$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/eRpG7xdLt2jbf7kNnHgm7xYs1cA.roa File: eRpG7xdLt2jbf7kNnHgm7xYs1cA.roa (raw, json) Hash identifier: mX2wcwGNNhiw/CliU556cc4tkJLruUi/DhOnv18SsGs= Subject key identifier: 79:1A:46:EF:17:4B:B7:68:DB:7F:B9:0D:9C:78:26:EF:16:2C:D5:C0 Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0B45 Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/eRpG7xdLt2jbf7kNnHgm7xYs1cA.roa Signing time: Fri 01 Sep 2023 08:34:05 +0000 ROA not before: Fri 01 Sep 2023 08:34:05 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 61.58.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 00:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2885 (0xb45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Sep 1 08:34:05 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=791A46EF174BB768DB7FB90D9C7826EF162CD5C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c1:50:9e:1f:99:87:f6:4f:4a:71:06:ab:49: fe:16:84:a2:01:79:cf:4b:c4:ce:7e:e3:12:3f:17: 31:aa:7d:54:51:56:32:47:71:03:99:0c:17:36:f8: ec:9d:51:1d:09:44:3b:d8:a2:a0:b1:a0:0e:bd:63: 53:3e:7a:c7:ca:f6:3c:b6:28:3f:46:e7:0c:4f:8a: bd:e0:4b:be:fe:5c:37:e4:32:29:8b:1b:2a:2c:49: 55:77:4c:b0:0c:fa:da:9b:67:d5:b1:93:ea:78:ce: 50:93:7e:35:4c:56:dc:36:52:f8:21:db:0a:44:12: e8:9a:c0:80:97:90:04:9e:48:77:6c:ee:e5:2c:b3: 3a:db:ce:50:15:8e:c4:10:d7:e6:ea:39:5a:a4:00: c0:39:35:29:2f:a8:3c:f7:b4:cf:dc:f3:b6:6c:71: 47:76:16:ff:b3:93:9a:53:33:29:ed:b0:2e:93:7d: d5:dd:0d:bf:c6:98:3b:44:f4:27:39:30:8a:52:55: 00:e0:ed:5e:83:59:81:3d:2c:5f:da:e8:20:60:06: d4:63:fd:d0:f3:6a:0b:d2:75:87:c7:5e:fd:91:67: 89:eb:12:35:4d:97:8e:28:4f:87:bd:b3:df:c3:dd: 44:ba:c2:9f:01:29:52:7c:81:c6:b2:d3:ca:9d:68: 62:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:1A:46:EF:17:4B:B7:68:DB:7F:B9:0D:9C:78:26:EF:16:2C:D5:C0 X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/eRpG7xdLt2jbf7kNnHgm7xYs1cA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.16.0/20 Signature Algorithm: sha256WithRSAEncryption aa:84:49:61:b0:4a:15:08:47:2b:56:44:90:81:d3:dd:7b:39: c8:46:3d:e6:f4:a4:8a:3e:a3:6f:65:54:cd:34:76:04:b0:e0: 3d:0c:06:8b:36:7e:1b:f3:9d:fc:93:f3:59:e1:92:1f:87:17: 18:c0:dc:66:ff:b3:6d:28:ad:56:76:2f:f7:6a:51:34:95:f0: c4:0d:af:e0:88:b0:32:b7:d3:bf:78:f3:70:6c:ec:85:27:1a: 95:2c:f1:7c:b5:67:06:7b:72:8e:28:d8:38:36:72:07:aa:73: a9:2b:21:9e:68:7e:02:f3:f6:7e:b4:9a:7a:76:20:11:bc:05: 2a:d3:d7:23:44:1e:af:fa:a6:6b:8e:03:b0:c2:8c:c6:ea:3b: 6b:ce:58:70:8d:50:53:f5:bd:0c:e2:21:05:5e:9e:57:71:64: cc:94:88:cd:7f:2e:d2:0e:b8:ef:fe:02:6c:39:9c:a8:73:25: 8a:6e:a3:f0:11:f5:f4:02:a9:7d:b5:6d:92:e1:64:e6:bc:0b: 11:79:6c:02:3d:0b:a7:36:23:6d:00:1c:ec:b0:39:8a:30:87: 22:97:ce:26:2d:96:9e:53:9f:fe:44:ae:e6:50:ec:20:c1:68: f2:b3:82:2f:b0:ae:05:92:b5:79:df:dd:63:cc:b1:93:d5:7e: 80:26:50:4f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC0UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yMzA5MDEw ODM0MDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc5MUE0NkVGMTc0QkI3 NjhEQjdGQjkwRDlDNzgyNkVGMTYyQ0Q1QzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnwVCeH5mH9k9KcQarSf4WhKIBec9LxM5+4xI/FzGqfVRRVjJH cQOZDBc2+OydUR0JRDvYoqCxoA69Y1M+esfK9jy2KD9G5wxPir3gS77+XDfkMimL GyosSVV3TLAM+tqbZ9Wxk+p4zlCTfjVMVtw2Uvgh2wpEEuiawICXkASeSHds7uUs szrbzlAVjsQQ1+bqOVqkAMA5NSkvqDz3tM/c87ZscUd2Fv+zk5pTMyntsC6TfdXd Db/GmDtE9Cc5MIpSVQDg7V6DWYE9LF/a6CBgBtRj/dDzagvSdYfHXv2RZ4nrEjVN l44oT4e9s9/D3US6wp8BKVJ8gcay08qdaGLhAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUeRpG7xdLt2jbf7kNnHgm7xYs1cAwHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvZVJwRzd4ZEx0MmpiZjdr Tm5IZ203eFlzMWNBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BD06EDANBgkqhkiG9w0BAQsFAAOCAQEAqoRJYbBKFQhHK1ZEkIHT3Xs5yEY95vSk ij6jb2VUzTR2BLDgPQwGizZ+G/Od/JPzWeGSH4cXGMDcZv+zbSitVnYv92pRNJXw xA2v4IiwMrfTv3jzcGzshScalSzxfLVnBntyjijYODZyB6pzqSshnmh+AvP2frSa enYgEbwFKtPXI0Qer/qma44DsMKMxuo7a85YcI1QU/W9DOIhBV6eV3FkzJSIzX8u 0g647/4CbDmcqHMlim6j8BH19AKpfbVtkuFk5rwLEXlsAj0LpzYjbQAc7LA5ijCH IpfOJi2WnlOf/kSu5lDsIMFo8rOCL7CuBZK1ed/dY8yxk9V+gCZQTw== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:41 2024 by rpki-client on console-ams.rpki-client.org