$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/oMI6lqTMJ3LHDmuFLBDae-NslBY.roa File: oMI6lqTMJ3LHDmuFLBDae-NslBY.roa (raw, json) Hash identifier: e3WNjUqW4GrsjmoINDnODxAShXn8EgvnGFPu62ps/XY= Subject key identifier: A0:C2:3A:96:A4:CC:27:72:C7:0E:6B:85:2C:10:DA:7B:E3:6C:94:16 Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA Certificate serial: 04A7 Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/oMI6lqTMJ3LHDmuFLBDae-NslBY.roa Signing time: Mon 29 Jan 2024 07:24:09 +0000 ROA not before: Mon 29 Jan 2024 07:24:09 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 151188 IP address blocks: 103.156.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 03:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1191 (0x4a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA Validity Not Before: Jan 29 07:24:09 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A0C23A96A4CC2772C70E6B852C10DA7BE36C9416 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:cd:fa:3a:34:a2:2b:9a:e6:7d:e7:0b:de:25: c9:e3:6b:99:f9:6e:bc:c2:44:ed:9a:5d:fe:42:2d: c1:66:eb:b3:83:cc:66:76:7d:14:fb:9c:40:51:1e: 04:f9:49:0e:44:11:0b:51:b2:2c:87:e7:5b:20:07: 68:32:99:3c:52:8f:bb:a1:56:34:00:81:76:d5:12: 06:bb:77:df:74:37:f1:d4:36:aa:d7:30:19:c2:10: 86:4f:66:bb:77:8d:11:bf:ab:65:14:06:13:20:9f: 41:86:9d:c7:1a:38:fb:67:15:2d:7f:4b:4f:a7:17: ab:2b:b7:25:80:65:33:2b:d4:de:cb:a6:f1:75:72: ae:89:53:8d:f8:64:98:ee:42:a3:d1:0a:d3:5a:4d: 6f:8a:70:58:8d:eb:5a:f6:81:5a:3d:e1:3c:7b:1b: 9f:da:8a:b1:c2:0a:8e:70:1a:23:66:71:a4:ef:bb: 8d:1f:e6:80:96:fc:29:31:e7:9f:92:47:ff:98:eb: 36:81:0c:c4:64:e0:e1:87:dc:44:69:22:0f:65:aa: e2:43:58:e1:a7:b8:1b:e6:34:02:ef:71:67:7c:c1: 3b:62:9b:3a:9a:3c:76:3d:bc:68:14:7d:fe:c6:e0: 21:72:12:81:51:10:db:a3:0d:a5:72:b8:2c:f7:3d: 63:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:C2:3A:96:A4:CC:27:72:C7:0E:6B:85:2C:10:DA:7B:E3:6C:94:16 X509v3 Authority Key Identifier: keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/oMI6lqTMJ3LHDmuFLBDae-NslBY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.156.185.0/24 Signature Algorithm: sha256WithRSAEncryption a4:c5:72:3e:e9:f9:65:50:c1:33:61:9c:76:5b:3b:66:6e:29: 62:de:ea:62:01:82:af:1c:41:90:55:e5:7e:88:05:a5:33:91: c7:b1:0f:95:06:7e:96:a7:5f:7d:39:da:0f:6f:e2:9a:f0:57: 8e:71:11:59:0d:14:ff:80:f0:2a:25:b8:91:1f:96:8e:86:2f: 1c:65:98:87:c7:49:09:60:2b:4a:81:1c:98:9f:3d:50:53:5d: 37:59:aa:d8:2a:a3:ad:b4:71:3b:f5:d3:ad:f1:c6:c9:33:21: 93:7c:85:b2:3e:13:78:c5:87:d6:5e:81:91:13:90:90:a9:d0: 8a:bf:d1:29:43:c3:c7:1d:ab:b4:70:1e:6e:64:00:0b:9b:9e: 62:10:90:49:bc:fe:12:af:46:6f:5f:aa:b4:9f:54:2c:70:4a: 90:15:d9:93:5e:c7:78:34:a0:f3:da:55:bb:1b:93:5c:95:8f: a4:c6:b2:22:60:8f:94:b3:04:93:14:5d:82:35:2d:b7:fa:90: 47:5a:e9:0d:8c:da:73:3e:48:eb:0b:0d:8f:dc:1a:80:61:f6: aa:2c:e9:8c:9f:56:e8:02:9a:c6:02:cc:bb:6d:bc:be:b1:e6: 3e:e6:4a:14:91:c8:6a:4e:48:69:70:81:5b:b2:7d:77:76:5d: 48:4f:19:1a -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBKcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yNDAxMjkw NzI0MDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEEwQzIzQTk2QTRDQzI3 NzJDNzBFNkI4NTJDMTBEQTdCRTM2Qzk0MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDszfo6NKIrmuZ95wveJcnja5n5brzCRO2aXf5CLcFm67ODzGZ2 fRT7nEBRHgT5SQ5EEQtRsiyH51sgB2gymTxSj7uhVjQAgXbVEga7d990N/HUNqrX MBnCEIZPZrt3jRG/q2UUBhMgn0GGnccaOPtnFS1/S0+nF6srtyWAZTMr1N7LpvF1 cq6JU434ZJjuQqPRCtNaTW+KcFiN61r2gVo94Tx7G5/airHCCo5wGiNmcaTvu40f 5oCW/Ckx55+SR/+Y6zaBDMRk4OGH3ERpIg9lquJDWOGnuBvmNALvcWd8wTtimzqa PHY9vGgUff7G4CFyEoFRENujDaVyuCz3PWOTAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUoMI6lqTMJ3LHDmuFLBDae+NslBYwHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1Mvb01JNmxxVE1KM0xIRG11 RkxCRGFlLU5zbEJZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGecuTANBgkqhkiG9w0BAQsFAAOCAQEApMVyPun5ZVDBM2Gcdls7Zm4pYt7qYgGC rxxBkFXlfogFpTORx7EPlQZ+lqdffTnaD2/imvBXjnERWQ0U/4DwKiW4kR+WjoYv HGWYh8dJCWArSoEcmJ89UFNdN1mq2CqjrbRxO/XTrfHGyTMhk3yFsj4TeMWH1l6B kROQkKnQir/RKUPDxx2rtHAebmQAC5ueYhCQSbz+Eq9Gb1+qtJ9ULHBKkBXZk17H eDSg89pVuxuTXJWPpMayImCPlLMEkxRdgjUtt/qQR1rpDYzacz5I6wsNj9wagGH2 qizpjJ9W6AKaxgLMu228vrHmPuZKFJHIak5IaXCBW7J9d3ZdSE8ZGg== -----END CERTIFICATE-----Generated at Fri May 17 10:15:26 2024 by rpki-client on console-ams.rpki-client.org