$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/pzSbRncdjKZ2dWoDzPwPfd18AH0.roa File: pzSbRncdjKZ2dWoDzPwPfd18AH0.roa (raw, json) Hash identifier: GlZyGY1q0Yo/pnAQ0dMnoMehDgAne7qWbzMx1qSyzGE= Subject key identifier: A7:34:9B:46:77:1D:8C:A6:76:75:6A:03:CC:FC:0F:7D:DD:7C:00:7D Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 0E03 Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/pzSbRncdjKZ2dWoDzPwPfd18AH0.roa Signing time: Fri 01 Sep 2023 08:36:22 +0000 ROA not before: Fri 01 Sep 2023 08:36:22 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24168 IP address blocks: 103.136.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 11:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3587 (0xe03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Sep 1 08:36:22 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A7349B46771D8CA676756A03CCFC0F7DDD7C007D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2a:a3:c8:4b:df:9f:dd:5b:35:b4:cb:ee:70: 0c:e0:c3:bc:b5:df:72:18:34:c5:d9:79:90:0e:3f: 45:fd:7c:8a:57:29:43:3d:13:12:53:a7:c7:2f:85: 75:5a:b3:df:1b:15:d7:ca:1a:f0:56:c2:6f:d5:7a: 4b:15:ee:86:a1:75:3e:71:f3:cc:35:00:23:2d:0d: 43:0b:ac:ac:f3:7d:47:81:6b:05:99:3a:34:bd:38: 89:1e:f0:3d:4c:8e:d6:8d:e5:ff:71:7a:89:5b:7c: fe:03:a7:f1:e0:3a:ad:13:1c:25:47:17:3e:d6:09: ab:55:1e:ec:e0:d4:0e:c5:01:b1:4e:5f:95:10:79: 6c:c8:cd:4d:cd:8c:09:8b:a8:a4:ab:ec:ce:d3:13: e1:44:de:22:52:72:64:85:11:17:8b:0b:3c:a6:af: 04:a4:b7:44:70:dd:15:e3:f5:27:8d:76:de:7a:69: e5:af:99:aa:79:23:a5:08:c3:54:c7:be:10:91:15: f6:a4:99:b4:fb:d1:86:e3:5f:78:51:08:8c:64:7a: 8b:ca:9b:ad:f5:98:d7:64:cb:bd:9d:14:31:db:d3: 42:0e:cb:34:30:a6:5a:eb:78:05:69:cc:f3:bc:38: 17:eb:ef:2f:c3:9f:aa:c2:d7:f3:e8:48:9f:33:c8: cf:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:34:9B:46:77:1D:8C:A6:76:75:6A:03:CC:FC:0F:7D:DD:7C:00:7D X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/pzSbRncdjKZ2dWoDzPwPfd18AH0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.60.0/23 Signature Algorithm: sha256WithRSAEncryption 11:78:b2:36:24:45:d4:d9:9c:ff:96:63:4c:f0:66:f9:56:82: 6c:3a:0f:15:26:cc:e8:27:7a:32:99:f3:1d:66:7b:8f:1a:f9: 8f:0e:f2:17:68:84:b4:fd:a4:7e:45:77:b9:09:4b:43:77:70: 63:23:90:70:5f:b1:48:13:e9:41:4c:5d:96:9f:6e:b2:f1:2f: 48:17:fd:2a:a3:93:55:4b:af:f0:39:1e:e4:24:43:e5:d1:ca: 87:de:71:bd:1e:8e:05:d2:23:d3:6c:37:bb:23:0a:ea:14:06: df:03:70:21:b5:3d:89:39:98:62:e4:6f:05:c0:f2:73:29:d5: cd:b3:2c:74:04:ff:0c:2a:46:7e:27:33:fd:be:6c:0f:5d:d2: 64:3d:7a:8c:c1:88:83:48:6f:0d:47:2b:78:b7:84:a2:f1:ee: 93:de:7c:46:ff:7a:6b:7c:0a:56:64:74:f5:cf:e5:e2:e4:13: 70:42:e5:74:2d:0a:88:ef:20:e6:f1:88:30:b8:38:c9:10:e3: 5d:be:71:2a:f1:29:d4:16:62:e8:91:19:44:c9:8b:07:2f:0a: 14:3c:b8:8d:a7:65:c3:77:ae:4d:cd:e5:81:de:11:c5:e1:e3: 87:8c:09:c4:d6:31:ec:16:73:e6:91:ff:d4:16:10:1c:28:6c: 42:30:5f:31 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDgMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yMzA5MDEw ODM2MjJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEE3MzQ5QjQ2NzcxRDhD QTY3Njc1NkEwM0NDRkMwRjdEREQ3QzAwN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyKqPIS9+f3Vs1tMvucAzgw7y133IYNMXZeZAOP0X9fIpXKUM9 ExJTp8cvhXVas98bFdfKGvBWwm/VeksV7oahdT5x88w1ACMtDUMLrKzzfUeBawWZ OjS9OIke8D1MjtaN5f9xeolbfP4Dp/HgOq0THCVHFz7WCatVHuzg1A7FAbFOX5UQ eWzIzU3NjAmLqKSr7M7TE+FE3iJScmSFEReLCzymrwSkt0Rw3RXj9SeNdt56aeWv map5I6UIw1THvhCRFfakmbT70YbjX3hRCIxkeovKm631mNdky72dFDHb00IOyzQw plrreAVpzPO8OBfr7y/Dn6rC1/PoSJ8zyM+HAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUpzSbRncdjKZ2dWoDzPwPfd18AH0wHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL3B6U2JSbmNkaktaMmRXb0R6UHdQZmQx OEFIMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFniDwwDQYJ KoZIhvcNAQELBQADggEBABF4sjYkRdTZnP+WY0zwZvlWgmw6DxUmzOgnejKZ8x1m e48a+Y8O8hdohLT9pH5Fd7kJS0N3cGMjkHBfsUgT6UFMXZafbrLxL0gX/Sqjk1VL r/A5HuQkQ+XRyofecb0ejgXSI9NsN7sjCuoUBt8DcCG1PYk5mGLkbwXA8nMp1c2z LHQE/wwqRn4nM/2+bA9d0mQ9eozBiINIbw1HK3i3hKLx7pPefEb/emt8ClZkdPXP 5eLkE3BC5XQtCojvIObxiDC4OMkQ412+cSrxKdQWYuiRGUTJiwcvChQ8uI2nZcN3 rk3N5YHeEcXh44eMCcTWMewWc+aR/9QWEBwobEIwXzE= -----END CERTIFICATE-----Generated at Sun May 5 03:06:49 2024 by rpki-client on console-fra.rpki-client.org