$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Ye1JRRrrcMGd0uYAhE-A9et-zAs.roa File: Ye1JRRrrcMGd0uYAhE-A9et-zAs.roa (raw, json) Hash identifier: t7Y22yrovi7pEgF+pA4wnsdF5XhlcUjZ3DReGBF7/Gg= Subject key identifier: 61:ED:49:45:1A:EB:70:C1:9D:D2:E6:00:84:4F:80:F5:EB:7E:CC:0B Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 11CF Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Ye1JRRrrcMGd0uYAhE-A9et-zAs.roa Signing time: Wed 27 Dec 2023 02:30:58 +0000 ROA not before: Wed 27 Dec 2023 02:30:58 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131644 IP address blocks: 119.75.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 12:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4559 (0x11cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Dec 27 02:30:58 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=61ED49451AEB70C19DD2E600844F80F5EB7ECC0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:39:e5:58:43:42:8e:cb:ee:d5:35:ce:5e:4d: c7:1f:ce:08:b3:8f:9d:ed:8b:70:a6:be:d4:fd:0b: 84:71:38:d9:32:68:c5:59:5b:8c:82:2f:98:6f:f9: 72:3a:3f:85:61:c0:1a:2d:f1:7a:40:a3:b7:6d:9f: 64:cd:b6:57:d9:7b:5e:49:b0:08:03:d7:1c:b8:f0: 64:48:09:2b:da:17:b5:e9:78:6b:38:9b:26:5a:c2: e1:5a:0d:ba:fc:c1:cd:56:31:01:80:84:08:a6:a5: fe:57:50:b9:ec:0f:2b:93:4a:e1:a3:19:5b:aa:b9: bc:7d:2a:2e:79:61:8c:19:86:12:6c:a7:12:26:0a: 31:66:50:e4:02:5c:72:c9:98:88:28:dd:ca:98:a4: c4:34:c8:c9:48:c8:12:22:cc:13:da:fb:a2:84:26: c4:a2:7a:6c:5b:48:c5:83:d7:13:8f:e7:21:a9:63: 29:e8:d0:65:b3:5e:14:e9:32:c7:3f:f3:5e:d5:70: 72:b8:18:9c:dc:d1:fc:31:e0:06:86:93:3d:ac:aa: a6:ad:2a:43:f1:6a:ae:47:45:f3:a7:b8:3d:eb:83: b2:8d:bf:a1:b1:cf:cb:48:0d:d0:e5:ee:95:b8:d3: 5c:89:8e:23:15:1f:0d:6c:c5:81:91:d6:b4:d8:d1: 56:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:ED:49:45:1A:EB:70:C1:9D:D2:E6:00:84:4F:80:F5:EB:7E:CC:0B X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Ye1JRRrrcMGd0uYAhE-A9et-zAs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.75.240.0/22 Signature Algorithm: sha256WithRSAEncryption 92:ee:8a:24:57:d9:f2:68:44:39:77:a8:0e:cf:7d:1e:dc:46: 34:8b:38:8e:2b:d1:55:df:6c:cf:80:6e:99:9e:c4:0e:a3:fe: 4e:2e:93:64:58:ea:4b:75:64:a9:b0:74:6e:a5:d9:ae:81:23: 26:10:1d:98:bf:92:6e:2d:58:bc:fd:03:5a:1a:5c:71:33:a9: 2e:49:a6:0c:37:5e:bb:2c:75:78:54:be:55:52:f0:c0:55:66: 2e:3a:79:28:6b:40:59:a2:a2:8c:01:3f:f9:a3:8a:f7:68:ea: c9:a1:8c:ec:c4:44:23:c7:d8:09:1d:06:ce:cf:e1:eb:2e:6f: 0d:90:b6:63:8d:1f:35:9e:b5:6c:c2:5a:e7:8f:a0:f4:8b:a5: 47:0b:a2:9c:0d:db:c9:5d:05:1d:f3:c4:10:42:88:ee:fb:7d: 6b:c6:40:b1:6c:43:4a:f8:4c:b4:2e:e5:30:77:3a:d8:51:d3: 84:f9:82:54:65:16:87:63:18:ec:1a:d8:59:c3:20:8b:68:37: 8b:ba:6d:24:5f:9c:50:9a:ed:fb:9a:ba:2d:8a:f0:4f:b9:b9: 9a:e8:00:5b:88:35:5d:89:80:2e:06:f9:29:55:f2:40:6b:af: cc:b7:01:aa:a8:56:8b:53:a9:90:47:bf:90:2e:13:71:e6:ab: ba:9d:9e:17 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEc8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMzEyMjcw MjMwNThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDYxRUQ0OTQ1MUFFQjcw QzE5REQyRTYwMDg0NEY4MEY1RUI3RUNDMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvOeVYQ0KOy+7VNc5eTccfzgizj53ti3CmvtT9C4RxONkyaMVZ W4yCL5hv+XI6P4VhwBot8XpAo7dtn2TNtlfZe15JsAgD1xy48GRICSvaF7XpeGs4 myZawuFaDbr8wc1WMQGAhAimpf5XULnsDyuTSuGjGVuqubx9Ki55YYwZhhJspxIm CjFmUOQCXHLJmIgo3cqYpMQ0yMlIyBIizBPa+6KEJsSiemxbSMWD1xOP5yGpYyno 0GWzXhTpMsc/817VcHK4GJzc0fwx4AaGkz2sqqatKkPxaq5HRfOnuD3rg7KNv6Gx z8tIDdDl7pW401yJjiMVHw1sxYGR1rTY0VYXAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUYe1JRRrrcMGd0uYAhE+A9et+zAswHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9ZZTFKUlJycmNNR2QwdVlBaEUt QTlldC16QXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCd0vw MA0GCSqGSIb3DQEBCwUAA4IBAQCS7ookV9nyaEQ5d6gOz30e3EY0iziOK9FV32zP gG6ZnsQOo/5OLpNkWOpLdWSpsHRupdmugSMmEB2Yv5JuLVi8/QNaGlxxM6kuSaYM N167LHV4VL5VUvDAVWYuOnkoa0BZoqKMAT/5o4r3aOrJoYzsxEQjx9gJHQbOz+Hr Lm8NkLZjjR81nrVswlrnj6D0i6VHC6KcDdvJXQUd88QQQoju+31rxkCxbENK+Ey0 LuUwdzrYUdOE+YJUZRaHYxjsGthZwyCLaDeLum0kX5xQmu37mrotivBPubma6ABb iDVdiYAuBvkpVfJAa6/MtwGqqFaLU6mQR7+QLhNx5qu6nZ4X -----END CERTIFICATE-----Generated at Sat Jun 1 22:20:26 2024 by rpki-client on console-fra.rpki-client.org