$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/CMw0DXBNyL8TsKZakTda61IqXEM.roa File: CMw0DXBNyL8TsKZakTda61IqXEM.roa (raw, json) Hash identifier: g1wC7uOXZgxFjUkH4T6AtPgtTk4bbIaveID0pwV4jgc= Subject key identifier: 08:CC:34:0D:70:4D:C8:BF:13:B0:A6:5A:91:37:5A:EB:52:2A:5C:43 Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Certificate serial: 0BA0 Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/CMw0DXBNyL8TsKZakTda61IqXEM.roa Signing time: Fri 01 Sep 2023 09:44:03 +0000 ROA not before: Fri 01 Sep 2023 09:44:03 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38047 IP address blocks: 2402:c340:e168::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 10:31:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2976 (0xba0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Validity Not Before: Sep 1 09:44:03 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=08CC340D704DC8BF13B0A65A91375AEB522A5C43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b9:52:87:b5:e1:8a:8e:c0:31:41:69:fe:31: b2:77:38:da:7b:86:e1:ff:e2:86:43:10:91:53:9a: fa:de:19:c7:78:c7:4a:e4:45:23:84:92:2b:b8:a6: 78:67:40:47:e3:ed:eb:9c:bc:af:c2:b3:7f:82:2d: a6:76:81:3e:77:0e:3c:5e:56:3e:5b:61:35:56:47: 60:bf:c3:b9:41:85:a4:b0:c1:bd:c7:db:02:a2:80: 8e:52:0e:88:20:01:ec:df:f6:5d:3a:6c:22:fd:1d: 74:4a:08:d3:82:35:17:a8:41:dc:7f:63:ec:5d:bc: 33:d1:83:f6:1d:4d:bd:87:a2:c7:7b:f1:fc:01:a0: 19:7c:8f:0e:e2:9a:c9:81:a1:3a:06:0e:de:c0:16: 41:50:2e:20:81:42:51:93:b5:7d:84:6d:4d:ee:ff: 2c:c3:dd:d8:81:43:4f:d9:60:6b:61:ce:48:22:ff: de:86:b1:f2:49:ab:7c:fe:d7:0d:85:55:94:a8:e6: 53:38:25:c7:60:04:c1:8f:d2:0b:2c:7b:e6:cb:f1: 9a:31:10:36:41:af:25:ac:67:2b:d2:43:ee:0c:a8: aa:88:07:6b:60:37:df:f3:5a:b8:2f:6c:6c:00:a7: 83:b3:60:2e:4e:30:c6:25:f0:84:5b:70:7f:be:83: 43:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:CC:34:0D:70:4D:C8:BF:13:B0:A6:5A:91:37:5A:EB:52:2A:5C:43 X509v3 Authority Key Identifier: keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/CMw0DXBNyL8TsKZakTda61IqXEM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:c340:e168::/48 Signature Algorithm: sha256WithRSAEncryption 83:f9:cb:64:2c:53:ee:50:80:63:fb:77:9b:60:db:6a:98:f0: fa:6b:19:ee:c2:07:fb:8c:e6:ce:40:1f:1c:ac:cc:fd:29:b8: 44:c0:67:dc:da:a2:d4:fb:38:3a:67:b4:98:54:f9:d6:f0:52: db:eb:de:54:41:1c:bd:91:0e:a8:03:d0:d1:09:46:56:64:43: 64:cc:e6:80:14:05:56:7c:c7:53:ee:45:fe:a7:e9:d3:f6:e1: 71:c1:45:23:25:47:db:56:b5:9b:75:12:8a:8a:85:31:fa:7c: fc:c3:39:8f:78:59:df:79:47:2d:de:d2:b8:54:c3:43:15:55: 9d:8b:0c:1c:c0:a4:1e:7f:0c:7f:e8:e8:fd:6f:2b:65:b7:f0: f8:b0:b8:27:f8:7b:1b:f1:54:76:fb:06:04:b3:ca:9a:7e:8a: 80:dd:d1:1b:5e:92:a1:e1:44:a8:00:c0:5a:a6:c1:72:87:09: 5c:e0:55:af:e3:62:68:66:c6:53:4c:a3:91:1e:01:e7:22:68: c6:9d:1d:8c:ba:54:37:52:bc:75:df:5a:e2:5f:e1:bf:be:3f: be:88:b7:b6:c7:c1:e9:22:b6:f9:2f:83:7d:fb:0c:33:f1:f0: 7b:07:83:f8:b9:2d:1c:98:cb:5e:4a:e1:78:d3:36:05:71:46: 62:ed:c2:d6 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICC6AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDA1 NzJFOTlDNjRFRDY1MkZBODFENTAxRUZBMTZDRjlENDRBRTk5QzAeFw0yMzA5MDEw OTQ0MDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDA4Q0MzNDBENzA0REM4 QkYxM0IwQTY1QTkxMzc1QUVCNTIyQTVDNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCuVKHteGKjsAxQWn+MbJ3ONp7huH/4oZDEJFTmvreGcd4x0rk RSOEkiu4pnhnQEfj7eucvK/Cs3+CLaZ2gT53DjxeVj5bYTVWR2C/w7lBhaSwwb3H 2wKigI5SDoggAezf9l06bCL9HXRKCNOCNReoQdx/Y+xdvDPRg/YdTb2Hosd78fwB oBl8jw7imsmBoToGDt7AFkFQLiCBQlGTtX2EbU3u/yzD3diBQ0/ZYGthzkgi/96G sfJJq3z+1w2FVZSo5lM4JcdgBMGP0gsse+bL8ZoxEDZBryWsZyvSQ+4MqKqIB2tg N9/zWrgvbGwAp4OzYC5OMMYl8IRbcH++g0PpAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUCMw0DXBNyL8TsKZakTda61IqXEMwHwYDVR0jBBgwFoAUAFcumcZO1lL6gdUB 76Fs+dRK6ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNI RU5HL0FGY3VtY1pPMWxMNmdkVUI3NkZzLWRSSzZady5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvQUZjdW1jWk8xbEw2Z2RVQjc2RnMtZFJLNlp3LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNIRU5HL0NNdzBEWEJOeUw4 VHNLWmFrVGRhNjFJcVhFTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkAsNA4WgwDQYJKoZIhvcNAQELBQADggEBAIP5y2QsU+5QgGP7d5tg22qY 8PprGe7CB/uM5s5AHxyszP0puETAZ9zaotT7ODpntJhU+dbwUtvr3lRBHL2RDqgD 0NEJRlZkQ2TM5oAUBVZ8x1PuRf6n6dP24XHBRSMlR9tWtZt1EoqKhTH6fPzDOY94 Wd95Ry3e0rhUw0MVVZ2LDBzApB5/DH/o6P1vK2W38PiwuCf4exvxVHb7BgSzypp+ ioDd0RtekqHhRKgAwFqmwXKHCVzgVa/jYmhmxlNMo5EeAeciaMadHYy6VDdSvHXf WuJf4b++P76It7bHwekitvkvg337DDPx8HsHg/i5LRyYy15K4XjTNgVxRmLtwtY= -----END CERTIFICATE-----Generated at Sun Jun 23 13:19:18 2024 by rpki-client on console-fra.rpki-client.org