$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Rl_LdSv7S4jM7cXsR-YvsPR7_e0.roa File: Rl_LdSv7S4jM7cXsR-YvsPR7_e0.roa (raw, json) Hash identifier: c3xXBJvJr1Vd+9kNqluZp66Gwhp4cNAQO4pVvtiYXxM= Subject key identifier: 46:5F:CB:75:2B:FB:4B:88:CC:ED:C5:EC:47:E6:2F:B0:F4:7B:FD:ED Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0C59 Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Rl_LdSv7S4jM7cXsR-YvsPR7_e0.roa Signing time: Fri 01 Sep 2023 10:20:35 +0000 ROA not before: Fri 01 Sep 2023 10:20:35 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18424 IP address blocks: 103.30.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 11:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3161 (0xc59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Sep 1 10:20:35 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=465FCB752BFB4B88CCEDC5EC47E62FB0F47BFDED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:76:69:68:32:50:1c:9d:6c:e9:fb:71:f6:2b: 01:a5:40:fa:52:1f:b5:09:ec:22:79:58:19:92:28: 18:d1:57:29:41:04:06:6f:bc:e0:dc:eb:a4:7b:8f: 44:0d:20:8e:70:25:6b:41:5f:ef:d9:32:3f:0f:73: 7d:1e:6d:b7:be:a0:89:78:2a:64:90:eb:8b:ea:9b: ad:fc:ef:98:16:85:18:de:4a:d0:63:0e:2c:b0:7a: cf:cd:11:3d:de:9d:3e:82:0f:e0:14:ce:b3:f8:64: f1:ee:b6:47:af:f5:b9:a9:06:f4:a9:24:61:34:db: 3d:a8:7f:14:9f:53:9e:5a:75:84:2d:61:09:d0:a0: ea:ff:ce:42:93:03:dc:33:5a:5e:40:21:71:f8:39: 31:37:9f:86:2a:0b:03:2b:f1:71:de:fe:fc:ed:b7: 07:2c:5a:03:38:bc:62:a3:ca:b7:f6:77:66:8a:da: 92:e4:e1:5f:80:1e:29:55:b4:8b:8c:7e:5c:b3:63: 7c:d3:33:e3:a2:b9:f8:f7:c3:9a:e6:c8:14:32:1d: 6c:85:91:7c:a1:ba:dc:df:4a:08:54:bd:3d:5b:d5: be:6a:92:f9:17:56:0c:15:e2:b1:be:c2:cc:63:6e: 5b:d4:9c:02:0f:4b:58:8b:4c:1c:8f:35:e2:05:12: 32:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:5F:CB:75:2B:FB:4B:88:CC:ED:C5:EC:47:E6:2F:B0:F4:7B:FD:ED X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Rl_LdSv7S4jM7cXsR-YvsPR7_e0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.30.47.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:1c:c1:fa:16:27:1e:42:e8:ec:c7:54:52:d2:31:b9:4e:68: b9:24:74:7a:45:33:fe:f8:94:98:a5:bc:ee:d9:0f:43:7a:84: 7f:49:f5:01:5f:46:bf:56:1b:a5:dd:78:a4:6d:57:52:88:94: 3f:42:82:3c:eb:4f:93:9d:30:3d:62:54:fc:91:93:b9:79:fd: 96:7e:ee:a8:39:e3:79:37:b4:c2:de:3d:71:21:ae:22:2a:a6: 15:fa:65:31:54:fe:b8:d1:a0:a8:e8:9e:52:bf:f0:a4:19:94: 5a:26:bf:24:cf:47:04:05:cd:d9:95:82:0f:5d:d4:b0:db:bc: 6a:24:5c:31:29:41:24:3e:de:9b:49:06:7e:08:69:3a:53:4c: 6f:6f:8b:35:39:76:20:a0:4e:68:13:91:84:bc:6e:50:f3:fc: 36:97:a1:ba:66:55:f6:da:94:92:54:c6:a3:d3:b2:46:bf:6f: c7:d7:fe:3d:da:81:02:e1:48:68:c8:f0:f6:bc:10:2d:e8:30: dd:fd:d7:b9:e4:ee:17:90:a2:19:55:06:b0:83:4b:bb:f0:98: 82:5a:8d:3e:48:53:1d:57:ab:c7:3e:5e:c3:a7:47:bd:a3:64: 44:0d:0f:aa:c2:3e:ee:e9:ce:81:c9:9f:7a:c3:ba:be:92:55: 7b:33:66:c2 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDFkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yMzA5MDEx MDIwMzVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQ2NUZDQjc1MkJGQjRC ODhDQ0VEQzVFQzQ3RTYyRkIwRjQ3QkZERUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDidmloMlAcnWzp+3H2KwGlQPpSH7UJ7CJ5WBmSKBjRVylBBAZv vODc66R7j0QNII5wJWtBX+/ZMj8Pc30ebbe+oIl4KmSQ64vqm63875gWhRjeStBj Diywes/NET3enT6CD+AUzrP4ZPHutkev9bmpBvSpJGE02z2ofxSfU55adYQtYQnQ oOr/zkKTA9wzWl5AIXH4OTE3n4YqCwMr8XHe/vzttwcsWgM4vGKjyrf2d2aK2pLk 4V+AHilVtIuMflyzY3zTM+Oiufj3w5rmyBQyHWyFkXyhutzfSghUvT1b1b5qkvkX VgwV4rG+wsxjblvUnAIPS1iLTByPNeIFEjJrAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQURl/LdSv7S4jM7cXsR+YvsPR7/e0wHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL1JsX0xkU3Y3UzRq TTdjWHNSLVl2c1BSN19lMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABnHi8wDQYJKoZIhvcNAQELBQADggEBAJ4cwfoWJx5C6OzHVFLSMblOaLkk dHpFM/74lJilvO7ZD0N6hH9J9QFfRr9WG6XdeKRtV1KIlD9CgjzrT5OdMD1iVPyR k7l5/ZZ+7qg543k3tMLePXEhriIqphX6ZTFU/rjRoKjonlK/8KQZlFomvyTPRwQF zdmVgg9d1LDbvGokXDEpQSQ+3ptJBn4IaTpTTG9vizU5diCgTmgTkYS8blDz/DaX obpmVfbalJJUxqPTska/b8fX/j3agQLhSGjI8Pa8EC3oMN3917nk7heQohlVBrCD S7vwmIJajT5IUx1Xq8c+XsOnR72jZEQND6rCPu7pzoHJn3rDur6SVXszZsI= -----END CERTIFICATE-----Generated at Thu May 2 04:47:42 2024 by rpki-client on console-fra.rpki-client.org