$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/c0yiDKdsWsvnmkET03G4Si67Gt8.roa File: c0yiDKdsWsvnmkET03G4Si67Gt8.roa (raw, json) Hash identifier: LJ1AdrSTobitmcHLJFU7Ldp6k+jb5DdIBmI6+FFk0Lk= Subject key identifier: 73:4C:A2:0C:A7:6C:5A:CB:E7:9A:41:13:D3:71:B8:4A:2E:BB:1A:DF Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 0E02 Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/c0yiDKdsWsvnmkET03G4Si67Gt8.roa Signing time: Fri 01 Sep 2023 08:36:22 +0000 ROA not before: Fri 01 Sep 2023 08:36:22 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18424 IP address blocks: 103.136.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 11:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3586 (0xe02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Sep 1 08:36:22 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=734CA20CA76C5ACBE79A4113D371B84A2EBB1ADF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:73:a6:f9:63:e1:13:19:f2:22:3c:62:5a:aa: 74:3d:21:eb:89:64:c4:38:86:ee:fa:29:5a:f8:99: 61:ac:09:c3:7f:15:49:e8:5d:1e:ee:46:f7:fa:ab: 90:e3:c4:40:b4:ba:0e:ca:43:60:2c:37:75:d4:e5: cc:c1:00:90:2d:7b:4d:bc:8e:0f:33:08:2c:45:e6: 17:e9:70:ce:8a:f3:bb:ff:0f:cf:58:0d:9a:df:d8: 31:ef:cf:08:77:ab:74:c8:25:83:97:b8:bb:5b:b0: 24:14:99:f0:f9:66:a3:94:dc:5c:28:77:91:e9:4d: b6:5b:2e:61:2d:24:5c:9c:fa:c1:8b:33:5e:87:bf: d1:ef:50:bf:2d:b8:13:67:16:7f:f2:cc:31:d6:07: 88:f1:48:b7:56:f2:0b:fa:06:c7:1e:1d:f6:d9:fa: 53:9a:53:63:a0:93:08:23:76:a2:f0:3f:0f:4a:1e: e6:6b:25:59:9e:9a:cd:1e:e9:c7:cc:f0:a3:f4:32: 4f:9e:9a:e1:9a:e9:1e:fb:c7:ba:b0:94:94:80:7b: af:1b:73:fe:cb:5b:c7:fa:82:2d:76:e6:f5:7c:3a: fd:80:2b:85:38:80:68:e3:3d:50:96:da:37:65:80: 2d:a3:d1:36:3b:89:c2:72:77:c0:7c:32:2e:71:68: 1e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:4C:A2:0C:A7:6C:5A:CB:E7:9A:41:13:D3:71:B8:4A:2E:BB:1A:DF X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/c0yiDKdsWsvnmkET03G4Si67Gt8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.60.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:f8:cf:35:7d:9c:25:5b:48:bf:b3:e2:72:03:a1:3c:5e:19: 70:76:14:20:90:32:29:0b:61:eb:c8:20:3b:34:f7:95:db:2a: c4:6d:80:33:2a:3a:51:1b:64:13:ad:b2:f8:ab:22:c7:80:f3: fa:ae:e8:63:cb:30:dd:28:23:c0:82:fb:55:d9:04:d5:86:12: 90:e5:07:4b:dd:a9:19:88:8e:64:92:00:df:e6:43:68:a7:13: 41:a1:eb:8f:c4:1a:1d:5f:dc:f3:b6:a9:65:b8:1d:71:0a:4c: d4:74:76:15:85:09:86:81:df:5b:6f:48:c8:92:8a:f7:8c:e6: 17:38:22:f5:07:f2:d7:56:07:03:ee:26:69:da:0c:63:d5:ab: 0d:83:1a:0e:96:fa:d3:a1:d2:b0:78:f3:84:01:14:5d:64:b0: 6b:d9:e6:82:91:cf:d4:4d:30:b1:65:3a:86:40:fd:19:b7:f2: 71:20:d5:7c:8c:92:9a:84:01:db:99:eb:74:24:ec:65:d4:00: b0:3d:60:13:b3:42:e3:1d:6f:36:12:53:fa:f6:e4:32:21:91: c6:8c:e7:63:d2:8d:1f:2a:e2:05:aa:19:a6:96:19:f8:92:49: ce:f1:29:bf:bd:48:49:c9:0c:32:13:f7:d0:7e:ec:b8:49:89: 88:1c:2c:e9 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDgIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yMzA5MDEw ODM2MjJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDczNENBMjBDQTc2QzVB Q0JFNzlBNDExM0QzNzFCODRBMkVCQjFBREYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxc6b5Y+ETGfIiPGJaqnQ9IeuJZMQ4hu76KVr4mWGsCcN/FUno XR7uRvf6q5DjxEC0ug7KQ2AsN3XU5czBAJAte028jg8zCCxF5hfpcM6K87v/D89Y DZrf2DHvzwh3q3TIJYOXuLtbsCQUmfD5ZqOU3Fwod5HpTbZbLmEtJFyc+sGLM16H v9HvUL8tuBNnFn/yzDHWB4jxSLdW8gv6BsceHfbZ+lOaU2OgkwgjdqLwPw9KHuZr JVmems0e6cfM8KP0Mk+emuGa6R77x7qwlJSAe68bc/7LW8f6gi125vV8Ov2AK4U4 gGjjPVCW2jdlgC2j0TY7icJyd8B8Mi5xaB6zAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUc0yiDKdsWsvnmkET03G4Si67Gt8wHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL2MweWlES2RzV3N2bm1rRVQwM0c0U2k2 N0d0OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFniDwwDQYJ KoZIhvcNAQELBQADggEBAC74zzV9nCVbSL+z4nIDoTxeGXB2FCCQMikLYevIIDs0 95XbKsRtgDMqOlEbZBOtsvirIseA8/qu6GPLMN0oI8CC+1XZBNWGEpDlB0vdqRmI jmSSAN/mQ2inE0Gh64/EGh1f3PO2qWW4HXEKTNR0dhWFCYaB31tvSMiSiveM5hc4 IvUH8tdWBwPuJmnaDGPVqw2DGg6W+tOh0rB484QBFF1ksGvZ5oKRz9RNMLFlOoZA /Rm38nEg1XyMkpqEAduZ63Qk7GXUALA9YBOzQuMdbzYSU/r25DIhkcaM52PSjR8q 4gWqGaaWGfiSSc7xKb+9SEnJDDIT99B+7LhJiYgcLOk= -----END CERTIFICATE-----Generated at Thu May 2 03:38:33 2024 by rpki-client on console-ams.rpki-client.org