$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JFT/ZmXkLSl7i8Aaw8UYkb1A3I8mssE.roa File: ZmXkLSl7i8Aaw8UYkb1A3I8mssE.roa (raw, json) Hash identifier: savPVtMLlxFqp1fgS1E6bO+p+FrOdldp+gGTWeowle0= Subject key identifier: 66:65:E4:2D:29:7B:8B:C0:1A:C3:C5:18:91:BD:40:DC:8F:26:B2:C1 Certificate issuer: /CN=627D675FF5E2C8BA90F4B655B108B6925DAF1595 Certificate serial: 0B Authority key identifier: 62:7D:67:5F:F5:E2:C8:BA:90:F4:B6:55:B1:08:B6:92:5D:AF:15:95 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/ZmXkLSl7i8Aaw8UYkb1A3I8mssE.roa Signing time: Tue 05 Sep 2023 07:56:41 +0000 ROA not before: Tue 05 Sep 2023 07:56:41 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38136 IP address blocks: 103.236.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 14:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=627D675FF5E2C8BA90F4B655B108B6925DAF1595 Validity Not Before: Sep 5 07:56:41 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6665E42D297B8BC01AC3C51891BD40DC8F26B2C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:53:91:42:e9:71:c2:34:ff:25:f9:42:89:6e: 50:1a:a1:c7:57:75:35:bc:f4:83:c5:af:bc:51:58: 21:8a:13:e7:e2:3a:72:31:81:3f:18:36:88:19:45: 1c:f9:a5:c2:74:82:1b:f8:d3:78:2a:b9:2f:df:cc: 9f:6b:4c:fa:76:9b:64:5e:09:69:71:57:9f:92:44: e1:bc:04:60:7c:11:e6:bc:68:25:bc:be:d3:cf:8b: 29:ef:c2:55:bc:0d:72:25:33:f3:c2:56:77:9d:cf: ff:22:66:c8:6b:b8:c3:ba:44:b3:04:88:77:82:df: b6:3e:a7:36:97:78:19:f0:e6:d2:30:d3:6f:d4:ae: 60:7c:5b:79:df:0c:bf:c4:e9:58:11:67:96:11:f0: 5e:0a:8c:fd:01:89:79:01:dd:0b:b8:dc:d8:74:d5: eb:77:52:a4:46:68:75:51:28:85:e8:9a:6a:36:cd: 62:96:8f:83:77:e3:fe:2f:2f:28:11:d3:1d:48:e1: 4d:2c:4a:4c:0d:d6:3e:e3:26:e9:78:14:0e:00:de: b7:34:b3:71:77:b0:4e:df:65:aa:c1:4b:44:c7:94: 5a:cd:dc:98:91:85:c8:b3:56:d9:67:31:b0:07:22: ac:4b:be:07:77:29:83:6e:cc:20:85:e7:2b:1f:bf: 21:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:65:E4:2D:29:7B:8B:C0:1A:C3:C5:18:91:BD:40:DC:8F:26:B2:C1 X509v3 Authority Key Identifier: keyid:62:7D:67:5F:F5:E2:C8:BA:90:F4:B6:55:B1:08:B6:92:5D:AF:15:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/ZmXkLSl7i8Aaw8UYkb1A3I8mssE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.236.226.