$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/wfJ0H3QBOSt9H0WuvDi9mNMc_oc.roa File: wfJ0H3QBOSt9H0WuvDi9mNMc_oc.roa (raw, json) Hash identifier: kD3xVBSbcrFSQNk93fjEUKQAnqC6pmqz7Jse5qg3eoA= Subject key identifier: C1:F2:74:1F:74:01:39:2B:7D:1F:45:AE:BC:38:BD:98:D3:1C:FE:87 Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B Certificate serial: 0B38 Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/wfJ0H3QBOSt9H0WuvDi9mNMc_oc.roa Signing time: Fri 01 Sep 2023 10:19:28 +0000 ROA not before: Fri 01 Sep 2023 10:19:28 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131618 IP address blocks: 103.122.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 07:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2872 (0xb38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B Validity Not Before: Sep 1 10:19:28 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C1F2741F7401392B7D1F45AEBC38BD98D31CFE87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6b:7e:d6:1d:e9:6b:ed:67:51:aa:09:f3:0b: 15:35:19:9d:9c:bb:8c:eb:42:d0:87:bf:c7:de:de: 18:b5:c9:44:f6:c8:19:af:94:7e:2a:1f:a9:7c:94: 7d:22:5b:7d:5f:07:e8:bb:74:bf:0b:65:94:15:1b: c5:b9:1e:b2:7f:9d:43:82:33:38:a3:6a:c7:d7:b2: 0e:e5:4f:58:96:89:18:05:78:3e:30:d9:9b:0b:8a: 74:bd:e2:7b:6b:04:86:e3:6e:11:d3:08:30:cc:1b: 3a:c0:fe:88:5c:47:4b:51:76:36:6e:87:e8:e3:4c: cb:39:7f:55:4e:66:29:e7:31:18:3b:53:0d:d6:52: 9e:fe:67:b1:32:f7:aa:e3:a8:19:76:83:ec:5f:fa: ad:4a:45:60:1b:67:61:4f:63:82:97:c0:08:1c:1e: 86:c1:2e:08:96:1e:9a:37:c1:54:6d:80:60:79:28: 6e:95:bb:04:09:c1:01:22:a4:3b:96:70:2c:49:29: 48:0c:21:54:c7:a3:c7:e7:15:a5:49:ee:0f:62:80: cc:59:73:16:15:3b:b3:af:85:4c:55:32:f2:25:f3: 8d:f9:2c:c2:87:f8:9b:50:00:7c:5b:a3:45:ff:67: 2e:a0:5c:04:58:9e:9b:25:9a:8a:0e:1e:e6:87:71: 9f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:F2:74:1F:74:01:39:2B:7D:1F:45:AE:BC:38:BD:98:D3:1C:FE:87 X509v3 Authority Key Identifier: keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/wfJ0H3QBOSt9H0WuvDi9mNMc_oc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.225.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:81:43:11:9a:34:c6:7a:f9:ba:13:43:99:9f:73:78:78:ea: 5a:5f:26:76:68:c1:02:e7:e1:61:72:27:5f:ef:b9:f5:08:0c: ea:fa:18:39:66:d5:a3:15:b7:4b:2f:7d:a6:2f:23:e1:92:69: cb:b7:94:02:1a:3b:74:eb:b9:31:a6:24:11:c2:ad:85:98:f9: 38:30:c0:15:94:85:98:05:10:48:3b:a5:4a:93:2a:ea:5b:e8: 46:6c:84:90:8d:14:81:70:b8:a0:15:db:f5:f2:7c:d1:15:86: 3a:e1:57:83:3a:49:75:e6:30:90:74:6e:59:46:3d:1f:76:0e: 0b:04:c7:ee:9e:c1:0e:81:c5:4a:ec:88:6a:ee:fa:61:d4:94: ff:ae:0f:59:84:14:67:ca:cf:11:7e:12:51:21:b5:87:58:52: ab:9c:ae:d6:0d:a7:7a:34:3f:11:58:52:83:35:66:81:da:73: 52:d1:56:83:91:84:ea:8f:25:e0:46:77:e2:35:6f:e3:cc:f5: 49:a7:13:60:e5:6e:ff:8c:38:01:eb:dc:22:8b:1d:9a:b1:6e: 41:14:fd:c1:c2:f8:0b:2d:8c:56:2a:c0:30:90:3f:4b:cd:25: 1b:6d:a1:39:38:35:a0:76:5a:d5:74:5d:53:ab:71:cb:a1:b5: d7:73:d4:c6 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICCzgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjM0 MDBBQTZFNkM2OEIxM0REREM5QzAwQjgyNTg2MTI0MjczRkE5QjAeFw0yMzA5MDEx MDE5MjhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEMxRjI3NDFGNzQwMTM5 MkI3RDFGNDVBRUJDMzhCRDk4RDMxQ0ZFODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1a37WHelr7WdRqgnzCxU1GZ2cu4zrQtCHv8fe3hi1yUT2yBmv lH4qH6l8lH0iW31fB+i7dL8LZZQVG8W5HrJ/nUOCMzijasfXsg7lT1iWiRgFeD4w 2ZsLinS94ntrBIbjbhHTCDDMGzrA/ohcR0tRdjZuh+jjTMs5f1VOZinnMRg7Uw3W Up7+Z7Ey96rjqBl2g+xf+q1KRWAbZ2FPY4KXwAgcHobBLgiWHpo3wVRtgGB5KG6V uwQJwQEipDuWcCxJKUgMIVTHo8fnFaVJ7g9igMxZcxYVO7OvhUxVMvIl8435LMKH +JtQAHxbo0X/Zy6gXARYnpslmooOHuaHcZ+fAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUwfJ0H3QBOSt9H0WuvDi9mNMc/ocwHwYDVR0jBBgwFoAUY0AKpubGixPd3JwA uCWGEkJz+pswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVklTSU9O NFlFUy9ZMEFLcHViR2l4UGQzSndBdUNXR0VrSnotcHMuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1kwQUtwdWJHaXhQZDNKd0F1Q1dHRWtKei1wcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1ZJU0lPTjRZRVMvd2ZKMEgzUUJP U3Q5SDBXdXZEaTltTk1jX29jLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGd64TANBgkqhkiG9w0BAQsFAAOCAQEAG4FDEZo0xnr5uhNDmZ9zeHjq Wl8mdmjBAufhYXInX++59QgM6voYOWbVoxW3Sy99pi8j4ZJpy7eUAho7dOu5MaYk EcKthZj5ODDAFZSFmAUQSDulSpMq6lvoRmyEkI0UgXC4oBXb9fJ80RWGOuFXgzpJ deYwkHRuWUY9H3YOCwTH7p7BDoHFSuyIau76YdSU/64PWYQUZ8rPEX4SUSG1h1hS q5yu1g2nejQ/EVhSgzVmgdpzUtFWg5GE6o8l4EZ34jVv48z1SacTYOVu/4w4Aevc IosdmrFuQRT9wcL4Cy2MVirAMJA/S80lG22hOTg1oHZa1XRdU6txy6G113PUxg== -----END CERTIFICATE-----Generated at Sat May 18 07:50:16 2024 by rpki-client on console-ams.rpki-client.org