$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/xP7gyPd69P1Cb_JM_o921nTxiuQ.roa File: xP7gyPd69P1Cb_JM_o921nTxiuQ.roa (raw, json) Hash identifier: jjQpDD6GRHEhEajuzHqX5TZiQiIqypi+80oQhywMQZY= Subject key identifier: C4:FE:E0:C8:F7:7A:F4:FD:42:6F:F2:4C:FE:8F:76:D6:74:F1:8A:E4 Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Certificate serial: 0BD6 Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/xP7gyPd69P1Cb_JM_o921nTxiuQ.roa Signing time: Mon 11 Mar 2024 07:49:23 +0000 ROA not before: Mon 11 Mar 2024 07:49:23 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131662 IP address blocks: 103.135.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:09:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3030 (0xbd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Validity Not Before: Mar 11 07:49:23 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C4FEE0C8F77AF4FD426FF24CFE8F76D674F18AE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:73:a8:26:fa:14:40:14:15:3b:76:2a:23:d3: 77:cd:83:11:b2:f5:e4:71:47:74:ac:e5:ff:be:cc: 49:01:86:3c:47:ed:e0:48:2e:d0:5d:a9:86:f8:43: d5:6f:7e:ba:19:b7:c3:bb:4f:52:d1:29:41:af:7e: d7:43:48:b8:c3:69:9c:dd:80:79:88:6e:8a:52:08: 2d:7b:64:6e:0b:0b:97:20:7d:cb:2f:d6:89:6f:d4: 37:9a:cf:d5:08:5a:c5:d0:24:cb:bd:fd:1c:82:06: 77:b0:bd:4a:1c:ed:21:80:37:08:e1:49:1f:13:13: b0:44:5d:7c:98:4a:f6:b7:e9:e9:3d:12:a0:e4:b3: 19:f7:3c:0e:5e:72:d4:27:63:5e:07:64:e6:ca:df: 66:58:8b:88:b6:67:6f:04:dc:34:50:af:87:6b:c3: f3:13:bc:8a:4f:d1:d9:f0:da:86:32:46:5b:03:d2: a2:ea:23:60:64:42:8c:ad:81:8f:53:a1:a3:2d:6a: da:93:aa:3b:5d:13:49:99:66:01:1d:90:4b:72:c4: 08:4c:72:fe:8a:06:53:8b:0d:88:a7:71:5a:47:6a: 60:fa:c6:29:f5:45:78:3c:ea:94:bc:c3:1d:15:9b: 09:bb:1e:01:11:ee:5f:7f:86:4a:28:9c:ef:a8:73: f0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:FE:E0:C8:F7:7A:F4:FD:42:6F:F2:4C:FE:8F:76:D6:74:F1:8A:E4 X509v3 Authority Key Identifier: keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/xP7gyPd69P1Cb_JM_o921nTxiuQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.18.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:f4:bd:c0:5c:3f:24:aa:ab:ba:a6:f6:93:e8:ae:96:96:52: 72:6e:f8:c5:4c:e1:af:40:c5:92:f9:c1:29:c0:c5:ac:eb:11: 0d:5d:62:33:00:c6:52:c6:9f:a2:86:91:63:bb:34:07:fd:2d: 1a:ed:f7:b0:35:6c:21:19:12:26:dc:33:40:dd:bd:4e:7f:6a: a8:f4:3c:21:d4:a0:f4:a0:23:77:11:8d:de:71:c4:38:0e:dc: a3:68:1c:86:8f:32:a1:b9:b2:8f:01:99:dd:4d:76:cd:e5:a4: d7:c6:b9:74:d7:28:f7:61:bb:1a:53:57:06:16:fe:de:86:b1: 01:ea:12:78:ab:a3:bb:e6:48:a7:15:9c:9a:38:99:1e:8f:14: 30:35:b5:fa:cd:98:c9:9a:d6:42:d9:bf:6d:25:d0:eb:f5:d8: 60:16:d5:9d:a9:93:ce:69:ac:55:af:50:ae:1a:11:c3:ce:be: d9:8a:38:b3:01:fd:da:de:d9:f5:54:6c:ed:62:95:e5:9c:2f: 02:ac:80:cb:8e:a8:25:b7:dd:98:b0:d4:82:0c:45:c4:92:46: 70:2b:be:c4:ee:cf:c8:f9:4c:28:f7:5f:7e:e1:0b:cb:97:e7: a6:ea:1d:72:a6:ff:24:04:2b:88:63:83:2c:1c:6c:f0:45:52: 50:9c:27:89 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC9YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yNDAzMTEw NzQ5MjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM0RkVFMEM4Rjc3QUY0 RkQ0MjZGRjI0Q0ZFOEY3NkQ2NzRGMThBRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoc6gm+hRAFBU7dioj03fNgxGy9eRxR3Ss5f++zEkBhjxH7eBI LtBdqYb4Q9VvfroZt8O7T1LRKUGvftdDSLjDaZzdgHmIbopSCC17ZG4LC5cgfcsv 1olv1Deaz9UIWsXQJMu9/RyCBnewvUoc7SGANwjhSR8TE7BEXXyYSva36ek9EqDk sxn3PA5ectQnY14HZObK32ZYi4i2Z28E3DRQr4drw/MTvIpP0dnw2oYyRlsD0qLq I2BkQoytgY9ToaMtatqTqjtdE0mZZgEdkEtyxAhMcv6KBlOLDYincVpHamD6xin1 RXg86pS8wx0Vmwm7HgER7l9/hkoonO+oc/AXAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUxP7gyPd69P1Cb/JM/o921nTxiuQwHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8veFA3Z3lQZDY5UDFDYl9K TV9vOTIxblR4aXVRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGeHEjANBgkqhkiG9w0BAQsFAAOCAQEAXvS9wFw/JKqruqb2k+iulpZScm74xUzh r0DFkvnBKcDFrOsRDV1iMwDGUsafooaRY7s0B/0tGu33sDVsIRkSJtwzQN29Tn9q qPQ8IdSg9KAjdxGN3nHEOA7co2gcho8yobmyjwGZ3U12zeWk18a5dNco92G7GlNX Bhb+3oaxAeoSeKuju+ZIpxWcmjiZHo8UMDW1+s2YyZrWQtm/bSXQ6/XYYBbVnamT zmmsVa9QrhoRw86+2Yo4swH92t7Z9VRs7WKV5ZwvAqyAy46oJbfdmLDUggxFxJJG cCu+xO7PyPlMKPdffuELy5fnpuodcqb/JAQriGODLBxs8EVSUJwniQ== -----END CERTIFICATE-----Generated at Mon May 6 16:42:12 2024 by rpki-client on console-ams.rpki-client.org