$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCT/2V9EYhlE3igm4kt_RqZ1-3p0PEs.roa File: 2V9EYhlE3igm4kt_RqZ1-3p0PEs.roa (raw, json) Hash identifier: E5GWlMrxkmMolmrgsOpex0OOKsnckMB2Phbh9Fg7xVA= Subject key identifier: D9:5F:44:62:19:44:DE:28:26:E2:4B:7F:46:A6:75:FB:7A:74:3C:4B Certificate issuer: /CN=9B062D74C7F512F04AE60955C5456FC19755337F Certificate serial: 0BAE Authority key identifier: 9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/2V9EYhlE3igm4kt_RqZ1-3p0PEs.roa Signing time: Thu 14 Mar 2024 10:31:36 +0000 ROA not before: Thu 14 Mar 2024 10:31:36 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131601 IP address blocks: 114.29.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 01:35:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2990 (0xbae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B062D74C7F512F04AE60955C5456FC19755337F Validity Not Before: Mar 14 10:31:36 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D95F44621944DE2826E24B7F46A675FB7A743C4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:32:d9:ac:1a:0f:75:12:d5:c3:d8:1e:78:c1: 30:e9:83:4b:ca:54:db:65:0b:12:46:50:ac:5f:2a: da:22:a5:dc:c7:04:19:ac:ea:0d:f8:80:a3:ed:5c: bd:53:c1:4c:cc:6f:e6:d2:c3:30:e0:2b:7f:db:c4: 07:0b:d9:10:85:76:d7:21:7a:ff:0d:f1:23:6d:9a: 3e:82:7c:d6:08:13:ea:aa:e3:eb:63:28:70:fb:55: 99:94:87:80:e7:26:48:87:87:73:7d:69:72:8a:4f: d1:63:2e:de:9f:bc:a4:23:1b:d1:58:f7:b7:be:4a: bc:20:01:41:b0:83:e2:3f:a4:af:63:ef:42:f6:68: ba:89:8f:35:e7:5d:d6:b9:ad:74:c7:32:20:fc:e8: 78:68:60:ed:84:25:e5:ac:db:59:a6:1b:bf:5f:97: 06:97:33:f6:72:82:5d:70:d0:1a:4b:b4:74:9f:43: 86:82:df:9d:96:78:a4:71:5b:f0:b4:28:60:06:f9: 31:ce:d4:57:af:4b:ef:56:4b:24:60:d0:cc:33:41: 49:be:c5:b5:ea:3b:f1:74:f3:cb:f3:81:d4:0c:95: 77:00:01:95:a5:aa:d7:f5:ab:df:dd:88:3c:67:7b: 03:67:ac:df:ca:dd:16:ff:eb:79:05:fe:1c:0a:f7: 1b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:5F:44:62:19:44:DE:28:26:E2:4B:7F:46:A6:75:FB:7A:74:3C:4B X509v3 Authority Key Identifier: keyid:9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/2V9EYhlE3igm4kt_RqZ1-3p0PEs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.29.244.0/24 Signature Algorithm: sha256WithRSAEncryption 31:c5:0b:06:a8:ac:04:2f:7c:c3:a2:f0:0e:ca:e4:69:63:c7: 83:ee:4c:d2:fb:f6:b9:75:df:d1:40:d6:ce:9f:3b:e7:ef:ad: 0f:4c:fe:4b:a7:2f:b4:a1:07:5d:53:45:3b:1e:bf:58:b0:6a: 7c:50:b8:44:07:f5:87:5d:fb:07:e5:2b:91:cd:ec:b3:46:0f: 53:d5:e5:66:57:7b:0f:86:33:57:52:85:0a:92:f5:9c:53:38: 38:0d:72:b0:e1:01:6b:8f:6a:ac:90:49:ed:94:33:39:7e:e1: d2:35:3b:77:f9:9c:8a:f3:a1:10:99:03:82:ba:f0:28:a9:da: 9e:04:43:ed:f0:d0:4d:2b:37:08:a1:01:9b:13:97:fe:ec:21: d0:76:b9:a2:e3:ef:c9:0b:85:98:15:ea:6d:11:44:04:8d:1d: 3f:8f:b6:13:5a:bb:a4:0e:f2:c8:0d:c3:68:4a:db:7c:c0:e5: ef:71:06:f4:0f:74:bf:94:ab:66:4f:3b:1a:a2:0a:c1:95:de: 76:a6:c8:e8:6a:ea:30:3c:b1:15:9c:34:b0:bc:44:15:1d:42: 1e:d6:e2:f1:44:92:0c:49:ad:27:bd:a6:d5:2f:37:cf:e3:bb: 19:5d:96:92:37:c4:3a:b3:53:22:52:69:86:39:5a:a8:ac:e0: 3e:e2:0d:b5 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICC64wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUIw NjJENzRDN0Y1MTJGMDRBRTYwOTU1QzU0NTZGQzE5NzU1MzM3RjAeFw0yNDAzMTQx MDMxMzZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ5NUY0NDYyMTk0NERF MjgyNkUyNEI3RjQ2QTY3NUZCN0E3NDNDNEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChMtmsGg91EtXD2B54wTDpg0vKVNtlCxJGUKxfKtoipdzHBBms 6g34gKPtXL1TwUzMb+bSwzDgK3/bxAcL2RCFdtchev8N8SNtmj6CfNYIE+qq4+tj KHD7VZmUh4DnJkiHh3N9aXKKT9FjLt6fvKQjG9FY97e+SrwgAUGwg+I/pK9j70L2 aLqJjzXnXda5rXTHMiD86HhoYO2EJeWs21mmG79flwaXM/Zygl1w0BpLtHSfQ4aC 352WeKRxW/C0KGAG+THO1FevS+9WSyRg0MwzQUm+xbXqO/F088vzgdQMlXcAAZWl qtf1q9/diDxnewNnrN/K3Rb/63kF/hwK9xuLAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU2V9EYhlE3igm4kt/RqZ1+3p0PEswHwYDVR0jBBgwFoAUmwYtdMf1EvBK5glV xUVvwZdVM38wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRENUL213 WXRkTWYxRXZCSzVnbFZ4VVZ2d1pkVk0zOC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev bXdZdGRNZjFFdkJLNWdsVnhVVnZ3WmRWTTM4LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRENULzJWOUVZaGxFM2lnbTRrdF9ScVoxLTNw MFBFcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAByHfQwDQYJ KoZIhvcNAQELBQADggEBADHFCwaorAQvfMOi8A7K5Gljx4PuTNL79rl139FA1s6f O+fvrQ9M/kunL7ShB11TRTsev1iwanxQuEQH9Ydd+wflK5HN7LNGD1PV5WZXew+G M1dShQqS9ZxTODgNcrDhAWuPaqyQSe2UMzl+4dI1O3f5nIrzoRCZA4K68Cip2p4E Q+3w0E0rNwihAZsTl/7sIdB2uaLj78kLhZgV6m0RRASNHT+PthNau6QO8sgNw2hK 23zA5e9xBvQPdL+Uq2ZPOxqiCsGV3namyOhq6jA8sRWcNLC8RBUdQh7W4vFEkgxJ rSe9ptUvN8/juxldlpI3xDqzUyJSaYY5Wqis4D7iDbU= -----END CERTIFICATE-----Generated at Fri May 31 23:15:48 2024 by rpki-client on console-ams.rpki-client.org