$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/T10pnlqKGD-UNC-t1mbcRSCVRgA.roa File: T10pnlqKGD-UNC-t1mbcRSCVRgA.roa (raw, json) Hash identifier: xsXLWhQ1rSEvfkCnGt1N5rGElL7S/pbyTIwInEbuJ7M= Subject key identifier: 4F:5D:29:9E:5A:8A:18:3F:94:34:2F:AD:D6:66:DC:45:20:95:46:00 Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Certificate serial: 0B68 Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/T10pnlqKGD-UNC-t1mbcRSCVRgA.roa Signing time: Fri 24 Nov 2023 08:15:52 +0000 ROA not before: Fri 24 Nov 2023 08:15:52 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18217 IP address blocks: 2001:c08:ffff:ffff:ffff:ffff:fffa:800/119 maxlen: 119 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 00:43:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2920 (0xb68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Validity Not Before: Nov 24 08:15:52 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=4F5D299E5A8A183F94342FADD666DC4520954600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f9:f8:e1:f8:58:0b:2e:06:7c:73:a7:c8:13: 18:25:08:1c:b0:38:c7:72:77:3d:f1:a6:9d:7e:3c: 30:e8:21:c1:c4:cd:4e:1e:a6:01:77:e7:2e:a8:8a: 8e:84:01:2d:66:5b:27:52:8a:53:04:56:1b:ec:27: a1:85:ab:2d:11:8d:de:92:b3:1a:12:74:e0:d3:a4: 96:56:f5:3e:41:95:ec:08:aa:07:81:9c:66:13:1a: a2:e0:8a:ae:d0:8b:1e:47:a3:26:e7:ad:d5:a2:d0: b9:0f:aa:9c:27:d5:cc:8a:ba:a2:e2:22:81:71:78: 6f:d8:b1:96:17:28:0a:1f:28:e6:75:ac:88:ab:80: d3:dc:19:7f:37:a7:45:d0:e5:e5:0d:57:f8:c8:35: 1a:42:00:8a:8d:b3:92:09:4c:37:f7:b9:95:42:86: 54:76:88:80:f7:7c:ef:e6:b1:af:bf:00:97:ca:97: 1f:53:07:1e:2b:67:da:a6:0b:77:68:d1:40:ea:b2: e3:6e:39:26:e8:9c:31:72:3c:b1:c6:1b:c9:a4:3d: dd:e0:c0:f2:7c:f5:ef:b9:21:4d:6d:8e:2f:9c:ed: a8:46:25:32:40:3b:ff:5b:c0:83:d8:c9:57:70:5a: dd:11:a3:9c:59:32:17:08:1c:ed:11:d0:7d:9c:ef: 87:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:5D:29:9E:5A:8A:18:3F:94:34:2F:AD:D6:66:DC:45:20:95:46:00 X509v3 Authority Key Identifier: keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/T10pnlqKGD-UNC-t1mbcRSCVRgA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:c08:ffff:ffff:ffff:ffff:fffa:800/119 Signature Algorithm: sha256WithRSAEncryption 77:17:ba:b7:67:0c:6d:a1:83:8e:5b:86:45:e2:ec:d5:16:b2: 2b:ea:e3:62:4c:cd:8f:32:27:bd:bc:80:ba:29:2f:06:d1:71: 96:9e:94:60:15:6c:b1:b9:91:64:3a:96:34:3a:73:7c:51:87: c0:fe:67:b5:52:70:e2:e2:11:46:73:4e:8b:1d:ff:ca:a3:38: 21:61:8c:6a:c9:f4:d7:9f:97:ac:b0:ef:9e:6c:6c:ce:01:3c: 5f:75:c6:a4:58:14:1f:2e:4d:bf:2a:59:0b:b3:54:55:08:8e: 2a:81:27:b5:f8:bf:a1:30:d3:44:aa:c5:6c:9f:c9:0c:2d:82: a9:c1:bd:5a:91:62:40:44:ca:be:32:e0:43:72:17:23:41:04: 42:c0:e9:fb:be:cc:09:6b:45:1c:53:93:a7:bf:2a:bf:cd:f8: a7:fa:4d:bf:1e:42:9a:1b:de:00:29:8a:1f:ed:e4:8d:62:1f: 00:98:d0:c6:e7:78:20:9c:74:b3:7b:08:64:fa:79:6d:5f:4a: ca:2d:e3:4a:2c:6f:c7:1a:8b:60:ed:7d:e4:de:2b:59:24:70: e0:c3:a1:ac:ea:a4:63:47:fe:04:82:c0:13:ea:7a:bc:99:07: b0:e4:3d:ca:a3:96:e7:75:d1:8c:c8:a6:d7:e5:ed:6c:30:9b: f7:58:fd:b1 -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgICC2gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5 ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yMzExMjQw ODE1NTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDRGNUQyOTlFNUE4QTE4 M0Y5NDM0MkZBREQ2NjZEQzQ1MjA5NTQ2MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDm+fjh+FgLLgZ8c6fIExglCBywOMdydz3xpp1+PDDoIcHEzU4e pgF35y6oio6EAS1mWydSilMEVhvsJ6GFqy0Rjd6SsxoSdODTpJZW9T5BlewIqgeB nGYTGqLgiq7Qix5HoybnrdWi0LkPqpwn1cyKuqLiIoFxeG/YsZYXKAofKOZ1rIir gNPcGX83p0XQ5eUNV/jINRpCAIqNs5IJTDf3uZVChlR2iID3fO/msa+/AJfKlx9T Bx4rZ9qmC3do0UDqsuNuOSbonDFyPLHGG8mkPd3gwPJ89e+5IU1tji+c7ahGJTJA O/9bwIPYyVdwWt0Ro5xZMhcIHO0R0H2c74dBAgMBAAGjggH4MIIB9DAdBgNVHQ4E FgQUT10pnlqKGD+UNC+t1mbcRSCVRgAwHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC9UMTBwbmxxS0dELVVOQy10MW1i Y1JTQ1ZSZ0Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAxABIAEM CP////////////oIMA0GCSqGSIb3DQEBCwUAA4IBAQB3F7q3ZwxtoYOOW4ZF4uzV FrIr6uNiTM2PMie9vIC6KS8G0XGWnpRgFWyxuZFkOpY0OnN8UYfA/me1UnDi4hFG c06LHf/KozghYYxqyfTXn5essO+ebGzOATxfdcakWBQfLk2/KlkLs1RVCI4qgSe1 +L+hMNNEqsVsn8kMLYKpwb1akWJARMq+MuBDchcjQQRCwOn7vswJa0UcU5Onvyq/ zfin+k2/HkKaG94AKYof7eSNYh8AmNDG53ggnHSzewhk+nltX0rKLeNKLG/HGotg 7X3k3itZJHDgw6Gs6qRjR/4EgsAT6nq8mQew5D3Ko5bnddGMyKbX5e1sMJv3WP2x -----END CERTIFICATE-----Generated at Mon Jun 3 12:43:59 2024 by rpki-client on console-fra.rpki-client.org