$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISTVC/5oaEKo0-a1LxCbc0yXqNBaza3ms.roa File: 5oaEKo0-a1LxCbc0yXqNBaza3ms.roa (raw, json) Hash identifier: e4g4ge7mOHY8fJjmZXd2dxYVRxNkskMDBJjfUD5qOz0= Subject key identifier: E6:86:84:2A:8D:3E:6B:52:F1:09:B7:34:C9:7A:8D:05:AC:DA:DE:6B Certificate issuer: /CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02 Certificate serial: 01C8 Authority key identifier: 68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/5oaEKo0-a1LxCbc0yXqNBaza3ms.roa Signing time: Fri 01 Sep 2023 09:04:33 +0000 ROA not before: Fri 01 Sep 2023 09:04:33 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9920 IP address blocks: 103.173.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:28:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02 Validity Not Before: Sep 1 09:04:33 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E686842A8D3E6B52F109B734C97A8D05ACDADE6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2c:3a:b7:3a:e6:e1:a4:2b:47:1a:d0:92:92: 39:8c:09:9c:9a:91:f4:5c:13:82:b4:4d:91:ad:36: 94:9b:f3:a2:1f:00:d2:3e:c4:3a:96:28:ed:e0:14: 9d:e4:ee:26:32:71:11:45:5b:76:4c:a6:f8:e5:c0: 83:dd:bf:9e:e4:74:49:b8:9c:fd:6a:dc:82:21:7c: 94:eb:77:ba:c2:35:79:75:b1:db:e5:86:58:48:33: e4:03:9a:a3:d2:a5:10:1e:8a:d0:d1:f2:fb:5d:fc: f8:d5:95:a1:d5:4b:42:3b:ac:6b:fd:0e:f2:ae:fd: 78:43:f6:cd:92:2a:34:ab:15:a0:f4:61:9e:c3:e0: f0:35:bc:b9:98:f7:1b:19:e3:11:33:de:9e:99:1f: 9a:84:4d:3d:dc:8d:e8:bc:89:26:3a:f5:6a:44:fc: d4:70:f8:15:1d:4b:9c:bc:1d:45:1f:9e:af:c7:1e: 32:67:63:6e:ca:5c:d4:05:6e:48:62:f5:39:a0:c9: 51:ac:a9:6b:83:83:65:75:0e:b2:75:e6:95:6b:e7: 43:be:42:25:8f:fb:b9:0b:35:79:ab:a7:d7:7f:4b: 36:ec:e6:d2:16:b2:43:a9:32:4b:34:f5:08:81:e6: ca:7c:d6:fc:05:46:1a:26:93:49:e0:21:5d:d2:d7: 9b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:86:84:2A:8D:3E:6B:52:F1:09:B7:34:C9:7A:8D:05:AC:DA:DE:6B X509v3 Authority Key Identifier: keyid:68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/5oaEKo0-a1LxCbc0yXqNBaza3ms.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.173.94.0/24 Signature Algorithm: sha256WithRSAEncryption 98:77:bd:08:6a:b5:1d:44:55:14:cc:68:b4:2a:ee:81:2c:37: f1:ec:20:3c:71:6f:4d:42:37:e9:4c:42:45:98:73:71:db:65: 91:81:4c:d0:25:25:08:01:a8:d6:c6:c2:4a:33:cf:d9:e9:41: 97:ba:2d:8e:3d:3d:e7:c5:e5:ec:59:c0:3b:46:00:f7:47:f8: a7:8d:dd:c9:3e:db:e5:05:7d:0c:44:0b:81:25:bd:92:97:6d: 4c:30:20:0a:fb:d2:f7:3c:e0:ff:f2:02:d2:4f:32:b0:3c:d5: 85:cb:fe:c6:d9:9a:63:78:99:2f:45:d0:40:d8:cb:f5:66:86: 23:fa:b4:25:f4:d4:6b:95:43:93:3f:df:7b:a1:12:9f:5f:ba: ca:a8:fc:9a:78:65:a8:55:0a:87:96:3b:11:d7:d6:f1:1b:83: 60:e7:ef:63:8d:63:0b:cd:c4:71:26:08:d4:f3:69:62:84:12: f1:57:a9:72:d8:36:e5:2b:6f:43:cb:47:73:6b:c8:64:04:af: 44:41:5c:cc:84:12:2b:bf:7b:f3:09:f8:6a:dc:61:a3:e8:49: 32:3c:82:c2:10:d6:85:d5:c3:cd:d6:84:8d:f0:f5:82:f1:31: 2b:2a:c4:2e:b0:00:a7:8a:4c:03:ec:bf:53:ed:f2:c3:8b:d9: 40:ac:41:c2 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjg4 Nzk4NURCMTlFNUZEODJGOTYyQjQyMEVDQzBGQzRFRDczMEQwMjAeFw0yMzA5MDEw OTA0MzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU2ODY4NDJBOEQzRTZC NTJGMTA5QjczNEM5N0E4RDA1QUNEQURFNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDELDq3OubhpCtHGtCSkjmMCZyakfRcE4K0TZGtNpSb86IfANI+ xDqWKO3gFJ3k7iYycRFFW3ZMpvjlwIPdv57kdEm4nP1q3IIhfJTrd7rCNXl1sdvl hlhIM+QDmqPSpRAeitDR8vtd/PjVlaHVS0I7rGv9DvKu/XhD9s2SKjSrFaD0YZ7D 4PA1vLmY9xsZ4xEz3p6ZH5qETT3cjei8iSY69WpE/NRw+BUdS5y8HUUfnq/HHjJn Y27KXNQFbkhi9TmgyVGsqWuDg2V1DrJ15pVr50O+QiWP+7kLNXmrp9d/Szbs5tIW skOpMks09QiB5sp81vwFRhomk0ngIV3S15stAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU5oaEKo0+a1LxCbc0yXqNBaza3mswHwYDVR0jBBgwFoAUaIeYXbGeX9gvlitC DswPxO1zDQIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNUVkMv YUllWVhiR2VYOWd2bGl0Q0Rzd1B4TzF6RFFJLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9hSWVZWGJHZVg5Z3ZsaXRDRHN3UHhPMXpEUUkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JU1RWQy81b2FFS28wLWExTHhDYmMweVhx TkJhemEzbXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ61e MA0GCSqGSIb3DQEBCwUAA4IBAQCYd70IarUdRFUUzGi0Ku6BLDfx7CA8cW9NQjfp TEJFmHNx22WRgUzQJSUIAajWxsJKM8/Z6UGXui2OPT3nxeXsWcA7RgD3R/injd3J PtvlBX0MRAuBJb2Sl21MMCAK+9L3POD/8gLSTzKwPNWFy/7G2ZpjeJkvRdBA2Mv1 ZoYj+rQl9NRrlUOTP997oRKfX7rKqPyaeGWoVQqHljsR19bxG4Ng5+9jjWMLzcRx JgjU82lihBLxV6ly2DblK29Dy0dza8hkBK9EQVzMhBIrv3vzCfhq3GGj6EkyPILC ENaF1cPN1oSN8PWC8TErKsQusACnikwD7L9T7fLDi9lArEHC -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:46 2024 by rpki-client on console-ams.rpki-client.org