$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/JB8n_LtWHiLJy2LF3d2pgSgagyg.roa File: JB8n_LtWHiLJy2LF3d2pgSgagyg.roa (raw, json) Hash identifier: hJgLWnPO2KMCgkyJ7sjsG4afX9g9rKb/xOFg/Ivh7iw= Subject key identifier: 24:1F:27:FC:BB:56:1E:22:C9:CB:62:C5:DD:DD:A9:81:28:1A:83:28 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0C26 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/JB8n_LtWHiLJy2LF3d2pgSgagyg.roa Signing time: Fri 01 Sep 2023 09:14:02 +0000 ROA not before: Fri 01 Sep 2023 09:14:02 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 61.61.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3110 (0xc26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Sep 1 09:14:02 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=241F27FCBB561E22C9CB62C5DDDDA981281A8328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:73:27:d0:f7:80:2a:1d:59:4d:12:4f:13:89: 43:a9:c4:45:e1:fe:1e:86:0d:7d:aa:7a:3c:5d:1c: 8d:e2:16:63:66:91:f6:81:52:14:b0:d9:3a:32:34: d2:76:e7:d2:60:36:f4:0c:47:1e:34:c0:d8:79:ba: 04:a8:e8:ec:ea:d2:39:ce:ba:18:55:b9:66:88:a7: 83:1a:b6:59:72:7b:1b:e8:fc:bc:29:07:1a:ae:a7: 21:b7:e7:9f:04:94:24:0b:52:16:9a:25:a5:66:56: 24:52:ee:a9:d3:ea:9c:48:6a:e1:da:7c:83:99:35: 4e:99:c9:1e:d3:d1:64:92:57:a7:69:fd:5c:04:05: 12:c4:a6:90:34:ce:66:b6:55:8d:bb:8c:52:df:b9: 9b:96:92:62:82:46:d5:6e:9e:87:6e:a1:bf:bd:5d: 61:20:90:82:78:c5:53:ca:71:ef:0a:26:7f:9e:d3: 32:5e:92:26:21:2c:2d:2d:e7:8e:7f:86:0e:73:bb: 81:ef:b8:95:0d:f4:d0:28:ac:6d:62:07:39:e4:7f: 65:6e:fe:70:8a:84:72:1e:c9:c1:98:49:6c:ca:44: ff:53:34:43:21:55:c3:61:78:eb:04:8c:53:54:0f: 27:7b:87:78:81:b1:af:99:96:ab:61:59:d9:89:d2: 49:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:1F:27:FC:BB:56:1E:22:C9:CB:62:C5:DD:DD:A9:81:28:1A:83:28 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/JB8n_LtWHiLJy2LF3d2pgSgagyg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.156.0/22 Signature Algorithm: sha256WithRSAEncryption 18:5b:05:90:98:1b:7f:d3:ef:40:e3:15:f5:2d:6f:0d:50:71: dc:86:8e:c5:8d:c3:59:46:41:bf:c6:7d:c2:a4:fe:6f:d4:18: 20:a5:a6:d7:bc:62:de:e8:10:4c:69:f5:54:6f:8f:9f:ca:8b: 35:24:53:42:98:78:48:bc:b1:d9:d1:0c:d7:a8:3b:d9:fa:15: b2:96:1e:b3:70:f0:ff:ec:54:c6:56:ca:d5:6f:9c:43:d7:da: b3:fb:85:aa:f0:a7:97:98:ed:54:46:22:ee:35:4c:1a:a9:96: a7:1f:2c:8d:9e:ee:39:68:42:f4:39:4a:58:d8:84:55:a7:ff: 35:de:db:d0:b0:dd:15:8d:94:5b:7b:79:4e:56:e1:27:be:89: da:cc:23:e1:e7:b2:87:6b:37:01:da:d6:d9:7b:d3:c8:50:27: 35:80:da:45:cc:e0:9c:6a:09:3b:26:a9:33:a6:28:53:6f:53: 43:8f:7c:b9:40:4b:a5:9f:d3:15:b5:9c:ea:2f:97:ed:36:40: 48:ea:c4:40:1f:66:57:9a:74:1b:e2:98:8b:b5:68:ef:6d:29: 68:54:10:32:d5:25:5e:75:2a:88:cc:33:47:cb:3a:a1:a1:0a: e3:49:0a:fc:8b:41:14:b3:8b:61:fa:ec:69:a6:ff:5e:97:09: 98:85:2b:f3 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDCYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMzA5MDEw OTE0MDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI0MUYyN0ZDQkI1NjFF MjJDOUNCNjJDNURERERBOTgxMjgxQTgzMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/cyfQ94AqHVlNEk8TiUOpxEXh/h6GDX2qejxdHI3iFmNmkfaB UhSw2ToyNNJ259JgNvQMRx40wNh5ugSo6Ozq0jnOuhhVuWaIp4Matllyexvo/Lwp BxqupyG3558ElCQLUhaaJaVmViRS7qnT6pxIauHafIOZNU6ZyR7T0WSSV6dp/VwE BRLEppA0zma2VY27jFLfuZuWkmKCRtVunoduob+9XWEgkIJ4xVPKce8KJn+e0zJe kiYhLC0t545/hg5zu4HvuJUN9NAorG1iBznkf2Vu/nCKhHIeycGYSWzKRP9TNEMh VcNheOsEjFNUDyd7h3iBsa+ZlqthWdmJ0kk1AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUJB8n/LtWHiLJy2LF3d2pgSgagygwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL0pCOG5fTHRXSGlMSnkyTEYzZDJwZ1Nn YWd5Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9PZwwDQYJ KoZIhvcNAQELBQADggEBABhbBZCYG3/T70DjFfUtbw1QcdyGjsWNw1lGQb/GfcKk /m/UGCClpte8Yt7oEExp9VRvj5/KizUkU0KYeEi8sdnRDNeoO9n6FbKWHrNw8P/s VMZWytVvnEPX2rP7harwp5eY7VRGIu41TBqplqcfLI2e7jloQvQ5SljYhFWn/zXe 29Cw3RWNlFt7eU5W4Se+idrMI+HnsodrNwHa1tl708hQJzWA2kXM4JxqCTsmqTOm KFNvU0OPfLlAS6Wf0xW1nOovl+02QEjqxEAfZleadBvimIu1aO9tKWhUEDLVJV51 KojMM0fLOqGhCuNJCvyLQRSzi2H67Gmm/16XCZiFK/M= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:46 2024 by rpki-client on console-ams.rpki-client.org