$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/RYbibPGce7MqcrdeYg2srOSusQM.roa File: RYbibPGce7MqcrdeYg2srOSusQM.roa (raw, json) Hash identifier: ///Lw+0iSBuRw1gG1JLxvEenEZlVg2oU9BRzkNYgHks= Subject key identifier: 45:86:E2:6C:F1:9C:7B:B3:2A:72:B7:5E:62:0D:AC:AC:E4:AE:B1:03 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 11C0 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/RYbibPGce7MqcrdeYg2srOSusQM.roa Signing time: Fri 08 Dec 2023 06:05:38 +0000 ROA not before: Fri 08 Dec 2023 06:05:38 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131644 IP address blocks: 101.101.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 12:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4544 (0x11c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Dec 8 06:05:38 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=4586E26CF19C7BB32A72B75E620DACACE4AEB103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a7:64:04:81:1e:40:b9:9e:12:2f:15:2e:85: dc:3b:f3:a4:c2:eb:30:fe:82:a1:10:b1:90:0d:cf: 05:cd:b3:5d:e5:46:0a:d6:bc:17:9a:72:e1:03:b3: 9b:80:7a:d2:e1:53:2c:7d:08:75:a0:ec:a6:7a:ff: 89:6e:67:8c:2b:f4:15:af:ff:ae:dc:5d:fc:93:ab: 83:03:4d:19:3a:70:62:4c:b8:61:6c:22:99:eb:b5: bb:e3:d4:5e:bc:cc:8e:00:a3:9f:c9:dc:0b:43:73: 0f:2b:bc:04:50:fe:d2:0f:16:c7:54:52:4c:49:19: 54:fc:17:a9:b1:ba:bb:9c:a1:bf:34:bb:db:9c:11: f5:85:26:aa:05:c6:eb:09:01:b6:10:3a:36:c3:4b: 5f:76:1f:11:b3:23:53:75:ed:56:07:df:9d:e4:94: e3:d6:0b:62:81:83:c7:5e:ad:fd:3a:7a:b7:26:61: 85:24:c5:ee:28:30:ce:2e:fa:48:87:fb:a2:41:f6: 43:26:2f:b6:0f:a0:d1:8c:5c:10:62:4e:29:26:28: 2d:86:9a:ec:d4:b9:e5:4a:6d:46:8b:82:4c:15:bb: 00:08:c3:0c:2d:07:a1:a2:08:f2:45:de:a7:0d:b1: f3:5a:46:26:44:09:31:88:7f:fb:41:8b:48:dc:57: fd:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:86:E2:6C:F1:9C:7B:B3:2A:72:B7:5E:62:0D:AC:AC:E4:AE:B1:03 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/RYbibPGce7MqcrdeYg2srOSusQM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.101.101.0/24 Signature Algorithm: sha256WithRSAEncryption 19:de:c4:aa:91:6d:99:69:dd:5b:5a:dd:ec:00:80:d4:23:86: b3:b5:2b:00:97:58:49:db:d1:26:a9:2e:6a:de:a4:86:68:98: fe:58:fc:2c:60:cf:8f:48:72:0f:5c:03:a9:c4:a7:09:55:d4: 4d:e6:89:36:75:8c:00:29:3f:46:ea:fa:7a:71:48:e8:55:fb: be:21:70:4c:ed:d4:c6:74:97:6d:2c:8a:35:d4:b1:52:f2:fe: 20:b8:6c:c6:bf:c5:ed:21:2c:b8:ee:2c:f7:3f:c1:9b:6f:82: 6b:65:a6:e0:0a:b3:ec:c6:d7:09:9e:3a:51:75:95:ad:f8:6c: 14:e4:c6:8a:bd:d5:e5:95:59:7d:95:60:ad:c4:b8:9a:a0:93: 8f:86:c4:ef:4c:06:32:e0:fd:d5:12:3c:ca:56:12:2e:d7:b9: 8e:f8:8c:81:ca:34:f8:8b:c9:24:bc:51:7e:15:69:a5:e5:ad: 55:d4:c3:72:f2:1e:b1:2c:0c:5a:a6:03:4c:9d:ee:da:95:0e: 17:f3:14:db:59:0f:4c:3e:80:cd:4b:53:c8:54:15:02:41:86: 89:97:01:c0:3a:3f:68:68:a9:00:a9:ae:a5:38:08:4c:55:cb: e7:92:33:f3:52:f1:ec:b9:cc:c3:64:9c:bc:a0:bc:5c:de:5c: 26:57:25:30 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEcAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMzEyMDgw NjA1MzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQ1ODZFMjZDRjE5QzdC QjMyQTcyQjc1RTYyMERBQ0FDRTRBRUIxMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEp2QEgR5AuZ4SLxUuhdw786TC6zD+gqEQsZANzwXNs13lRgrW vBeacuEDs5uAetLhUyx9CHWg7KZ6/4luZ4wr9BWv/67cXfyTq4MDTRk6cGJMuGFs Ipnrtbvj1F68zI4Ao5/J3AtDcw8rvARQ/tIPFsdUUkxJGVT8F6mxurucob80u9uc EfWFJqoFxusJAbYQOjbDS192HxGzI1N17VYH353klOPWC2KBg8derf06ercmYYUk xe4oMM4u+kiH+6JB9kMmL7YPoNGMXBBiTikmKC2GmuzUueVKbUaLgkwVuwAIwwwt B6GiCPJF3qcNsfNaRiZECTGIf/tBi0jcV/1dAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQURYbibPGce7MqcrdeYg2srOSusQMwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9SWWJpYlBHY2U3TXFjcmRlWWcy c3JPU3VzUU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZWVl MA0GCSqGSIb3DQEBCwUAA4IBAQAZ3sSqkW2Zad1bWt3sAIDUI4aztSsAl1hJ29Em qS5q3qSGaJj+WPwsYM+PSHIPXAOpxKcJVdRN5ok2dYwAKT9G6vp6cUjoVfu+IXBM 7dTGdJdtLIo11LFS8v4guGzGv8XtISy47iz3P8Gbb4JrZabgCrPsxtcJnjpRdZWt +GwU5MaKvdXllVl9lWCtxLiaoJOPhsTvTAYy4P3VEjzKVhIu17mO+IyByjT4i8kk vFF+FWml5a1V1MNy8h6xLAxapgNMne7alQ4X8xTbWQ9MPoDNS1PIVBUCQYaJlwHA Oj9oaKkAqa6lOAhMVcvnkjPzUvHsuczDZJy8oLxc3lwmVyUw -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:50 2024 by rpki-client on console-ams.rpki-client.org