$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/sw5GiX8dYNGKQw04li2dTT8JC-o.roa File: sw5GiX8dYNGKQw04li2dTT8JC-o.roa (raw, json) Hash identifier: RrcVZ0TzBDWVcMbufKiPR6KdrJvaass26wPWlFE8fP0= Subject key identifier: B3:0E:46:89:7F:1D:60:D1:8A:43:0D:38:96:2D:9D:4D:3F:09:0B:EA Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Certificate serial: 0C43 Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/sw5GiX8dYNGKQw04li2dTT8JC-o.roa Signing time: Mon 26 Aug 2024 05:09:42 +0000 ROA not before: Mon 26 Aug 2024 05:09:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9264 IP address blocks: 202.169.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 09:49:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3139 (0xc43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Validity Not Before: Aug 26 05:09:42 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B30E46897F1D60D18A430D38962D9D4D3F090BEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:df:c1:d0:26:05:9b:08:e5:e6:04:7c:6f:7c: 9d:a3:80:2f:48:10:ca:ac:24:e3:2f:db:d7:d5:a7: 07:e2:49:60:06:90:a6:32:fe:d2:e8:63:c3:79:13: 07:ad:da:1d:94:7a:17:52:28:e3:56:90:d8:8d:36: f7:28:87:5a:da:72:7d:46:09:c6:6d:9e:67:84:6b: 33:3e:b9:d7:d8:52:f9:8d:19:6b:cf:66:cd:72:b7: 91:a0:e5:7f:78:3b:2c:5d:f6:aa:b3:6f:93:6d:21: da:68:51:e0:2f:b5:a3:76:95:8c:30:38:19:ab:84: 00:51:b4:35:34:ef:80:02:57:1c:a0:da:81:9e:e5: 81:cf:7b:6a:5a:83:2d:16:13:34:8b:4c:d0:50:a4: aa:fe:a2:76:35:16:e4:f0:99:42:31:f1:8e:ad:95: e4:ad:16:8d:fe:ab:2a:94:33:75:d4:fe:c6:e7:5c: 8b:cf:58:86:68:5b:a1:0f:69:12:90:fd:23:1a:dc: 6e:b6:14:7a:e1:2d:6a:ef:16:8e:2a:25:5d:eb:55: 58:94:de:a3:ac:b8:64:39:f8:6b:a1:04:d0:4e:f6: 5f:fb:d8:10:89:5f:55:d2:15:ee:c5:f4:ad:6a:bf: 28:13:26:e8:09:32:0a:e6:ea:ba:f1:6b:0e:42:27: 34:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:0E:46:89:7F:1D:60:D1:8A:43:0D:38:96:2D:9D:4D:3F:09:0B:EA X509v3 Authority Key Identifier: keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/sw5GiX8dYNGKQw04li2dTT8JC-o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.169.160.0/20 Signature Algorithm: sha256WithRSAEncryption 8c:7a:88:9f:f5:c3:ba:ba:96:53:49:53:9d:3c:05:f3:04:f8: b7:31:4c:58:8d:69:72:3f:5d:83:3e:9b:40:84:e6:c6:69:57: 37:9f:da:60:52:9e:4c:bc:c5:46:d8:94:a7:b5:3a:59:3e:92: 6e:82:a0:3d:74:00:68:ef:d9:d4:b1:49:66:fe:f3:fb:b7:4c: cd:b0:f6:a4:3f:c2:48:c3:13:8f:4e:2d:30:ec:6d:39:d1:d3: dd:6f:39:0f:62:17:61:0e:41:c2:e7:81:07:be:8a:c7:85:81: c7:d7:dd:2a:9f:03:69:67:56:fe:4b:10:95:ee:bf:42:bb:1e: 41:af:06:12:ca:83:90:db:aa:6f:5a:9c:d3:a8:93:ac:af:40: 03:5d:a0:ba:a2:5b:e0:60:0d:e7:ff:f1:3c:8a:cd:e0:80:ea: 4c:1b:02:62:cf:50:1d:32:02:c3:08:ec:5c:fa:69:55:1c:a5: b0:89:e7:77:ac:5c:d4:2c:ff:0b:b0:9d:34:8a:5c:4f:89:a8: 42:7e:82:e9:bd:ae:7e:8d:70:a2:c6:c3:1e:d6:46:af:b8:ac: 5f:03:c4:c7:4b:cb:97:ff:e4:18:dd:20:48:39:2e:71:72:f0: fa:93:79:4a:f4:14:56:64:aa:81:b9:a9:ef:bc:7a:13:72:6f: 23:c6:d9:c2 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDEMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5 ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yNDA4MjYw NTA5NDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIzMEU0Njg5N0YxRDYw RDE4QTQzMEQzODk2MkQ5RDREM0YwOTBCRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT38HQJgWbCOXmBHxvfJ2jgC9IEMqsJOMv29fVpwfiSWAGkKYy /tLoY8N5Ewet2h2UehdSKONWkNiNNvcoh1racn1GCcZtnmeEazM+udfYUvmNGWvP Zs1yt5Gg5X94Oyxd9qqzb5NtIdpoUeAvtaN2lYwwOBmrhABRtDU074ACVxyg2oGe 5YHPe2pagy0WEzSLTNBQpKr+onY1FuTwmUIx8Y6tleStFo3+qyqUM3XU/sbnXIvP WIZoW6EPaRKQ/SMa3G62FHrhLWrvFo4qJV3rVViU3qOsuGQ5+GuhBNBO9l/72BCJ X1XSFe7F9K1qvygTJugJMgrm6rrxaw5CJzSpAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUsw5GiX8dYNGKQw04li2dTT8JC+owHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC9zdzVHaVg4ZFlOR0tRdzA0bGky ZFRUOEpDLW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEyqmg MA0GCSqGSIb3DQEBCwUAA4IBAQCMeoif9cO6upZTSVOdPAXzBPi3MUxYjWlyP12D PptAhObGaVc3n9pgUp5MvMVG2JSntTpZPpJugqA9dABo79nUsUlm/vP7t0zNsPak P8JIwxOPTi0w7G050dPdbzkPYhdhDkHC54EHvorHhYHH190qnwNpZ1b+SxCV7r9C ux5BrwYSyoOQ26pvWpzTqJOsr0ADXaC6olvgYA3n//E8is3ggOpMGwJiz1AdMgLD COxc+mlVHKWwied3rFzULP8LsJ00ilxPiahCfoLpva5+jXCixsMe1kavuKxfA8TH S8uX/+QY3SBIOS5xcvD6k3lK9BRWZKqBuanvvHoTcm8jxtnC -----END CERTIFICATE-----Generated at Sat Sep 21 07:22:01 2024 by rpki-client on console-ams.rpki-client.org