$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JDA/Jmi20eo3Fvjvkmq45wGoiin7iH0.roa File: Jmi20eo3Fvjvkmq45wGoiin7iH0.roa (raw, json) Hash identifier: jGFuR3xTbksoY5ETSwK3NeOHwWENa5vuc0MLZ3mBHIA= Subject key identifier: 26:68:B6:D1:EA:37:16:F8:EF:92:6A:B8:E7:01:A8:8A:29:FB:88:7D Certificate issuer: /CN=86F6D06B4049386A106E5ED22656A93D9F355274 Certificate serial: 05 Authority key identifier: 86:F6:D0:6B:40:49:38:6A:10:6E:5E:D2:26:56:A9:3D:9F:35:52:74 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/Jmi20eo3Fvjvkmq45wGoiin7iH0.roa Signing time: Wed 06 Dec 2023 07:13:48 +0000 ROA not before: Wed 06 Dec 2023 07:13:48 +0000 ROA not after: Thu 28 Nov 2024 15:30:20 +0000 asID: 18041 IP address blocks: 210.79.154.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 11:31:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86F6D06B4049386A106E5ED22656A93D9F355274 Validity Not Before: Dec 6 07:13:48 2023 GMT Not After : Nov 28 15:30:20 2024 GMT Subject: CN=2668B6D1EA3716F8EF926AB8E701A88A29FB887D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:04:a2:e2:78:c3:9f:d1:e1:43:e3:ab:65:36: f3:c2:d1:c6:4b:a4:86:7d:e8:55:67:d7:39:9d:af: 79:a1:da:fe:df:72:bc:eb:ee:59:4c:4f:c7:83:7a: 75:f4:83:f0:ee:07:9c:b1:d2:2f:c4:e4:cd:b0:0b: 42:0c:7b:34:f6:14:15:95:35:5f:3f:17:81:a1:11: 7b:83:cf:f5:16:06:c5:83:ba:ac:9e:1f:d7:dd:b6: 0f:e1:1c:0a:34:3f:9b:78:27:f7:b0:79:0e:93:31: 7a:1d:08:73:42:3e:09:8e:b2:eb:b2:fa:20:bd:2d: 7c:07:ae:25:91:3f:af:c4:84:02:93:ea:bb:8f:c4: 35:87:d5:8e:4e:f0:67:63:0f:3d:e8:10:a5:62:48: fe:99:d1:9b:cc:10:28:cb:f7:95:98:4f:32:63:4b: 70:72:ce:fd:e8:e9:18:8d:b8:cc:52:94:6f:88:65: 57:8a:8a:c1:49:44:b9:da:e2:3b:bd:f5:8b:88:b5: db:31:68:62:4c:10:f2:45:47:3c:d4:b1:e7:9d:92: 5f:76:39:b8:ca:a7:24:ab:fa:2e:9b:4c:75:60:b6: 54:fe:31:52:39:dd:75:ae:72:52:6c:47:ad:78:6f: 70:fc:9b:06:aa:ed:08:0b:8d:11:36:ce:bc:85:9b: 44:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:68:B6:D1:EA:37:16:F8:EF:92:6A:B8:E7:01:A8:8A:29:FB:88:7D X509v3 Authority Key Identifier: keyid:86:F6:D0:6B:40:49:38:6A:10:6E:5E:D2:26:56:A9:3D:9F:35:52:74 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/hvbQa0BJOGoQbl7SJlapPZ81UnQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JDA/Jmi20eo3Fvjvkmq45wGoiin7iH0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.79.154.0/23 Signature Algorithm: sha256WithRSAEncryption b4:d5:62:1e:7d:28:9b:f4:79:fc:5c:f8:36:86:67:f0:db:07: db:8d:4c:1e:d8:05:ff:4e:63:3c:86:56:9c:ef:15:1e:38:34: