$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/_16--vw8gOPMhqefpWH3I8LUrjE.roa File: _16--vw8gOPMhqefpWH3I8LUrjE.roa (raw, json) Hash identifier: sgUPUxBpqYQXojawfEfGy9EgQz/XjuOiWVWgWjmJOiA= Subject key identifier: FF:5E:BE:FA:FC:3C:80:E3:CC:86:A7:9F:A5:61:F7:23:C2:D4:AE:31 Certificate issuer: /CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C Certificate serial: 0AF2 Authority key identifier: 8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/_16--vw8gOPMhqefpWH3I8LUrjE.roa Signing time: Fri 01 Sep 2023 08:25:07 +0000 ROA not before: Fri 01 Sep 2023 08:25:07 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131618 IP address blocks: 103.103.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 May 2024 19:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2802 (0xaf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C Validity Not Before: Sep 1 08:25:07 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=FF5EBEFAFC3C80E3CC86A79FA561F723C2D4AE31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:69:a0:51:80:3b:35:e6:7b:4f:5c:bd:eb:b9: 17:ef:5e:29:66:7e:11:1f:c1:6d:11:c6:dd:db:33: 58:70:cc:85:1b:32:dd:4b:4a:13:b7:79:29:25:40: 98:b1:8b:17:83:ae:34:0c:34:ae:cb:8f:02:b2:57: 8e:87:09:8b:3e:ec:88:ac:7f:14:5b:77:71:ec:f1: 54:08:54:16:b9:f7:6d:fd:63:6f:03:23:61:84:65: 1c:4d:3c:b0:34:c9:b8:a6:b0:44:5a:2e:74:41:13: 4f:bd:b4:8a:e9:44:b5:ee:e7:40:ef:16:b3:41:9c: 7a:62:45:64:e5:7b:bf:ac:b6:95:9d:32:48:ea:82: aa:fd:dd:11:3a:75:af:fd:29:a2:b5:0d:76:af:be: 75:90:33:cc:55:99:03:cc:cf:4b:0b:92:89:cf:0b: cf:2b:70:3a:67:d1:b1:ad:84:b6:1d:49:20:ee:b8: 76:8d:fb:a2:cc:06:3f:6d:e7:a0:db:fb:a7:3b:8d: a7:c9:72:5c:7e:4b:06:3c:7a:03:82:53:5d:8f:cc: fe:24:29:34:64:57:d9:9d:ae:fd:ae:36:28:d1:e4: 0d:c8:c2:87:d4:12:32:c6:99:1b:6e:f6:5a:69:63: 88:12:0f:d1:6c:30:27:a6:a5:7a:f2:a2:85:75:7f: 2a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:5E:BE:FA:FC:3C:80:E3:CC:86:A7:9F:A5:61:F7:23:C2:D4:AE:31 X509v3 Authority Key Identifier: keyid:8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/_16--vw8gOPMhqefpWH3I8LUrjE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.103.80.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:b7:16:73:f9:f7:bf:99:79:dc:43:49:f4:b7:dc:a4:c1:3e: d2:82:7c:6a:34:ef:50:3d:25:52:b3:26:b6:29:a7:94:2e:b5: c0:02:66:41:52:8e:93:45:10:9d:7b:d8:06:86:6a:75:61:96: ad:a1:dd:60:2c:d3:74:7f:ac:21:42:51:c2:3c:3a:64:e5:a0: 73:8d:1f:f9:4a:7d:7f:ce:c1:98:38:cd:d0:06:8f:45:1a:9e: 5d:7d:15:53:dc:d9:40:98:ef:9d:50:7a:03:7a:19:6a:dd:1f: 7f:52:c3:1a:51:c7:a5:1b:ae:b6:80:d2:81:47:36:09:e9:08: 6f:1c:61:7e:22:17:54:d1:3a:ce:7a:e5:d4:d0:55:aa:1d:b9: 97:bb:a4:11:54:85:41:ff:c2:a8:01:f8:02:8b:44:ab:87:88: 16:48:2a:35:c4:5f:e3:49:ed:24:de:15:99:e1:1d:0c:a6:dc: 5c:94:49:85:93:c8:80:25:f2:7a:1c:e4:25:a3:9c:53:60:d5: b9:75:0b:48:56:eb:45:cb:bc:51:66:c4:7e:38:4c:db:fd:c7: 20:f1:1a:86:6f:47:1a:ae:16:c9:fe:06:ae:8a:37:0a:67:00: 36:ff:a4:e8:0c:76:e0:09:15:ff:37:92:27:f0:58:6b:c4:89: cf:58:17:d7 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICCvIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEJE NjQ1Mjc4RkM0QTJBMjAwQkNEODA3MkYzQjNEQzc5MzEyNTM2QzAeFw0yMzA5MDEw ODI1MDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZGNUVCRUZBRkMzQzgw RTNDQzg2QTc5RkE1NjFGNzIzQzJENEFFMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUaaBRgDs15ntPXL3ruRfvXilmfhEfwW0Rxt3bM1hwzIUbMt1L ShO3eSklQJixixeDrjQMNK7LjwKyV46HCYs+7IisfxRbd3Hs8VQIVBa59239Y28D I2GEZRxNPLA0ybimsERaLnRBE0+9tIrpRLXu50DvFrNBnHpiRWTle7+stpWdMkjq gqr93RE6da/9KaK1DXavvnWQM8xVmQPMz0sLkonPC88rcDpn0bGthLYdSSDuuHaN +6LMBj9t56Db+6c7jafJclx+SwY8egOCU12PzP4kKTRkV9mdrv2uNijR5A3IwofU EjLGmRtu9lppY4gSD9FsMCempXryooV1fyq9AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU/16++vw8gOPMhqefpWH3I8LUrjEwHwYDVR0jBBgwFoAUi9ZFJ4/EoqIAvNgH Lzs9x5MSU2wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FSTC1O RVQvaTlaRko0X0VvcUlBdk5nSEx6czl4NU1TVTJ3LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9pOVpGSjRfRW9xSUF2TmdITHpzOXg1TVNVMncuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DQVJMLU5FVC9fMTYtLXZ3OGdPUE1o cWVmcFdIM0k4TFVyakUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ2dQMA0GCSqGSIb3DQEBCwUAA4IBAQBrtxZz+fe/mXncQ0n0t9ykwT7Sgnxq NO9QPSVSsya2KaeULrXAAmZBUo6TRRCde9gGhmp1YZatod1gLNN0f6whQlHCPDpk 5aBzjR/5Sn1/zsGYOM3QBo9FGp5dfRVT3NlAmO+dUHoDehlq3R9/UsMaUcelG662 gNKBRzYJ6QhvHGF+IhdU0TrOeuXU0FWqHbmXu6QRVIVB/8KoAfgCi0Srh4gWSCo1 xF/jSe0k3hWZ4R0MptxclEmFk8iAJfJ6HOQlo5xTYNW5dQtIVutFy7xRZsR+OEzb /ccg8RqGb0carhbJ/gauijcKZwA2/6ToDHbgCRX/N5In8FhrxInPWBfX -----END CERTIFICATE-----Generated at Thu May 16 21:48:59 2024 by rpki-client on console-ams.rpki-client.org