$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/LdBXARfOfq3vtDJIM8sSLPJCN-c.roa File: LdBXARfOfq3vtDJIM8sSLPJCN-c.roa (raw, json) Hash identifier: 8XgH2H05XdvMaSF3NFDBkcaXy3h3OnyHP7ccC4OQPCI= Subject key identifier: 2D:D0:57:01:17:CE:7E:AD:EF:B4:32:48:33:CB:12:2C:F2:42:37:E7 Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0B74 Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/LdBXARfOfq3vtDJIM8sSLPJCN-c.roa Signing time: Tue 31 Oct 2023 07:31:58 +0000 ROA not before: Tue 31 Oct 2023 07:31:58 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18046 IP address blocks: 103.130.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 13:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2932 (0xb74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Oct 31 07:31:58 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2DD0570117CE7EADEFB4324833CB122CF24237E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:65:86:4c:35:92:be:31:c4:ce:0d:ca:9d:cc: 71:59:2a:3f:82:a0:9f:52:c7:ae:f0:e6:ce:00:75: bf:d2:59:2b:32:84:84:a3:b8:00:87:92:bb:53:85: 2d:90:d3:92:f2:06:d6:94:9c:cd:51:72:dd:53:0e: 90:44:8f:15:12:0c:bd:7e:ef:03:40:49:23:d2:43: b2:96:c6:9a:54:7d:54:1a:eb:2a:e3:b0:bc:b3:da: 61:42:3b:5c:d5:24:be:43:f9:6c:dc:a4:51:04:c6: 0c:fa:d0:1f:fc:65:64:15:e4:cc:38:16:bf:d0:8b: df:db:29:d7:db:bd:17:0d:45:7f:60:c5:de:4d:85: 52:43:db:cb:2b:43:f1:93:d9:19:f1:d4:bc:79:4e: 73:36:cf:91:bc:d3:7d:33:cd:1f:59:ad:d1:9d:c7: 09:1c:e4:bc:73:51:25:1c:8b:56:1a:d4:be:e5:ae: 04:ba:d3:9b:81:f0:14:af:db:04:9d:d6:8d:04:87: cb:cb:5b:fd:d0:ce:67:4b:75:70:bf:f6:66:7c:54: 25:a4:05:5a:7c:9b:19:6e:90:a1:7a:02:37:15:43: 46:d6:04:57:31:6a:73:a8:ab:4f:0f:18:30:f1:41: 71:93:09:61:91:1d:53:eb:0e:1c:17:0f:33:ef:a2: 3b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:D0:57:01:17:CE:7E:AD:EF:B4:32:48:33:CB:12:2C:F2:42:37:E7 X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/LdBXARfOfq3vtDJIM8sSLPJCN-c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.44.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:d5:92:96:96:fd:7f:96:31:ae:98:9a:de:aa:d5:4a:eb:96: b5:88:c1:8e:7f:5e:26:dc:6f:68:0f:bf:06:22:8f:e3:53:0f: 88:0f:7a:57:c0:28:5c:b9:ae:f1:32:79:cb:e9:04:5f:34:a5: 38:06:83:25:4f:f8:57:ef:bc:99:06:94:45:a4:bc:d9:85:6e: c0:aa:77:e3:5d:9e:26:07:7a:7b:f8:ef:97:b1:f7:30:40:02: 7b:55:2c:20:1c:5a:e0:70:72:3f:ed:d2:13:40:6b:eb:7b:b2: c4:00:95:91:bf:15:9d:f3:77:e4:21:be:52:b2:44:fb:b4:4b: cb:9c:46:7d:92:46:8e:29:6b:ea:65:83:f0:37:78:3a:1d:e2: 16:54:7c:3a:79:a8:91:0b:de:13:5d:35:8d:5b:44:a7:0c:a3: 55:3b:75:01:c9:3a:0d:ab:0b:b1:51:84:c6:59:ae:ca:d1:a4: db:76:40:81:21:60:26:2a:f5:09:31:73:9b:b0:5c:85:12:23: 2c:77:88:82:3f:8d:d8:72:f7:dd:ea:69:7d:7c:6b:ae:13:05: e1:40:7c:ce:24:33:5e:fe:ad:0c:ba:b9:9b:42:54:59:7a:6e: bf:55:d7:6f:2e:50:bc:d6:cd:af:d4:06:97:bb:b6:97:06:73: 9f:c6:1b:7f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC3QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yMzEwMzEw NzMxNThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJERDA1NzAxMTdDRTdF QURFRkI0MzI0ODMzQ0IxMjJDRjI0MjM3RTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZZYZMNZK+McTODcqdzHFZKj+CoJ9Sx67w5s4Adb/SWSsyhISj uACHkrtThS2Q05LyBtaUnM1Rct1TDpBEjxUSDL1+7wNASSPSQ7KWxppUfVQa6yrj sLyz2mFCO1zVJL5D+WzcpFEExgz60B/8ZWQV5Mw4Fr/Qi9/bKdfbvRcNRX9gxd5N hVJD28srQ/GT2Rnx1Lx5TnM2z5G8030zzR9ZrdGdxwkc5LxzUSUci1Ya1L7lrgS6 05uB8BSv2wSd1o0Eh8vLW/3QzmdLdXC/9mZ8VCWkBVp8mxlukKF6AjcVQ0bWBFcx anOoq08PGDDxQXGTCWGRHVPrDhwXDzPvojsPAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQULdBXARfOfq3vtDJIM8sSLPJCN+cwHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvTGRCWEFSZk9mcTN2dERK SU04c1NMUEpDTi1jLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmeCLDANBgkqhkiG9w0BAQsFAAOCAQEAbtWSlpb9f5Yxrpia3qrVSuuWtYjBjn9e JtxvaA+/BiKP41MPiA96V8AoXLmu8TJ5y+kEXzSlOAaDJU/4V++8mQaURaS82YVu wKp3412eJgd6e/jvl7H3MEACe1UsIBxa4HByP+3SE0Br63uyxACVkb8VnfN35CG+ UrJE+7RLy5xGfZJGjilr6mWD8Dd4Oh3iFlR8OnmokQveE101jVtEpwyjVTt1Ack6 DasLsVGExlmuytGk23ZAgSFgJir1CTFzm7BchRIjLHeIgj+N2HL33eppfXxrrhMF 4UB8ziQzXv6tDLq5m0JUWXpuv1XXby5QvNbNr9QGl7u2lwZzn8Ybfw== -----END CERTIFICATE-----Generated at Sun Jun 2 07:14:19 2024 by rpki-client on console-fra.rpki-client.org