$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/IKG67xpiz6bjhtYeKNZcwmjiZmM.roa File: IKG67xpiz6bjhtYeKNZcwmjiZmM.roa (raw, json) Hash identifier: g/8dW+uPsv7z4GFyxuHi2iOUhokcbe7R3BWRqqH62Ro= Subject key identifier: 20:A1:BA:EF:1A:62:CF:A6:E3:86:D6:1E:28:D6:5C:C2:68:E2:66:63 Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0B76 Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/IKG67xpiz6bjhtYeKNZcwmjiZmM.roa Signing time: Tue 31 Oct 2023 07:32:23 +0000 ROA not before: Tue 31 Oct 2023 07:32:23 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18046 IP address blocks: 103.130.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 13:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2934 (0xb76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Oct 31 07:32:23 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=20A1BAEF1A62CFA6E386D61E28D65CC268E26663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:65:46:e2:80:98:22:2d:65:9f:ce:6e:19:28: 11:0a:e2:93:f5:7e:8c:82:1c:32:dd:b4:14:27:bd: ca:21:2b:39:e2:5f:f5:89:fb:84:03:11:9a:35:a3: da:28:f9:c5:9d:5a:da:1c:10:8a:b1:e0:4e:ac:c5: c4:73:c8:bb:97:57:92:bf:c6:f4:9c:a1:b2:43:24: cd:3e:5b:27:e3:ad:6e:b8:0c:09:da:10:ae:94:22: 8a:ec:14:28:35:04:04:b4:90:ed:4c:d5:28:93:52: ff:97:05:69:3a:b4:52:a6:a8:d1:29:20:cb:6a:eb: b6:69:e1:0e:c8:1f:86:95:71:64:22:d8:36:7f:e5: d7:08:b0:ec:3b:1f:fd:08:b4:65:96:98:2d:2d:9d: 8c:5b:b4:62:c5:05:44:2d:fb:24:c2:48:03:69:2e: 7b:7e:4c:65:05:9d:c6:35:18:b1:b2:a7:32:5f:00: 5c:48:9f:c6:ba:34:a7:44:2c:d7:12:e2:0b:18:6a: 38:2b:8f:9e:52:7b:99:ea:db:56:58:34:bb:e0:84: 54:c9:b3:58:f7:ba:42:f5:69:41:da:c5:85:fc:c5: 6a:26:7f:d5:0b:ce:79:47:79:fd:35:c4:95:dd:d4: ca:17:86:ca:54:67:35:de:9b:6e:39:65:31:2f:63: 57:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:A1:BA:EF:1A:62:CF:A6:E3:86:D6:1E:28:D6:5C:C2:68:E2:66:63 X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/IKG67xpiz6bjhtYeKNZcwmjiZmM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.20.0/22 Signature Algorithm: sha256WithRSAEncryption 39:f0:07:e7:36:f1:e6:07:85:6a:d2:7a:26:93:c7:3f:93:49: 7c:7b:33:a7:53:0e:55:2b:b0:34:ea:29:b0:0d:9c:d5:cc:59: a3:a7:b0:3c:82:3a:99:94:11:a8:e3:a3:c5:08:fd:e6:ac:98: ff:2a:84:83:69:6d:5b:13:6a:90:a0:25:2d:3c:5b:86:99:8d: 04:6d:ae:6a:4c:87:8a:f8:b9:d7:e9:fe:6d:08:52:df:bf:dd: 5c:54:23:32:66:8f:d8:09:e9:05:03:0f:46:06:9e:3b:be:32: 6f:47:8a:e3:e1:27:b2:4a:90:fd:f0:90:48:a9:47:cd:73:11: 21:82:b6:70:f5:35:e0:0b:b4:9a:39:10:23:ce:36:74:f8:e9: 8b:a8:ff:cb:dd:1e:43:6f:0a:36:8e:52:dc:d5:d1:58:7f:b8: cf:f1:d0:95:90:f0:c3:29:84:86:e4:af:52:09:19:2c:70:aa: 47:af:28:b2:e8:eb:44:53:95:17:ad:46:70:5f:53:7f:43:99: 38:65:4c:1a:f9:d6:6e:17:d7:a7:64:0e:62:e2:b8:50:fb:b2: ef:36:f4:60:b3:59:2d:5b:1e:cf:d3:93:9f:85:1d:2d:3a:cf: 25:01:3f:94:6a:db:79:d0:9f:08:d9:37:c8:47:4c:b8:f4:7c: fc:1b:07:ab -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC3YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yMzEwMzEw NzMyMjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDIwQTFCQUVGMUE2MkNG QTZFMzg2RDYxRTI4RDY1Q0MyNjhFMjY2NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKZUbigJgiLWWfzm4ZKBEK4pP1foyCHDLdtBQnvcohKzniX/WJ +4QDEZo1o9oo+cWdWtocEIqx4E6sxcRzyLuXV5K/xvScobJDJM0+WyfjrW64DAna EK6UIorsFCg1BAS0kO1M1SiTUv+XBWk6tFKmqNEpIMtq67Zp4Q7IH4aVcWQi2DZ/ 5dcIsOw7H/0ItGWWmC0tnYxbtGLFBUQt+yTCSANpLnt+TGUFncY1GLGypzJfAFxI n8a6NKdELNcS4gsYajgrj55Se5nq21ZYNLvghFTJs1j3ukL1aUHaxYX8xWomf9UL znlHef01xJXd1MoXhspUZzXem245ZTEvY1fhAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUIKG67xpiz6bjhtYeKNZcwmjiZmMwHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvSUtHNjd4cGl6NmJqaHRZ ZUtOWmN3bWppWm1NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmeCFDANBgkqhkiG9w0BAQsFAAOCAQEAOfAH5zbx5geFatJ6JpPHP5NJfHszp1MO VSuwNOopsA2c1cxZo6ewPII6mZQRqOOjxQj95qyY/yqEg2ltWxNqkKAlLTxbhpmN BG2uakyHivi51+n+bQhS37/dXFQjMmaP2AnpBQMPRgaeO74yb0eK4+EnskqQ/fCQ SKlHzXMRIYK2cPU14Au0mjkQI842dPjpi6j/y90eQ28KNo5S3NXRWH+4z/HQlZDw wymEhuSvUgkZLHCqR68osujrRFOVF61GcF9Tf0OZOGVMGvnWbhfXp2QOYuK4UPuy 7zb0YLNZLVsez9OTn4UdLTrPJQE/lGrbedCfCNk3yEdMuPR8/BsHqw== -----END CERTIFICATE-----Generated at Sun Jun 2 07:14:19 2024 by rpki-client on console-fra.rpki-client.org