$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/03NioFNyJkZesj4V_xpyQ-DAVXw.roa File: 03NioFNyJkZesj4V_xpyQ-DAVXw.roa (raw, json) Hash identifier: +hxC9cVH4BtYieMhMUMuGRr7ldNlohX7iiNhXIHwX7c= Subject key identifier: D3:73:62:A0:53:72:26:46:5E:B2:3E:15:FF:1A:72:43:E0:C0:55:7C Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0B43 Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/03NioFNyJkZesj4V_xpyQ-DAVXw.roa Signing time: Fri 01 Sep 2023 08:34:04 +0000 ROA not before: Fri 01 Sep 2023 08:34:04 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 61.57.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 00:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2883 (0xb43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Sep 1 08:34:04 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D37362A0537226465EB23E15FF1A7243E0C0557C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:23:b7:28:ce:db:3d:13:bd:c2:95:1b:e3:68: cc:7a:55:cb:a0:4f:8d:21:55:18:14:ff:81:16:38: 10:50:6d:1c:5e:57:16:d1:c6:5c:9f:09:dd:fd:aa: 13:30:06:f2:ee:ed:56:56:11:91:9e:eb:68:bb:a9: 88:0e:c0:59:bd:77:08:9d:1d:59:c6:4b:ff:39:53: 42:84:d7:47:4a:bf:85:8b:0e:f8:9c:81:0b:e2:82: 60:ae:9e:fd:04:79:ef:d2:63:63:be:7c:02:9c:b8: 7c:16:a3:51:24:c5:6b:c4:7e:9b:1c:e1:19:54:bb: 02:51:05:2b:41:72:2b:c1:df:6e:d1:3e:a1:6e:ae: 35:72:7b:ff:d2:a6:29:39:ad:ba:3f:57:8e:5d:33: de:25:aa:7d:b4:e1:66:77:51:12:dd:ae:34:ce:0c: 26:b3:51:ee:ed:b2:19:a2:21:b9:ed:e6:89:ae:db: d0:e7:f2:bf:dd:74:36:5a:55:ae:e3:08:bb:78:67: a7:0d:a2:9d:57:21:48:ec:c4:54:70:67:be:49:7b: b0:21:8e:70:26:e4:74:1a:a1:23:e3:29:00:74:d4: 5c:29:a8:33:9e:48:cf:70:a2:25:89:ac:f2:78:1d: b3:dc:5d:48:a5:a1:7a:c6:1c:7c:d8:43:a6:07:ad: 5e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:73:62:A0:53:72:26:46:5E:B2:3E:15:FF:1A:72:43:E0:C0:55:7C X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/03NioFNyJkZesj4V_xpyQ-DAVXw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.57.208.0/20 Signature Algorithm: sha256WithRSAEncryption 9f:02:5d:2a:a2:05:ef:ec:11:d9:c7:64:b2:38:64:0b:59:85: a2:91:42:9f:72:51:35:c3:9c:f4:33:f9:02:ff:22:fd:55:08: de:54:8c:91:dd:41:90:0d:0e:0a:8d:53:0f:f8:27:d3:2f:4f: 88:82:f7:c5:4b:e1:a6:c1:aa:2c:45:0b:7b:c8:b2:01:dd:2e: fd:14:7a:48:93:78:3f:d0:17:91:48:05:ea:04:cb:49:6a:6b: a7:9e:e4:1d:94:74:0a:8b:77:35:83:04:f6:30:9a:6f:99:fd: 3b:9f:91:0a:fd:bf:31:6d:de:4a:58:30:4f:82:67:54:ef:eb: 10:60:de:a0:0c:0f:ec:f8:60:64:87:7b:b3:39:fe:44:9f:70: 08:f2:5c:32:08:36:87:d8:07:cb:dd:2f:d2:86:22:02:1e:17: f6:82:4d:46:91:27:c8:d2:8c:0c:2b:b2:09:77:d5:7c:54:23: 27:1d:a1:31:14:5b:3d:7b:58:66:b7:ce:16:29:19:22:ed:41: 4d:9b:af:86:93:9e:28:d5:7b:eb:b5:97:37:63:44:12:dc:11: 1c:5b:5e:f5:fb:47:67:b3:91:58:a3:09:37:3f:67:97:2e:ae: b4:8c:e3:87:42:65:8d:95:34:97:3a:e9:e2:85:c9:2c:06:56: 06:f3:61:de -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC0MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yMzA5MDEw ODM0MDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQzNzM2MkEwNTM3MjI2 NDY1RUIyM0UxNUZGMUE3MjQzRTBDMDU1N0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdI7cozts9E73ClRvjaMx6VcugT40hVRgU/4EWOBBQbRxeVxbR xlyfCd39qhMwBvLu7VZWEZGe62i7qYgOwFm9dwidHVnGS/85U0KE10dKv4WLDvic gQvigmCunv0Eee/SY2O+fAKcuHwWo1EkxWvEfpsc4RlUuwJRBStBcivB327RPqFu rjVye//Spik5rbo/V45dM94lqn204WZ3URLdrjTODCazUe7tshmiIbnt5omu29Dn 8r/ddDZaVa7jCLt4Z6cNop1XIUjsxFRwZ75Je7AhjnAm5HQaoSPjKQB01FwpqDOe SM9woiWJrPJ4HbPcXUiloXrGHHzYQ6YHrV7HAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU03NioFNyJkZesj4V/xpyQ+DAVXwwHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvMDNOaW9GTnlKa1plc2o0 Vl94cHlRLURBVlh3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BD050DANBgkqhkiG9w0BAQsFAAOCAQEAnwJdKqIF7+wR2cdksjhkC1mFopFCn3JR NcOc9DP5Av8i/VUI3lSMkd1BkA0OCo1TD/gn0y9PiIL3xUvhpsGqLEULe8iyAd0u /RR6SJN4P9AXkUgF6gTLSWprp57kHZR0Cot3NYME9jCab5n9O5+RCv2/MW3eSlgw T4JnVO/rEGDeoAwP7PhgZId7szn+RJ9wCPJcMgg2h9gHy90v0oYiAh4X9oJNRpEn yNKMDCuyCXfVfFQjJx2hMRRbPXtYZrfOFikZIu1BTZuvhpOeKNV767WXN2NEEtwR HFte9ftHZ7ORWKMJNz9nly6utIzjh0JljZU0lzrp4oXJLAZWBvNh3g== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:41 2024 by rpki-client on console-ams.rpki-client.org