$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/GqN2x0iCkUXBExFcNQ_ZTrDqfpg.roa File: GqN2x0iCkUXBExFcNQ_ZTrDqfpg.roa (raw, json) Hash identifier: 6GTRgsFt4oRZB48h5wRGe8k0fJ0ohmHcEEVYrlQNypA= Subject key identifier: 1A:A3:76:C7:48:82:91:45:C1:13:11:5C:35:0F:D9:4E:B0:EA:7E:98 Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0C62 Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/GqN2x0iCkUXBExFcNQ_ZTrDqfpg.roa Signing time: Fri 01 Sep 2023 10:20:38 +0000 ROA not before: Fri 01 Sep 2023 10:20:38 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18424 IP address blocks: 103.30.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 11:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3170 (0xc62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Sep 1 10:20:38 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=1AA376C748829145C113115C350FD94EB0EA7E98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:71:f1:db:09:b5:17:d9:41:6c:6a:b0:73:73: 2b:59:00:3c:76:ad:f2:13:a4:cd:42:24:63:ff:63: 58:92:85:9b:5b:ea:1c:55:9b:e3:06:94:56:21:b1: 36:dc:09:cd:e2:ca:25:5e:b2:86:53:11:6d:9d:dc: 56:86:25:da:dd:ca:83:0b:36:da:86:c2:bc:40:5a: cb:ff:f4:05:8f:bd:0f:d6:60:a0:74:88:97:e6:2a: f7:d4:16:eb:05:ec:68:57:32:f0:39:97:0e:74:92: 70:cb:f6:dc:55:56:9a:e4:c2:ef:8c:01:55:bc:ba: ce:fe:7d:37:2e:fa:1d:84:b0:96:58:7f:24:fe:be: 2e:34:cb:a8:53:3b:9e:e3:e1:bc:70:0e:80:a9:a0: 56:a1:9a:34:39:fd:3c:1a:13:9d:d1:33:0d:ea:62: 7f:10:2f:b1:54:fa:14:3f:1b:05:be:46:b7:d0:49: c4:dd:57:57:ce:f2:f2:f0:da:7e:de:6a:d3:2d:b0: 38:e4:8f:75:6a:a3:17:56:68:e0:d8:6d:bf:57:a9: 98:a8:44:ec:e8:3b:17:7b:5a:2b:b2:a0:e5:19:88: e6:93:44:ff:77:41:67:c7:da:18:1e:47:51:c2:c1: 5c:da:15:e9:c6:d7:c5:c4:1d:4d:06:de:12:bf:55: f7:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:A3:76:C7:48:82:91:45:C1:13:11:5C:35:0F:D9:4E:B0:EA:7E:98 X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/GqN2x0iCkUXBExFcNQ_ZTrDqfpg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.30.45.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:92:f8:40:28:52:cf:6f:76:1c:61:92:f0:b2:e3:a8:74:ef: 83:89:ab:70:70:3b:d8:b7:39:5a:8c:17:21:20:6e:04:64:3f: ba:99:20:3f:a0:87:39:04:5e:11:3f:03:f7:f1:1a:b8:ac:5c: 7d:69:e7:2d:ea:4f:dc:b0:8e:e9:6c:af:c0:6c:51:c8:1b:fb: cc:ad:27:83:59:39:f0:42:33:53:cb:5a:64:85:36:48:29:4f: d6:d9:00:b6:66:c0:39:07:8d:c8:c5:d9:87:b0:c8:34:48:fe: 04:0e:6e:da:52:48:d0:26:17:6d:43:fb:4b:20:3c:ee:e6:96: 7b:e4:38:10:ef:6f:64:61:cf:97:a3:33:c5:29:b5:30:54:6f: 09:ba:6a:12:4f:cd:3d:84:b0:e6:98:65:61:54:df:a4:1f:28: c3:df:51:de:b7:2e:5b:5e:36:4c:f6:c5:12:d8:b6:d4:85:4c: 4f:cb:45:81:45:11:26:20:67:a7:80:a4:ae:81:d0:42:d4:5d: fe:a0:05:3e:19:08:84:4c:32:ec:ce:f7:e1:d0:fa:11:79:ae: 4c:36:8a:a5:cc:80:94:4c:d4:c1:48:9d:3c:59:f3:a9:e8:b8: 75:80:8f:c4:0a:de:1f:79:46:c5:46:ea:e3:d8:7d:af:ea:e1: 41:07:97:3a -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDGIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yMzA5MDEx MDIwMzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFBQTM3NkM3NDg4Mjkx NDVDMTEzMTE1QzM1MEZEOTRFQjBFQTdFOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPcfHbCbUX2UFsarBzcytZADx2rfITpM1CJGP/Y1iShZtb6hxV m+MGlFYhsTbcCc3iyiVesoZTEW2d3FaGJdrdyoMLNtqGwrxAWsv/9AWPvQ/WYKB0 iJfmKvfUFusF7GhXMvA5lw50knDL9txVVprkwu+MAVW8us7+fTcu+h2EsJZYfyT+ vi40y6hTO57j4bxwDoCpoFahmjQ5/TwaE53RMw3qYn8QL7FU+hQ/GwW+RrfQScTd V1fO8vLw2n7eatMtsDjkj3VqoxdWaODYbb9XqZioROzoOxd7WiuyoOUZiOaTRP93 QWfH2hgeR1HCwVzaFenG18XEHU0G3hK/VffTAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUGqN2x0iCkUXBExFcNQ/ZTrDqfpgwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL0dxTjJ4MGlDa1VY QkV4RmNOUV9aVHJEcWZwZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABnHi0wDQYJKoZIhvcNAQELBQADggEBADyS+EAoUs9vdhxhkvCy46h074OJ q3BwO9i3OVqMFyEgbgRkP7qZID+ghzkEXhE/A/fxGrisXH1p5y3qT9ywjulsr8Bs Ucgb+8ytJ4NZOfBCM1PLWmSFNkgpT9bZALZmwDkHjcjF2YewyDRI/gQObtpSSNAm F21D+0sgPO7mlnvkOBDvb2Rhz5ejM8UptTBUbwm6ahJPzT2EsOaYZWFU36QfKMPf Ud63LlteNkz2xRLYttSFTE/LRYFFESYgZ6eApK6B0ELUXf6gBT4ZCIRMMuzO9+HQ +hF5rkw2iqXMgJRM1MFInTxZ86nouHWAj8QK3h95RsVG6uPYfa/q4UEHlzo= -----END CERTIFICATE-----Generated at Thu May 2 03:38:41 2024 by rpki-client on console-ams.rpki-client.org