$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TOPCHINA/zDgZNc0ATuz8mYMTmmxd2yxaTV4.roa File: zDgZNc0ATuz8mYMTmmxd2yxaTV4.roa (raw, json) Hash identifier: AvyP3rHHbF/MN0YOL5UVXKBFNt7SXn8O4l9FthGUQf8= Subject key identifier: CC:38:19:35:CD:00:4E:EC:FC:99:83:13:9A:6C:5D:DB:2C:5A:4D:5E Certificate issuer: /CN=0D677394A7AE27B8B455EFAE93A9A65CFE142D6B Certificate serial: 1121 Authority key identifier: 0D:67:73:94:A7:AE:27:B8:B4:55:EF:AE:93:A9:A6:5C:FE:14:2D:6B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWdzlKeuJ7i0Ve-uk6mmXP4ULWs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TOPCHINA/zDgZNc0ATuz8mYMTmmxd2yxaTV4.roa Signing time: Fri 01 Sep 2023 10:01:36 +0000 ROA not before: Fri 01 Sep 2023 10:01:36 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131659 IP address blocks: 103.124.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TOPCHINA/DWdzlKeuJ7i0Ve-uk6mmXP4ULWs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TOPCHINA/DWdzlKeuJ7i0Ve-uk6mmXP4ULWs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DWdzlKeuJ7i0Ve-uk6mmXP4ULWs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 04:49:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4385 (0x1121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D677394A7AE27B8B455EFAE93A9A65CFE142D6B Validity Not Before: Sep 1 10:01:36 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CC381935CD004EECFC9983139A6C5DDB2C5A4D5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2c:67:ed:af:63:4d:37:41:5d:28:cb:cf:09: f2:05:14:63:0d:74:98:62:21:cc:e8:e9:55:f5:35: 14:88:83:ec:7f:e5:7d:26:2d:ec:09:6d:f0:1e:65: af:69:cc:03:d4:e2:1d:a3:a5:6b:e4:3c:7b:60:d6: 63:e1:74:0c:1b:cc:ae:82:5f:86:1e:42:c2:29:30: 5a:e3:66:0c:de:65:0b:c2:f5:98:81:94:6e:24:b4: cf:4d:f3:4b:12:c6:fb:8e:eb:f9:81:43:88:8f:ed: a3:8a:57:03:46:c8:64:6c:46:e8:07:12:5b:86:25: df:8f:b9:eb:04:3f:81:e4:82:03:61:ef:3e:ea:c5: c7:e1:81:fa:b6:f2:b9:46:70:db:d9:25:f9:6a:ac: fb:c7:7c:77:65:e8:80:c6:5a:64:ba:b8:4b:a9:94: 5f:0d:a8:2d:53:09:64:43:4d:6b:ed:43:1d:34:92: e7:6d:a0:a3:2e:89:96:1b:97:cb:b7:d2:0d:55:70: f0:c0:6f:77:e5:8b:3b:32:eb:1f:d8:f3:e8:de:a8: c7:01:20:c1:00:3f:bb:00:fa:56:69:4a:95:ec:47: 2c:32:fc:8e:53:9d:1e:af:62:a1:b6:0d:90:c4:ab: 19:03:cf:46:a2:28:ed:82:94:70:7c:42:56:6e:80: 62:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:38:19:35:CD:00:4E:EC:FC:99:83:13:9A:6C:5D:DB:2C:5A:4D:5E X509v3 Authority Key Identifier: keyid:0D:67:73:94:A7:AE:27:B8:B4:55:EF:AE:93:A9:A6:5C:FE:14:2D:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TOPCHINA/DWdzlKeuJ7i0Ve-uk6mmXP4ULWs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWdzlKeuJ7i0Ve-uk6mmXP4ULWs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TOPCHINA/zDgZNc0ATuz8mYMTmmxd2yxaTV4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.124.252.0/22 