$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/mCxDlcup9Q2TxSnqcmDEsxHlFSk.roa File: mCxDlcup9Q2TxSnqcmDEsxHlFSk.roa (raw, json) Hash identifier: T2c+k1slYBjKGpNUkS+hSiAhobnEOJpzMD7RJYFy1Kg= Subject key identifier: 98:2C:43:95:CB:A9:F5:0D:93:C5:29:EA:72:60:C4:B3:11:E5:15:29 Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0C5C Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/mCxDlcup9Q2TxSnqcmDEsxHlFSk.roa Signing time: Fri 01 Sep 2023 10:20:36 +0000 ROA not before: Fri 01 Sep 2023 10:20:36 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18424 IP address blocks: 103.30.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 11:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3164 (0xc5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Sep 1 10:20:36 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=982C4395CBA9F50D93C529EA7260C4B311E51529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:ce:9b:ec:14:fc:00:75:92:1a:5d:5b:4c:3c: c5:78:af:bd:0f:75:b0:24:d6:a8:8a:4f:70:b4:6f: 11:7c:fc:cb:49:be:86:68:22:83:a1:61:49:99:31: 45:c9:6b:9d:bf:9b:71:93:a6:2f:d3:88:f5:63:bc: ff:c7:1f:7b:55:50:67:c1:b9:3e:5b:7e:59:2e:11: 1a:a1:5e:d9:48:8a:1c:05:d2:ff:bf:bc:0d:3d:bd: 1c:3f:b1:a9:06:d3:91:66:a3:0a:4b:68:4a:9a:e6: 00:17:a0:03:a0:e9:9d:9d:23:4f:26:3e:db:da:ee: 75:4d:e0:f6:c7:5b:2f:8c:1e:c6:15:ea:30:35:02: 61:01:b5:8e:44:9d:19:07:5a:8d:75:97:c2:43:02: d1:fd:94:41:89:0e:d9:83:75:22:6d:b3:ff:00:8b: ce:dd:91:2c:ba:2c:c9:87:43:e3:8a:12:81:66:dc: ad:a3:9d:0c:f8:14:9e:55:2a:25:f1:04:43:cb:2e: 49:52:cb:96:52:63:8c:2f:c4:62:9b:60:23:25:06: 69:f9:10:e9:77:12:3c:94:cf:3e:92:45:e6:99:3e: 79:f7:c6:cc:16:90:07:cf:18:b2:4a:8d:c4:1e:d5: a5:3a:4f:2e:43:5b:46:05:2a:c3:c3:52:9d:b4:80: b3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:2C:43:95:CB:A9:F5:0D:93:C5:29:EA:72:60:C4:B3:11:E5:15:29 X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/mCxDlcup9Q2TxSnqcmDEsxHlFSk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.30.44.0/22 Signature Algorithm: sha256WithRSAEncryption c3:1c:99:27:eb:0a:6b:0c:82:80:21:dc:4b:bb:ac:63:85:de: d9:f6:03:50:33:37:6e:2d:b8:53:60:d2:09:9b:02:4a:71:f2: fe:df:6a:61:e9:d5:9d:ce:a4:fa:52:5c:9c:2c:a4:65:0f:75: 0f:da:97:ad:09:e2:17:fa:a1:1e:ee:e8:b9:dd:dd:2e:84:2e: 36:aa:43:5f:a4:5f:8c:41:4e:e9:03:f2:77:33:2b:5d:1d:2c: 0b:ac:9e:86:9e:c9:f7:6e:d2:29:41:b8:e5:83:bb:3e:2b:8a: 6c:1f:99:32:5d:9f:1f:92:cb:38:59:34:b4:2b:19:5b:66:ae: 6e:e3:9a:31:68:17:68:63:9d:b2:f9:a9:7b:ad:03:e2:f9:85: b0:b6:25:33:ee:39:32:88:e6:54:7d:ca:1f:8d:08:86:62:45: db:c5:14:58:db:80:a4:5e:b9:07:8b:d1:f7:61:1d:1d:be:b3: d7:cc:be:ed:ee:ad:39:ba:3a:21:45:37:ea:b5:6d:44:7c:0b: c5:77:3c:c7:8d:00:ed:86:42:4e:11:f5:d5:a1:50:4c:5c:f7: 3e:36:68:42:d0:e4:b2:53:ef:e4:fc:b4:52:5f:a3:9e:37:f5: 50:c3:ce:7b:b4:6a:81:56:b9:d4:7a:a0:12:ff:43:9c:ad:5d: 28:b9:ef:46 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDFwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yMzA5MDEx MDIwMzZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDk4MkM0Mzk1Q0JBOUY1 MEQ5M0M1MjlFQTcyNjBDNEIzMTFFNTE1MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDyzpvsFPwAdZIaXVtMPMV4r70PdbAk1qiKT3C0bxF8/MtJvoZo IoOhYUmZMUXJa52/m3GTpi/TiPVjvP/HH3tVUGfBuT5bflkuERqhXtlIihwF0v+/ vA09vRw/sakG05FmowpLaEqa5gAXoAOg6Z2dI08mPtva7nVN4PbHWy+MHsYV6jA1 AmEBtY5EnRkHWo11l8JDAtH9lEGJDtmDdSJts/8Ai87dkSy6LMmHQ+OKEoFm3K2j nQz4FJ5VKiXxBEPLLklSy5ZSY4wvxGKbYCMlBmn5EOl3EjyUzz6SReaZPnn3xswW kAfPGLJKjcQe1aU6Ty5DW0YFKsPDUp20gLNPAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUmCxDlcup9Q2TxSnqcmDEsxHlFSkwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL21DeERsY3VwOVEy VHhTbnFjbURFc3hIbEZTay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJnHiwwDQYJKoZIhvcNAQELBQADggEBAMMcmSfrCmsMgoAh3Eu7rGOF3tn2 A1AzN24tuFNg0gmbAkpx8v7famHp1Z3OpPpSXJwspGUPdQ/al60J4hf6oR7u6Lnd 3S6ELjaqQ1+kX4xBTukD8nczK10dLAusnoaeyfdu0ilBuOWDuz4rimwfmTJdnx+S yzhZNLQrGVtmrm7jmjFoF2hjnbL5qXutA+L5hbC2JTPuOTKI5lR9yh+NCIZiRdvF FFjbgKReuQeL0fdhHR2+s9fMvu3urTm6OiFFN+q1bUR8C8V3PMeNAO2GQk4R9dWh UExc9z42aELQ5LJT7+T8tFJfo5439VDDznu0aoFWudR6oBL/Q5ytXSi570Y= -----END CERTIFICATE-----Generated at Thu May 2 03:38:41 2024 by rpki-client on console-ams.rpki-client.org