$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTBC/5bhGTQ78SwiJYu0Q3cw_NTbOsCU.roa File: 5bhGTQ78SwiJYu0Q3cw_NTbOsCU.roa (raw, json) Hash identifier: YBDNf75NDFJaLpTUw+LnNLJD/n+/ssrycGFOmxvw8E8= Subject key identifier: E5:B8:46:4D:0E:FC:4B:08:89:62:ED:10:DD:CC:3F:35:36:CE:B0:25 Certificate issuer: /CN=DBA793D0FFE611AC397F197570E19785046EE739 Certificate serial: 0B25 Authority key identifier: DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/5bhGTQ78SwiJYu0Q3cw_NTbOsCU.roa Signing time: Fri 01 Sep 2023 08:55:15 +0000 ROA not before: Fri 01 Sep 2023 08:55:15 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18413 IP address blocks: 61.65.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:23:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2853 (0xb25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBA793D0FFE611AC397F197570E19785046EE739 Validity Not Before: Sep 1 08:55:15 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E5B8464D0EFC4B088962ED10DDCC3F3536CEB025 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:79:02:45:6b:7f:a4:f9:e7:68:60:8e:17:c7: 47:c5:69:02:19:de:c4:cd:1f:57:7d:46:ca:c9:27: ab:c6:b5:94:e0:8f:78:f7:9d:ec:10:1f:9f:cd:69: 87:44:97:19:ee:17:fe:d2:3e:7c:ff:be:6a:ba:e9: 44:d2:43:87:2a:dd:a9:2e:fb:99:f6:08:cf:6f:07: d4:9c:64:d8:09:58:39:73:79:c1:f6:fd:7f:b8:ed: 10:62:d5:e5:85:ad:01:02:02:75:96:73:65:cc:69: 70:f9:d4:9f:4f:fa:36:28:5c:99:16:08:54:5b:a4: 4a:dc:3b:de:31:0c:7d:02:39:88:5b:46:14:9f:29: bf:f2:5a:1c:85:64:76:8d:19:a9:cd:01:48:3e:35: e4:a3:b4:f5:cc:0f:a3:97:84:a9:ee:51:c6:1d:18: 33:9b:2a:6f:a4:3b:22:46:d9:60:89:51:5d:b5:8d: 62:bd:aa:4e:5a:94:e3:6c:14:d3:44:f4:c7:aa:b5: 44:4a:e7:c3:3f:6b:3f:60:c6:40:97:1a:c9:d9:dd: 47:e3:dd:df:95:2b:71:ae:1c:fb:3f:da:0e:43:c5: 31:ec:9f:67:06:26:b9:fe:19:ad:ee:cd:bd:96:8b: 2c:21:9a:f2:1a:af:c1:a8:e7:84:ae:45:9a:09:ce: dd:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:B8:46:4D:0E:FC:4B:08:89:62:ED:10:DD:CC:3F:35:36:CE:B0:25 X509v3 Authority Key Identifier: keyid:DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/5bhGTQ78SwiJYu0Q3cw_NTbOsCU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.65.192.0/19 Signature Algorithm: sha256WithRSAEncryption 09:ce:af:d8:0a:c5:8e:a0:8c:70:53:56:38:60:66:4f:b4:72: 1c:c2:37:d1:7f:2a:01:66:c8:2f:33:29:d8:78:74:4e:40:29: 4c:e1:13:9e:66:52:3c:81:16:ff:66:fe:61:12:ec:34:ee:75: 1d:fe:2e:d4:7f:e6:eb:7f:ba:02:60:e3:36:86:b8:08:ae:7d: ca:c1:ce:e5:89:41:96:64:ac:d5:9d:be:7b:00:b4:c7:33:34: db:39:cc:69:fe:2a:c8:af:a4:b4:ef:69:86:e5:55:6c:6d:8c: 70:25:8b:7f:f8:af:c5:ca:33:bf:b5:2d:fa:49:ab:23:a7:b1: a5:bc:18:25:77:98:cf:01:d2:52:26:ca:a9:bb:99:12:7e:fb: 92:81:9e:cd:68:e9:5d:4d:06:79:1c:a0:5f:d2:bf:79:32:50: 0f:83:de:24:cb:65:14:74:55:e9:6d:75:19:5d:d0:b9:c2:da: b4:2f:7b:81:e3:82:3c:ad:87:15:69:34:60:d7:22:91:38:0f: ca:57:99:bf:7b:b5:6f:ea:ab:36:7b:ac:93:67:4d:a5:9b:6c: 3b:20:9d:59:1d:8d:43:00:d6:07:35:08:a4:3a:5e:94:0f:cf: ed:ab:7d:f8:12:a9:8b:02:f6:ad:21:50:41:d2:79:25:1a:fd: a5:1d:5e:5c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICCyUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREJB NzkzRDBGRkU2MTFBQzM5N0YxOTc1NzBFMTk3ODUwNDZFRTczOTAeFw0yMzA5MDEw ODU1MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU1Qjg0NjREMEVGQzRC MDg4OTYyRUQxMEREQ0MzRjM1MzZDRUIwMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCUeQJFa3+k+edoYI4Xx0fFaQIZ3sTNH1d9RsrJJ6vGtZTgj3j3 newQH5/NaYdElxnuF/7SPnz/vmq66UTSQ4cq3aku+5n2CM9vB9ScZNgJWDlzecH2 /X+47RBi1eWFrQECAnWWc2XMaXD51J9P+jYoXJkWCFRbpErcO94xDH0COYhbRhSf Kb/yWhyFZHaNGanNAUg+NeSjtPXMD6OXhKnuUcYdGDObKm+kOyJG2WCJUV21jWK9 qk5alONsFNNE9MeqtURK58M/az9gxkCXGsnZ3Ufj3d+VK3GuHPs/2g5DxTHsn2cG Jrn+Ga3uzb2WiywhmvIar8Go54SuRZoJzt2DAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU5bhGTQ78SwiJYu0Q3cw/NTbOsCUwHwYDVR0jBBgwFoAU26eT0P/mEaw5fxl1 cOGXhQRu5zkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1RCQy8y NmVUMFBfbUVhdzVmeGwxY09HWGhRUnU1emsuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzI2ZVQwUF9tRWF3NWZ4bDFjT0dYaFFSdTV6ay5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0dUQkMvNWJoR1RRNzhTd2lKWXUwUTNjd19O VGJPc0NVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBT1BwDAN BgkqhkiG9w0BAQsFAAOCAQEACc6v2ArFjqCMcFNWOGBmT7RyHMI30X8qAWbILzMp 2Hh0TkApTOETnmZSPIEW/2b+YRLsNO51Hf4u1H/m63+6AmDjNoa4CK59ysHO5YlB lmSs1Z2+ewC0xzM02znMaf4qyK+ktO9phuVVbG2McCWLf/ivxcozv7Ut+kmrI6ex pbwYJXeYzwHSUibKqbuZEn77koGezWjpXU0GeRygX9K/eTJQD4PeJMtlFHRV6W11 GV3QucLatC97geOCPK2HFWk0YNcikTgPyleZv3u1b+qrNnusk2dNpZtsOyCdWR2N QwDWBzUIpDpelA/P7at9+BKpiwL2rSFQQdJ5JRr9pR1eXA== -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:39 2024 by rpki-client on console-fra.rpki-client.org