$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Q_4K7rEceyKFtdoGXSqSawSzbeo.roa File: Q_4K7rEceyKFtdoGXSqSawSzbeo.roa (raw, json) Hash identifier: OcwfnWJATb+o3w9yEK54h8qt4pFlT3y0lx47rOkR5Dc= Subject key identifier: 43:FE:0A:EE:B1:1C:7B:22:85:B5:DA:06:5D:2A:92:6B:04:B3:6D:EA Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0C69 Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Q_4K7rEceyKFtdoGXSqSawSzbeo.roa Signing time: Fri 01 Sep 2023 10:20:40 +0000 ROA not before: Fri 01 Sep 2023 10:20:40 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18424 IP address blocks: 121.50.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 11:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3177 (0xc69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Sep 1 10:20:40 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=43FE0AEEB11C7B2285B5DA065D2A926B04B36DEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:16:69:df:e1:a3:03:6d:4b:bf:0d:db:87:fd: 71:9f:3f:c0:ff:b9:dd:2f:59:64:25:00:d0:67:6d: c6:f5:0e:92:1c:67:08:40:f8:10:5b:94:0b:78:b3: 5d:28:81:78:99:11:87:4e:45:ba:4e:2e:12:4f:c5: b3:db:81:94:f4:ca:e9:58:62:42:81:8b:52:ce:e3: ac:b7:b6:e0:54:e0:b3:ae:2c:9d:6e:de:97:93:42: 34:ee:19:f0:c9:1c:db:b8:5a:a0:76:15:0e:58:a9: 95:82:10:08:5e:98:af:7e:6a:6f:0d:a6:65:06:cf: ff:84:5b:5a:b7:7f:fc:d0:aa:5e:a7:73:9a:c1:b1: b8:62:2e:dc:32:6d:bf:34:0c:97:01:5b:cb:5e:ae: 6b:af:7d:05:b6:50:88:95:71:22:27:b4:4b:ba:d3: 28:4f:f5:0d:a7:c8:fb:77:c8:90:c0:0c:7a:ac:ec: 50:d2:a5:ef:8d:04:d8:0e:2a:97:d4:e3:2b:31:2f: e2:31:33:a1:b2:d6:10:30:25:ea:00:0d:3e:75:75: f4:a1:bc:b1:ef:e7:dc:22:c2:4e:74:0a:97:cd:7c: e3:f6:ce:cb:4e:44:e1:14:f3:8d:48:5d:df:91:36: ed:5f:97:2a:4a:f9:27:c3:54:b7:21:2a:44:a2:bd: 71:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:FE:0A:EE:B1:1C:7B:22:85:B5:DA:06:5D:2A:92:6B:04:B3:6D:EA X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Q_4K7rEceyKFtdoGXSqSawSzbeo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.50.151.0/24 Signature Algorithm: sha256WithRSAEncryption 17:62:e5:96:e5:f0:20:3c:62:de:2d:a9:09:08:8f:95:14:94: 48:48:ef:f9:21:f8:62:19:b7:13:bd:42:6f:b9:4e:69:3b:e2: 73:31:55:2f:bc:da:c5:96:c8:c1:bf:fb:34:25:52:a2:e8:3b: 49:a2:33:a8:05:cf:df:fa:0f:3a:7c:5e:0e:29:e1:bb:0f:f0: 5b:9c:3d:a9:9c:3a:35:bd:95:5c:02:f8:e7:e6:74:41:a6:e0: b1:30:aa:3a:96:1c:3e:5c:c9:11:3c:d0:e1:16:3f:fa:89:a3: b4:89:fb:f7:5e:53:ca:85:f1:89:e0:99:f6:50:f5:9b:02:78: 9a:3b:5c:cb:ca:ea:0b:5d:5a:c7:9e:36:3f:81:d1:0a:58:3e: e8:a9:2f:de:b1:7b:63:93:ca:98:55:52:22:63:b4:45:51:ef: f6:c2:d2:e4:12:d8:8d:f3:55:a6:29:20:0a:18:bf:db:ae:cf: c4:d1:41:d4:ee:d3:31:44:c4:17:71:27:f7:5f:fc:a1:0a:b1: 2d:95:ff:b8:e3:be:f2:03:39:65:5c:68:9d:67:94:ae:50:9b: 94:43:6b:98:b9:6d:09:7a:51:2b:48:68:38:43:b5:71:d3:b3: f1:da:c6:4a:9c:b9:7d:35:7e:bc:5b:dd:8f:9b:52:a0:2c:34: 47:68:db:36 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDGkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yMzA5MDEx MDIwNDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQzRkUwQUVFQjExQzdC MjI4NUI1REEwNjVEMkE5MjZCMDRCMzZERUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUFmnf4aMDbUu/DduH/XGfP8D/ud0vWWQlANBnbcb1DpIcZwhA +BBblAt4s10ogXiZEYdORbpOLhJPxbPbgZT0yulYYkKBi1LO46y3tuBU4LOuLJ1u 3peTQjTuGfDJHNu4WqB2FQ5YqZWCEAhemK9+am8NpmUGz/+EW1q3f/zQql6nc5rB sbhiLtwybb80DJcBW8termuvfQW2UIiVcSIntEu60yhP9Q2nyPt3yJDADHqs7FDS pe+NBNgOKpfU4ysxL+IxM6Gy1hAwJeoADT51dfShvLHv59wiwk50CpfNfOP2zstO ROEU841IXd+RNu1flypK+SfDVLchKkSivXG7AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUQ/4K7rEceyKFtdoGXSqSawSzbeowHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL1FfNEs3ckVjZXlL RnRkb0dYU3FTYXdTemJlby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAB5MpcwDQYJKoZIhvcNAQELBQADggEBABdi5Zbl8CA8Yt4tqQkIj5UUlEhI 7/kh+GIZtxO9Qm+5Tmk74nMxVS+82sWWyMG/+zQlUqLoO0miM6gFz9/6Dzp8Xg4p 4bsP8FucPamcOjW9lVwC+OfmdEGm4LEwqjqWHD5cyRE80OEWP/qJo7SJ+/deU8qF 8YngmfZQ9ZsCeJo7XMvK6gtdWseeNj+B0QpYPuipL96xe2OTyphVUiJjtEVR7/bC 0uQS2I3zVaYpIAoYv9uuz8TRQdTu0zFExBdxJ/df/KEKsS2V/7jjvvIDOWVcaJ1n lK5Qm5RDa5i5bQl6UStIaDhDtXHTs/HaxkqcuX01frxb3Y+bUqAsNEdo2zY= -----END CERTIFICATE-----Generated at Thu May 2 04:47:42 2024 by rpki-client on console-fra.rpki-client.org