$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/ZxgVyKlkCD3bpU_Rv86Qkjre1F4.roa File: ZxgVyKlkCD3bpU_Rv86Qkjre1F4.roa (raw, json) Hash identifier: 6DngasE/4Kpt6U9hWuKZd5CQRPPwzeZisiJfQfelfxc= Subject key identifier: 67:18:15:C8:A9:64:08:3D:DB:A5:4F:D1:BF:CE:90:92:3A:DE:D4:5E Certificate issuer: /CN=93D96B0699BEBA157D50548029BC117929AD20E7 Certificate serial: DB Authority key identifier: 93:D9:6B:06:99:BE:BA:15:7D:50:54:80:29:BC:11:79:29:AD:20:E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/k9lrBpm-uhV9UFSAKbwReSmtIOc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/ZxgVyKlkCD3bpU_Rv86Qkjre1F4.roa Signing time: Sat 24 Feb 2024 15:33:02 +0000 ROA not before: Sat 24 Feb 2024 15:33:02 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131149 IP address blocks: 103.118.148.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/k9lrBpm-uhV9UFSAKbwReSmtIOc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/k9lrBpm-uhV9UFSAKbwReSmtIOc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/k9lrBpm-uhV9UFSAKbwReSmtIOc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 17:53:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93D96B0699BEBA157D50548029BC117929AD20E7 Validity Not Before: Feb 24 15:33:02 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=671815C8A964083DDBA54FD1BFCE90923ADED45E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:da:b4:ed:a8:93:15:0b:40:b0:b7:62:5e:f0: f6:9c:ff:fc:f2:e1:24:fb:49:09:a7:e2:cd:8a:3d: c0:95:8a:7e:44:40:67:62:1c:ec:ed:75:bf:26:c8: 34:86:00:b1:36:eb:ef:04:6d:97:2a:ca:05:67:31: 4f:19:39:a5:9f:7d:fc:0d:24:26:d9:13:27:b9:13: 57:61:47:1b:90:1d:88:79:5a:f1:7d:8b:7b:6e:1a: 29:19:2f:6a:49:5f:7f:f5:ad:3e:fc:41:01:4c:06: 45:9d:6f:1f:cd:1a:9b:33:76:ed:fe:98:7a:2d:7a: a7:f3:6d:6c:cc:64:61:74:f5:41:58:c5:d4:fa:79: 9b:2d:ef:16:ca:54:e8:7e:98:ad:7f:ec:97:fb:2f: 3b:fc:8b:11:aa:44:0e:60:f4:69:f0:91:d0:2f:30: 9c:f5:09:2d:9a:ca:92:43:68:2d:fc:8c:2c:01:f4: 88:a5:3a:4e:31:15:4b:d2:43:eb:b4:df:ba:e0:fe: 99:70:5e:f3:85:64:d6:d7:54:95:53:fe:27:0c:22: 4b:a4:d1:95:48:03:d7:5d:ec:98:33:66:73:bc:23: 65:3b:8f:f4:78:0b:0a:dc:87:98:02:76:51:5a:e1: e8:6e:99:c8:59:76:06:2b:78:1f:d6:dc:56:34:56: 4d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:18:15:C8:A9:64:08:3D:DB:A5:4F:D1:BF:CE:90:92:3A:DE:D4:5E X509v3 Authority Key Identifier: keyid:93:D9:6B:06:99:BE:BA:15:7D:50:54:80:29:BC:11:79:29:AD:20:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/k9lrBpm-uhV9UFSAKbwReSmtIOc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/k9lrBpm-uhV9UFSAKbwReSmtIOc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/ZxgVyKlkCD3bpU_Rv86Qkjre1F4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.118.148.