$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/lT9ey3XRf6E8WPdjf2UMHs8sroc.roa File: lT9ey3XRf6E8WPdjf2UMHs8sroc.roa (raw, json) Hash identifier: Sm8r834Lu24C9wWeD1+r4ZIZkJb6e8v0CjdZNOtHE5E= Subject key identifier: 95:3F:5E:CB:75:D1:7F:A1:3C:58:F7:63:7F:65:0C:1E:CF:2C:AE:87 Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 056E Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/lT9ey3XRf6E8WPdjf2UMHs8sroc.roa Signing time: Fri 01 Sep 2023 09:00:33 +0000 ROA not before: Fri 01 Sep 2023 09:00:33 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9678 IP address blocks: 2401:95c0:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 15:25:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1390 (0x56e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Sep 1 09:00:33 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=953F5ECB75D17FA13C58F7637F650C1ECF2CAE87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:42:e7:35:8b:9a:a6:78:df:62:36:7b:0a:af: 09:b9:0a:1d:cb:6b:37:92:73:f8:eb:26:bb:52:58: 9d:04:31:11:3c:ba:10:c0:49:c3:e0:55:29:69:4c: 47:77:ff:8a:77:69:99:bc:7a:22:0e:ac:01:16:96: 53:6d:35:c5:e0:86:7a:eb:f5:96:6f:e0:70:d5:68: 8e:82:e0:da:d5:a6:97:9c:64:fb:cb:d3:70:79:86: 56:5c:86:67:d2:e1:75:02:40:0e:9d:ba:62:33:22: e5:2a:21:6e:4b:8a:21:d9:ec:cb:7c:24:75:45:51: 0e:a9:e4:1a:05:5a:b9:43:c0:4c:a5:ae:5d:19:a6: 68:f6:67:07:0f:31:d9:63:8a:99:2a:e3:79:6e:f6: 57:1b:5d:9e:03:50:03:12:68:50:3f:1b:9b:0c:69: a4:6e:73:d4:ce:22:bb:61:77:f0:80:6b:97:15:4f: 52:17:40:0a:8f:9e:ca:fe:10:e1:bd:d6:ea:7b:96: 4f:10:a0:04:f6:eb:7a:9a:be:67:77:2e:3c:c8:54: 28:98:f7:14:cf:04:e5:30:18:d6:b6:70:32:c3:61: 7d:0c:d1:e0:07:bb:16:b2:9e:f0:29:ea:7b:05:72: cf:18:9f:19:2f:a9:fb:4b:a0:9b:09:4c:af:6f:bb: 43:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:3F:5E:CB:75:D1:7F:A1:3C:58:F7:63:7F:65:0C:1E:CF:2C:AE:87 X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/lT9ey3XRf6E8WPdjf2UMHs8sroc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:95c0:2000::/36 Signature Algorithm: sha256WithRSAEncryption 00:2f:f1:42:85:fa:e0:4c:fc:43:f2:a1:d8:69:5e:77:c9:df: f6:38:e4:46:bd:37:28:76:57:90:07:56:5e:22:3f:99:19:fb: 2b:f7:db:ec:71:da:6e:f8:be:84:16:09:d8:a8:df:9a:e0:21: bd:21:79:60:6a:72:2c:df:62:b9:52:e1:91:6b:3b:1b:33:22: fe:9e:68:80:62:cc:a0:fe:00:7a:a0:e9:86:97:f5:bf:7e:08: 75:5e:94:cf:18:80:62:67:6f:f6:b1:0b:57:74:ae:30:e7:ef: 65:53:a1:a7:0e:09:27:18:38:4c:ec:7d:0c:5a:7d:dc:9f:5f: bc:e5:a1:f8:c9:f6:a2:38:28:c5:93:1f:26:89:8e:c3:31:f2: 72:ed:40:57:1d:c6:1b:31:3c:d1:80:05:8b:a7:c9:c2:f1:51: 8a:6b:1a:df:80:2b:38:3f:fd:80:e0:2b:9d:ea:20:2e:8d:ec: 9e:33:39:61:db:c0:76:7f:f8:be:ed:ab:f8:47:9a:29:f3:e9: dd:61:47:f8:d2:65:ee:aa:23:80:dd:74:67:61:9e:5e:b2:02: 8a:26:67:a6:81:26:5d:af:4b:76:e0:4e:1c:f2:b4:46:5f:df: 3b:44:09:62:50:7f:39:ff:b3:00:63:46:e6:fc:65:3f:c3:2d: 10:5c:17:4f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBW4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yMzA5MDEw OTAwMzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDk1M0Y1RUNCNzVEMTdG QTEzQzU4Rjc2MzdGNjUwQzFFQ0YyQ0FFODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbQuc1i5qmeN9iNnsKrwm5Ch3LazeSc/jrJrtSWJ0EMRE8uhDA ScPgVSlpTEd3/4p3aZm8eiIOrAEWllNtNcXghnrr9ZZv4HDVaI6C4NrVppecZPvL 03B5hlZchmfS4XUCQA6dumIzIuUqIW5LiiHZ7Mt8JHVFUQ6p5BoFWrlDwEylrl0Z pmj2ZwcPMdljipkq43lu9lcbXZ4DUAMSaFA/G5sMaaRuc9TOIrthd/CAa5cVT1IX QAqPnsr+EOG91up7lk8QoAT263qavmd3LjzIVCiY9xTPBOUwGNa2cDLDYX0M0eAH uxaynvAp6nsFcs8YnxkvqftLoJsJTK9vu0NjAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUlT9ey3XRf6E8WPdjf2UMHs8srocwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL2xUOWV5M1hSZjZFOFdQZGpm MlVNSHM4c3JvYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk AZXAIDANBgkqhkiG9w0BAQsFAAOCAQEAAC/xQoX64Ez8Q/Kh2Gled8nf9jjkRr03 KHZXkAdWXiI/mRn7K/fb7HHabvi+hBYJ2KjfmuAhvSF5YGpyLN9iuVLhkWs7GzMi /p5ogGLMoP4AeqDphpf1v34IdV6UzxiAYmdv9rELV3SuMOfvZVOhpw4JJxg4TOx9 DFp93J9fvOWh+Mn2ojgoxZMfJomOwzHycu1AVx3GGzE80YAFi6fJwvFRimsa34Ar OD/9gOArneogLo3snjM5YdvAdn/4vu2r+EeaKfPp3WFH+NJl7qojgN10Z2GeXrIC iiZnpoEmXa9LduBOHPK0Rl/fO0QJYlB/Of+zAGNG5vxlP8MtEFwXTw== -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:35 2024 by rpki-client on console-ams.rpki-client.org