$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/vemDIzsq6LlNNtIBqDyyRMx25Pk.roa File: vemDIzsq6LlNNtIBqDyyRMx25Pk.roa (raw, json) Hash identifier: FJZy0cy13crYGod8hNqeAqwhUZDccArOeXJnZcI8eUM= Subject key identifier: BD:E9:83:23:3B:2A:E8:B9:4D:36:D2:01:A8:3C:B2:44:CC:76:E4:F9 Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Certificate serial: 0C4D Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/vemDIzsq6LlNNtIBqDyyRMx25Pk.roa Signing time: Mon 26 Aug 2024 05:34:37 +0000 ROA not before: Mon 26 Aug 2024 05:34:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 103.130.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3149 (0xc4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Validity Not Before: Aug 26 05:34:37 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BDE983233B2AE8B94D36D201A83CB244CC76E4F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:be:97:9e:6d:5f:e3:f9:28:d5:fe:71:2e:06: f0:81:f6:e8:03:33:cd:4a:55:74:3a:11:4a:b1:65: 24:de:5b:9f:95:05:42:78:a6:55:42:6c:1d:31:61: 4b:2f:ed:dd:5d:0e:28:c2:88:0c:4f:01:98:61:56: 55:6f:77:75:11:3a:88:28:34:cf:72:8b:1b:43:82: 9a:64:70:3e:97:fa:80:c9:93:6e:0d:2c:2b:2b:a4: ad:93:64:f5:cc:af:57:ac:51:b3:0e:e4:eb:91:73: ba:b1:3c:98:f3:45:ef:00:e8:0e:f3:c8:4f:56:87: a9:4e:04:86:b4:f8:f5:90:f8:30:8e:0b:5a:3b:b6: 2a:23:2a:ff:3c:47:d1:95:6d:dd:59:a1:93:dc:48: ae:56:3e:9c:11:15:d6:f4:14:d8:bb:1e:03:a4:eb: a4:7c:11:a5:c8:94:6b:5a:8c:a7:88:85:93:e8:d6: 95:8a:b4:d3:dc:cc:21:8f:28:d6:4b:1a:75:fa:8f: 7b:14:41:84:ca:d8:0f:e9:80:c7:39:d6:d7:a2:9a: 14:81:cc:8b:82:48:ba:58:b6:99:60:dd:3c:cb:ae: 11:8f:f3:e9:98:60:ec:8d:6f:e7:c9:55:25:ab:08: 42:3c:33:17:16:c4:3f:cd:2c:ce:af:61:12:f3:21: f5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:E9:83:23:3B:2A:E8:B9:4D:36:D2:01:A8:3C:B2:44:CC:76:E4:F9 X509v3 Authority Key Identifier: keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/vemDIzsq6LlNNtIBqDyyRMx25Pk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.96.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:04:4a:9a:4f:f3:da:79:82:19:3d:41:56:5b:22:8d:93:a4: 4a:a7:4c:22:fe:72:b9:f8:23:cf:6b:0d:57:da:99:2e:00:34: 79:88:92:61:fb:fb:da:ab:56:30:40:a5:5f:f8:c4:64:16:2b: 96:2e:be:80:2d:32:c2:ed:5b:75:8d:8a:0a:65:79:f7:9e:49: a3:f8:cf:71:2b:5b:8d:66:3b:69:bc:5f:fe:e2:5a:ed:bd:ae: ff:c0:e9:54:51:9a:8a:f8:3d:c2:2a:28:9b:c3:ad:36:81:31: ca:c5:d8:1d:7c:48:c9:32:f6:95:9a:fc:99:76:80:9f:6e:a7: d7:a3:fe:2d:ab:02:4f:ca:6c:54:a7:d1:8c:0d:4a:94:29:1e: b8:54:9f:f7:8d:c2:06:4c:12:cf:36:72:75:73:fd:d8:43:7d: 27:bf:65:39:c5:ba:61:32:fa:7e:53:15:5b:b2:24:a2:7b:d1: 33:2c:94:68:46:d2:2a:f2:9e:1e:34:21:09:a2:4c:e7:56:39: f3:7c:82:16:66:06:c3:c9:6e:f0:c8:3f:e2:e0:f5:39:b0:33: fe:5e:00:bf:db:54:ed:69:4b:55:28:ab:74:b7:f8:1b:bd:3b: 5c:83:df:ba:b4:a2:29:75:5e:7a:2d:6c:6b:f1:03:6d:8a:d3: a9:92:70:74 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDE0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzkw QTA0MTJGOEI1RUM0RjNGOUZEQkIzQTYxMjcwREJEMEVBOUU2QjAeFw0yNDA4MjYw NTM0MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJERTk4MzIzM0IyQUU4 Qjk0RDM2RDIwMUE4M0NCMjQ0Q0M3NkU0RjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjvpeebV/j+SjV/nEuBvCB9ugDM81KVXQ6EUqxZSTeW5+VBUJ4 plVCbB0xYUsv7d1dDijCiAxPAZhhVlVvd3UROogoNM9yixtDgppkcD6X+oDJk24N LCsrpK2TZPXMr1esUbMO5OuRc7qxPJjzRe8A6A7zyE9Wh6lOBIa0+PWQ+DCOC1o7 tiojKv88R9GVbd1ZoZPcSK5WPpwRFdb0FNi7HgOk66R8EaXIlGtajKeIhZPo1pWK tNPczCGPKNZLGnX6j3sUQYTK2A/pgMc51teimhSBzIuCSLpYtplg3TzLrhGP8+mY YOyNb+fJVSWrCEI8MxcWxD/NLM6vYRLzIfVLAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUvemDIzsq6LlNNtIBqDyyRMx25PkwHwYDVR0jBBgwFoAUOQoEEvi17E8/n9uz phJw29DqnmswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JR0FU RS9PUW9FRXZpMTdFOF9uOXV6cGhKdzI5RHFubXMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL09Rb0VFdmkxN0U4X245dXpwaEp3MjlEcW5tcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1VOSUdBVEUvdmVtREl6c3E2TGxOTnRJ QnFEeXlSTXgyNVBrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmeCYDANBgkqhkiG9w0BAQsFAAOCAQEAagRKmk/z2nmCGT1BVlsijZOkSqdMIv5y ufgjz2sNV9qZLgA0eYiSYfv72qtWMEClX/jEZBYrli6+gC0ywu1bdY2KCmV5955J o/jPcStbjWY7abxf/uJa7b2u/8DpVFGaivg9wioom8OtNoExysXYHXxIyTL2lZr8 mXaAn26n16P+LasCT8psVKfRjA1KlCkeuFSf943CBkwSzzZydXP92EN9J79lOcW6 YTL6flMVW7IkonvRMyyUaEbSKvKeHjQhCaJM51Y583yCFmYGw8lu8Mg/4uD1ObAz /l4Av9tU7WlLVSirdLf4G707XIPfurSiKXVeei1sa/EDbYrTqZJwdA== -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:19 2024 by rpki-client on console-fra.rpki-client.org