$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ITRINET/ALpT1cKgPmI3XBZ1XBtOTlj_OEM.roa File: ALpT1cKgPmI3XBZ1XBtOTlj_OEM.roa (raw, json) Hash identifier: FBo6yZoEYBACUgYFlXbutEBRGtUtMLWjqZHNOd0SRgg= Subject key identifier: 00:BA:53:D5:C2:A0:3E:62:37:5C:16:75:5C:1B:4E:4E:58:FF:38:43 Certificate issuer: /CN=2F9BECFFE7DA09CA053A2F9681412B19FB004A74 Certificate serial: 0B22 Authority key identifier: 2F:9B:EC:FF:E7:DA:09:CA:05:3A:2F:96:81:41:2B:19:FB:00:4A:74 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/L5vs_-faCcoFOi-WgUErGfsASnQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/ALpT1cKgPmI3XBZ1XBtOTlj_OEM.roa Signing time: Fri 01 Sep 2023 09:11:02 +0000 ROA not before: Fri 01 Sep 2023 09:11:02 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18422 IP address blocks: 2001:ed8::/32 maxlen: 56 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/L5vs_-faCcoFOi-WgUErGfsASnQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/L5vs_-faCcoFOi-WgUErGfsASnQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/L5vs_-faCcoFOi-WgUErGfsASnQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2850 (0xb22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F9BECFFE7DA09CA053A2F9681412B19FB004A74 Validity Not Before: Sep 1 09:11:02 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=00BA53D5C2A03E62375C16755C1B4E4E58FF3843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1f:93:dd:45:80:af:de:dd:fc:ce:4d:0d:b1: eb:8c:e6:89:f6:d1:e2:8e:5f:bb:ea:80:b8:fb:71: 8a:14:ef:63:8c:09:4f:bc:c4:0c:cb:4a:f7:e2:57: eb:3b:86:a7:11:45:9d:d6:b3:ca:ae:3f:de:87:5b: 63:61:63:70:0c:4c:06:14:cd:9d:d6:46:0d:08:64: e1:a1:7c:cd:55:06:0a:64:b6:0d:53:f8:36:92:6e: 81:3e:a5:28:14:2b:56:06:4d:5b:12:8e:1e:92:4b: 52:ad:5d:d5:bb:49:34:93:3d:58:9d:94:f3:d6:53: b6:30:76:73:2a:39:1b:3f:31:9d:14:c1:c6:df:d4: 1e:bd:c7:52:bd:4f:f1:24:29:9f:c9:35:93:e6:9a: 0b:fd:f0:e6:e1:47:16:68:1b:3d:a4:0f:9d:71:6a: 32:e0:36:e4:64:9e:bd:13:16:eb:58:3e:b6:46:28: 9d:9f:82:b7:e6:3a:f0:41:80:4b:eb:69:e9:88:89: 65:1a:76:ce:6d:e0:c3:04:2a:82:90:17:b5:84:71: 1f:03:6e:32:20:ea:e4:7c:c2:e8:eb:d4:71:6e:1b: 71:32:e4:8a:2f:fe:b8:ea:5e:e8:16:43:2d:f0:d4: 0c:cd:2d:7f:14:89:86:d4:95:51:6b:06:35:db:23: 73:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:BA:53:D5:C2:A0:3E:62:37:5C:16:75:5C:1B:4E:4E:58:FF:38:43 X509v3 Authority Key Identifier: keyid:2F:9B:EC:FF:E7:DA:09:CA:05:3A:2F:96:81:41:2B:19:FB:00:4A:74 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/L5vs_-faCcoFOi-WgUErGfsASnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/L5vs_-faCcoFOi-WgUErGfsASnQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/ALpT1cKgPmI3XBZ1XBtOTlj_OEM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:ed8::/32 