$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/sDpCn0BZde0kescbXBRMZ3siLq0.roa File: sDpCn0BZde0kescbXBRMZ3siLq0.roa (raw, json) Hash identifier: 5JAfOUhHSbNp04dVzdj6PPMHOPDaz65piW00CABRWEM= Subject key identifier: B0:3A:42:9F:40:59:75:ED:24:7A:C7:1B:5C:14:4C:67:7B:22:2E:AD Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 0E0D Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/sDpCn0BZde0kescbXBRMZ3siLq0.roa Signing time: Fri 01 Sep 2023 08:36:25 +0000 ROA not before: Fri 01 Sep 2023 08:36:25 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18424 IP address blocks: 103.136.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 11:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3597 (0xe0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Sep 1 08:36:25 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B03A429F405975ED247AC71B5C144C677B222EAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3c:5d:ef:78:0a:63:70:1d:dc:f3:1a:e3:84: 47:7c:84:5c:71:c9:d7:1b:90:44:ef:0d:5e:a0:48: 79:fb:78:02:2d:66:7f:06:36:13:8c:0e:aa:67:50: 6d:2e:db:4e:9c:64:c7:59:cc:1f:e0:36:e1:12:12: e5:34:b4:3f:e5:8b:3e:92:07:f3:25:90:4b:a8:14: 22:a0:6b:24:e2:f3:83:b4:a3:3b:46:b7:94:fe:85: 75:4b:ca:7e:ae:26:4d:c8:2e:1d:cc:6e:e7:d7:ad: fd:c5:39:23:3d:d8:72:1b:29:ca:7d:b8:c1:1b:9e: 2d:68:65:bf:61:e9:ca:6f:19:ad:51:c2:7e:27:5a: 60:53:3c:6e:2d:a0:d9:c7:86:c2:ad:5a:29:2f:b3: fe:f8:c9:95:4c:70:8a:57:b0:ef:5c:45:7d:75:c2: 60:de:47:a9:0e:5a:a6:bb:b5:b8:43:3e:75:e3:2e: c8:50:4a:73:40:5f:f8:86:8d:fe:89:71:b3:ee:19: c4:4b:4d:1a:40:df:fe:69:65:b2:f4:9b:65:29:83: f4:59:ec:b4:27:f3:79:72:56:07:c8:1b:2e:c7:43: d6:07:53:7a:f4:d2:67:b9:59:f2:33:46:eb:ac:e1: 59:ab:31:74:8a:97:91:f1:4c:c1:ed:c3:cb:6d:56: a7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:3A:42:9F:40:59:75:ED:24:7A:C7:1B:5C:14:4C:67:7B:22:2E:AD X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/sDpCn0BZde0kescbXBRMZ3siLq0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.61.0/24 Signature Algorithm: sha256WithRSAEncryption 20:15:3b:c8:be:2f:d3:cb:16:2f:77:13:b6:5b:25:50:0b:91: 47:7b:04:be:1a:44:78:97:73:fd:4b:85:dc:fe:cc:dd:b9:bd: bb:3c:dc:3e:37:2a:f4:06:35:aa:11:50:07:02:c9:fa:68:8f: e3:e8:90:40:ae:ba:e2:2b:0c:fe:5a:90:93:7e:6c:fe:cb:b9: 25:be:0f:10:bd:72:65:7c:09:7f:68:a5:16:39:eb:96:a6:38: 55:6e:d6:45:9d:2b:56:eb:0e:fb:88:48:77:63:7a:70:f4:16: c5:cc:80:7f:d6:bf:60:b1:8f:5a:b7:dc:82:75:85:39:c8:55: 15:d7:87:64:b8:fe:13:82:fc:66:f4:92:5b:0a:5c:49:bb:10: 8a:e5:40:0b:67:c5:63:57:ae:80:94:0a:5d:ab:1e:8f:92:46: 8b:bb:a2:99:49:22:d7:9a:1f:e7:70:90:b0:89:a2:5e:64:68: c5:2a:5a:71:54:cd:82:b4:c5:d2:ca:29:cc:e7:fe:21:50:11: 54:ad:02:98:ba:8d:72:25:09:fc:6f:ef:e6:76:c3:ad:f7:c9: fb:a7:63:22:c6:f9:65:21:f3:d4:5b:80:ef:78:e1:bc:ba:58: 5e:8a:c8:e6:2a:39:f1:b9:ba:c0:3a:99:d1:16:5e:de:06:66: 0d:86:df:c8 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDg0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yMzA5MDEw ODM2MjVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEIwM0E0MjlGNDA1OTc1 RUQyNDdBQzcxQjVDMTQ0QzY3N0IyMjJFQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRPF3veApjcB3c8xrjhEd8hFxxydcbkETvDV6gSHn7eAItZn8G NhOMDqpnUG0u206cZMdZzB/gNuESEuU0tD/liz6SB/MlkEuoFCKgayTi84O0oztG t5T+hXVLyn6uJk3ILh3MbufXrf3FOSM92HIbKcp9uMEbni1oZb9h6cpvGa1Rwn4n WmBTPG4toNnHhsKtWikvs/74yZVMcIpXsO9cRX11wmDeR6kOWqa7tbhDPnXjLshQ SnNAX/iGjf6JcbPuGcRLTRpA3/5pZbL0m2Upg/RZ7LQn83lyVgfIGy7HQ9YHU3r0 0me5WfIzRuus4VmrMXSKl5HxTMHtw8ttVqcFAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUsDpCn0BZde0kescbXBRMZ3siLq0wHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL3NEcENuMEJaZGUwa2VzY2JYQlJNWjNz aUxxMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniD0wDQYJ KoZIhvcNAQELBQADggEBACAVO8i+L9PLFi93E7ZbJVALkUd7BL4aRHiXc/1Lhdz+ zN25vbs83D43KvQGNaoRUAcCyfpoj+PokECuuuIrDP5akJN+bP7LuSW+DxC9cmV8 CX9opRY565amOFVu1kWdK1brDvuISHdjenD0FsXMgH/Wv2Cxj1q33IJ1hTnIVRXX h2S4/hOC/Gb0klsKXEm7EIrlQAtnxWNXroCUCl2rHo+SRou7oplJIteaH+dwkLCJ ol5kaMUqWnFUzYK0xdLKKczn/iFQEVStApi6jXIlCfxv7+Z2w633yfunYyLG+WUh 89RbgO944by6WF6KyOYqOfG5usA6mdEWXt4GZg2G38g= -----END CERTIFICATE-----Generated at Thu May 2 03:38:33 2024 by rpki-client on console-ams.rpki-client.org