$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/acM1OPW7S6QeRgBPsTvzKdJ2aGs.roa File: acM1OPW7S6QeRgBPsTvzKdJ2aGs.roa (raw, json) Hash identifier: lVKj6l4p9b/3RzX1ws5f3nsDW6CbjO53imTjq98e8JY= Subject key identifier: 69:C3:35:38:F5:BB:4B:A4:1E:46:00:4F:B1:3B:F3:29:D2:76:68:6B Certificate issuer: /CN=578183A0FE5DA4A0F3C0546FB6EC26CBD1232F99 Certificate serial: 017F Authority key identifier: 57:81:83:A0:FE:5D:A4:A0:F3:C0:54:6F:B6:EC:26:CB:D1:23:2F:99 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/acM1OPW7S6QeRgBPsTvzKdJ2aGs.roa Signing time: Fri 01 Sep 2023 08:25:45 +0000 ROA not before: Fri 01 Sep 2023 08:25:45 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 63893 IP address blocks: 103.180.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 02:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=578183A0FE5DA4A0F3C0546FB6EC26CBD1232F99 Validity Not Before: Sep 1 08:25:45 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=69C33538F5BB4BA41E46004FB13BF329D276686B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7b:3f:b9:10:b2:a0:1d:1e:e0:e4:4d:03:8e: 58:b0:57:b1:38:c3:e7:ec:19:ed:b6:31:d0:84:1e: 6c:44:02:8a:e0:0f:f8:16:c3:3d:e6:be:f7:19:39: fb:fc:ac:77:5f:aa:1a:d0:37:3a:02:ff:94:9b:1d: df:2f:ab:c0:ea:2e:04:ae:a3:98:5e:b9:3b:0e:eb: 82:a2:1e:8d:62:a7:f8:e7:06:5a:7e:99:32:e6:db: d5:6f:26:07:f0:2a:7a:82:08:9f:65:63:4b:d0:a8: 93:1e:61:2c:fc:7e:39:ac:34:c8:8a:3a:77:a1:bd: 7e:cc:fa:d4:d8:64:56:a1:39:e0:1b:9b:2b:b1:a0: 54:68:cf:16:81:8f:1c:a9:b4:ca:0b:1a:5a:1c:22: 21:27:79:80:8f:78:4a:a1:92:f3:c2:5f:c0:aa:8e: 06:71:77:19:dd:7e:67:95:f6:8a:35:75:0d:6a:77: 15:26:ae:b1:79:90:06:2c:77:93:0b:bf:69:48:fb: e0:2e:b9:98:54:83:72:78:34:6e:e0:30:27:80:d8: a3:17:65:98:41:21:16:68:d7:99:be:0c:1d:1c:05: c0:a1:70:c1:63:63:e2:87:d7:4b:b4:4f:b6:0d:23: 7d:99:9f:29:be:33:6f:cc:f4:e9:6f:6b:af:5c:16: e9:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:C3:35:38:F5:BB:4B:A4:1E:46:00:4F:B1:3B:F3:29:D2:76:68:6B X509v3 Authority Key Identifier: keyid:57:81:83:A0:FE:5D:A4:A0:F3:C0:54:6F:B6:EC:26:CB:D1:23:2F:99 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/acM1OPW7S6QeRgBPsTvzKdJ2aGs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.180.14.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:8a:32:fd:35:34:68:33:b0:29:58:9e:00:08:f3:52:c5:5a: 11:b2:6c:04:87:19:67:d2:54:f4:eb:a8:97:ea:74:d4:f2:40: e0:98:14:4e:be:be:d7:60:20:be:6d:9b:7d:85:41:0f:1c:2e: 74:ba:95:16:41:31:a8:4d:40:ef:b5:cd:06:ea:40:8b:25:8a: 1c:d4:4a:c9:df:4b:ff:49:be:e7:e9:d1:01:c1:b2:66:59:f4: 58:aa:87:3e:c3:75:b5:fe:7b:db:8b:b3:79:00:6f:29:6f:1d: 76:03:54:dc:77:5b:e0:b7:99:a0:a5:04:37:d2:fa:00:05:a8: 90:1c:f6:0a:6b:d1:36:81:5d:19:bb:95:dc:e3:e1:c1:f2:69: 96:39:a7:d0:24:45:17:4c:66:8e:9c:ea:9f:0a:bc:d4:4b:b0: 18:88:d8:6a:d3:49:af:6d:1d:92:e3:85:b9:9c:8e:7d:eb:54: 00:f6:f6:77:4f:94:e7:8c:d3:86:0d:be:36:c8:34:44:e2:d9: c7:b9:a8:bb:d6:31:74:f1:59:47:a9:8d:af:ea:0c:1c:8b:04: 51:13:2d:96:54:78:fa:46:ce:9c:de:23:cd:a0:98:20:d1:04: 8e:ab:3a:f8:83:df:06:62:2e:16:de:ba:f4:65:64:ea:a0:87: cf:a9:13:05 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTc4 MTgzQTBGRTVEQTRBMEYzQzA1NDZGQjZFQzI2Q0JEMTIzMkY5OTAeFw0yMzA5MDEw ODI1NDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY5QzMzNTM4RjVCQjRC QTQxRTQ2MDA0RkIxM0JGMzI5RDI3NjY4NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBez+5ELKgHR7g5E0DjliwV7E4w+fsGe22MdCEHmxEAorgD/gW wz3mvvcZOfv8rHdfqhrQNzoC/5SbHd8vq8DqLgSuo5heuTsO64KiHo1ip/jnBlp+ mTLm29VvJgfwKnqCCJ9lY0vQqJMeYSz8fjmsNMiKOnehvX7M+tTYZFahOeAbmyux oFRozxaBjxyptMoLGlocIiEneYCPeEqhkvPCX8CqjgZxdxndfmeV9oo1dQ1qdxUm rrF5kAYsd5MLv2lI++AuuZhUg3J4NG7gMCeA2KMXZZhBIRZo15m+DB0cBcChcMFj Y+KH10u0T7YNI32Znym+M2/M9Olva69cFumzAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUacM1OPW7S6QeRgBPsTvzKdJ2aGswHwYDVR0jBBgwFoAUV4GDoP5dpKDzwFRv tuwmy9EjL5kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0NQMTEz ODQ3MC9WNEdEb1A1ZHBLRHp3RlJ2dHV3bXk5RWpMNWsuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1Y0R0RvUDVkcEtEendGUnZ0dXdteTlFakw1ay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NDUDExMzg0NzAvYWNNMU9QVzdT NlFlUmdCUHNUdnpLZEoyYUdzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWe0DjANBgkqhkiG9w0BAQsFAAOCAQEALooy/TU0aDOwKVieAAjzUsVa EbJsBIcZZ9JU9Ouol+p01PJA4JgUTr6+12Agvm2bfYVBDxwudLqVFkExqE1A77XN BupAiyWKHNRKyd9L/0m+5+nRAcGyZln0WKqHPsN1tf5724uzeQBvKW8ddgNU3Hdb 4LeZoKUEN9L6AAWokBz2CmvRNoFdGbuV3OPhwfJpljmn0CRFF0xmjpzqnwq81Euw GIjYatNJr20dkuOFuZyOfetUAPb2d0+U54zThg2+Nsg0ROLZx7mou9YxdPFZR6mN r+oMHIsEURMtllR4+kbOnN4jzaCYINEEjqs6+IPfBmIuFt669GVk6qCHz6kTBQ== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:40 2024 by rpki-client on console-ams.rpki-client.org