$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/cRJ5J4ntFH_g84sRAYBX7wW-a_U.roa File: cRJ5J4ntFH_g84sRAYBX7wW-a_U.roa (raw, json) Hash identifier: NdPpsZ+oF3wg09WswRRs5c5txnpflt84lKXDTWYMnGc= Subject key identifier: 71:12:79:27:89:ED:14:7F:E0:F3:8B:11:01:80:57:EF:05:BE:6B:F5 Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Certificate serial: 0BD2 Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/cRJ5J4ntFH_g84sRAYBX7wW-a_U.roa Signing time: Mon 11 Mar 2024 07:45:06 +0000 ROA not before: Mon 11 Mar 2024 07:45:06 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 138145 IP address blocks: 103.135.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:09:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3026 (0xbd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Validity Not Before: Mar 11 07:45:06 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=7112792789ED147FE0F38B11018057EF05BE6BF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ea:82:02:1d:0c:e6:45:5c:c3:76:f9:71:1a: 2b:3c:0a:e7:8f:fd:10:09:a8:44:b7:52:f3:12:d5: b1:69:d5:4b:16:3b:05:73:da:ca:3c:59:66:cf:02: 94:86:27:ae:53:c6:e2:1a:9d:00:9f:b4:22:1f:d9: 48:17:02:a9:04:02:34:7e:6c:9a:7d:a7:af:ee:09: 41:33:63:68:35:b8:36:dd:81:f4:75:52:fb:25:8c: 7e:05:d6:e5:1a:cd:57:90:07:ee:c8:04:ab:89:3a: bd:9a:f7:da:53:2e:d1:5b:5d:04:c7:76:40:ef:24: 4b:d1:be:54:71:20:3e:6b:74:e0:b3:34:79:bd:31: 04:9b:2f:71:c0:ac:e5:5a:b9:ac:fb:e2:6c:d5:79: b7:6a:94:e1:d8:9a:58:03:22:91:cd:86:fe:7a:33: 6c:a1:db:e5:df:f4:bc:57:31:2f:26:c0:d6:53:c3: 72:52:34:1c:1f:36:70:e9:f4:72:05:db:10:c4:83: f3:2a:85:96:42:e9:b3:44:ab:8d:f9:be:88:a9:49: 97:80:9c:93:9e:e1:d1:1f:32:63:8f:af:27:a1:ee: 8f:27:65:40:66:d7:1c:04:ab:29:f2:e0:2f:c1:74: 5e:3d:c0:b5:fd:58:e6:fd:24:28:72:a3:28:63:ba: cd:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:12:79:27:89:ED:14:7F:E0:F3:8B:11:01:80:57:EF:05:BE:6B:F5 X509v3 Authority Key Identifier: keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/cRJ5J4ntFH_g84sRAYBX7wW-a_U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.16.0/24 Signature Algorithm: sha256WithRSAEncryption a0:0d:08:39:8f:61:dd:cc:4c:58:2e:69:e3:d2:4e:c5:a4:13: 5b:f2:c6:8e:30:c1:1b:9e:17:87:3d:a2:67:8d:75:42:06:cb: 57:87:6f:78:a6:3e:96:42:87:69:56:98:3e:27:f1:71:9e:8e: 5a:8b:bb:5f:b9:8a:4c:db:2f:a1:87:f9:76:14:0a:d3:40:17: 3e:77:c8:60:d0:28:05:31:b6:95:07:f2:d1:dd:ab:ba:55:1b: 9b:96:16:79:da:aa:bb:b4:96:91:38:1d:e0:7b:00:aa:8d:a0: 12:6e:39:a6:25:9b:1d:6a:40:b1:18:98:f1:39:33:2b:5c:b9: 29:62:e4:de:98:90:64:6d:15:97:d0:70:53:c4:63:14:48:fe: ae:d3:84:a9:ca:68:58:1a:15:fe:c8:6b:e0:43:11:a7:b5:be: 76:d5:03:ff:42:96:6a:10:0e:70:18:f4:5d:29:e1:b6:d4:26: f1:24:3a:0d:73:e2:54:19:1f:55:47:12:be:95:a0:38:48:84: e9:3b:75:7f:1e:c5:39:63:c9:f9:73:8a:16:ef:74:2f:d7:25: d8:e7:35:6b:52:08:b6:fc:30:b6:3a:d5:27:ea:6f:90:b9:c0: c9:55:25:3c:9f:bf:65:93:9f:07:d2:36:fb:80:43:f3:c0:66: ea:ac:56:a3 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC9IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yNDAzMTEw NzQ1MDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDcxMTI3OTI3ODlFRDE0 N0ZFMEYzOEIxMTAxODA1N0VGMDVCRTZCRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDq6oICHQzmRVzDdvlxGis8CueP/RAJqES3UvMS1bFp1UsWOwVz 2so8WWbPApSGJ65TxuIanQCftCIf2UgXAqkEAjR+bJp9p6/uCUEzY2g1uDbdgfR1 UvsljH4F1uUazVeQB+7IBKuJOr2a99pTLtFbXQTHdkDvJEvRvlRxID5rdOCzNHm9 MQSbL3HArOVauaz74mzVebdqlOHYmlgDIpHNhv56M2yh2+Xf9LxXMS8mwNZTw3JS NBwfNnDp9HIF2xDEg/MqhZZC6bNEq435voipSZeAnJOe4dEfMmOPryeh7o8nZUBm 1xwEqyny4C/BdF49wLX9WOb9JChyoyhjus0pAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUcRJ5J4ntFH/g84sRAYBX7wW+a/UwHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vY1JKNUo0bnRGSF9nODRz UkFZQlg3d1ctYV9VLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGeHEDANBgkqhkiG9w0BAQsFAAOCAQEAoA0IOY9h3cxMWC5p49JOxaQTW/LGjjDB G54Xhz2iZ411QgbLV4dveKY+lkKHaVaYPifxcZ6OWou7X7mKTNsvoYf5dhQK00AX PnfIYNAoBTG2lQfy0d2rulUbm5YWedqqu7SWkTgd4HsAqo2gEm45piWbHWpAsRiY 8TkzK1y5KWLk3piQZG0Vl9BwU8RjFEj+rtOEqcpoWBoV/shr4EMRp7W+dtUD/0KW ahAOcBj0XSnhttQm8SQ6DXPiVBkfVUcSvpWgOEiE6Tt1fx7FOWPJ+XOKFu90L9cl 2Oc1a1IItvwwtjrVJ+pvkLnAyVUlPJ+/ZZOfB9I2+4BD88Bm6qxWow== -----END CERTIFICATE-----Generated at Mon May 6 16:42:12 2024 by rpki-client on console-ams.rpki-client.org