$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/wQfd41Yxn35IzWBJJPTVxr7GAVE.roa File: wQfd41Yxn35IzWBJJPTVxr7GAVE.roa (raw, json) Hash identifier: tZk8YpdqLnMYEp9RfCSfWiASXQtj3cLQ8DCUTqkAEiA= Subject key identifier: C1:07:DD:E3:56:31:9F:7E:48:CD:60:49:24:F4:D5:C6:BE:C6:01:51 Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0B73 Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/wQfd41Yxn35IzWBJJPTVxr7GAVE.roa Signing time: Fri 01 Sep 2023 08:30:32 +0000 ROA not before: Fri 01 Sep 2023 08:30:32 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18046 IP address blocks: 101.0.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 13:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2931 (0xb73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Sep 1 08:30:32 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C107DDE356319F7E48CD604924F4D5C6BEC60151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d7:5a:c5:6a:92:10:10:87:86:35:94:6f:21: fa:93:89:f7:dc:92:f9:fc:6d:93:bf:7b:34:c9:e9: be:f1:4e:ed:3f:44:60:47:62:13:d5:39:80:63:3f: 3f:e9:c5:b5:57:cd:08:d0:14:64:0c:d9:b4:df:a0: 05:b0:b0:aa:47:7e:e9:b8:6e:f0:85:8b:c9:44:2c: aa:0d:2e:f4:75:b4:16:cd:c6:f2:8f:a7:ad:dc:a9: 90:75:c8:d3:04:30:d8:04:ca:ea:91:fa:6e:e5:28: 75:34:28:d7:b0:8e:77:54:d9:36:b3:dd:b1:15:7e: 74:88:95:3b:38:3b:30:4e:9e:4d:dc:6a:ef:5a:d7: bf:8a:88:f7:1b:c2:be:f4:9b:c4:55:93:95:13:9c: 1f:09:4d:db:82:71:81:fb:5d:42:c3:28:75:08:ad: 82:c7:99:11:55:06:e0:65:7a:4a:cf:cf:88:47:f3: b9:5f:ab:4d:df:b3:b6:a6:fc:40:b5:e1:11:c8:b6: 12:0f:de:70:53:47:cc:63:b2:ec:cc:1f:fb:bb:ba: 51:f2:31:78:49:51:7b:68:56:7e:21:4f:a4:d5:2f: 79:d4:eb:b0:bf:c1:d2:b2:0c:39:82:db:48:47:73: 4f:cc:e1:58:57:fc:cf:5c:67:36:f8:77:3c:fe:22: bb:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:07:DD:E3:56:31:9F:7E:48:CD:60:49:24:F4:D5:C6:BE:C6:01:51 X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/wQfd41Yxn35IzWBJJPTVxr7GAVE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.0.224.0/19 Signature Algorithm: sha256WithRSAEncryption 12:5d:86:a6:31:f6:ed:f2:23:c5:ca:fe:73:07:b7:eb:a1:7a: 0b:b5:da:90:ca:7a:57:60:00:07:0f:3a:71:c4:d4:f0:aa:bc: 06:8f:57:84:ec:5c:f8:54:89:7a:e0:51:df:16:2f:1c:68:c3: a7:5a:1c:a3:c7:64:95:e4:38:29:83:5d:f0:64:03:eb:bd:97: c3:80:c7:46:9a:58:07:2a:4f:b9:83:91:03:3c:d6:bf:96:6e: 85:fc:c2:8e:40:b8:7c:8a:74:1b:a6:45:1e:c1:73:53:46:9a: df:de:24:e9:db:71:51:48:5d:22:be:e4:f4:d0:5d:02:36:76: 68:b3:a0:ea:15:ef:3b:23:f8:b2:d1:6d:4a:65:0f:2b:f9:08: 75:c0:90:b3:6f:86:8a:61:46:30:4e:3d:cd:4b:93:0a:28:39: b4:88:14:91:68:6b:68:a7:3a:2b:dc:01:9d:63:76:44:3b:93: e0:cf:8f:a9:6e:7f:fc:ca:0f:db:a8:c6:fa:39:26:a1:a3:d5: 7a:a2:22:37:6c:9e:3a:38:d1:a8:ef:1e:94:99:06:57:87:ed: 0d:ce:d5:9a:6e:8e:57:b1:fe:ea:2b:4c:59:3b:7d:3d:6d:4e: ff:c4:0b:75:80:66:f5:14:56:37:04:87:a3:98:cf:a9:4a:5c: 52:11:11:43 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICC3MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yMzA5MDEw ODMwMzJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEMxMDdEREUzNTYzMTlG N0U0OENENjA0OTI0RjRENUM2QkVDNjAxNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCf11rFapIQEIeGNZRvIfqTiffckvn8bZO/ezTJ6b7xTu0/RGBH YhPVOYBjPz/pxbVXzQjQFGQM2bTfoAWwsKpHfum4bvCFi8lELKoNLvR1tBbNxvKP p63cqZB1yNMEMNgEyuqR+m7lKHU0KNewjndU2Taz3bEVfnSIlTs4OzBOnk3cau9a 17+KiPcbwr70m8RVk5UTnB8JTduCcYH7XULDKHUIrYLHmRFVBuBlekrPz4hH87lf q03fs7am/EC14RHIthIP3nBTR8xjsuzMH/u7ulHyMXhJUXtoVn4hT6TVL3nU67C/ wdKyDDmC20hHc0/M4VhX/M9cZzb4dzz+IruJAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUwQfd41Yxn35IzWBJJPTVxr7GAVEwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vd1FmZDQxWXhu MzVJeldCSkpQVFZ4cjdHQVZFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBWUA4DANBgkqhkiG9w0BAQsFAAOCAQEAEl2GpjH27fIjxcr+cwe366F6 C7XakMp6V2AABw86ccTU8Kq8Bo9XhOxc+FSJeuBR3xYvHGjDp1oco8dkleQ4KYNd 8GQD672Xw4DHRppYBypPuYORAzzWv5ZuhfzCjkC4fIp0G6ZFHsFzU0aa394k6dtx UUhdIr7k9NBdAjZ2aLOg6hXvOyP4stFtSmUPK/kIdcCQs2+GimFGME49zUuTCig5 tIgUkWhraKc6K9wBnWN2RDuT4M+PqW5//MoP26jG+jkmoaPVeqIiN2yeOjjRqO8e lJkGV4ftDc7Vmm6OV7H+6itMWTt9PW1O/8QLdYBm9RRWNwSHo5jPqUpcUhERQw== -----END CERTIFICATE-----Generated at Sun Jun 2 07:14:19 2024 by rpki-client on console-fra.rpki-client.org