Signature Algorithm: sha256WithRSAEncryption 8a:7c:29:02:9d:e5:a4:06:83:75:82:14:50:c6:3f:ca:72:d5: 32:9f:71:54:95:ae:a0:b1:e8:03:d4:cb:8f:73:b7:19:4f:ef: f7:62:da:17:e8:32:d1:c0:ac:77:87:14:42:a7:89:77:4e:6c: a3:c6:3c:9d:95:99:38:d4:0f:00:28:32:47:3a:15:0b:8f:fd: c3:3a:99:00:2a:ed:9b:bf:16:08:a4:32:f6:1d:4f:63:f2:8b: 2f:b8:55:d6:e8:16:2f:b6:71:04:63:1b:6b:cb:b0:32:6e:0a: fb:df:12:d8:cb:b5:46:eb:b5:f2:0b:f0:35:22:4f:90:fb:01: 0f:a2:df:5b:19:15:d9:0f:e0:1b:07:3f:28:fe:ec:f7:5b:db: b1:3d:83:80:a6:e4:02:30:67:6e:d9:36:e7:b9:0d:68:55:47: 3a:fb:95:22:0a:62:5d:bb:63:fc:83:3a:93:a0:dd:7d:c9:88: 74:e8:01:8b:24:99:08:24:76:89:01:92:c6:e9:48:f0:1d:2d: 62:28:39:9d:b4:0e:63:b4:9a:3a:c4:cd:18:8f:d6:2e:7b:34: 6c:20:72:a4:dd:af:fd:de:0d:e4:5d:9b:8e:71:5e:d1:21:b2: b1:ee:3d:78:be:e9:ee:5a:c7:b3:e4:3a:6a:09:30:9e:57:65: 96:c0:e8:87 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICCyIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkY5 QkVDRkZFN0RBMDlDQTA1M0EyRjk2ODE0MTJCMTlGQjAwNEE3NDAeFw0yMzA5MDEw OTExMDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAwQkE1M0Q1QzJBMDNF NjIzNzVDMTY3NTVDMUI0RTRFNThGRjM4NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvH5PdRYCv3t38zk0NseuM5on20eKOX7vqgLj7cYoU72OMCU+8 xAzLSvfiV+s7hqcRRZ3Ws8quP96HW2NhY3AMTAYUzZ3WRg0IZOGhfM1VBgpktg1T +DaSboE+pSgUK1YGTVsSjh6SS1KtXdW7STSTPVidlPPWU7YwdnMqORs/MZ0Uwcbf 1B69x1K9T/EkKZ/JNZPmmgv98ObhRxZoGz2kD51xajLgNuRknr0TFutYPrZGKJ2f grfmOvBBgEvraemIiWUads5t4MMEKoKQF7WEcR8DbjIg6uR8wujr1HFuG3Ey5Iov /rjqXugWQy3w1AzNLX8UiYbUlVFrBjXbI3NRAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUALpT1cKgPmI3XBZ1XBtOTlj/OEMwHwYDVR0jBBgwFoAUL5vs/+faCcoFOi+W gUErGfsASnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVRSSU5F VC9MNXZzXy1mYUNjb0ZPaS1XZ1VFckdmc0FTblEuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0w1dnNfLWZhQ2NvRk9pLVdnVUVyR2ZzQVNuUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0lUUklORVQvQUxwVDFjS2dQbUkzWEJa MVhCdE9UbGpfT0VNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACABDtgwDQYJKoZIhvcNAQELBQADggEBAIp8KQKd5aQGg3WCFFDGP8py1TKfcVSV rqCx6APUy49ztxlP7/di2hfoMtHArHeHFEKniXdObKPGPJ2VmTjUDwAoMkc6FQuP /cM6mQAq7Zu/FgikMvYdT2Pyiy+4VdboFi+2cQRjG2vLsDJuCvvfEtjLtUbrtfIL 8DUiT5D7AQ+i31sZFdkP4BsHPyj+7Pdb27E9g4Cm5AIwZ27ZNue5DWhVRzr7lSIK Yl27Y/yDOpOg3X3JiHToAYskmQgkdokBksbpSPAdLWIoOZ20DmO0mjrEzRiP1i57 NGwgcqTdr/3eDeRdm45xXtEhsrHuPXi+6e5ax7PkOmoJMJ5XZZbA6Ic= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:46 2024 by rpki-client on console-ams.rpki-client.org