$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/KyCJEEGXQHgjhmBaiuQROJd-pV8.roa File: KyCJEEGXQHgjhmBaiuQROJd-pV8.roa (raw, json) Hash identifier: 9J+y7Gr+3RJvTXb17r+OV+732tKMscteQZd+5UiGq30= Subject key identifier: 2B:20:89:10:41:97:40:78:23:86:60:5A:8A:E4:11:38:97:7E:A5:5F Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0C0B Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/KyCJEEGXQHgjhmBaiuQROJd-pV8.roa Signing time: Fri 01 Sep 2023 09:13:55 +0000 ROA not before: Fri 01 Sep 2023 09:13:55 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18049 IP address blocks: 61.61.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3083 (0xc0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Sep 1 09:13:55 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2B208910419740782386605A8AE41138977EA55F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e3:b5:a5:75:6e:0b:e8:69:16:4c:81:ee:21: 18:4f:f9:b8:8b:18:3e:5e:19:8d:cb:7c:05:5e:f9: 9e:99:65:e6:f6:71:75:52:6e:e9:f9:91:57:61:43: c3:99:1f:65:6b:4c:16:36:17:07:6e:f7:59:34:7d: 7d:f8:15:45:0e:a5:a4:cb:82:0b:0b:00:cc:b1:9a: 72:fa:dc:f4:f2:1d:b6:47:dc:eb:67:58:3e:9e:85: e3:59:95:71:e7:45:eb:60:cb:44:34:a7:43:e4:cc: 37:bb:bd:5f:30:2e:af:2c:af:e1:c2:7b:07:e2:48: d1:03:43:24:a9:2c:e7:cb:b9:78:25:93:30:f1:c0: 24:d7:58:98:1a:13:22:99:a1:fc:67:52:94:09:a0: 3c:df:d1:76:5a:23:36:9d:a3:7d:5f:9b:10:0c:f7: 6b:6e:73:8e:65:a5:1e:a4:de:09:5c:37:0a:5e:31: 29:f3:9d:2b:e1:aa:c3:e1:f9:5e:52:2b:9d:17:51: fb:17:72:82:85:09:6a:8e:de:ca:e3:2b:04:a4:40: 90:29:26:2b:b9:6f:04:74:37:44:17:09:a2:b7:81: 87:0d:76:31:e8:49:05:1d:21:56:fd:31:89:93:76: e7:69:a7:54:38:72:51:ea:b5:9d:1f:2e:79:27:bb: 49:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:20:89:10:41:97:40:78:23:86:60:5A:8A:E4:11:38:97:7E:A5:5F X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/KyCJEEGXQHgjhmBaiuQROJd-pV8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.44.0/22 Signature Algorithm: sha256WithRSAEncryption a5:8a:e4:55:8a:e5:b3:7d:41:5b:b2:d3:46:44:2c:19:ef:56: b6:9a:91:de:48:dc:90:c9:43:65:af:d0:a4:a5:1b:88:2b:4a: 80:b2:86:8f:e2:07:c6:7f:38:d7:5e:ba:ff:97:b1:a6:48:c7: 78:b2:c5:b2:d0:d2:13:65:2b:cb:64:de:dd:64:f6:5e:9b:f0: 03:41:a5:69:bb:fb:fc:e4:41:0d:e1:9a:f7:bc:ad:47:1c:b9: a2:dc:ed:ec:2e:12:b4:4c:ae:7c:53:8c:14:31:1b:5a:b5:84: 35:68:1d:1c:35:d4:ca:e2:0f:cd:67:98:2b:d8:12:97:0a:51: 84:de:7c:36:5f:57:09:75:92:23:c3:12:1a:08:b2:53:78:bf: 89:b7:d7:a4:a5:87:9e:a1:31:53:c5:dd:39:c2:98:1d:ec:8f: 8a:54:2f:28:ba:07:c3:55:62:68:a3:2c:1c:59:5d:3e:eb:6c: b9:3a:eb:00:a0:91:26:7f:31:4c:69:04:4b:1c:58:c1:9a:f5: 20:c6:be:84:75:fc:e9:d5:19:78:12:08:f1:e1:0d:55:83:ee: 6d:8e:58:b7:38:06:96:b0:64:77:a4:bf:0a:cd:1c:93:7a:c6: 11:0d:b4:b2:3f:07:63:78:bd:d7:a1:11:d0:84:b0:cc:33:7f: 90:92:e2:e6 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDAswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMzA5MDEw OTEzNTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJCMjA4OTEwNDE5NzQw NzgyMzg2NjA1QThBRTQxMTM4OTc3RUE1NUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDc47WldW4L6GkWTIHuIRhP+biLGD5eGY3LfAVe+Z6ZZeb2cXVS bun5kVdhQ8OZH2VrTBY2Fwdu91k0fX34FUUOpaTLggsLAMyxmnL63PTyHbZH3Otn WD6eheNZlXHnRetgy0Q0p0PkzDe7vV8wLq8sr+HCewfiSNEDQySpLOfLuXglkzDx wCTXWJgaEyKZofxnUpQJoDzf0XZaIzado31fmxAM92tuc45lpR6k3glcNwpeMSnz nSvhqsPh+V5SK50XUfsXcoKFCWqO3srjKwSkQJApJiu5bwR0N0QXCaK3gYcNdjHo SQUdIVb9MYmTdudpp1Q4clHqtZ0fLnknu0l3AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUKyCJEEGXQHgjhmBaiuQROJd+pV8wHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL0t5Q0pFRUdYUUhnamhtQmFpdVFST0pk LXBWOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9PSwwDQYJ KoZIhvcNAQELBQADggEBAKWK5FWK5bN9QVuy00ZELBnvVraakd5I3JDJQ2Wv0KSl G4grSoCyho/iB8Z/ONdeuv+XsaZIx3iyxbLQ0hNlK8tk3t1k9l6b8ANBpWm7+/zk QQ3hmve8rUccuaLc7ewuErRMrnxTjBQxG1q1hDVoHRw11MriD81nmCvYEpcKUYTe fDZfVwl1kiPDEhoIslN4v4m316Slh56hMVPF3TnCmB3sj4pULyi6B8NVYmijLBxZ XT7rbLk66wCgkSZ/MUxpBEscWMGa9SDGvoR1/OnVGXgSCPHhDVWD7m2OWLc4Bpaw ZHekvwrNHJN6xhENtLI/B2N4vdehEdCEsMwzf5CS4uY= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:01 2024 by rpki-client on console-fra.rpki-client.org