$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CENTROID/ZVVmWWnlzvYDKi5TadGabFENpAk.roa File: ZVVmWWnlzvYDKi5TadGabFENpAk.roa (raw, json) Hash identifier: kl0MAfu0v7XqbLkVq98IHvBQupx7k97GfOgp2lx1Kps= Subject key identifier: 65:55:66:59:69:E5:CE:F6:03:2A:2E:53:69:D1:9A:6C:51:0D:A4:09 Certificate issuer: /CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8 Certificate serial: 0AF1 Authority key identifier: 79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/ZVVmWWnlzvYDKi5TadGabFENpAk.roa Signing time: Fri 01 Sep 2023 08:26:10 +0000 ROA not before: Fri 01 Sep 2023 08:26:10 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 135293 IP address blocks: 103.104.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 23:49:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2801 (0xaf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8 Validity Not Before: Sep 1 08:26:10 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6555665969E5CEF6032A2E5369D19A6C510DA409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:f0:62:74:43:9d:7a:80:3d:23:5d:16:a9:91: ca:02:c7:78:2b:27:55:5c:d7:26:d7:59:13:eb:82: d8:94:27:4e:53:66:e6:e1:82:4d:46:0e:17:b0:4b: 60:e6:bd:32:3d:05:34:2f:aa:79:18:2b:47:36:a5: ed:39:86:78:14:e1:46:28:c8:cc:34:c2:b9:22:77: d1:a9:2f:80:ad:ba:00:46:79:fb:43:d8:93:9d:ad: 79:37:f4:30:4b:77:9a:43:61:23:ef:77:0f:91:d8: 3c:03:d7:f1:66:61:fb:c8:5d:e2:61:99:19:f3:ac: f7:3c:94:e6:01:d3:01:ee:db:6b:c3:6d:1f:1f:0e: 11:4b:b4:a1:2b:cc:a1:49:3a:b8:db:09:86:8d:11: 34:40:64:ba:56:61:fe:2d:c9:66:1f:4b:e2:e1:a7: fc:25:55:36:2a:9e:80:7e:e8:a6:e4:af:ea:1a:8e: bf:69:a4:64:01:da:f3:6e:ba:08:a2:46:cf:46:7c: 15:5b:21:cb:f9:b0:78:62:9e:09:c5:fb:61:98:94: 52:f8:73:4c:85:0e:86:8c:8d:dd:35:36:60:30:e6: 34:89:d6:03:88:e2:30:e8:16:4c:88:8c:c1:17:f5: 95:3e:e6:9a:f1:84:4b:2e:7d:c4:49:9e:aa:b4:fd: 8b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:55:66:59:69:E5:CE:F6:03:2A:2E:53:69:D1:9A:6C:51:0D:A4:09 X509v3 Authority Key Identifier: keyid:79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/ZVVmWWnlzvYDKi5TadGabFENpAk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.104.150.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:58:11:02:14:bc:8d:fd:4a:21:8a:5a:ad:e6:26:60:06:3a: 24:45:e2:c5:c9:5f:1e:06:33:f7:d0:ac:06:55:c0:94:39:74: 08:75:e7:a6:0e:4f:9f:9f:9a:9a:c0:72:7a:e5:31:ad:9d:57: 88:de:d4:e0:cc:59:17:9e:c4:f5:98:e9:70:da:e6:2e:54:7e: 7e:8d:06:18:38:a2:3c:bd:d4:00:76:0d:72:48:bf:38:5d:ca: cb:85:59:e3:5a:86:58:33:8e:99:58:37:64:14:a1:4b:d5:74: 9b:a5:0b:e7:01:4c:f3:0f:e0:d3:78:bc:35:33:ca:64:83:48: 0d:08:6f:1f:b2:d1:9e:fd:e2:77:aa:41:9f:03:12:46:f9:fc: 84:e3:90:dd:8c:7b:05:31:c3:ce:a7:56:aa:2b:23:da:58:a5: 7d:a0:3f:8f:06:94:db:63:5c:db:5d:37:e9:04:4f:ed:36:70: d1:27:e4:96:98:1a:5d:cc:0a:f2:c1:ae:b8:45:c0:0b:b2:93: db:47:75:2a:fd:65:b7:1d:aa:8a:ca:03:88:e9:9c:0f:ef:dc: 03:58:ad:d2:79:e8:dd:da:18:1f:94:0c:64:25:46:33:bd:50: 7c:4a:40:f1:73:18:63:5d:0e:5c:e9:00:40:58:29:cc:eb:2b: e8:45:f8:e8 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICCvEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzk1 QTkxRUQ0MEFBQTE1QjlBQkNBMjFDMjA1QjM2RUM3NDk0OUZDODAeFw0yMzA5MDEw ODI2MTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY1NTU2NjU5NjlFNUNF RjYwMzJBMkU1MzY5RDE5QTZDNTEwREE0MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCX8GJ0Q516gD0jXRapkcoCx3grJ1Vc1ybXWRPrgtiUJ05TZubh gk1GDhewS2DmvTI9BTQvqnkYK0c2pe05hngU4UYoyMw0wrkid9GpL4CtugBGeftD 2JOdrXk39DBLd5pDYSPvdw+R2DwD1/FmYfvIXeJhmRnzrPc8lOYB0wHu22vDbR8f DhFLtKErzKFJOrjbCYaNETRAZLpWYf4tyWYfS+Lhp/wlVTYqnoB+6Kbkr+oajr9p pGQB2vNuugiiRs9GfBVbIcv5sHhingnF+2GYlFL4c0yFDoaMjd01NmAw5jSJ1gOI 4jDoFkyIjMEX9ZU+5prxhEsufcRJnqq0/YuzAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUZVVmWWnlzvYDKi5TadGabFENpAkwHwYDVR0jBBgwFoAUeVqR7UCqoVuavKIc IFs27HSUn8gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0VOVFJP SUQvZVZxUjdVQ3FvVnVhdktJY0lGczI3SFNVbjhnLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9lVnFSN1VDcW9WdWF2S0ljSUZzMjdIU1VuOGcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DRU5UUk9JRC9aVlZtV1dubHp2WURL aTVUYWRHYWJGRU5wQWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ2iWMA0GCSqGSIb3DQEBCwUAA4IBAQANWBECFLyN/Uohilqt5iZgBjokReLF yV8eBjP30KwGVcCUOXQIdeemDk+fn5qawHJ65TGtnVeI3tTgzFkXnsT1mOlw2uYu VH5+jQYYOKI8vdQAdg1ySL84XcrLhVnjWoZYM46ZWDdkFKFL1XSbpQvnAUzzD+DT eLw1M8pkg0gNCG8fstGe/eJ3qkGfAxJG+fyE45DdjHsFMcPOp1aqKyPaWKV9oD+P BpTbY1zbXTfpBE/tNnDRJ+SWmBpdzArywa64RcALspPbR3Uq/WW3HaqKygOI6ZwP 79wDWK3Seejd2hgflAxkJUYzvVB8SkDxcxhjXQ5c6QBAWCnM6yvoRfjo -----END CERTIFICATE-----Generated at Thu May 9 03:44:42 2024 by rpki-client on console-ams.rpki-client.org