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:e4:dc:78:38:a1:90:80:67:95:c1:75:e8:a0:b6:32:cd:49: 53:9d:65:c6:66:76:fe:db:88:9f:b9:d4:8f:6f:98:e4:af:64: 01:20:d7:79:c0:dd:4c:75:1a:77:ab:a3:86:8b:7b:3f:04:77: ff:58:80:0f:0b:66:85:40:e5:a0:e1:e7:db:95:44:db:c2:d9: a9:ad:2b:94:04:9f:75:be:dd:77:61:11:b4:91:a2:28:7a:a3: dd:0c:41:23:8e:f4:ec:23:54:f9:69:d3:a0:18:46:87:fa:ec: ec:55:e8:d2:0b:b6:81:fa:98:bd:f9:62:b6:d3:35:b8:ed:18: 91:47:35:7c:57:77:a1:14:fc:25:65:47:6c:ff:61:da:c3:a2: 90:87:00:ce:b3:50:af:c2:ce:15:e8:b6:d9:bd:d2:02:6a:cd: a7:61:5b:a2:2e:bf:c3:5b:bb:ae:d8:37:3f:84:df:c8:64:35: 0c:2c:69:e5:86:9b:a8:b7:aa:c1:3e:c1:b1:7c:ed:27:46:3c: 10:a9:38:4c:5f:69:f8:92:32:0f:4e:c4:1a:d7:9a:6b:50:cd: b5:0b:11:19:82:7d:0a:c5:20:3d:7f:50:c5:2e:d8:19:77:8a: f0:77:cc:27:9b:14:dc:33:0e:0a:43:05:25:9d:10:9a:4a:e1: 1d:22:41:53 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgIBCzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2MjdE Njc1RkY1RTJDOEJBOTBGNEI2NTVCMTA4QjY5MjVEQUYxNTk1MB4XDTIzMDkwNTA3 NTY0MVoXDTI0MDgzMTAzMTA1M1owMzExMC8GA1UEAxMoNjY2NUU0MkQyOTdCOEJD MDFBQzNDNTE4OTFCRDQwREM4RjI2QjJDMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAORTkULpccI0/yX5QoluUBqhx1d1Nbz0g8WvvFFYIYoT5+I6cjGB Pxg2iBlFHPmlwnSCG/jTeCq5L9/Mn2tM+nabZF4JaXFXn5JE4bwEYHwR5rxoJby+ 08+LKe/CVbwNciUz88JWd53P/yJmyGu4w7pEswSId4Lftj6nNpd4GfDm0jDTb9Su YHxbed8Mv8TpWBFnlhHwXgqM/QGJeQHdC7jc2HTV63dSpEZodVEoheiaajbNYpaP g3fj/i8vKBHTHUjhTSxKTA3WPuMm6XgUDgDetzSzcXewTt9lqsFLRMeUWs3cmJGF yLNW2WcxsAcirEu+B3cpg27MIIXnKx+/IbsCAwEAAaOCAegwggHkMB0GA1UdDgQW BBRmZeQtKXuLwBrDxRiRvUDcjyaywTAfBgNVHSMEGDAWgBRifWdf9eLIupD0tlWx CLaSXa8VlTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFkGA1UdHwRSMFAwTqBM oEqGSHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9KRlQvWW4x blhfWGl5THFROUxaVnNRaTJrbDJ2RlpVLmNybDBgBggrBgEFBQcBAQRUMFIwUAYI KwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9Z bjFuWF9YaXlMcVE5TFpWc1FpMmtsMnZGWlUuY2VyMA4GA1UdDwEB/wQEAwIHgDCB mQYIKwYBBQUHAQsEgYwwgYkwVAYIKwYBBQUHMAuGSHJzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS9KRlQvWm1Ya0xTbDdpOEFhdzhVWWtiMUEzSTht c3NFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAv bm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWfs4jANBgkq hkiG9w0BAQsFAAOCAQEACuTceDihkIBnlcF16KC2Ms1JU51lxmZ2/tuIn7nUj2+Y 5K9kASDXecDdTHUad6ujhot7PwR3/1iADwtmhUDloOHn25VE28LZqa0rlASfdb7d d2ERtJGiKHqj3QxBI4707CNU+WnToBhGh/rs7FXo0gu2gfqYvflittM1uO0YkUc1 fFd3oRT8JWVHbP9h2sOikIcAzrNQr8LOFei22b3SAmrNp2Fboi6/w1u7rtg3P4Tf yGQ1DCxp5YabqLeqwT7BsXztJ0Y8EKk4TF9p+JIyD07EGteaa1DNtQsRGYJ9CsUg PX9QxS7YGXeK8HfMJ5sU3DMOCkMFJZ0QmkrhHSJBUw== -----END CERTIFICATE-----Generated at Tue May 21 23:31:03 2024 by rpki-client on console-ams.rpki-client.org