Signature Algorithm: sha256WithRSAEncryption 78:10:3b:96:66:32:0b:08:7c:d4:01:13:c7:47:e0:2c:18:f0: e9:18:f8:a8:bb:60:1c:0b:72:ba:d7:0a:2b:fd:21:c6:ef:98: 38:c6:df:b1:af:67:8c:c6:c2:5a:49:60:5b:63:f0:7f:bc:5d: 87:89:e3:be:e9:fd:f8:ab:35:e1:57:c8:6a:a2:fe:8a:c5:2e: 40:7a:fb:1c:e7:16:97:e5:e7:91:5e:61:c1:8f:58:3b:88:88: 8c:67:d2:45:d0:2d:a0:4b:00:75:50:40:7b:f7:78:6f:24:2b: 67:f0:3f:5b:eb:6b:b1:e7:4a:eb:51:f0:3f:3b:41:f1:42:f6: b8:87:b4:fb:00:5c:63:4f:ff:16:b3:bc:d8:02:5b:3c:8f:4b: 99:ce:9c:c0:63:89:c7:43:5a:6b:e6:72:7e:37:35:03:47:78: 30:4d:d2:68:74:c8:cf:97:3f:b5:a5:ef:7a:f1:c2:59:bf:e3: 9e:9b:04:8b:f4:fb:98:07:39:d4:2f:01:de:3a:9f:1a:a6:60: 77:77:cb:2e:09:7c:1e:cb:6c:4a:c9:8f:c9:9f:e3:30:c9:43: 78:1c:2f:c6:c3:e8:3c:30:00:7b:5d:d0:50:de:c2:a3:f1:8d: 3d:e1:e8:16:00:e9:df:54:66:fe:db:da:ce:00:47:a3:b2:d4: ea:36:7a:ac -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICESEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ2 NzczOTRBN0FFMjdCOEI0NTVFRkFFOTNBOUE2NUNGRTE0MkQ2QjAeFw0yMzA5MDEx MDAxMzZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENDMzgxOTM1Q0QwMDRF RUNGQzk5ODMxMzlBNkM1RERCMkM1QTRENUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoLGftr2NNN0FdKMvPCfIFFGMNdJhiIczo6VX1NRSIg+x/5X0m LewJbfAeZa9pzAPU4h2jpWvkPHtg1mPhdAwbzK6CX4YeQsIpMFrjZgzeZQvC9ZiB lG4ktM9N80sSxvuO6/mBQ4iP7aOKVwNGyGRsRugHEluGJd+PuesEP4HkggNh7z7q xcfhgfq28rlGcNvZJflqrPvHfHdl6IDGWmS6uEuplF8NqC1TCWRDTWvtQx00kudt oKMuiZYbl8u30g1VcPDAb3flizsy6x/Y8+jeqMcBIMEAP7sA+lZpSpXsRywy/I5T nR6vYqG2DZDEqxkDz0aiKO2ClHB8QlZugGIjAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUzDgZNc0ATuz8mYMTmmxd2yxaTV4wHwYDVR0jBBgwFoAUDWdzlKeuJ7i0Ve+u k6mmXP4ULWswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVE9QQ0hJ TkEvRFdkemxLZXVKN2kwVmUtdWs2bW1YUDRVTFdzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9EV2R6bEtldUo3aTBWZS11azZtbVhQNFVMV3MuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UT1BDSElOQS96RGdaTmMwQVR1ejht WU1UbW14ZDJ5eGFUVjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3z8MA0GCSqGSIb3DQEBCwUAA4IBAQB4EDuWZjILCHzUARPHR+AsGPDpGPio u2AcC3K61wor/SHG75g4xt+xr2eMxsJaSWBbY/B/vF2HieO+6f34qzXhV8hqov6K xS5Aevsc5xaX5eeRXmHBj1g7iIiMZ9JF0C2gSwB1UEB793hvJCtn8D9b62ux50rr UfA/O0HxQva4h7T7AFxjT/8Ws7zYAls8j0uZzpzAY4nHQ1pr5nJ+NzUDR3gwTdJo dMjPlz+1pe968cJZv+OemwSL9PuYBznULwHeOp8apmB3d8suCXwey2xKyY/Jn+Mw yUN4HC/Gw+g8MAB7XdBQ3sKj8Y094egWAOnfVGb+29rOAEejstTqNnqs -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:44 2024 by rpki-client on console-fra.rpki-client.org