$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/2kR6oUlo7pOGfXGt2VIQy-7eSyk.roa File: 2kR6oUlo7pOGfXGt2VIQy-7eSyk.roa (raw, json) Hash identifier: +SRPl665CX+26XuVVs2JvM9QvPrya7a0j5LF6Kaa5jE= Subject key identifier: DA:44:7A:A1:49:68:EE:93:86:7D:71:AD:D9:52:10:CB:EE:DE:4B:29 Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0B6B Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/2kR6oUlo7pOGfXGt2VIQy-7eSyk.roa Signing time: Fri 01 Sep 2023 08:30:30 +0000 ROA not before: Fri 01 Sep 2023 08:30:30 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18046 IP address blocks: 150.129.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 13:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2923 (0xb6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Sep 1 08:30:30 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=DA447AA14968EE93867D71ADD95210CBEEDE4B29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6e:3d:3f:5d:ad:f2:a9:6c:c7:22:f5:c6:6b: a6:b0:a8:91:c3:24:75:e9:e1:e0:7e:d7:ad:65:5f: ed:c4:b6:b8:60:60:93:d4:6c:5e:20:4e:46:35:52: 7d:96:66:dc:83:68:09:e7:0c:b6:13:8f:55:e1:78: e0:90:eb:55:4e:c6:68:ae:73:81:c8:25:81:85:ea: d5:6a:87:4b:f7:52:6e:40:e6:c4:dc:5e:cd:ea:fd: 4e:2b:48:1a:53:2d:7f:8e:24:a7:eb:e1:5b:68:a6: 8c:01:af:99:dd:2b:cd:94:71:43:15:1e:ec:f7:58: 08:27:85:d5:df:28:4a:76:f1:bd:23:72:fa:84:b7: 46:21:c5:f7:65:49:0a:c5:8c:60:bb:95:46:22:c6: 69:31:da:de:27:78:39:0b:56:81:2b:2c:de:fc:28: 34:fd:1d:8d:59:a0:dd:fe:7f:a5:66:a7:f3:2b:7d: 15:03:20:07:a3:30:2c:cc:4c:01:d5:13:87:bc:62: ab:b5:00:d1:7a:8d:63:a6:63:e7:68:b8:56:29:86: 96:fd:0a:fc:64:9e:3b:94:39:04:eb:f5:e5:52:bf: 63:cd:ff:b7:7d:45:b3:12:d6:46:2f:fc:f6:0e:38: d4:45:d2:e6:a0:ab:ab:1e:89:b0:d2:a9:7d:69:cb: 88:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:44:7A:A1:49:68:EE:93:86:7D:71:AD:D9:52:10:CB:EE:DE:4B:29 X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/2kR6oUlo7pOGfXGt2VIQy-7eSyk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.129.36.0/22 Signature Algorithm: sha256WithRSAEncryption 70:b5:b2:85:40:85:a1:e1:4f:5b:55:b0:1f:30:e2:23:84:86: bb:cd:0b:94:7d:0a:ee:b9:c2:54:95:05:d8:f5:7f:3c:84:8c: 09:cc:ef:57:50:65:64:59:90:d7:03:28:3d:51:0e:c9:8c:91: 9a:ac:dd:fd:bb:64:3c:c0:8f:82:35:ef:92:e7:63:ea:56:d2: 1e:17:ec:62:ec:ef:e2:b2:68:be:75:36:9b:f9:6a:04:9d:5d: b5:8c:57:d1:45:8d:57:94:dd:01:c8:68:64:24:4d:91:c9:3f: ea:8e:df:15:75:97:fb:50:db:ef:c2:12:a8:f6:1f:8e:2b:e0: ef:cc:a8:a6:6d:ce:f8:f6:bc:38:d1:f7:16:c5:a3:56:45:e6: 90:29:c4:4e:11:aa:8c:04:2b:d7:6a:53:3f:a5:10:50:8b:c2: de:38:a5:d9:f8:6c:de:06:7b:6e:ca:34:ec:59:31:2c:fc:fb: 7e:56:fa:8f:6d:b6:26:e7:30:f2:c7:fe:5e:8b:cb:d4:b5:c1: 1f:e5:20:77:b3:c7:4f:7d:85:97:a0:ce:33:54:8d:cc:57:0f: 10:8d:7d:c1:e0:c4:17:ee:01:02:a0:fe:c2:32:3a:36:64:b3: 78:50:ad:23:a5:3d:f0:08:ff:ff:b0:e5:df:df:98:c0:bd:79: 07:62:38:bc -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICC2swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yMzA5MDEw ODMwMzBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKERBNDQ3QUExNDk2OEVF OTM4NjdENzFBREQ5NTIxMENCRUVERTRCMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4bj0/Xa3yqWzHIvXGa6awqJHDJHXp4eB+161lX+3EtrhgYJPU bF4gTkY1Un2WZtyDaAnnDLYTj1XheOCQ61VOxmiuc4HIJYGF6tVqh0v3Um5A5sTc Xs3q/U4rSBpTLX+OJKfr4VtopowBr5ndK82UcUMVHuz3WAgnhdXfKEp28b0jcvqE t0YhxfdlSQrFjGC7lUYixmkx2t4neDkLVoErLN78KDT9HY1ZoN3+f6Vmp/MrfRUD IAejMCzMTAHVE4e8Yqu1ANF6jWOmY+douFYphpb9CvxknjuUOQTr9eVSv2PN/7d9 RbMS1kYv/PYOONRF0uagq6seibDSqX1py4grAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU2kR6oUlo7pOGfXGt2VIQy+7eSykwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vMmtSNm9VbG83 cE9HZlhHdDJWSVF5LTdlU3lrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEApaBJDANBgkqhkiG9w0BAQsFAAOCAQEAcLWyhUCFoeFPW1WwHzDiI4SG u80LlH0K7rnCVJUF2PV/PISMCczvV1BlZFmQ1wMoPVEOyYyRmqzd/btkPMCPgjXv kudj6lbSHhfsYuzv4rJovnU2m/lqBJ1dtYxX0UWNV5TdAchoZCRNkck/6o7fFXWX +1Db78ISqPYfjivg78yopm3O+Pa8ONH3FsWjVkXmkCnEThGqjAQr12pTP6UQUIvC 3jil2fhs3gZ7bso07FkxLPz7flb6j222Jucw8sf+XovL1LXBH+Ugd7PHT32Fl6DO M1SNzFcPEI19weDEF+4BAqD+wjI6NmSzeFCtI6U98Aj//7Dl39+YwL15B2I4vA== -----END CERTIFICATE-----Generated at Sun Jun 2 07:14:19 2024 by rpki-client on console-fra.rpki-client.org