB:D6:9F:84:37:79:70:1B:15:D2 X509v3 Authority Key Identifier: keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/m1CeNY7cjCIrSuvWn4Q3eXAbFdI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.92.0/22 Signature Algorithm: sha256WithRSAEncryption 36:f6:20:b5:f5:49:d5:ce:f2:3d:62:b3:eb:cc:6f:66:d4:d5: 74:d8:a9:ce:85:d3:ee:6a:27:d9:bc:13:80:83:a1:21:3c:02: 84:58:51:28:79:84:0c:05:91:0f:70:2d:80:71:19:1c:f7:ba: 41:38:2a:f0:b8:44:d9:cd:ca:6c:dd:ab:3a:d1:d1:4c:e7:3c: e6:01:cc:7b:ee:6d:e7:cc:48:de:d0:57:d4:54:c7:32:af:20: 49:15:07:4f:6c:92:59:ea:14:14:dc:45:e1:fc:4c:a1:4f:7b: b4:58:f7:87:dd:a4:cf:fc:e9:bf:db:7d:8c:02:af:b5:64:a8: 61:a0:eb:10:ef:c4:50:b4:2e:b2:b4:75:3e:fc:90:e3:97:ab: 32:be:7a:6c:4c:20:3b:5b:c0:93:d3:9e:eb:ce:de:fd:b1:48: 37:ec:b3:60:c6:90:ac:d9:22:70:b7:b4:a6:bf:98:c0:6d:70: 95:bb:3e:aa:c3:e1:c7:45:e2:b7:fb:31:0c:79:c2:3c:0b:d9: cb:ac:15:73:76:f1:50:6f:cb:91:89:de:fa:bd:b3:cc:e5:1f: 72:7e:c9:17:12:55:54:1a:90:4b:72:4f:05:67:a6:5b:d8:4d: 46:3c:90:00:b5:38:b4:6c:5a:cb:1e:d9:b0:05:8b:4e:40:84: e9:c2:23:a8 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDFAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzkw QTA0MTJGOEI1RUM0RjNGOUZEQkIzQTYxMjcwREJEMEVBOUU2QjAeFw0yNDA4MjYw NTM0MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlCNTA5RTM1OEVEQzhD MjIyQjRBRUJENjlGODQzNzc5NzAxQjE1RDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+coS7q7z+4zF/mY98vvGSj6kk8+YqKk6F1ud6lzX/Uum7QMIo lrIHNgk79ov6cpPlt5Zii2c2N+J0VY8gB4uHc4pbKwyKjOR+qQAudVquuJpDvoWV qN2Yux4CDW3g9nlSw07WIpDmG09Ex/K2wQ6G7w3cASR05B/cBfWksCYrWwQ1Djks Sy+q+5I/2am83v03AMElPYImqOGXlW7Zu6TIOwfeyfNBPzMt8YXhe90sX8B5wkwa 3IMnKamRF2KlKBAXLtet/gw93A85f+ewWblzoO25AcQOFOAG6NW3RxRnliHYWlY5 zOARSlq5Icpd9dYbRawDZurgSyH4+IA50vAzAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUm1CeNY7cjCIrSuvWn4Q3eXAbFdIwHwYDVR0jBBgwFoAUOQoEEvi17E8/n9uz phJw29DqnmswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JR0FU RS9PUW9FRXZpMTdFOF9uOXV6cGhKdzI5RHFubXMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL09Rb0VFdmkxN0U4X245dXpwaEp3MjlEcW5tcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1VOSUdBVEUvbTFDZU5ZN2NqQ0lyU3V2 V240UTNlWEFiRmRJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmeCXDANBgkqhkiG9w0BAQsFAAOCAQEANvYgtfVJ1c7yPWKz68xvZtTVdNipzoXT 7mon2bwTgIOhITwChFhRKHmEDAWRD3AtgHEZHPe6QTgq8LhE2c3KbN2rOtHRTOc8 5gHMe+5t58xI3tBX1FTHMq8gSRUHT2ySWeoUFNxF4fxMoU97tFj3h92kz/zpv9t9 jAKvtWSoYaDrEO/EULQusrR1PvyQ45erMr56bEwgO1vAk9Oe687e/bFIN+yzYMaQ rNkicLe0pr+YwG1wlbs+qsPhx0Xit/sxDHnCPAvZy6wVc3bxUG/LkYne+r2zzOUf cn7JFxJVVBqQS3JPBWemW9hNRjyQALU4tGxayx7ZsAWLTkCE6cIjqA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:42 2024 by rpki-client on console-ams.rpki-client.org