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:de:2b:24:80:ba:c2:4b:da:33:2f:87:ce:2e:1a:82:c2:f7: df:e7:09:bf:d9:2a:db:f7:88:6e:d5:8f:f0:e5:31:e3:f7:e2: e6:a2:d3:d1:03:45:9e:00:2f:4e:13:e3:fa:26:37:be:11:73: 0a:a0:b2:19:d2:14:a4:77:90:53:95:10:e1:28:8d:c4:42:da: 0a:c9:67:de:c5:a7:7b:3b:e7:90:58:58:00:ef:9c:f3:55:60: 6a:35:4a:e8:7e:95:c1:a1:41:40:02:bb:f8:dd:31:dd:de:32: e3:e7:01:70:1f:80:08:2c:56:f4:90:de:58:31:33:bc:ee:cc: a7:47:fb:28:ae:a7:3e:6c:b7:ab:98:d7:e7:d3:1b:a8:8a:98: 32:f8:28:4f:20:85:39:77:22:9a:e8:ae:d7:fd:f9:52:90:96: 2b:d7:97:94:3e:cb:af:fc:97:9c:c1:56:bd:e6:e9:ac:09:1a: 47:26:d7:f7:72:70:81:cb:24:4e:90:d7:93:7b:fd:3a:d3:73: 53:a2:e4:98:ec:11:0d:bf:a6:a1:66:79:2a:d5:0f:3d:91:a0: 5d:44:78:f7:36:c8:8d:8e:17:a6:51:03:c2:0e:6e:d5:29:d6: 9a:62:d4:ae:25:17:b8:69:1a:81:72:e1:15:9e:87:a3:f0:7f: 46:76:7a:03 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICANswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTNE OTZCMDY5OUJFQkExNTdENTA1NDgwMjlCQzExNzkyOUFEMjBFNzAeFw0yNDAyMjQx NTMzMDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY3MTgxNUM4QTk2NDA4 M0REQkE1NEZEMUJGQ0U5MDkyM0FERUQ0NUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB2rTtqJMVC0Cwt2Je8Pac//zy4ST7SQmn4s2KPcCVin5EQGdi HOztdb8myDSGALE26+8EbZcqygVnMU8ZOaWfffwNJCbZEye5E1dhRxuQHYh5WvF9 i3tuGikZL2pJX3/1rT78QQFMBkWdbx/NGpszdu3+mHoteqfzbWzMZGF09UFYxdT6 eZst7xbKVOh+mK1/7Jf7Lzv8ixGqRA5g9GnwkdAvMJz1CS2aypJDaC38jCwB9Iil Ok4xFUvSQ+u037rg/plwXvOFZNbXVJVT/icMIkuk0ZVIA9dd7JgzZnO8I2U7j/R4 Cwrch5gCdlFa4ehumchZdgYreB/W3FY0Vk23AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUZxgVyKlkCD3bpU/Rv86Qkjre1F4wHwYDVR0jBBgwFoAUk9lrBpm+uhV9UFSA KbwReSmtIOcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9XTldJ Ti9rOWxyQnBtLXVoVjlVRlNBS2J3UmVTbXRJT2MuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2s5bHJCcG0tdWhWOVVGU0FLYndSZVNtdElPYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RPV05XSU4vWnhnVnlLbGtDRDNicFVf UnY4NlFranJlMUY0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWd2lDANBgkqhkiG9w0BAQsFAAOCAQEALN4rJIC6wkvaMy+Hzi4agsL33+cJv9kq 2/eIbtWP8OUx4/fi5qLT0QNFngAvThPj+iY3vhFzCqCyGdIUpHeQU5UQ4SiNxELa Csln3sWnezvnkFhYAO+c81VgajVK6H6VwaFBQAK7+N0x3d4y4+cBcB+ACCxW9JDe WDEzvO7Mp0f7KK6nPmy3q5jX59MbqIqYMvgoTyCFOXcimuiu1/35UpCWK9eXlD7L r/yXnMFWvebprAkaRybX93JwgcskTpDXk3v9OtNzU6LkmOwRDb+moWZ5KtUPPZGg XUR49zbIjY4XplEDwg5u1SnWmmLUriUXuGkagXLhFZ6Ho/B/RnZ6Aw== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:00 2024 by rpki-client on console-fra.rpki-client.org