$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/kDJNKVyLR--UuvfakNzRTRozFaY.roa File: kDJNKVyLR--UuvfakNzRTRozFaY.roa (raw, json) Hash identifier: EeQMCg/gYk0tDDJJh8qS0UdPikngyDVI4sKACPvp5Tw= Subject key identifier: 90:32:4D:29:5C:8B:47:EF:94:BA:F7:DA:90:DC:D1:4D:1A:33:15:A6 Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0C65 Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/kDJNKVyLR--UuvfakNzRTRozFaY.roa Signing time: Fri 01 Sep 2023 10:20:38 +0000 ROA not before: Fri 01 Sep 2023 10:20:38 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18424 IP address blocks: 121.50.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 11:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3173 (0xc65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Sep 1 10:20:38 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=90324D295C8B47EF94BAF7DA90DCD14D1A3315A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1d:62:6d:43:09:28:9c:fc:d9:aa:62:f7:bc: b3:78:f8:69:e4:96:72:f6:5b:ff:2d:a6:9c:0d:70: 40:65:93:0b:dd:58:01:89:ac:e3:29:92:06:c1:9e: 0f:7f:11:21:9c:ce:62:ec:84:57:2d:8d:06:91:b4: 8f:f6:61:60:93:b5:a6:ad:bd:d8:65:4c:66:66:be: 4f:d6:fe:10:b3:a5:91:8a:14:e9:15:9f:ff:0c:6e: 9e:8b:8f:87:15:f6:72:ac:2a:fc:63:f1:70:60:b7: d4:46:ea:89:73:3b:77:e9:5a:9a:9d:81:2e:67:22: 47:06:f4:5d:2d:13:0c:02:3d:ea:04:fb:4d:9b:40: a0:04:d2:6f:ca:3d:c5:c4:30:5d:8d:b8:4e:dd:4e: ba:2c:c8:70:59:d7:c5:4a:3a:94:d7:2e:73:34:35: b3:48:69:d2:f8:bb:b4:74:43:8a:fc:4b:93:bc:ea: de:c9:b3:61:1d:9c:6d:51:29:ee:bc:84:cd:e1:32: eb:4a:6f:2f:80:1c:b3:f4:d1:d9:da:49:53:c4:0f: 00:89:96:29:cc:55:26:3f:6b:e1:41:73:1e:2d:13: 31:f1:f0:c8:76:c9:8c:fc:c3:63:ab:a4:74:c6:96: 37:1e:b8:5e:8f:2c:49:ba:0c:b5:03:d6:e3:98:80: d5:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:32:4D:29:5C:8B:47:EF:94:BA:F7:DA:90:DC:D1:4D:1A:33:15:A6 X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/kDJNKVyLR--UuvfakNzRTRozFaY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.50.145.0/24 Signature Algorithm: sha256WithRSAEncryption 02:d9:47:b3:97:28:92:61:cc:0d:ba:ec:10:b2:71:83:82:e2: 49:8d:78:e6:6b:f5:76:e4:86:b3:a0:99:c3:f1:f7:28:f7:85: c7:99:04:c7:b9:75:9f:ba:88:95:c5:60:99:d7:09:4f:12:4d: 33:8e:31:60:04:98:7e:a5:78:80:d6:ff:83:a8:24:f6:d9:77: 18:dd:fb:00:97:da:f5:29:5d:9a:ef:24:3b:41:08:7e:e0:3a: ca:93:4d:d2:0b:a9:cd:c8:ce:30:a4:54:51:0b:62:d5:7e:fd: cd:fc:25:fa:1c:9b:26:57:8e:39:6d:65:d3:95:2a:dd:da:b6: 9b:59:d2:ba:7b:bf:7b:9d:77:c8:ed:e5:cd:89:37:a5:8a:d9: f4:87:4b:24:25:f2:b8:21:03:d8:a1:5e:83:5d:29:83:e1:77: 2a:c7:87:06:84:aa:e3:ad:2d:af:4a:6c:f4:a2:ea:b1:92:95: ad:7a:0c:ba:e5:d7:b1:bb:ee:a4:4b:0d:e3:51:04:6c:a7:7f: 35:b7:6f:0d:19:f4:dc:dc:22:e4:6f:4f:28:2d:52:1c:dc:89: 77:83:e8:21:0f:cc:a0:f6:d8:52:0a:2b:3b:67:79:38:63:1a: 20:17:6e:68:f6:b1:9e:d6:f3:e8:75:73:71:60:da:8c:f3:a0: 7f:14:d4:cf -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDGUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yMzA5MDEx MDIwMzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkwMzI0RDI5NUM4QjQ3 RUY5NEJBRjdEQTkwRENEMTREMUEzMzE1QTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOHWJtQwkonPzZqmL3vLN4+GnklnL2W/8tppwNcEBlkwvdWAGJ rOMpkgbBng9/ESGczmLshFctjQaRtI/2YWCTtaatvdhlTGZmvk/W/hCzpZGKFOkV n/8Mbp6Lj4cV9nKsKvxj8XBgt9RG6olzO3fpWpqdgS5nIkcG9F0tEwwCPeoE+02b QKAE0m/KPcXEMF2NuE7dTrosyHBZ18VKOpTXLnM0NbNIadL4u7R0Q4r8S5O86t7J s2EdnG1RKe68hM3hMutKby+AHLP00dnaSVPEDwCJlinMVSY/a+FBcx4tEzHx8Mh2 yYz8w2OrpHTGljceuF6PLEm6DLUD1uOYgNUxAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUkDJNKVyLR++UuvfakNzRTRozFaYwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL2tESk5LVnlMUi0t VXV2ZmFrTnpSVFJvekZhWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAB5MpEwDQYJKoZIhvcNAQELBQADggEBAALZR7OXKJJhzA267BCycYOC4kmN eOZr9XbkhrOgmcPx9yj3hceZBMe5dZ+6iJXFYJnXCU8STTOOMWAEmH6leIDW/4Oo JPbZdxjd+wCX2vUpXZrvJDtBCH7gOsqTTdILqc3IzjCkVFELYtV+/c38JfocmyZX jjltZdOVKt3atptZ0rp7v3udd8jt5c2JN6WK2fSHSyQl8rghA9ihXoNdKYPhdyrH hwaEquOtLa9KbPSi6rGSla16DLrl17G77qRLDeNRBGynfzW3bw0Z9NzcIuRvTygt UhzciXeD6CEPzKD22FIKKztneThjGiAXbmj2sZ7W8+h1c3Fg2ozzoH8U1M8= -----END CERTIFICATE-----Generated at Thu May 2 22:22:57 2024 by rpki-client on console-fra.rpki-client.org