$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/XNEiSKJNJEmWDAhH2-VTFObzFdk.roa File: XNEiSKJNJEmWDAhH2-VTFObzFdk.roa (raw, json) Hash identifier: iAzOS+R+N6SIt+Zk8IsbUNTxHPkcnV3p6hjwPDdM21g= Subject key identifier: 5C:D1:22:48:A2:4D:24:49:96:0C:08:47:DB:E5:53:14:E6:F3:15:D9 Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0B70 Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/XNEiSKJNJEmWDAhH2-VTFObzFdk.roa Signing time: Fri 01 Sep 2023 08:30:31 +0000 ROA not before: Fri 01 Sep 2023 08:30:31 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131611 IP address blocks: 121.50.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2928 (0xb70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Sep 1 08:30:31 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5CD12248A24D2449960C0847DBE55314E6F315D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:db:8c:72:27:62:15:ee:b1:a5:ed:ba:ef:43: 46:96:a3:a7:76:a0:f0:b7:26:ab:ed:54:6c:eb:10: 8d:c0:ab:91:16:20:1f:37:6b:93:6d:c8:d8:dd:cf: 8f:5d:c1:bd:ac:d3:9d:95:57:6e:b2:f9:6a:0c:1e: 07:eb:bc:25:8a:5d:6e:7f:e2:fd:36:46:08:cb:b0: e4:ca:19:11:ce:d9:21:75:45:93:7a:9f:e5:c2:5e: d2:ce:1a:89:74:25:d5:a5:ea:69:23:04:33:a8:74: df:be:14:ff:6f:16:0d:25:04:2b:31:ae:53:50:bb: c1:40:3d:5b:8e:88:35:70:fb:2b:e7:78:35:a0:a6: 42:5c:ef:4d:da:78:42:a8:f2:91:f9:3c:ee:f6:cb: 86:04:b7:7b:49:8c:19:6a:f7:3e:70:7f:55:57:72: b3:8e:96:bc:52:f8:37:3f:6b:f8:fd:5f:d2:cf:14: 27:86:66:74:32:a1:fa:e3:18:3d:e4:7a:e6:25:1a: 48:66:be:2d:08:c0:39:5d:f7:e3:41:9e:14:c5:d7: 11:11:9c:ca:51:04:57:bd:1a:25:70:30:2c:f3:b3: f4:da:99:3d:a4:73:3e:58:da:f8:7c:00:58:bb:97: 09:9a:1a:4f:cb:33:f6:39:18:11:15:3f:3d:b5:6f: 3e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D1:22:48:A2:4D:24:49:96:0C:08:47:DB:E5:53:14:E6:F3:15:D9 X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/XNEiSKJNJEmWDAhH2-VTFObzFdk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.50.184.0/22 Signature Algorithm: sha256WithRSAEncryption a3:79:3a:00:82:c7:71:03:3e:0b:09:af:c6:ca:ae:1b:a6:17: 8b:2e:da:d8:04:5c:b3:87:bc:6c:5b:92:12:bf:36:28:67:02: 1b:6a:b7:bc:1e:0a:7a:fe:b6:bb:be:8c:49:28:e2:92:69:66: 20:50:4f:fc:01:ee:eb:48:79:8f:44:63:e3:95:eb:00:54:d6: 91:71:ae:ca:72:42:cf:35:eb:c7:b5:50:5c:d9:e5:bc:c7:ff: b1:07:77:5d:92:59:b7:97:c2:ea:05:61:23:52:51:a0:48:a8: a8:92:b0:4b:c8:6f:80:c5:9c:e3:fe:b0:be:70:4e:de:c4:ce: e5:a3:ac:e9:4d:f0:ba:ed:66:89:76:c1:58:c7:38:04:b0:5d: f2:5e:ca:90:ef:56:62:81:71:c3:eb:3b:eb:81:c4:2f:8f:19: ff:2c:83:36:13:53:f3:a5:e8:2f:91:5e:72:a5:35:14:92:89: 57:42:1d:ee:b2:a7:fa:5d:c6:da:7c:4c:52:5e:99:69:03:af: a9:a8:9c:a5:85:2e:fd:cb:fc:e1:b3:f8:14:7d:6b:85:48:20: ee:93:51:f5:17:c4:8b:d0:82:dc:d1:20:8b:20:e7:a2:e5:45: 23:9f:58:87:22:43:0f:8d:35:e9:28:4a:16:6f:35:e5:e7:57: 21:9e:f5:9c -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICC3AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yMzA5MDEw ODMwMzFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVDRDEyMjQ4QTI0RDI0 NDk5NjBDMDg0N0RCRTU1MzE0RTZGMzE1RDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC524xyJ2IV7rGl7brvQ0aWo6d2oPC3JqvtVGzrEI3Aq5EWIB83 a5NtyNjdz49dwb2s052VV26y+WoMHgfrvCWKXW5/4v02RgjLsOTKGRHO2SF1RZN6 n+XCXtLOGol0JdWl6mkjBDOodN++FP9vFg0lBCsxrlNQu8FAPVuOiDVw+yvneDWg pkJc703aeEKo8pH5PO72y4YEt3tJjBlq9z5wf1VXcrOOlrxS+Dc/a/j9X9LPFCeG ZnQyofrjGD3keuYlGkhmvi0IwDld9+NBnhTF1xERnMpRBFe9GiVwMCzzs/TamT2k cz5Y2vh8AFi7lwmaGk/LM/Y5GBEVPz21bz6DAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUXNEiSKJNJEmWDAhH2+VTFObzFdkwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vWE5FaVNLSk5K RW1XREFoSDItVlRGT2J6RmRrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAnkyuDANBgkqhkiG9w0BAQsFAAOCAQEAo3k6AILHcQM+CwmvxsquG6YX iy7a2ARcs4e8bFuSEr82KGcCG2q3vB4Kev62u76MSSjikmlmIFBP/AHu60h5j0Rj 45XrAFTWkXGuynJCzzXrx7VQXNnlvMf/sQd3XZJZt5fC6gVhI1JRoEioqJKwS8hv gMWc4/6wvnBO3sTO5aOs6U3wuu1miXbBWMc4BLBd8l7KkO9WYoFxw+s764HEL48Z /yyDNhNT86XoL5FecqU1FJKJV0Id7rKn+l3G2nxMUl6ZaQOvqaicpYUu/cv84bP4 FH1rhUgg7pNR9RfEi9CC3NEgiyDnouVFI59YhyJDD4016ShKFm815edXIZ71nA== -----END CERTIFICATE-----Generated at Mon Jun 3 15:52:32 2024 by rpki-client on console-ams.rpki-client.org