$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/lbIDhE1ikIrLrDa2wOJOecWylYM.roa File: lbIDhE1ikIrLrDa2wOJOecWylYM.roa (raw, json) Hash identifier: YCji7XzRu7ng8Kjv/NtMa1ltI8MI+TNOVgo4qvwKj8k= Subject key identifier: 95:B2:03:84:4D:62:90:8A:CB:AC:36:B6:C0:E2:4E:79:C5:B2:95:83 Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0C7C Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/lbIDhE1ikIrLrDa2wOJOecWylYM.roa Signing time: Mon 26 Aug 2024 04:56:20 +0000 ROA not before: Mon 26 Aug 2024 04:56:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131149 IP address blocks: 202.12.76.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3196 (0xc7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Aug 26 04:56:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=95B203844D62908ACBAC36B6C0E24E79C5B29583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:99:30:ca:09:ce:dc:44:d8:d2:35:59:63:17: 8c:8a:7b:00:c3:51:c6:6e:64:34:cb:3d:20:06:dc: e7:6a:bc:99:a6:ab:bd:88:95:07:8d:40:21:7c:bc: 70:14:71:b3:99:0e:8a:54:40:e2:15:e3:23:08:34: 4a:55:1a:fb:ba:b5:0f:03:9b:57:75:d7:e7:f0:38: 88:ec:79:2b:f1:82:84:c9:ad:b8:07:d2:cd:15:8d: 43:27:ea:e7:17:f3:f5:f2:87:1d:45:02:7c:09:03: 7f:90:9b:75:68:d8:13:12:7f:62:01:8d:26:89:6e: 69:4b:d7:df:4b:fe:4e:31:7d:7e:d9:5a:f9:32:83: df:85:55:0a:a0:5f:f9:52:08:30:66:63:c5:0b:8c: 22:aa:77:ea:3e:da:27:07:a1:c4:2a:56:7c:08:63: a1:ae:9b:c6:ed:88:84:ea:9a:bd:c9:e7:d8:1a:02: af:50:8e:7b:51:af:bd:fd:f3:fd:5c:c5:55:04:52: d2:0e:b6:17:6f:cc:84:48:73:bd:d0:98:90:a0:86: e2:82:f0:56:84:e1:7d:1e:1b:f7:ff:3b:4e:cd:31: 3b:f4:54:5c:f8:04:60:cd:87:7f:0b:87:78:ed:ca: 97:7b:8e:7b:21:9a:d5:a1:4c:0f:cc:b7:ea:9c:f4: 1a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:B2:03:84:4D:62:90:8A:CB:AC:36:B6:C0:E2:4E:79:C5:B2:95:83 X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/lbIDhE1ikIrLrDa2wOJOecWylYM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.12.76.0/22 Signature Algorithm: sha256WithRSAEncryption 37:f3:2b:7d:90:54:6e:53:ff:34:44:db:94:1c:9a:51:60:1a: c8:6a:48:3d:c3:79:6a:6f:18:8d:0a:3e:67:69:82:bb:c9:ff: b8:bb:bc:9a:66:f4:f8:46:96:f9:b0:ec:05:d3:e1:03:21:bf: 9d:f4:98:7b:98:5f:96:43:3e:a1:3c:f2:30:1b:d9:c8:c2:2a: a0:54:ea:b9:94:05:b3:35:99:a8:4c:a4:2d:9f:4d:20:49:e4: 08:8e:36:ef:1e:bf:14:07:a5:81:41:dd:b2:0c:a1:c4:10:87: 32:79:35:dd:36:ff:6b:f6:0b:27:6b:71:6e:88:31:0a:97:60: 6b:61:96:2f:2a:72:70:08:bb:2b:6e:9c:96:fc:46:f1:99:a6: 3d:1f:64:4e:b1:a0:1c:16:ee:70:72:92:ee:fa:7b:70:6c:75: 5b:1c:50:cf:b6:eb:dd:a3:1f:34:79:48:07:36:0c:f9:8e:db: cb:ca:32:b4:c1:c2:05:c1:74:5a:7b:b6:29:63:1f:6c:f2:3c: 2e:70:65:b0:08:c3:d4:15:86:9d:17:47:16:9e:d8:e2:a2:66: a1:6f:14:0d:bd:74:44:e8:7a:ce:e9:9a:eb:04:ca:78:69:44: 8b:0d:48:ff:84:6a:13:73:d1:a3:b9:e0:90:c7:be:92:c7:3e: 35:24:13:31 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDHwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNDA4MjYw NDU2MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk1QjIwMzg0NEQ2Mjkw OEFDQkFDMzZCNkMwRTI0RTc5QzVCMjk1ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhmTDKCc7cRNjSNVljF4yKewDDUcZuZDTLPSAG3OdqvJmmq72I lQeNQCF8vHAUcbOZDopUQOIV4yMINEpVGvu6tQ8Dm1d11+fwOIjseSvxgoTJrbgH 0s0VjUMn6ucX8/Xyhx1FAnwJA3+Qm3Vo2BMSf2IBjSaJbmlL199L/k4xfX7ZWvky g9+FVQqgX/lSCDBmY8ULjCKqd+o+2icHocQqVnwIY6Gum8btiITqmr3J59gaAq9Q jntRr7398/1cxVUEUtIOthdvzIRIc73QmJCghuKC8FaE4X0eG/f/O07NMTv0VFz4 BGDNh38Lh3jtypd7jnshmtWhTA/Mt+qc9Bp/AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUlbIDhE1ikIrLrDa2wOJOecWylYMwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9sYklEaEUxaWtJckxy RGEyd09KT2VjV3lsWU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCygxMMA0GCSqGSIb3DQEBCwUAA4IBAQA38yt9kFRuU/80RNuUHJpRYBrIakg9 w3lqbxiNCj5naYK7yf+4u7yaZvT4Rpb5sOwF0+EDIb+d9Jh7mF+WQz6hPPIwG9nI wiqgVOq5lAWzNZmoTKQtn00gSeQIjjbvHr8UB6WBQd2yDKHEEIcyeTXdNv9r9gsn a3FuiDEKl2BrYZYvKnJwCLsrbpyW/EbxmaY9H2ROsaAcFu5wcpLu+ntwbHVbHFDP tuvdox80eUgHNgz5jtvLyjK0wcIFwXRae7YpYx9s8jwucGWwCMPUFYadF0cWntji omahbxQNvXRE6HrO6ZrrBMp4aUSLDUj/hGoTc9GjueCQx76Sxz41JBMx -----END CERTIFICATE-----Generated at Fri Sep 27 23:52:59 2024 by rpki-client on console-ams.rpki-client.org