$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/2j4uNG8xEC6OdqXjCdiq6dyQm08.roa File: 2j4uNG8xEC6OdqXjCdiq6dyQm08.roa (raw, json) Hash identifier: C97JNrBGdlOlW3aKJE8c1GcRtbFB1kCRiOKUFQBqoXg= Subject key identifier: DA:3E:2E:34:6F:31:10:2E:8E:76:A5:E3:09:D8:AA:E9:DC:90:9B:4F Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B Certificate serial: 0B36 Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/2j4uNG8xEC6OdqXjCdiq6dyQm08.roa Signing time: Fri 01 Sep 2023 10:19:28 +0000 ROA not before: Fri 01 Sep 2023 10:19:28 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131618 IP address blocks: 103.122.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 04:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2870 (0xb36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B Validity Not Before: Sep 1 10:19:28 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=DA3E2E346F31102E8E76A5E309D8AAE9DC909B4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b1:1c:16:7b:d8:7a:c5:2b:85:ae:ee:87:a5: ad:75:57:86:ad:d2:ba:4d:fb:f4:f2:c7:e7:83:c0: c4:63:34:72:4f:0b:37:0d:cc:8c:75:b8:06:2f:50: 18:64:bc:c5:2b:1d:2d:5e:d0:83:99:19:39:0f:9f: 46:05:cb:ea:3f:af:09:a2:42:2c:fd:12:4b:ef:19: e3:b0:08:02:63:06:2f:9a:a7:54:c4:a8:6d:4a:3c: 1c:88:71:f5:ce:88:64:9c:ef:9b:a9:2b:1a:74:92: 38:24:e8:34:b3:a0:6d:71:9d:47:e2:95:83:ed:03: 94:32:76:77:aa:1d:87:07:20:77:69:b0:4f:dc:15: 0d:a4:1b:8f:9f:8c:b2:0a:05:b0:3b:7d:4e:f2:37: 80:b9:1d:6b:0e:2a:80:08:42:7d:06:04:9c:dc:d1: e8:4a:be:ca:16:d1:91:f1:68:ab:61:60:59:a7:c9: 5b:c2:cc:f7:f1:2d:0e:b9:e5:7d:89:91:b9:c8:ea: c2:8c:18:bb:ab:6c:bb:9f:f7:da:4a:49:40:ad:84: df:a9:35:24:ca:92:c4:81:33:3d:74:c8:73:d7:3d: eb:44:10:00:e5:85:03:0d:02:81:66:b1:98:2a:b3: 16:f7:d9:4c:41:41:15:e9:64:07:4b:e1:2b:1c:20: db:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:3E:2E:34:6F:31:10:2E:8E:76:A5:E3:09:D8:AA:E9:DC:90:9B:4F X509v3 Authority Key Identifier: keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/2j4uNG8xEC6OdqXjCdiq6dyQm08.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.227.0/24 Signature Algorithm: sha256WithRSAEncryption 14:ba:56:75:36:b6:5c:22:f1:6b:bb:a1:32:f4:9e:c9:ce:58: 75:d9:a4:54:ef:92:47:2c:1b:3b:27:e9:0f:8e:0d:af:56:7c: 5a:9a:42:2a:be:82:ab:69:3d:3e:ec:1e:51:c4:f4:b8:ae:d8: 0f:c0:5a:48:7e:b6:10:df:ae:a6:a7:6e:f3:50:ff:e6:9b:2f: 4d:e4:b3:d4:15:a3:46:e2:5f:a6:b8:51:e1:93:d6:5a:22:2f: 1b:22:d0:e8:04:41:1e:5f:38:de:28:cd:5f:a3:f6:c0:ac:73: f0:7e:08:c4:b5:07:40:f7:be:16:0d:ac:fb:4e:23:f5:71:2b: 85:1e:89:f1:ce:ca:46:54:49:3b:68:86:b3:bc:47:40:52:3f: 60:5e:91:10:e8:53:4e:9f:ca:b3:30:83:78:79:be:d8:6b:a1: 2c:6e:eb:22:35:65:51:4b:95:4d:7f:fd:cd:d0:ea:28:68:79: fb:55:3c:24:64:57:58:ec:6f:dc:83:82:74:53:16:23:e9:1a: 8f:6f:ec:22:96:a6:2f:bb:b0:f0:8e:ad:ca:c6:3f:66:e3:01: 98:dd:dd:c9:e6:8a:7b:eb:c5:de:d5:05:a5:04:d6:ff:22:ae: ce:12:a3:55:20:94:c4:f0:ec:55:38:f8:14:5c:dc:17:95:1e: 1a:61:7d:14 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICCzYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjM0 MDBBQTZFNkM2OEIxM0REREM5QzAwQjgyNTg2MTI0MjczRkE5QjAeFw0yMzA5MDEx MDE5MjhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKERBM0UyRTM0NkYzMTEw MkU4RTc2QTVFMzA5RDhBQUU5REM5MDlCNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNsRwWe9h6xSuFru6Hpa11V4at0rpN+/Tyx+eDwMRjNHJPCzcN zIx1uAYvUBhkvMUrHS1e0IOZGTkPn0YFy+o/rwmiQiz9EkvvGeOwCAJjBi+ap1TE qG1KPByIcfXOiGSc75upKxp0kjgk6DSzoG1xnUfilYPtA5QydneqHYcHIHdpsE/c FQ2kG4+fjLIKBbA7fU7yN4C5HWsOKoAIQn0GBJzc0ehKvsoW0ZHxaKthYFmnyVvC zPfxLQ655X2JkbnI6sKMGLurbLuf99pKSUCthN+pNSTKksSBMz10yHPXPetEEADl hQMNAoFmsZgqsxb32UxBQRXpZAdL4SscINuJAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU2j4uNG8xEC6OdqXjCdiq6dyQm08wHwYDVR0jBBgwFoAUY0AKpubGixPd3JwA uCWGEkJz+pswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVklTSU9O NFlFUy9ZMEFLcHViR2l4UGQzSndBdUNXR0VrSnotcHMuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1kwQUtwdWJHaXhQZDNKd0F1Q1dHRWtKei1wcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1ZJU0lPTjRZRVMvMmo0dU5HOHhF QzZPZHFYakNkaXE2ZHlRbTA4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGd64zANBgkqhkiG9w0BAQsFAAOCAQEAFLpWdTa2XCLxa7uhMvSeyc5Y ddmkVO+SRywbOyfpD44Nr1Z8WppCKr6Cq2k9PuweUcT0uK7YD8BaSH62EN+upqdu 81D/5psvTeSz1BWjRuJfprhR4ZPWWiIvGyLQ6ARBHl843ijNX6P2wKxz8H4IxLUH QPe+Fg2s+04j9XErhR6J8c7KRlRJO2iGs7xHQFI/YF6REOhTTp/KszCDeHm+2Guh LG7rIjVlUUuVTX/9zdDqKGh5+1U8JGRXWOxv3IOCdFMWI+kaj2/sIpamL7uw8I6t ysY/ZuMBmN3dyeaKe+vF3tUFpQTW/yKuzhKjVSCUxPDsVTj4FFzcF5UeGmF9FA== -----END CERTIFICATE-----Generated at Sat May 18 20:14:04 2024 by rpki-client on console-fra.rpki-client.org