$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/9n17SLvMm2FNZs44cLvOdqEUVGw.roa File: 9n17SLvMm2FNZs44cLvOdqEUVGw.roa (raw, json) Hash identifier: XFLwOdL2bU9Obyz6X/jkcSbp0yhuU8HBMi+bA0VKJT8= Subject key identifier: F6:7D:7B:48:BB:CC:9B:61:4D:66:CE:38:70:BB:CE:76:A1:14:54:6C Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0C10 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/9n17SLvMm2FNZs44cLvOdqEUVGw.roa Signing time: Fri 01 Sep 2023 09:13:56 +0000 ROA not before: Fri 01 Sep 2023 09:13:56 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9918 IP address blocks: 211.78.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3088 (0xc10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Sep 1 09:13:56 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F67D7B48BBCC9B614D66CE3870BBCE76A114546C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4a:86:dc:11:7d:cc:0b:ad:44:8b:bb:e2:96: bf:3f:c2:21:b1:66:c7:ff:b8:b9:02:a6:bc:a6:af: 9b:09:f9:d2:e1:9c:e0:d9:a6:33:bb:0e:c9:82:1a: 01:b7:8c:27:c2:22:33:50:4a:ee:79:46:47:fa:98: 9d:f1:09:92:d6:d0:20:6e:4f:d0:d0:0c:d4:12:b6: 84:2b:e1:86:d3:62:2e:7e:ee:7a:82:f9:f5:9c:a4: cb:6f:a5:72:c2:9e:a8:5e:6e:d2:98:ca:c1:db:bd: 47:16:30:98:de:28:fd:41:36:8f:e7:92:ac:ae:53: a8:9f:73:c2:f7:0c:3b:3d:3b:2c:f5:03:94:6b:1a: ba:50:25:d3:09:83:b5:51:fc:52:b5:a7:3c:8f:cb: 81:d4:b0:41:76:07:f3:e9:f8:37:ff:e1:2f:40:cf: 81:a3:c1:95:0c:30:ef:62:87:19:28:e9:6b:58:be: b4:05:cf:22:74:11:14:d9:6f:d5:3c:25:aa:ea:52: 25:a6:b3:b3:0d:9f:1b:0d:b8:fb:ce:40:9f:f4:1f: 47:f4:96:2c:a4:a7:29:06:08:42:ef:47:67:8c:18: a4:43:fb:d5:d4:fc:4a:1b:78:98:b7:0d:67:32:22: 3c:46:8b:c8:91:fe:e9:4b:ba:f9:8e:a5:ec:4b:57: 2d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:7D:7B:48:BB:CC:9B:61:4D:66:CE:38:70:BB:CE:76:A1:14:54:6C X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/9n17SLvMm2FNZs44cLvOdqEUVGw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.0.0/18 Signature Algorithm: sha256WithRSAEncryption 40:3c:2c:a6:16:ed:50:7e:5b:a4:23:5e:db:2c:27:ba:58:78: fa:dd:5d:2c:ad:aa:6a:2c:6c:dd:e8:7c:e6:e3:aa:3a:e4:56: d4:ea:37:89:8f:fd:87:db:94:9f:43:22:9a:56:f1:8a:df:22: c0:f9:ac:ac:db:f0:de:31:6c:45:60:da:d6:b2:96:96:aa:01: 5b:49:a0:e6:b4:01:ba:df:f5:5e:37:d7:a8:ab:c7:ac:05:41: a0:50:cb:23:a0:c7:48:c5:a0:2f:a5:85:2e:9f:ec:24:25:81: a3:79:7b:02:01:5c:e5:23:6e:f3:f1:d0:00:53:73:f3:52:5a: 61:8a:0c:20:8a:f2:f4:17:6a:95:a3:1b:dd:6b:51:50:c8:59: 07:b5:db:7d:6d:4d:8f:a4:5a:aa:08:6f:b3:e5:27:7e:06:4b: 9d:43:1c:f4:f0:ae:50:c2:d2:70:d4:62:48:68:08:d7:64:df: 64:b0:66:52:94:7f:9c:21:56:1f:81:34:f3:11:5d:d5:f4:60: c9:77:d1:9e:c0:7f:fc:38:81:74:d0:be:3a:8a:e0:1a:f1:84: 24:e4:49:de:5e:6b:2c:02:45:cf:f3:da:d5:bc:e1:13:58:28: e9:0f:30:2f:2b:c4:ff:ea:1d:bb:e1:48:5a:88:c1:d0:0d:5e: 9c:c1:cb:b4 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDBAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMzA5MDEw OTEzNTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY2N0Q3QjQ4QkJDQzlC NjE0RDY2Q0UzODcwQkJDRTc2QTExNDU0NkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDSobcEX3MC61Ei7vilr8/wiGxZsf/uLkCprymr5sJ+dLhnODZ pjO7DsmCGgG3jCfCIjNQSu55Rkf6mJ3xCZLW0CBuT9DQDNQStoQr4YbTYi5+7nqC +fWcpMtvpXLCnqhebtKYysHbvUcWMJjeKP1BNo/nkqyuU6ifc8L3DDs9Oyz1A5Rr GrpQJdMJg7VR/FK1pzyPy4HUsEF2B/Pp+Df/4S9Az4GjwZUMMO9ihxko6WtYvrQF zyJ0ERTZb9U8JarqUiWms7MNnxsNuPvOQJ/0H0f0liykpykGCELvR2eMGKRD+9XU /EobeJi3DWcyIjxGi8iR/ulLuvmOpexLVy3TAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU9n17SLvMm2FNZs44cLvOdqEUVGwwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzluMTdTTHZNbTJGTlpzNDRjTHZPZHFF VVZHdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbTTgAwDQYJ KoZIhvcNAQELBQADggEBAEA8LKYW7VB+W6QjXtssJ7pYePrdXSytqmosbN3ofObj qjrkVtTqN4mP/YfblJ9DIppW8YrfIsD5rKzb8N4xbEVg2taylpaqAVtJoOa0Abrf 9V4316irx6wFQaBQyyOgx0jFoC+lhS6f7CQlgaN5ewIBXOUjbvPx0ABTc/NSWmGK DCCK8vQXapWjG91rUVDIWQe1231tTY+kWqoIb7PlJ34GS51DHPTwrlDC0nDUYkho CNdk32SwZlKUf5whVh+BNPMRXdX0YMl30Z7Af/w4gXTQvjqK4BrxhCTkSd5eaywC Rc/z2tW84RNYKOkPMC8rxP/qHbvhSFqIwdANXpzBy7Q= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:46 2024 by rpki-client on console-ams.rpki-client.org