$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/k-JmgVM8MLkXlOwZrmrMZUJ_9x8.roa File: k-JmgVM8MLkXlOwZrmrMZUJ_9x8.roa (raw, json) Hash identifier: XxK1nu0Tt8n3o4Q6VZYZlsvUHVPSp7xCgkDjluIK6XI= Subject key identifier: 93:E2:66:81:53:3C:30:B9:17:94:EC:19:AE:6A:CC:65:42:7F:F7:1F Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA Certificate serial: 0439 Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/k-JmgVM8MLkXlOwZrmrMZUJ_9x8.roa Signing time: Fri 01 Sep 2023 08:03:44 +0000 ROA not before: Fri 01 Sep 2023 08:03:44 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7480 IP address blocks: 103.156.184.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 14:47:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1081 (0x439) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA Validity Not Before: Sep 1 08:03:44 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=93E26681533C30B91794EC19AE6ACC65427FF71F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f5:83:8a:d2:4f:e0:88:64:71:25:db:cc:61: 9d:d8:51:50:08:81:40:52:ba:7d:88:54:5d:f9:80: b6:bf:ca:7a:97:ee:dd:fc:f3:d9:5d:2a:c4:f0:65: 73:7b:6b:49:ce:db:a8:24:6d:9c:4d:63:4f:69:27: 01:cc:d6:19:a6:b3:59:0b:41:12:d2:90:de:54:ac: 43:7e:27:9a:db:a6:ce:e9:40:d5:91:8b:30:0a:8d: d8:ee:8f:6a:30:28:6d:1f:0c:47:4a:f5:61:f2:d2: ce:91:d8:0d:14:3b:33:b9:12:b9:b2:b1:c4:ef:7a: 73:19:22:0a:5a:e4:60:7c:ef:db:d5:07:30:dc:a5: 56:56:8b:2b:ba:f2:51:fa:b6:03:da:dd:0e:7d:81: e0:63:fc:49:f7:26:0e:36:2a:8c:3b:2b:f1:69:81: 32:c7:63:c0:e9:7e:83:aa:f1:35:8e:af:12:8e:4f: f0:80:12:77:9b:4d:ce:ad:73:26:85:99:f9:33:9e: 56:66:e5:d9:0e:fc:6e:43:11:1a:8f:41:44:9e:e8: 87:64:fe:aa:43:8b:ca:b9:7c:9f:62:cf:d4:88:78: 22:4e:14:77:07:32:48:99:1b:47:59:04:52:b7:0d: 82:e6:59:1d:21:94:c5:aa:54:d5:73:ca:f8:8f:6f: c5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E2:66:81:53:3C:30:B9:17:94:EC:19:AE:6A:CC:65:42:7F:F7:1F X509v3 Authority Key Identifier: keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/k-JmgVM8MLkXlOwZrmrMZUJ_9x8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.156.184.0/23 Signature Algorithm: sha256WithRSAEncryption 67:e4:61:6b:c8:38:1e:98:1c:78:d3:87:19:70:ca:26:ee:02: e1:24:1b:1a:cc:ef:91:3d:18:a8:34:4a:1b:17:2f:10:2d:dd: ce:b8:bb:dc:0d:bc:fa:61:65:10:fe:ee:75:5d:98:0d:dd:e7: 8d:0e:91:fe:ed:db:6e:ae:2b:33:c5:2b:17:7e:ef:f6:10:89: 67:4e:ce:13:a9:5a:ed:4a:b0:7f:0b:90:b3:16:08:80:18:42: ec:e9:04:8b:d8:79:28:ba:bd:c6:b9:bc:37:15:17:7e:9f:43: 69:d6:ea:24:21:d1:d4:16:d9:85:3b:61:ea:25:80:bb:fd:9f: 1a:d1:8c:17:b3:e9:4c:36:ed:a3:85:aa:86:68:a6:26:58:54: 2a:bb:1b:83:66:16:3f:ac:aa:05:ad:9f:fa:a1:52:73:dd:6a: 88:e8:92:fe:26:e3:ad:50:cd:38:37:f6:22:c8:b9:74:40:ce: ec:8b:8f:e2:64:c7:50:07:a1:bb:a8:73:10:d0:13:d6:d2:5f: 97:da:c9:18:42:92:cb:bb:14:c4:fd:6f:3a:46:ad:e7:32:03: 4d:a7:06:49:9d:df:c7:4f:8d:41:33:4f:da:3a:87:0f:9c:b5: eb:e2:c7:f1:9e:f2:77:af:04:14:7d:44:ad:2e:61:f5:5e:24: a4:ff:f4:60 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBDkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yMzA5MDEw ODAzNDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkzRTI2NjgxNTMzQzMw QjkxNzk0RUMxOUFFNkFDQzY1NDI3RkY3MUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC59YOK0k/giGRxJdvMYZ3YUVAIgUBSun2IVF35gLa/ynqX7t38 89ldKsTwZXN7a0nO26gkbZxNY09pJwHM1hmms1kLQRLSkN5UrEN+J5rbps7pQNWR izAKjdjuj2owKG0fDEdK9WHy0s6R2A0UOzO5ErmyscTvenMZIgpa5GB879vVBzDc pVZWiyu68lH6tgPa3Q59geBj/En3Jg42Kow7K/FpgTLHY8DpfoOq8TWOrxKOT/CA EnebTc6tcyaFmfkznlZm5dkO/G5DERqPQUSe6Idk/qpDi8q5fJ9iz9SIeCJOFHcH MkiZG0dZBFK3DYLmWR0hlMWqVNVzyviPb8WrAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUk+JmgVM8MLkXlOwZrmrMZUJ/9x8wHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1Mvay1KbWdWTThNTGtYbE93 WnJtck1aVUpfOXg4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWecuDANBgkqhkiG9w0BAQsFAAOCAQEAZ+Rha8g4HpgceNOHGXDKJu4C4SQbGszv kT0YqDRKGxcvEC3dzri73A28+mFlEP7udV2YDd3njQ6R/u3bbq4rM8UrF37v9hCJ Z07OE6la7UqwfwuQsxYIgBhC7OkEi9h5KLq9xrm8NxUXfp9DadbqJCHR1BbZhTth 6iWAu/2fGtGMF7PpTDbto4WqhmimJlhUKrsbg2YWP6yqBa2f+qFSc91qiOiS/ibj rVDNODf2Isi5dEDO7IuP4mTHUAehu6hzENAT1tJfl9rJGEKSy7sUxP1vOkat5zID TacGSZ3fx0+NQTNP2jqHD5y16+LH8Z7yd68EFH1ErS5h9V4kpP/0YA== -----END CERTIFICATE-----Generated at Sat Apr 27 19:18:05 2024 by rpki-client on console-ams.rpki-client.org