$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/QltsqOL1KSIAgkeAA2SeSyT52p0.roa File: QltsqOL1KSIAgkeAA2SeSyT52p0.roa (raw, json) Hash identifier: n7GXRKyO5e6zoq2ZjgGsXS554BKdKjVeZaSzjxAZ4pw= Subject key identifier: 42:5B:6C:A8:E2:F5:29:22:00:82:47:80:03:64:9E:4B:24:F9:DA:9D Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA Certificate serial: 043B Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/QltsqOL1KSIAgkeAA2SeSyT52p0.roa Signing time: Fri 01 Sep 2023 08:03:45 +0000 ROA not before: Fri 01 Sep 2023 08:03:45 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 60614 IP address blocks: 103.156.184.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 11:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1083 (0x43b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA Validity Not Before: Sep 1 08:03:45 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=425B6CA8E2F529220082478003649E4B24F9DA9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:9a:32:5a:1f:f6:36:1b:f2:99:52:30:16:fc: 83:32:51:02:8a:85:e7:82:ca:60:fe:cd:39:b4:0c: 90:29:d1:bb:71:c2:28:99:f4:2a:52:ec:61:a4:02: a5:39:66:b2:2e:ad:79:22:ab:b9:9e:b2:8c:b4:6c: 8d:01:f2:06:e1:04:f4:94:7e:3d:55:70:d2:9c:d5: ef:65:59:28:dd:11:70:27:1d:42:25:6c:98:dd:88: 67:cf:43:66:28:91:af:81:d3:12:7d:ae:bc:77:28: 2a:40:69:be:34:5e:84:46:2c:de:e3:e4:26:8e:aa: b9:d8:c4:d9:9f:9a:56:21:49:03:49:68:82:2e:c5: e7:f6:95:19:b6:1d:63:ea:bf:61:ed:a2:fe:31:b8: 50:4e:2e:a2:4b:b8:17:b4:bb:b1:93:b2:a8:3e:b7: c6:fb:1f:b7:2a:01:76:88:ff:02:34:4c:be:01:66: 93:a5:7c:6f:8d:82:ea:7c:16:0d:80:dd:2f:0d:34: f7:97:b0:e4:7a:c3:88:08:2f:46:ce:c9:01:b5:2a: 21:bb:15:9f:31:09:ba:6c:56:92:68:37:f7:9a:31: 69:fc:35:04:a8:dd:7d:bc:1b:a4:39:12:0d:5c:8d: b1:24:a1:27:99:36:ee:58:59:d4:60:98:70:95:2a: 2b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:5B:6C:A8:E2:F5:29:22:00:82:47:80:03:64:9E:4B:24:F9:DA:9D X509v3 Authority Key Identifier: keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/QltsqOL1KSIAgkeAA2SeSyT52p0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.156.184.0/23 Signature Algorithm: sha256WithRSAEncryption 47:36:e8:b4:69:e9:b2:cc:32:f5:5d:92:a3:0c:aa:cf:90:8d: 52:84:05:76:51:55:e2:0c:b5:44:80:3c:1f:45:e1:86:a8:1a: 4b:04:a1:61:90:b8:ab:6a:8c:dc:94:a7:03:0a:84:13:ba:67: 52:65:6d:67:98:92:55:fe:a3:b3:e0:6b:6c:6a:62:57:f0:3f: f9:e5:42:16:2d:de:c8:10:90:4e:74:7e:bc:1f:08:86:81:2e: 03:55:d6:02:00:4f:c8:f8:23:98:19:f0:cc:be:dd:7b:f2:95: 97:1f:89:e9:2c:a4:2d:ef:91:2d:4a:f2:e8:52:0f:28:95:56: 54:ee:ba:9e:db:69:49:7d:51:73:9c:42:e9:a7:31:3c:23:54: 64:8e:ba:be:97:81:22:71:25:88:5b:10:7d:72:d9:2a:6c:c0: 6e:ad:f9:85:41:79:19:84:12:f7:d1:9e:ad:3f:61:15:df:7d: 9a:84:b8:69:48:cd:93:8e:45:6f:d0:1d:92:44:9b:03:10:31: 0d:7d:63:d5:4c:04:d4:1d:5b:55:8a:5a:f9:ec:55:24:2a:00: 45:d6:bc:49:51:47:fc:36:7c:96:64:7d:f0:09:90:91:71:81: 95:05:1a:d1:1e:05:e3:2e:46:9b:df:0d:b3:80:9b:14:b2:7c: cf:98:aa:8d -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBDswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yMzA5MDEw ODAzNDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQyNUI2Q0E4RTJGNTI5 MjIwMDgyNDc4MDAzNjQ5RTRCMjRGOURBOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpmjJaH/Y2G/KZUjAW/IMyUQKKheeCymD+zTm0DJAp0btxwiiZ 9CpS7GGkAqU5ZrIurXkiq7mesoy0bI0B8gbhBPSUfj1VcNKc1e9lWSjdEXAnHUIl bJjdiGfPQ2Yoka+B0xJ9rrx3KCpAab40XoRGLN7j5CaOqrnYxNmfmlYhSQNJaIIu xef2lRm2HWPqv2Htov4xuFBOLqJLuBe0u7GTsqg+t8b7H7cqAXaI/wI0TL4BZpOl fG+Ngup8Fg2A3S8NNPeXsOR6w4gIL0bOyQG1KiG7FZ8xCbpsVpJoN/eaMWn8NQSo 3X28G6Q5Eg1cjbEkoSeZNu5YWdRgmHCVKiv1AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUQltsqOL1KSIAgkeAA2SeSyT52p0wHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MvUWx0c3FPTDFLU0lBZ2tl QUEyU2VTeVQ1MnAwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWecuDANBgkqhkiG9w0BAQsFAAOCAQEARzbotGnpsswy9V2Sowyqz5CNUoQFdlFV 4gy1RIA8H0XhhqgaSwShYZC4q2qM3JSnAwqEE7pnUmVtZ5iSVf6js+BrbGpiV/A/ +eVCFi3eyBCQTnR+vB8IhoEuA1XWAgBPyPgjmBnwzL7de/KVlx+J6SykLe+RLUry 6FIPKJVWVO66nttpSX1Rc5xC6acxPCNUZI66vpeBInEliFsQfXLZKmzAbq35hUF5 GYQS99GerT9hFd99moS4aUjNk45Fb9AdkkSbAxAxDX1j1UwE1B1bVYpa+exVJCoA Rda8SVFH/DZ8lmR98AmQkXGBlQUa0R4F4y5Gm98Ns4CbFLJ8z5iqjQ== -----END CERTIFICATE-----Generated at Sun May 5 04:44:55 2024 by rpki-client on console-ams.rpki-client.org