c1:53:f7:da:3e:c2:bf:42:13:16:d3:2c:a4:ba:69:9b:fd:84: 07:2f:b1:75:28:5c:a9:37:68:60:1a:98:3a:db:e3:a2:ea:78: 42:ff:99:95:7a:ca:cf:27:1f:f5:51:be:7e:6a:3b:d9:7d:72: 87:04:da:f8:a6:93:f0:c3:72:79:f2:cb:19:2a:c6:62:79:82: 09:00:0c:c4:12:86:c1:ce:e0:3e:69:94:a4:f7:52:02:33:4f: 3f:2e:49:7a:bb:3f:06:8b:c1:86:6b:ff:3a:4d:47:ca:4b:76: eb:5b:f7:22:ff:81:c9:fb:c9:28:65:e0:bc:bb:40:d7:3f:94: c0:2a:2c:64:21:ea:36:97:25:d7:78:32:ab:85:c2:a3:69:52: 56:8e:b2:49:6e:a7:2d:5b:4d:78:b9:b2:56:b6:4d:c6:1d:b7: 9a:cc:ac:78:05:c2:74:3e:5b:17:38:af:03:51:b0:db:61:8b: 88:6a:ef:19:da:5f:5a:97:72:2b:9d:21:40:f7:2f:b8:ce:b4: 57:84:58:5b:20:aa:b4:f9:5e:87:8f:bb:7d:42:38:f1:ad:30: 40:93:90:88 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4NkY2 RDA2QjQwNDkzODZBMTA2RTVFRDIyNjU2QTkzRDlGMzU1Mjc0MB4XDTIzMTIwNjA3 MTM0OFoXDTI0MTEyODE1MzAyMFowMzExMC8GA1UEAxMoMjY2OEI2RDFFQTM3MTZG OEVGOTI2QUI4RTcwMUE4OEEyOUZCODg3RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJUEouJ4w5/R4UPjq2U288LRxkukhn3oVWfXOZ2veaHa/t9yvOvu WUxPx4N6dfSD8O4HnLHSL8TkzbALQgx7NPYUFZU1Xz8XgaERe4PP9RYGxYO6rJ4f 1922D+EcCjQ/m3gn97B5DpMxeh0Ic0I+CY6y67L6IL0tfAeuJZE/r8SEApPqu4/E NYfVjk7wZ2MPPegQpWJI/pnRm8wQKMv3lZhPMmNLcHLO/ejpGI24zFKUb4hlV4qK wUlEudriO731i4i12zFoYkwQ8kVHPNSx552SX3Y5uMqnJKv6LptMdWC2VP4xUjnd da5yUmxHrXhvcPybBqrtCAuNETbOvIWbRNUCAwEAAaOCAegwggHkMB0GA1UdDgQW BBQmaLbR6jcW+O+SarjnAaiKKfuIfTAfBgNVHSMEGDAWgBSG9tBrQEk4ahBuXtIm Vqk9nzVSdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFkGA1UdHwRSMFAwTqBM oEqGSHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9KREEvaHZi UWEwQkpPR29RYmw3U0psYXBQWjgxVW5RLmNybDBgBggrBgEFBQcBAQRUMFIwUAYI KwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9o dmJRYTBCSk9Hb1FibDdTSmxhcFBaODFVblEuY2VyMA4GA1UdDwEB/wQEAwIHgDCB mQYIKwYBBQUHAQsEgYwwgYkwVAYIKwYBBQUHMAuGSHJzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS9KREEvSm1pMjBlbzNGdmp2a21xNDV3R29paW43 aUgwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAv bm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAdJPmjANBgkq hkiG9w0BAQsFAAOCAQEAtNViHn0om/R5/Fz4NoZn8NsH241MHtgF/05jPIZWnO8V Hjg0wVP32j7Cv0ITFtMspLppm/2EBy+xdShcqTdoYBqYOtvjoup4Qv+ZlXrKzycf 9VG+fmo72X1yhwTa+KaT8MNyefLLGSrGYnmCCQAMxBKGwc7gPmmUpPdSAjNPPy5J ers/BovBhmv/Ok1Hykt261v3Iv+ByfvJKGXgvLtA1z+UwCosZCHqNpcl13gyq4XC o2lSVo6ySW6nLVtNeLmyVrZNxh23msyseAXCdD5bFzivA1Gw22GLiGrvGdpfWpdy K50hQPcvuM60V4RYWyCqtPleh4+7fUI48a0wQJOQiA== -----END CERTIFICATE-----Generated at Tue Jun 4 20:03:02 2024 by rpki-client on console-ams.rpki-client.org