$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/JRolCxX85jAl9Bx7huPBQGnyWhk.roa File: JRolCxX85jAl9Bx7huPBQGnyWhk.roa (raw, json) Hash identifier: kkOl8/WS1r2z0U3+v+sb4mlkv3ysU7ZXaII1dESds6I= Subject key identifier: 25:1A:25:0B:15:FC:E6:30:25:F4:1C:7B:86:E3:C1:40:69:F2:5A:19 Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA Certificate serial: 043C Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/JRolCxX85jAl9Bx7huPBQGnyWhk.roa Signing time: Fri 01 Sep 2023 08:03:45 +0000 ROA not before: Fri 01 Sep 2023 08:03:45 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 141173 IP address blocks: 103.156.184.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 15:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1084 (0x43c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA Validity Not Before: Sep 1 08:03:45 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=251A250B15FCE63025F41C7B86E3C14069F25A19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e4:e4:cb:8a:93:1d:e6:45:dc:20:65:6b:c3: 9d:b6:01:f3:05:da:14:06:1f:b4:6e:73:93:4e:62: bf:49:87:80:53:d3:5b:73:e4:08:94:7a:84:e4:9d: 7c:21:0f:4f:66:01:ab:1b:95:7e:d6:81:1a:a1:a9: 81:a8:00:cc:01:bf:9f:0b:68:f7:a3:5b:b6:a3:35: 9c:b9:79:e5:58:97:3c:70:c7:38:7a:9e:78:da:f3: 07:88:08:49:e7:78:4e:b9:28:ab:d8:f0:59:0e:a9: ba:c6:93:08:f9:0a:96:e5:45:6f:af:82:af:dd:36: ed:15:18:d6:3b:8c:c8:b2:9f:45:b1:a4:e0:75:35: 54:69:8c:72:cf:e9:5b:2d:2f:f8:50:81:c0:0d:ff: 93:65:ae:94:d5:1b:66:b7:0b:5f:d6:72:29:15:08: 08:80:67:cb:b4:03:c7:b3:d9:9c:1b:fb:4e:59:18: ea:10:d5:16:af:1d:07:fe:f3:ff:d7:2e:33:e2:dc: 9a:bb:01:b1:d4:85:be:8b:7b:ac:0c:03:bf:2b:81: 14:22:6d:31:7d:91:1f:ff:78:d3:d2:c6:1f:94:b4: 0f:fb:e0:47:59:35:f6:fc:65:94:ee:9a:3f:b8:93: 85:9b:ed:e1:93:75:e0:b5:f8:81:a3:49:a3:cf:a0: 81:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:1A:25:0B:15:FC:E6:30:25:F4:1C:7B:86:E3:C1:40:69:F2:5A:19 X509v3 Authority Key Identifier: keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/JRolCxX85jAl9Bx7huPBQGnyWhk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.156.184.0/23 Signature Algorithm: sha256WithRSAEncryption 09:7d:74:0d:4f:b6:6a:0b:c4:87:2a:6a:f0:b0:b8:ea:5a:97: 9e:ea:f0:6b:fd:57:64:01:53:f8:3f:95:bb:ed:e2:73:a0:7d: 2b:eb:45:66:e3:2b:1c:43:21:47:91:58:cb:79:fd:aa:ce:d4: 50:da:2d:ff:c4:30:ea:6a:1d:32:d3:bd:6b:70:41:23:a2:ca: 92:75:16:4c:95:83:ab:80:bd:52:cd:fc:58:8f:4f:7b:57:11: b4:ed:3f:ad:ed:f1:a1:85:95:08:86:5c:cd:14:03:77:9a:2c: 0e:4c:13:f1:61:ef:2c:4a:88:a7:39:a4:37:90:08:38:e9:0a: 16:fb:df:6d:05:4e:e1:81:32:58:5b:d5:d6:e8:35:95:88:33: 72:30:5c:73:7f:84:7f:26:6c:4d:0e:d5:07:89:8c:83:08:fd: 23:4e:88:8a:6a:b2:2e:7a:e1:2a:19:46:28:5b:43:d0:24:95: 4f:bd:d0:ad:e7:86:61:df:0c:51:c2:b2:4b:f1:24:a5:4b:de: 6b:8d:cd:ea:41:0c:b7:f6:b2:05:64:89:33:f9:5c:77:7c:ea: 27:cc:b2:0e:ec:f0:d3:b1:6f:f0:65:7a:f2:ef:8f:40:85:f4: c9:99:ec:23:dc:e5:37:33:b2:a7:ee:08:64:9d:43:30:df:4c: 6c:c8:16:88 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBDwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yMzA5MDEw ODAzNDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI1MUEyNTBCMTVGQ0U2 MzAyNUY0MUM3Qjg2RTNDMTQwNjlGMjVBMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDL5OTLipMd5kXcIGVrw522AfMF2hQGH7Ruc5NOYr9Jh4BT01tz 5AiUeoTknXwhD09mAasblX7WgRqhqYGoAMwBv58LaPejW7ajNZy5eeVYlzxwxzh6 nnja8weICEnneE65KKvY8FkOqbrGkwj5CpblRW+vgq/dNu0VGNY7jMiyn0WxpOB1 NVRpjHLP6VstL/hQgcAN/5NlrpTVG2a3C1/WcikVCAiAZ8u0A8ez2Zwb+05ZGOoQ 1RavHQf+8//XLjPi3Jq7AbHUhb6Le6wMA78rgRQibTF9kR//eNPSxh+UtA/74EdZ Nfb8ZZTumj+4k4Wb7eGTdeC1+IGjSaPPoIEPAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUJRolCxX85jAl9Bx7huPBQGnyWhkwHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MvSlJvbEN4WDg1akFsOUJ4 N2h1UEJRR255V2hrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWecuDANBgkqhkiG9w0BAQsFAAOCAQEACX10DU+2agvEhypq8LC46lqXnurwa/1X ZAFT+D+Vu+3ic6B9K+tFZuMrHEMhR5FYy3n9qs7UUNot/8Qw6modMtO9a3BBI6LK knUWTJWDq4C9Us38WI9Pe1cRtO0/re3xoYWVCIZczRQDd5osDkwT8WHvLEqIpzmk N5AIOOkKFvvfbQVO4YEyWFvV1ug1lYgzcjBcc3+EfyZsTQ7VB4mMgwj9I06Iimqy LnrhKhlGKFtD0CSVT73QreeGYd8MUcKyS/EkpUvea43N6kEMt/ayBWSJM/lcd3zq J8yyDuzw07Fv8GV68u+PQIX0yZnsI9zlNzOyp+4IZJ1DMN9MbMgWiA== -----END CERTIFICATE-----Generated at Thu Apr 25 11:54:14 2024 by rpki-client on console-fra.rpki-client.org