$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GOEASY/FXX1Is6nUkzCoJ3gcgCHpXv-bRg.roa File: FXX1Is6nUkzCoJ3gcgCHpXv-bRg.roa (raw, json) Hash identifier: M15mxBjy74rG4TX862NLPKGSH9cBaIr8yXXssb6poOk= Subject key identifier: 15:75:F5:22:CE:A7:52:4C:C2:A0:9D:E0:72:00:87:A5:7B:FE:6D:18 Certificate issuer: /CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Certificate serial: 0217 Authority key identifier: 66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/FXX1Is6nUkzCoJ3gcgCHpXv-bRg.roa Signing time: Fri 01 Sep 2023 08:54:18 +0000 ROA not before: Fri 01 Sep 2023 08:54:18 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7483 IP address blocks: 103.170.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:18:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Validity Not Before: Sep 1 08:54:18 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=1575F522CEA7524CC2A09DE0720087A57BFE6D18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fd:ee:51:3a:23:b0:fe:a6:dd:cb:1b:0d:ec: ee:1e:e9:bf:df:07:25:27:cd:ee:2d:19:ce:2a:45: 0c:81:5a:44:83:12:54:62:a6:e6:f6:56:55:c8:8d: 76:2b:e5:65:e5:a4:58:62:f2:08:f3:e9:26:9d:bf: d9:1c:3e:60:4f:ac:1d:b1:b0:b4:53:a7:6e:9f:eb: 4e:5d:fa:4b:67:65:17:2b:40:61:69:e7:69:be:b9: a6:b5:fb:d5:d6:2e:b5:13:13:0d:ec:a3:91:c3:4d: 20:1a:3b:7e:25:b3:3e:07:1a:ae:d9:db:51:78:77: 96:15:22:a4:98:22:82:55:9f:8a:1e:93:2b:55:30: 02:0c:30:cf:f7:92:f5:32:ab:c3:86:fd:d5:65:12: bf:a1:19:dd:c3:54:72:42:7d:ea:8e:c7:6b:96:14: 57:fc:24:bd:f0:76:4b:5c:9e:cc:c4:f7:f4:52:88: 67:26:00:eb:c7:bd:82:9b:5f:54:ee:a1:8d:bf:a0: 49:9c:e6:e2:2f:9f:34:75:3d:3d:dc:f2:13:a7:d1: b9:64:0f:03:e1:36:f5:06:5b:f5:75:60:94:68:1b: a9:e1:b8:c3:27:6e:7f:e4:a0:5a:ea:5f:6e:69:31: d6:54:68:ca:f7:32:b4:1a:3a:99:bd:0c:8d:b7:4a: fb:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:75:F5:22:CE:A7:52:4C:C2:A0:9D:E0:72:00:87:A5:7B:FE:6D:18 X509v3 Authority Key Identifier: keyid:66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/FXX1Is6nUkzCoJ3gcgCHpXv-bRg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.170.15.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:f2:de:f9:11:70:f4:64:6b:9c:ec:c2:b5:d3:a7:57:30:d9: de:22:06:5c:55:aa:9c:81:5f:2c:96:11:d4:11:bd:12:7f:fa: ac:50:fa:e1:f2:57:b0:7c:b0:37:81:ac:cf:cd:b7:30:e1:2a: 64:a7:27:56:1d:69:2e:b6:48:97:34:1e:6b:d7:1e:9f:56:3c: ec:59:4b:79:f4:ea:54:ae:85:c2:9d:cd:d7:d0:ae:51:d9:94: 7b:f5:9f:72:bd:b9:38:c6:38:ca:cf:3d:c0:a5:90:1a:98:77: 65:0b:1f:c7:f8:4f:68:b5:47:67:a4:ee:60:f1:45:69:04:84: 51:b6:0a:2c:bd:71:37:09:d7:cc:05:13:51:f7:87:b7:58:a8: bd:b8:fd:1d:f8:e8:c7:b9:56:70:a9:f3:3c:4e:97:a5:0c:15: f4:e8:cb:e7:f0:3e:b9:81:98:58:80:b5:d5:a5:a3:b5:96:fd: 10:da:b7:7d:df:a8:c8:28:34:01:51:f1:73:d1:0d:02:9c:c6: bf:ed:56:e6:fe:3b:e4:9f:42:79:e4:64:1a:8d:5b:05:a0:d4: 55:a1:ae:d3:8d:e8:ae:38:ac:28:81:84:ed:bc:30:2c:7b:da: ee:d9:de:ad:21:4f:e9:62:6a:0a:42:a3:e1:f9:37:d8:75:f4: 4d:ae:83:1b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjZC NjlFNUIxNzhCOEM5NDQ0QzRENjRBNjk2M0IwQkM5RkEzNTc2MjAeFw0yMzA5MDEw ODU0MThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE1NzVGNTIyQ0VBNzUy NENDMkEwOURFMDcyMDA4N0E1N0JGRTZEMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDS/e5ROiOw/qbdyxsN7O4e6b/fByUnze4tGc4qRQyBWkSDElRi pub2VlXIjXYr5WXlpFhi8gjz6Sadv9kcPmBPrB2xsLRTp26f605d+ktnZRcrQGFp 52m+uaa1+9XWLrUTEw3so5HDTSAaO34lsz4HGq7Z21F4d5YVIqSYIoJVn4oekytV MAIMMM/3kvUyq8OG/dVlEr+hGd3DVHJCfeqOx2uWFFf8JL3wdktcnszE9/RSiGcm AOvHvYKbX1TuoY2/oEmc5uIvnzR1PT3c8hOn0blkDwPhNvUGW/V1YJRoG6nhuMMn bn/koFrqX25pMdZUaMr3MrQaOpm9DI23SvtbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFXX1Is6nUkzCoJ3gcgCHpXv+bRgwHwYDVR0jBBgwFoAUZraeWxeLjJRExNZK aWOwvJ+jV2IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZ L1pyYWVXeGVMakpSRXhOWkthV093dkotalYySS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvWnJhZVd4ZUxqSlJFeE5aS2FXT3d2Si1qVjJJLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZL0ZYWDFJczZuVWt6Q29KM2dj Z0NIcFh2LWJSZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn qg8wDQYJKoZIhvcNAQELBQADggEBAGvy3vkRcPRka5zswrXTp1cw2d4iBlxVqpyB XyyWEdQRvRJ/+qxQ+uHyV7B8sDeBrM/NtzDhKmSnJ1YdaS62SJc0HmvXHp9WPOxZ S3n06lSuhcKdzdfQrlHZlHv1n3K9uTjGOMrPPcClkBqYd2ULH8f4T2i1R2ek7mDx RWkEhFG2Ciy9cTcJ18wFE1H3h7dYqL24/R346Me5VnCp8zxOl6UMFfToy+fwPrmB mFiAtdWlo7WW/RDat33fqMgoNAFR8XPRDQKcxr/tVub+O+SfQnnkZBqNWwWg1FWh rtON6K44rCiBhO28MCx72u7Z3q0hT+liagpCo+H5N9h19E2ugxs= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:00 2024 by rpki-client on console-fra.rpki-client.org