$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APPIER/XCJVpxShHbY19Wb1kjVWoIIYSdM.roa File: XCJVpxShHbY19Wb1kjVWoIIYSdM.roa (raw, json) Hash identifier: VJLZiuPJCxmed+o1yZIdPlGMV58MfoYocXH57GD/Ee0= Subject key identifier: 5C:22:55:A7:14:A1:1D:B6:35:F5:66:F5:92:35:56:A0:82:18:49:D3 Certificate issuer: /CN=4640D988EC8146BA430596012122D1A1CFC1C36B Certificate serial: 0B2D Authority key identifier: 46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/XCJVpxShHbY19Wb1kjVWoIIYSdM.roa Signing time: Fri 01 Sep 2023 08:05:41 +0000 ROA not before: Fri 01 Sep 2023 08:05:41 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 396982 IP address blocks: 103.122.16.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:45:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2861 (0xb2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4640D988EC8146BA430596012122D1A1CFC1C36B Validity Not Before: Sep 1 08:05:41 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5C2255A714A11DB635F566F5923556A0821849D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fd:a1:cd:2e:d0:ce:5f:bb:3b:86:4e:88:33: 0e:2e:7d:4c:10:60:00:91:9a:32:53:b7:69:a5:28: dc:67:7d:94:5a:96:37:c2:57:48:0a:24:14:85:cb: 9d:6a:71:dc:8e:1c:5c:22:7b:fc:ea:2b:d3:31:02: 8a:b2:39:b0:50:22:42:41:bb:11:86:40:9d:4f:69: c5:6a:91:82:37:92:c1:1d:a9:e6:16:70:77:aa:98: 02:2c:96:f6:23:7c:b3:5b:99:3d:2d:e0:1b:d8:ce: 0a:f8:1c:1d:e9:7d:0a:1c:ed:6b:7c:43:69:e4:a1: 37:fa:f9:11:21:3e:7d:02:41:fa:c1:5c:a0:e9:c2: 86:26:a6:0b:ff:8d:78:ee:ce:29:bf:c6:b0:1f:41: 7b:37:57:bf:31:fa:4e:f8:ba:82:c2:0d:de:5f:98: 14:c4:af:5f:71:a3:a2:02:4a:e3:63:95:72:c6:89: 7a:49:66:97:53:ec:10:02:e1:ba:1c:4f:22:85:93: 68:40:95:11:ac:d0:14:99:2c:3f:58:c9:3a:85:7d: 87:78:e3:db:0f:cf:c7:ae:83:e8:92:89:47:14:90: 5e:cb:0d:b4:01:a9:69:b4:a3:fb:0f:c5:cb:e5:a7: d2:d3:03:15:c9:cd:2c:d5:77:02:05:86:85:e6:05: 08:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:22:55:A7:14:A1:1D:B6:35:F5:66:F5:92:35:56:A0:82:18:49:D3 X509v3 Authority Key Identifier: keyid:46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/XCJVpxShHbY19Wb1kjVWoIIYSdM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.16.0/22 Signature Algorithm: sha256WithRSAEncryption 35:b3:8b:00:b9:29:1a:11:a3:e1:ec:a3:b5:e7:7b:fd:33:b1: 9b:57:d2:91:46:a4:4a:d1:f1:76:56:5a:b1:69:28:df:8b:25: 96:37:bc:e3:00:48:1c:84:e0:28:ac:a6:56:b6:66:98:d1:68: a7:7d:cd:06:20:b9:ca:13:a2:74:b7:69:9e:5a:62:7b:65:32: e6:5d:2e:4c:27:a5:15:c8:4b:e8:ed:90:2e:70:06:52:8b:d1: 5b:38:7d:86:96:67:61:d6:96:5b:bc:c9:5d:23:cc:31:79:1e: ab:ad:53:3b:e1:fb:cb:f8:1e:5a:e0:aa:05:74:7b:d0:25:f7: f1:e5:e6:13:a2:98:5a:11:96:5e:fc:8b:4c:47:c4:d9:76:32: 45:f1:b5:d7:f7:e8:5f:0e:eb:17:af:d8:b9:59:e8:31:f7:82: c2:ff:33:6c:2a:d0:72:6e:6a:48:e2:78:98:c6:a7:c6:47:c1: 90:10:cd:a5:c9:20:c7:bb:b9:94:ff:a3:45:35:83:e7:fe:6d: cf:e1:a0:da:51:31:a2:d9:2b:eb:13:cf:b8:d3:14:0b:b4:59: 6b:fc:e9:2c:e5:94:90:35:6c:ee:7d:9a:1a:b0:80:49:17:f9: f6:5d:ca:3a:24:31:22:e3:ca:25:4a:d0:00:92:2c:5a:40:a7: 2a:04:36:43 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCy0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDY0 MEQ5ODhFQzgxNDZCQTQzMDU5NjAxMjEyMkQxQTFDRkMxQzM2QjAeFw0yMzA5MDEw ODA1NDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVDMjI1NUE3MTRBMTFE QjYzNUY1NjZGNTkyMzU1NkEwODIxODQ5RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO/aHNLtDOX7s7hk6IMw4ufUwQYACRmjJTt2mlKNxnfZRaljfC V0gKJBSFy51qcdyOHFwie/zqK9MxAoqyObBQIkJBuxGGQJ1PacVqkYI3ksEdqeYW cHeqmAIslvYjfLNbmT0t4BvYzgr4HB3pfQoc7Wt8Q2nkoTf6+REhPn0CQfrBXKDp woYmpgv/jXjuzim/xrAfQXs3V78x+k74uoLCDd5fmBTEr19xo6ICSuNjlXLGiXpJ ZpdT7BAC4bocTyKFk2hAlRGs0BSZLD9YyTqFfYd449sPz8eug+iSiUcUkF7LDbQB qWm0o/sPxcvlp9LTAxXJzSzVdwIFhoXmBQiFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXCJVpxShHbY19Wb1kjVWoIIYSdMwHwYDVR0jBBgwFoAURkDZiOyBRrpDBZYB ISLRoc/Bw2swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBQSUVS L1JrRFppT3lCUnJwREJaWUJJU0xSb2NfQncycy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvUmtEWmlPeUJScnBEQlpZQklTTFJvY19CdzJzLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBQSUVSL1hDSlZweFNoSGJZMTlXYjFr alZXb0lJWVNkTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn ehAwDQYJKoZIhvcNAQELBQADggEBADWziwC5KRoRo+Hso7Xne/0zsZtX0pFGpErR 8XZWWrFpKN+LJZY3vOMASByE4Cispla2ZpjRaKd9zQYgucoTonS3aZ5aYntlMuZd LkwnpRXIS+jtkC5wBlKL0Vs4fYaWZ2HWllu8yV0jzDF5HqutUzvh+8v4HlrgqgV0 e9Al9/Hl5hOimFoRll78i0xHxNl2MkXxtdf36F8O6xev2LlZ6DH3gsL/M2wq0HJu akjieJjGp8ZHwZAQzaXJIMe7uZT/o0U1g+f+bc/hoNpRMaLZK+sTz7jTFAu0WWv8 6SzllJA1bO59mhqwgEkX+fZdyjokMSLjyiVK0ACSLFpApyoENkM= -----END CERTIFICATE-----Generated at Mon May 6 03:10:51 2024 by rpki-client on console-fra.rpki-client.org