$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/I9-USPXClb-5cf0Pomt5quQIVG4.roa File: I9-USPXClb-5cf0Pomt5quQIVG4.roa (raw, json) Hash identifier: iPlReJ0P0uM5YPvpIviVwD2hObRFh8yI3f2004Zp9gE= Subject key identifier: 23:DF:94:48:F5:C2:95:BF:B9:71:FD:0F:A2:6B:79:AA:E4:08:54:6E Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA Certificate serial: 0436 Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/I9-USPXClb-5cf0Pomt5quQIVG4.roa Signing time: Fri 01 Sep 2023 08:03:42 +0000 ROA not before: Fri 01 Sep 2023 08:03:42 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38136 IP address blocks: 103.156.184.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 03:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1078 (0x436) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA Validity Not Before: Sep 1 08:03:42 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=23DF9448F5C295BFB971FD0FA26B79AAE408546E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cd:d3:fb:de:65:fb:20:cf:18:fe:2b:92:1f: b1:7d:b7:78:3f:ae:19:83:89:64:b3:3c:65:1b:4e: 79:14:35:c2:a5:c3:32:5a:1c:26:09:94:da:a4:23: 1c:8f:66:a4:77:33:96:a7:37:e3:44:7d:3a:58:b3: e1:d2:4e:9a:16:07:47:ae:84:7d:5f:54:3d:e8:15: a3:9e:46:03:55:9b:8e:bc:a6:2c:07:47:e2:21:32: 8a:45:a9:a8:14:35:d9:c0:b4:e7:28:9a:87:c6:65: 39:d0:c7:ae:22:31:d7:a4:24:ac:5c:40:82:47:ef: 1a:c5:a2:07:17:d4:0d:09:d2:92:22:a3:0e:7f:6b: c9:8d:1c:d2:10:28:ab:db:00:42:18:51:ee:42:91: fa:c3:6a:6a:4f:7d:8e:7e:43:3a:c6:21:41:9e:c4: 2d:38:f1:f7:55:c6:86:8d:1c:14:b3:83:fd:ee:15: 8c:3c:c1:d4:f2:cf:c3:54:fa:4a:08:78:18:ef:d3: 1e:36:39:26:ea:d9:ec:e6:9d:4b:ab:7e:69:90:1f: d9:92:76:ef:0c:ad:a6:14:3b:1b:a8:80:3f:00:14: a7:0f:39:36:e0:6e:82:ca:89:c0:9e:6d:e6:3b:6b: 02:60:7a:9e:4b:11:91:f6:18:1d:81:dd:10:3e:52: 62:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:DF:94:48:F5:C2:95:BF:B9:71:FD:0F:A2:6B:79:AA:E4:08:54:6E X509v3 Authority Key Identifier: keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/I9-USPXClb-5cf0Pomt5quQIVG4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.156.184.0/24 Signature Algorithm: sha256WithRSAEncryption 02:96:56:8a:67:23:74:4c:e4:f2:ea:a6:cf:1e:71:7f:ea:c8: 88:ad:bd:77:f4:be:30:bf:ca:f0:9d:42:91:91:86:c1:5e:9f: db:f0:28:27:79:7f:c8:df:e1:f5:85:9e:bc:c1:72:e0:c8:f0: e9:4a:af:08:db:b7:13:d5:f5:6c:1f:08:65:77:99:56:db:b5: 02:fc:9c:b4:9e:63:22:58:fb:56:2a:d7:fb:48:dc:ae:5b:00: f3:be:3b:1f:ab:8e:4a:78:35:5a:a5:f0:70:02:b2:4b:78:f7: ce:53:9d:0a:94:1b:f0:2b:1d:63:63:32:07:63:d6:d1:d6:af: fa:bd:f9:75:0d:fc:1b:a3:2f:de:ab:18:6f:94:de:f5:d9:50: de:17:a6:c7:14:9e:57:28:48:6d:52:72:a8:39:51:21:90:40: 50:2d:53:48:39:ae:c3:41:8c:de:83:b0:ae:b2:69:27:5c:28: 18:f6:a0:1f:0d:b5:f2:0a:6a:86:ef:65:61:e1:11:01:15:6d: 3b:bc:27:69:0d:7e:e0:2e:88:43:02:9b:82:9f:6e:44:de:d7: 43:84:fa:c5:53:0e:bf:28:e6:85:3e:93:a2:c7:a1:21:e8:69: 14:11:29:c6:2a:aa:66:78:cd:ab:20:07:82:d1:af:5a:da:e2: b2:7f:8c:75 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBDYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yMzA5MDEw ODAzNDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDIzREY5NDQ4RjVDMjk1 QkZCOTcxRkQwRkEyNkI3OUFBRTQwODU0NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAzdP73mX7IM8Y/iuSH7F9t3g/rhmDiWSzPGUbTnkUNcKlwzJa HCYJlNqkIxyPZqR3M5anN+NEfTpYs+HSTpoWB0euhH1fVD3oFaOeRgNVm468piwH R+IhMopFqagUNdnAtOcomofGZTnQx64iMdekJKxcQIJH7xrFogcX1A0J0pIiow5/ a8mNHNIQKKvbAEIYUe5CkfrDampPfY5+QzrGIUGexC048fdVxoaNHBSzg/3uFYw8 wdTyz8NU+koIeBjv0x42OSbq2ezmnUurfmmQH9mSdu8MraYUOxuogD8AFKcPOTbg boLKicCebeY7awJgep5LEZH2GB2B3RA+UmJHAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUI9+USPXClb+5cf0Pomt5quQIVG4wHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MvSTktVVNQWENsYi01Y2Yw UG9tdDVxdVFJVkc0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGecuDANBgkqhkiG9w0BAQsFAAOCAQEAApZWimcjdEzk8uqmzx5xf+rIiK29d/S+ ML/K8J1CkZGGwV6f2/AoJ3l/yN/h9YWevMFy4Mjw6UqvCNu3E9X1bB8IZXeZVtu1 AvyctJ5jIlj7VirX+0jcrlsA8747H6uOSng1WqXwcAKyS3j3zlOdCpQb8CsdY2My B2PW0dav+r35dQ38G6Mv3qsYb5Te9dlQ3hemxxSeVyhIbVJyqDlRIZBAUC1TSDmu w0GM3oOwrrJpJ1woGPagHw218gpqhu9lYeERARVtO7wnaQ1+4C6IQwKbgp9uRN7X Q4T6xVMOvyjmhT6TosehIehpFBEpxiqqZnjNqyAHgtGvWtrisn+MdQ== -----END CERTIFICATE-----Generated at Fri May 17 09:34:25 2024 by rpki-client on console-fra.rpki-client.org