$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/Zd8qBLGH5oIu0LAzyrcYLBTrWK4.roa File: Zd8qBLGH5oIu0LAzyrcYLBTrWK4.roa (raw, json) Hash identifier: uxJnaNOj0aLy6ueLIlW5j64XM1ApCkRg1gx3k5sT5mc= Subject key identifier: 65:DF:2A:04:B1:87:E6:82:2E:D0:B0:33:CA:B7:18:2C:14:EB:58:AE Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0B47 Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/Zd8qBLGH5oIu0LAzyrcYLBTrWK4.roa Signing time: Fri 01 Sep 2023 08:34:06 +0000 ROA not before: Fri 01 Sep 2023 08:34:06 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 180.92.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 00:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2887 (0xb47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Sep 1 08:34:06 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=65DF2A04B187E6822ED0B033CAB7182C14EB58AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:00:62:fb:dc:2a:27:d1:0d:ac:36:d8:0f:b9: f0:c3:ab:0a:4e:29:8e:90:82:83:df:7a:82:3d:cb: a4:e6:a6:22:5d:bb:56:25:75:3b:85:76:d4:f4:93: c4:8b:d2:96:5b:5e:0d:98:56:ff:3f:1f:f3:f6:ea: aa:43:ca:39:14:f2:64:04:be:6b:09:c7:b4:c5:f5: 7b:aa:38:9a:32:17:f4:3c:35:b0:5a:10:4c:2e:c2: f3:0d:0a:54:f4:6f:93:d8:8a:e8:e9:18:d2:fa:7e: 2a:da:f8:0b:e6:5b:22:9a:81:ad:0b:69:27:60:10: 4b:36:08:ee:62:c4:8b:17:9b:95:d8:4a:72:32:c2: e9:00:69:b6:2a:e2:e5:9c:79:11:39:b1:fe:c6:a9: ee:a7:c3:2e:1e:e9:11:72:71:9c:81:dd:49:ef:4a: 00:06:b5:4b:a6:80:5f:95:7f:50:85:65:00:42:87: c9:30:5d:3a:53:ff:76:2c:3e:f2:00:d6:29:14:ab: ae:66:2c:91:b6:e3:06:a6:b9:ef:ec:42:75:99:d5: 1b:1c:2e:6d:aa:02:4c:ce:d5:75:22:11:2e:c4:b9: a4:d8:0c:ab:19:74:a8:cc:f2:e5:c1:01:b1:00:c9: 8f:34:91:8f:9b:25:6c:78:29:16:d1:28:44:03:65: 08:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:DF:2A:04:B1:87:E6:82:2E:D0:B0:33:CA:B7:18:2C:14:EB:58:AE X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/Zd8qBLGH5oIu0LAzyrcYLBTrWK4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.92.0.0/20 Signature Algorithm: sha256WithRSAEncryption be:c6:4d:16:8d:9d:87:70:5b:2a:8a:5c:7f:d6:80:b5:1b:ef: cc:f2:b7:e0:05:3b:b6:9e:79:94:36:3c:2b:71:65:72:43:cc: 24:0d:54:8f:07:df:90:e0:39:84:89:9b:ba:4d:b3:fb:a8:8c: dd:b8:eb:35:23:4a:60:35:5a:58:35:b2:5b:6d:6e:51:24:50: 20:b3:15:87:fb:2f:42:d0:1b:be:06:6c:4b:e7:60:a6:73:23: 28:81:5b:0e:a6:1b:ab:dc:eb:f0:1c:81:e4:fd:6c:82:bc:b4: e9:12:5e:aa:7b:53:53:ce:64:f2:43:65:02:0a:45:80:a9:df: 7b:13:d6:b7:a3:15:4c:24:e7:1f:ef:e9:9c:cf:a0:07:cb:54: 6d:f2:d2:da:ec:5f:dc:ec:fe:13:77:91:31:f0:c2:71:db:6d: df:b3:3b:24:f4:9c:07:d9:93:a8:6a:4b:e6:f8:c6:4e:eb:1e: be:76:4b:ff:9f:17:4f:eb:80:83:c2:a8:b1:10:ee:71:47:e3: ce:d7:fc:34:de:d7:c1:32:0c:3b:b6:5a:6b:5f:9a:f7:70:8a: 78:15:f6:79:85:bd:e4:01:58:c3:d8:a0:6d:d8:41:44:79:f1: 61:98:51:94:76:30:f0:35:ab:59:18:e2:94:21:d8:9d:ea:d6: 91:dc:8f:31 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC0cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yMzA5MDEw ODM0MDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY1REYyQTA0QjE4N0U2 ODIyRUQwQjAzM0NBQjcxODJDMTRFQjU4QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQAGL73Con0Q2sNtgPufDDqwpOKY6QgoPfeoI9y6TmpiJdu1Yl dTuFdtT0k8SL0pZbXg2YVv8/H/P26qpDyjkU8mQEvmsJx7TF9XuqOJoyF/Q8NbBa EEwuwvMNClT0b5PYiujpGNL6fira+AvmWyKaga0LaSdgEEs2CO5ixIsXm5XYSnIy wukAabYq4uWceRE5sf7Gqe6nwy4e6RFycZyB3UnvSgAGtUumgF+Vf1CFZQBCh8kw XTpT/3YsPvIA1ikUq65mLJG24wamue/sQnWZ1RscLm2qAkzO1XUiES7EuaTYDKsZ dKjM8uXBAbEAyY80kY+bJWx4KRbRKEQDZQgxAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUZd8qBLGH5oIu0LAzyrcYLBTrWK4wHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvWmQ4cUJMR0g1b0l1MExB enlyY1lMQlRyV0s0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BLRcADANBgkqhkiG9w0BAQsFAAOCAQEAvsZNFo2dh3BbKopcf9aAtRvvzPK34AU7 tp55lDY8K3FlckPMJA1UjwffkOA5hImbuk2z+6iM3bjrNSNKYDVaWDWyW21uUSRQ ILMVh/svQtAbvgZsS+dgpnMjKIFbDqYbq9zr8ByB5P1sgry06RJeqntTU85k8kNl AgpFgKnfexPWt6MVTCTnH+/pnM+gB8tUbfLS2uxf3Oz+E3eRMfDCcdtt37M7JPSc B9mTqGpL5vjGTusevnZL/58XT+uAg8KosRDucUfjztf8NN7XwTIMO7Zaa1+a93CK eBX2eYW95AFYw9igbdhBRHnxYZhRlHYw8DWrWRjilCHYnerWkdyPMQ== -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:38 2024 by rpki-client on console-fra.rpki-client.org