$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/h6XSNdrjEKTaBx8E_nGmPeaUeeY.roa File: h6XSNdrjEKTaBx8E_nGmPeaUeeY.roa (raw, json) Hash identifier: IlW838uD1/w2VzRKyuIT3W9SLRmPyTNOew6NAc0GelM= Subject key identifier: 87:A5:D2:35:DA:E3:10:A4:DA:07:1F:04:FE:71:A6:3D:E6:94:79:E6 Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Certificate serial: 0B4F Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/h6XSNdrjEKTaBx8E_nGmPeaUeeY.roa Signing time: Fri 01 Sep 2023 08:35:11 +0000 ROA not before: Fri 01 Sep 2023 08:35:11 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131662 IP address blocks: 103.123.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:09:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2895 (0xb4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Validity Not Before: Sep 1 08:35:11 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=87A5D235DAE310A4DA071F04FE71A63DE69479E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:e1:55:90:64:2e:c8:a0:b3:ec:78:a2:4c:80: 8b:49:3c:5c:5b:ee:e9:06:d4:fe:2c:67:f2:bf:83: 4f:a6:bb:6b:5f:b2:d7:11:f6:37:33:f5:eb:23:fa: fd:c6:7b:1c:92:b7:df:ff:64:2b:66:b0:17:09:fb: 99:81:1f:69:0f:b6:a2:50:0f:31:63:cc:8b:9e:22: 10:9b:b6:48:bc:d9:09:4f:96:1b:42:21:40:03:e1: 20:bb:3f:d7:5b:e4:8f:cb:7d:1a:77:ac:5f:1e:37: 09:e4:dc:14:09:28:16:be:3f:72:6b:c1:57:16:6f: d3:7f:d0:ad:58:8a:ee:15:06:04:dc:9d:c8:7b:38: 3f:e2:91:9e:b9:af:25:4c:34:f1:ac:fc:5e:db:90: dc:98:d0:b5:f9:5c:e0:c6:03:6e:7b:d0:1c:d7:38: 7d:06:fa:53:49:1f:92:f8:b0:bc:59:bf:53:62:4c: 72:28:2e:9d:a3:95:da:0b:c7:f9:0b:70:9f:1d:26: ff:07:01:df:4e:4f:fc:44:cf:91:a5:cb:1e:e4:cd: 55:ab:8b:4f:8e:8d:6b:03:be:b7:81:6c:83:ac:2d: f5:f9:d5:82:05:6a:d3:20:c1:d7:8c:8d:d4:ca:10: 2b:1c:11:fb:83:c1:77:85:24:23:32:38:67:4c:c1: 31:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:A5:D2:35:DA:E3:10:A4:DA:07:1F:04:FE:71:A6:3D:E6:94:79:E6 X509v3 Authority Key Identifier: keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/h6XSNdrjEKTaBx8E_nGmPeaUeeY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.128.0/22 Signature Algorithm: sha256WithRSAEncryption 55:d1:aa:ea:a9:a8:fd:29:b7:76:fe:eb:e4:23:be:25:a6:c4: a4:69:d0:f4:b0:83:ae:14:6e:d9:8c:e2:be:4d:3f:9d:3b:5c: 8e:3c:6a:30:49:58:82:64:db:79:54:5b:68:79:0c:76:3c:1e: d0:cd:69:71:81:67:d3:dc:97:b5:bb:b0:2b:e0:33:0f:60:f5: 45:23:cb:3e:c3:d3:47:aa:77:7d:39:eb:4b:1c:8a:14:6d:c6: 96:42:c8:aa:44:d6:a7:f4:7d:b7:1b:04:cf:96:60:8f:df:8c: d2:57:cc:5a:35:30:62:ab:e2:ae:2b:ca:c9:54:c3:42:88:97: 5b:bf:3b:f2:28:7b:9d:d2:d7:b3:35:4f:d7:f5:93:3a:2d:a5: 4e:16:7f:b6:19:90:a9:59:cd:93:52:99:42:fe:4d:ea:ea:f6: af:2d:91:52:87:2c:97:c9:87:1e:4b:e6:01:e2:f1:17:7f:8d: 66:e1:6e:83:b6:e2:3f:f2:af:76:78:a5:7c:11:80:05:6a:72: 00:3b:74:dc:f0:c2:b6:d0:56:fa:1a:eb:f9:b8:7f:b3:ef:26: a8:9c:b0:ae:4c:b8:74:de:46:12:a2:7c:58:d8:4d:be:ed:f3: ca:51:f4:82:d4:1d:b1:96:d4:31:f5:64:5c:6b:9a:01:fb:08: a8:cf:56:50 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC08wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yMzA5MDEw ODM1MTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg3QTVEMjM1REFFMzEw QTREQTA3MUYwNEZFNzFBNjNERTY5NDc5RTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDs4VWQZC7IoLPseKJMgItJPFxb7ukG1P4sZ/K/g0+mu2tfstcR 9jcz9esj+v3GexySt9//ZCtmsBcJ+5mBH2kPtqJQDzFjzIueIhCbtki82QlPlhtC IUAD4SC7P9db5I/LfRp3rF8eNwnk3BQJKBa+P3JrwVcWb9N/0K1Yiu4VBgTcnch7 OD/ikZ65ryVMNPGs/F7bkNyY0LX5XODGA2570BzXOH0G+lNJH5L4sLxZv1NiTHIo Lp2jldoLx/kLcJ8dJv8HAd9OT/xEz5Glyx7kzVWri0+OjWsDvreBbIOsLfX51YIF atMgwdeMjdTKECscEfuDwXeFJCMyOGdMwTHrAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUh6XSNdrjEKTaBx8E/nGmPeaUeeYwHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vaDZYU05kcmpFS1RhQng4 RV9uR21QZWFVZWVZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Amd7gDANBgkqhkiG9w0BAQsFAAOCAQEAVdGq6qmo/Sm3dv7r5CO+JabEpGnQ9LCD rhRu2Yzivk0/nTtcjjxqMElYgmTbeVRbaHkMdjwe0M1pcYFn09yXtbuwK+AzD2D1 RSPLPsPTR6p3fTnrSxyKFG3GlkLIqkTWp/R9txsEz5Zgj9+M0lfMWjUwYqvirivK yVTDQoiXW7878ih7ndLXszVP1/WTOi2lThZ/thmQqVnNk1KZQv5N6ur2ry2RUocs l8mHHkvmAeLxF3+NZuFug7biP/KvdnilfBGABWpyADt03PDCttBW+hrr+bh/s+8m qJywrky4dN5GEqJ8WNhNvu3zylH0gtQdsZbUMfVkXGuaAfsIqM9WUA== -----END CERTIFICATE-----Generated at Mon May 6 00:10:58 2024 by rpki-client on console-fra.rpki-client.org