$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISTVC/SssT5rl3-6HsMu8DoM8pl2zGZWo.roa File: SssT5rl3-6HsMu8DoM8pl2zGZWo.roa (raw, json) Hash identifier: Bt4B3PA8EL7jVbTCGvN+fgPGGW+nuxAIEvcPnoCLtas= Subject key identifier: 4A:CB:13:E6:B9:77:FB:A1:EC:32:EF:03:A0:CF:29:97:6C:C6:65:6A Certificate issuer: /CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02 Certificate serial: 01C9 Authority key identifier: 68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/SssT5rl3-6HsMu8DoM8pl2zGZWo.roa Signing time: Fri 01 Sep 2023 09:04:33 +0000 ROA not before: Fri 01 Sep 2023 09:04:33 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9920 IP address blocks: 103.173.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:28:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02 Validity Not Before: Sep 1 09:04:33 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=4ACB13E6B977FBA1EC32EF03A0CF29976CC6656A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c7:98:c4:f2:76:b6:1a:31:bd:44:f9:44:0d: c4:fc:29:96:5b:7d:9b:e8:58:8b:73:06:98:06:1d: 6c:28:a1:74:bb:87:31:26:d7:95:cf:ef:d3:f0:6b: 04:99:78:ed:1f:1c:b8:9f:19:22:a9:5b:89:6d:06: bf:e5:cb:a2:f4:73:61:73:63:7e:c4:54:cf:a2:fd: ee:12:e3:7e:ba:22:42:3a:57:56:50:f2:46:dd:00: 93:0b:ec:32:83:17:88:67:d2:01:b4:75:b8:5b:63: 8b:2b:f2:e0:b0:b4:e0:83:e0:a9:6f:a9:4f:23:1b: e3:49:29:f7:62:69:49:2d:f7:a2:31:fc:54:e2:c9: d6:ce:e7:8f:f4:49:53:b0:aa:a1:d9:8e:d5:78:69: 40:c7:c4:08:d8:f6:4b:db:ce:ed:53:09:a5:a1:cd: 89:cb:ab:3c:31:e5:b7:38:e6:4e:5c:62:9e:ec:99: cb:ea:bc:21:ea:c1:79:bc:94:3f:d1:cc:57:10:0b: 28:b9:98:ab:0f:fb:50:8c:a6:74:6e:8a:d7:12:6d: eb:cf:cc:6f:c7:38:98:3f:5c:61:06:9f:91:0d:b2: 53:56:ef:34:eb:14:ea:64:fa:a1:83:08:5b:93:53: b4:ec:a8:5b:7f:b2:b5:c9:0a:60:4c:49:e8:f2:86: 3e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:CB:13:E6:B9:77:FB:A1:EC:32:EF:03:A0:CF:29:97:6C:C6:65:6A X509v3 Authority Key Identifier: keyid:68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/SssT5rl3-6HsMu8DoM8pl2zGZWo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.173.95.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:50:09:1d:19:39:dc:e9:1e:3c:d1:af:7b:c4:1b:be:09:f8: f4:6a:a6:5e:85:8c:60:f7:4e:2f:1a:88:bd:4d:68:07:c6:6b: 3d:19:14:9d:38:59:0e:c4:06:6e:f0:da:aa:32:2a:65:5b:e0: cf:85:54:2a:e6:25:ee:b8:46:e1:fe:df:1b:db:e6:28:ed:22: ad:d7:c8:d6:54:80:dd:44:35:64:90:20:4a:d5:8d:79:51:f8: 2b:d2:48:ae:9a:e2:8e:b9:2e:e2:68:48:92:ba:8b:0c:a9:aa: 05:dc:4c:11:21:fe:28:63:5b:07:ee:22:42:cd:54:1b:e7:60: 97:46:fa:b8:49:52:6c:f9:44:dd:78:94:49:cc:d2:b4:58:de: cd:7b:ea:3c:4c:28:10:5b:48:62:5e:86:2d:50:fa:ba:a3:62: 78:13:70:48:38:d9:41:31:05:89:53:59:e6:5e:0e:35:e5:69: 8d:0d:00:11:fe:63:88:84:46:c0:d2:00:3a:8f:51:ea:1c:5f: 98:a5:30:92:88:21:a1:9a:94:a7:e2:e2:57:65:d4:1a:82:93: 37:ee:bf:30:85:3b:f7:94:e4:52:af:14:c2:f0:3e:8e:f6:31: e7:01:4d:70:9e:58:4f:52:82:53:9d:e4:fd:ce:17:22:de:af: bb:40:b7:7d -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjg4 Nzk4NURCMTlFNUZEODJGOTYyQjQyMEVDQzBGQzRFRDczMEQwMjAeFw0yMzA5MDEw OTA0MzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDRBQ0IxM0U2Qjk3N0ZC QTFFQzMyRUYwM0EwQ0YyOTk3NkNDNjY1NkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpx5jE8na2GjG9RPlEDcT8KZZbfZvoWItzBpgGHWwooXS7hzEm 15XP79PwawSZeO0fHLifGSKpW4ltBr/ly6L0c2FzY37EVM+i/e4S4366IkI6V1ZQ 8kbdAJML7DKDF4hn0gG0dbhbY4sr8uCwtOCD4KlvqU8jG+NJKfdiaUkt96Ix/FTi ydbO54/0SVOwqqHZjtV4aUDHxAjY9kvbzu1TCaWhzYnLqzwx5bc45k5cYp7smcvq vCHqwXm8lD/RzFcQCyi5mKsP+1CMpnRuitcSbevPzG/HOJg/XGEGn5ENslNW7zTr FOpk+qGDCFuTU7TsqFt/srXJCmBMSejyhj7XAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUSssT5rl3+6HsMu8DoM8pl2zGZWowHwYDVR0jBBgwFoAUaIeYXbGeX9gvlitC DswPxO1zDQIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNUVkMv YUllWVhiR2VYOWd2bGl0Q0Rzd1B4TzF6RFFJLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9hSWVZWGJHZVg5Z3ZsaXRDRHN3UHhPMXpEUUkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JU1RWQy9Tc3NUNXJsMy02SHNNdThEb004 cGwyekdaV28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ61f MA0GCSqGSIb3DQEBCwUAA4IBAQBtUAkdGTnc6R480a97xBu+Cfj0aqZehYxg904v Goi9TWgHxms9GRSdOFkOxAZu8NqqMiplW+DPhVQq5iXuuEbh/t8b2+Yo7SKt18jW VIDdRDVkkCBK1Y15Ufgr0kiumuKOuS7iaEiSuosMqaoF3EwRIf4oY1sH7iJCzVQb 52CXRvq4SVJs+UTdeJRJzNK0WN7Ne+o8TCgQW0hiXoYtUPq6o2J4E3BIONlBMQWJ U1nmXg415WmNDQAR/mOIhEbA0gA6j1HqHF+YpTCSiCGhmpSn4uJXZdQagpM37r8w hTv3lORSrxTC8D6O9jHnAU1wnlhPUoJTneT9zhci3q+7QLd9 -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:46 2024 by rpki-client on console-ams.rpki-client.org