$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/ocjVCSErUCeoalXg73DrksxBbj4.roa File: ocjVCSErUCeoalXg73DrksxBbj4.roa (raw, json) Hash identifier: uOeD4iDOgM2cLASBTKuMxnD689BmSvzcz8ArkK/7iHo= Subject key identifier: A1:C8:D5:09:21:2B:50:27:A8:6A:55:E0:EF:70:EB:92:CC:41:6E:3E Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0B6A Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/ocjVCSErUCeoalXg73DrksxBbj4.roa Signing time: Fri 01 Sep 2023 08:30:29 +0000 ROA not before: Fri 01 Sep 2023 08:30:29 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18046 IP address blocks: 101.0.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 13:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2922 (0xb6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Sep 1 08:30:29 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A1C8D509212B5027A86A55E0EF70EB92CC416E3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:05:de:d5:e6:95:c9:88:60:ce:65:40:bf:83: cf:34:59:af:e9:bc:0c:f7:fb:52:3e:b5:dc:3f:d4: 5f:2c:0c:7a:ef:14:3a:8c:aa:f8:35:90:84:75:c2: 32:22:77:a6:49:e0:0b:60:d3:27:91:4b:57:57:d1: 42:fa:72:f0:e2:bc:ae:97:d6:16:98:2c:65:3d:71: 85:57:a1:31:4c:1f:dc:62:49:e3:6e:ed:f1:8e:9d: 11:71:2e:40:84:95:a9:5f:78:d9:11:38:67:75:1a: d3:4d:11:af:9e:6e:85:a3:48:34:ca:8a:67:72:69: 5f:2b:61:81:ad:94:87:04:df:b6:29:2e:33:4f:c1: 42:94:b9:0d:e4:7c:14:76:a2:f9:58:5f:d3:8c:9e: bb:3a:91:ec:5f:4c:0c:5c:a2:34:37:6c:df:12:c2: 17:1a:11:99:62:58:fe:44:5e:78:05:57:cf:56:b3: c8:1f:08:33:cc:df:f8:55:05:25:8a:13:e4:b5:7d: 40:00:9c:94:04:ab:ac:ad:fe:dd:d6:68:9d:49:3b: 2c:f6:69:88:f6:53:40:8c:ba:69:be:49:ff:50:71: 6f:39:b8:ba:58:e5:59:b1:0e:f4:54:b5:f7:2f:20: c1:74:10:5f:48:5d:2c:6b:f8:15:86:d1:7a:bb:32: 7f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:C8:D5:09:21:2B:50:27:A8:6A:55:E0:EF:70:EB:92:CC:41:6E:3E X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/ocjVCSErUCeoalXg73DrksxBbj4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.0.224.0/21 Signature Algorithm: sha256WithRSAEncryption 67:01:ce:79:24:6c:1c:fd:96:86:33:2b:b5:0a:83:33:b9:e8: 3d:ba:bd:f3:69:35:d4:9b:ed:47:af:28:1e:b6:b3:14:65:3c: de:fe:e8:22:11:fa:5a:3a:7b:aa:3b:f8:db:59:dc:0e:38:31: b1:7c:e1:29:14:8d:d8:14:0e:e1:ec:39:09:ac:de:80:57:a7: 80:ae:37:01:ed:1f:1b:1e:24:44:3f:a3:b9:72:8b:ee:a9:5a: bc:3b:29:aa:d8:1e:b4:d3:98:c8:b8:fc:f5:d1:d0:62:53:b7: 3b:53:27:18:80:6c:1f:fd:76:73:5c:ea:4e:bd:b4:9c:c3:5d: f6:da:05:c8:21:ad:8b:11:40:10:44:58:4b:f2:c6:a4:f0:c5: a8:17:08:8c:64:0b:65:7c:4c:a9:7c:03:3e:bb:e0:e8:00:e9: f0:82:18:dd:1d:c7:3d:28:73:b8:4a:c5:84:0f:b4:ed:b4:90: 07:6a:c0:c5:be:71:7f:c9:ac:d1:89:97:e6:a6:d9:a5:bf:c8: a9:ae:1e:3a:d4:04:76:e8:c6:7b:5e:2d:43:79:97:d9:1b:39: eb:82:68:3b:80:6a:16:f1:53:90:f7:bd:43:b6:2a:de:26:4e: bc:6a:55:a5:4f:fb:3b:5c:c6:9b:7b:77:ec:16:8e:b6:41:30: 7e:6f:7e:8f -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICC2owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yMzA5MDEw ODMwMjlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEExQzhENTA5MjEyQjUw MjdBODZBNTVFMEVGNzBFQjkyQ0M0MTZFM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdBd7V5pXJiGDOZUC/g880Wa/pvAz3+1I+tdw/1F8sDHrvFDqM qvg1kIR1wjIid6ZJ4Atg0yeRS1dX0UL6cvDivK6X1haYLGU9cYVXoTFMH9xiSeNu 7fGOnRFxLkCElalfeNkROGd1GtNNEa+eboWjSDTKimdyaV8rYYGtlIcE37YpLjNP wUKUuQ3kfBR2ovlYX9OMnrs6kexfTAxcojQ3bN8SwhcaEZliWP5EXngFV89Ws8gf CDPM3/hVBSWKE+S1fUAAnJQEq6yt/t3WaJ1JOyz2aYj2U0CMumm+Sf9QcW85uLpY 5VmxDvRUtfcvIMF0EF9IXSxr+BWG0Xq7Mn8/AgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUocjVCSErUCeoalXg73DrksxBbj4wHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vb2NqVkNTRXJV Q2VvYWxYZzczRHJrc3hCYmo0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA2UA4DANBgkqhkiG9w0BAQsFAAOCAQEAZwHOeSRsHP2WhjMrtQqDM7no Pbq982k11JvtR68oHrazFGU83v7oIhH6Wjp7qjv421ncDjgxsXzhKRSN2BQO4ew5 CazegFengK43Ae0fGx4kRD+juXKL7qlavDspqtgetNOYyLj89dHQYlO3O1MnGIBs H/12c1zqTr20nMNd9toFyCGtixFAEERYS/LGpPDFqBcIjGQLZXxMqXwDPrvg6ADp 8IIY3R3HPShzuErFhA+07bSQB2rAxb5xf8ms0YmX5qbZpb/Iqa4eOtQEdujGe14t Q3mX2Rs564JoO4BqFvFTkPe9Q7Yq3iZOvGpVpU/7O1zGm3t37BaOtkEwfm9+jw== -----END CERTIFICATE-----Generated at Sun Jun 2 07:14:19 2024 by rpki-client on console-fra.rpki-client.org