$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GOEASY/cF-Y6fQaMg1ow-IwIHH7RhReiho.roa File: cF-Y6fQaMg1ow-IwIHH7RhReiho.roa (raw, json) Hash identifier: 8lZBxX3UNvASxsdlVifvCkyU5RgNerG7TgN3yRiW37c= Subject key identifier: 70:5F:98:E9:F4:1A:32:0D:68:C3:E2:30:20:71:FB:46:14:5E:8A:1A Certificate issuer: /CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Certificate serial: 0216 Authority key identifier: 66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/cF-Y6fQaMg1ow-IwIHH7RhReiho.roa Signing time: Fri 01 Sep 2023 08:54:18 +0000 ROA not before: Fri 01 Sep 2023 08:54:18 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7483 IP address blocks: 103.170.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:18:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 534 (0x216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Validity Not Before: Sep 1 08:54:18 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=705F98E9F41A320D68C3E2302071FB46145E8A1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:40:bd:1c:bd:ae:8c:64:b6:e6:c7:ed:fb:4c: 99:5b:2d:0e:59:3f:d1:11:94:89:e2:c8:7f:7d:3f: 86:05:4b:2a:5c:2e:a2:b7:21:35:a5:2c:47:8b:86: f5:d5:17:e7:60:f3:b8:7c:d7:0d:37:11:04:1c:1d: e0:15:9f:c3:94:80:5c:11:b2:4c:80:6b:fd:80:80: e8:b1:7c:7e:e0:32:f0:0e:43:8f:9b:1e:43:06:4f: ae:1d:b1:db:3b:93:fb:3e:db:87:bf:fb:b5:3c:99: e1:9e:c4:cd:d0:b8:a2:3a:ab:d8:76:58:83:f3:3d: ee:a7:66:99:1d:5b:c2:a1:17:80:a7:bf:d7:55:00: 79:57:c5:44:0e:78:4f:66:9a:00:20:c8:55:e0:07: 0d:da:ba:78:54:9c:e6:a1:07:bc:c4:8a:da:b5:af: e6:33:25:e6:c6:4b:b8:fa:45:c8:0c:7b:4e:8f:2f: dc:76:5a:4a:0d:d8:0a:9b:66:c7:ff:32:0d:2c:7c: 89:1d:16:42:f9:ae:33:f0:c0:4f:6d:3e:da:be:09: 24:a0:99:a6:50:29:39:72:c0:d8:a3:8f:47:fc:5c: 68:1a:fb:31:1e:40:4d:ca:e6:aa:39:e0:dc:a3:b1: b2:11:78:30:32:cc:86:1a:40:33:f1:59:04:8e:17: 46:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:5F:98:E9:F4:1A:32:0D:68:C3:E2:30:20:71:FB:46:14:5E:8A:1A X509v3 Authority Key Identifier: keyid:66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/cF-Y6fQaMg1ow-IwIHH7RhReiho.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.170.14.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:a7:22:1b:72:bc:f1:be:4e:e5:be:67:bb:a2:79:6e:1b:44: ba:f6:2c:e5:39:8b:78:23:40:b2:ce:f8:94:a3:82:46:ac:f4: d6:44:3e:1d:dd:20:87:5d:92:a1:7b:8f:cb:c2:44:a5:67:fc: b7:6f:f0:e1:5b:79:cb:1e:28:92:94:c9:15:40:23:99:ea:52: 0f:9b:41:cd:5e:de:75:d8:bd:26:7a:85:45:30:8b:0d:22:05: 3f:f2:d1:b2:61:25:f7:29:56:c6:1b:2b:b7:a4:39:60:10:89: 4a:3c:a4:7d:3d:6b:40:a6:87:d2:0e:a0:69:7b:f7:13:53:ff: 5d:5f:da:5c:4d:4b:8f:29:09:ed:fd:8c:f5:b4:aa:f9:c0:70: d9:dc:d4:5f:18:03:df:d1:5d:0e:f1:eb:6d:e2:69:82:0d:d7: 15:ef:d1:91:03:6f:fd:78:e2:1c:e1:2b:a2:f3:b6:de:aa:79: 1f:5e:ce:f1:1f:3e:c3:4a:e7:f1:c0:4d:f8:16:47:b8:30:39: 5f:75:16:b8:c2:30:9b:9b:de:e7:c9:40:f4:63:b2:ad:32:e3: 44:a9:ac:57:67:5a:43:ab:b6:22:5c:9a:e2:7b:ee:d2:17:53: 9e:1f:d1:a3:c5:8e:75:21:79:b8:d0:a6:05:26:dc:18:52:be: 5e:4d:fe:56 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjZC NjlFNUIxNzhCOEM5NDQ0QzRENjRBNjk2M0IwQkM5RkEzNTc2MjAeFw0yMzA5MDEw ODU0MThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDcwNUY5OEU5RjQxQTMy MEQ2OEMzRTIzMDIwNzFGQjQ2MTQ1RThBMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKQL0cva6MZLbmx+37TJlbLQ5ZP9ERlIniyH99P4YFSypcLqK3 ITWlLEeLhvXVF+dg87h81w03EQQcHeAVn8OUgFwRskyAa/2AgOixfH7gMvAOQ4+b HkMGT64dsds7k/s+24e/+7U8meGexM3QuKI6q9h2WIPzPe6nZpkdW8KhF4Cnv9dV AHlXxUQOeE9mmgAgyFXgBw3aunhUnOahB7zEitq1r+YzJebGS7j6RcgMe06PL9x2 WkoN2AqbZsf/Mg0sfIkdFkL5rjPwwE9tPtq+CSSgmaZQKTlywNijj0f8XGga+zEe QE3K5qo54NyjsbIReDAyzIYaQDPxWQSOF0aRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUcF+Y6fQaMg1ow+IwIHH7RhReihowHwYDVR0jBBgwFoAUZraeWxeLjJRExNZK aWOwvJ+jV2IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZ L1pyYWVXeGVMakpSRXhOWkthV093dkotalYySS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvWnJhZVd4ZUxqSlJFeE5aS2FXT3d2Si1qVjJJLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZL2NGLVk2ZlFhTWcxb3ctSXdJ SEg3UmhSZWloby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn qg4wDQYJKoZIhvcNAQELBQADggEBAJ6nIhtyvPG+TuW+Z7uieW4bRLr2LOU5i3gj QLLO+JSjgkas9NZEPh3dIIddkqF7j8vCRKVn/Ldv8OFbecseKJKUyRVAI5nqUg+b Qc1e3nXYvSZ6hUUwiw0iBT/y0bJhJfcpVsYbK7ekOWAQiUo8pH09a0Cmh9IOoGl7 9xNT/11f2lxNS48pCe39jPW0qvnAcNnc1F8YA9/RXQ7x623iaYIN1xXv0ZEDb/14 4hzhK6Lztt6qeR9ezvEfPsNK5/HATfgWR7gwOV91FrjCMJub3ufJQPRjsq0y40Sp rFdnWkOrtiJcmuJ77tIXU54f0aPFjnUhebjQpgUm3BhSvl5N/lY= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:00 2024 by rpki-client on console-fra.rpki-client.org