$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/u90FccN_ahPLaPUmIoWKaJjXFxc.roa File: u90FccN_ahPLaPUmIoWKaJjXFxc.roa (raw, json) Hash identifier: ANca94E7igQ7WihthZt7cZTM0cbfXm5FJpUoRVPCei0= Subject key identifier: BB:DD:05:71:C3:7F:6A:13:CB:68:F5:26:22:85:8A:68:98:D7:17:17 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0C13 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/u90FccN_ahPLaPUmIoWKaJjXFxc.roa Signing time: Fri 01 Sep 2023 09:13:56 +0000 ROA not before: Fri 01 Sep 2023 09:13:56 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9918 IP address blocks: 61.61.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3091 (0xc13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Sep 1 09:13:56 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=BBDD0571C37F6A13CB68F52622858A6898D71717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4f:a0:43:1e:9f:de:58:64:c7:eb:6c:00:11: a4:5a:02:7a:16:a4:fa:2f:fd:56:08:3a:76:22:b9: 87:ac:f3:6b:7d:bf:f7:fd:10:65:0d:b1:19:aa:3b: 1d:56:69:2e:e6:2e:5b:3a:30:3a:32:8b:65:32:af: fc:17:99:ed:59:06:12:31:b7:7f:f0:d8:e2:91:0b: c5:4e:d8:2e:96:50:b3:72:80:6f:24:0f:d7:92:00: b4:d6:46:86:b3:c1:ff:f1:a4:77:85:c5:87:90:24: d1:f7:03:6e:db:1d:08:af:7b:3b:17:48:2a:e3:da: 34:f7:23:0e:17:6a:e5:22:c6:60:ea:fe:ae:99:93: a8:ec:1e:0a:3d:1e:e9:8b:21:c8:43:d9:62:56:82: 11:80:f9:b9:36:1a:3c:5f:a5:96:9d:75:de:75:cf: a8:ff:f8:65:93:a6:c5:e8:c6:9c:17:6b:b0:42:2b: 07:5d:fe:68:97:da:e3:6e:4a:0f:a8:f9:93:8b:1c: 27:49:82:9a:2e:05:9c:a0:21:90:9e:e7:e6:9a:e0: fa:f6:dc:4d:28:cb:10:95:52:ac:28:2d:8b:e1:ca: 8e:f5:eb:34:14:7a:0b:92:dd:c3:59:20:3e:70:e4: b9:e9:23:a9:bb:1d:47:c1:f3:8f:0a:d9:2a:ed:dc: 7e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:DD:05:71:C3:7F:6A:13:CB:68:F5:26:22:85:8A:68:98:D7:17:17 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/u90FccN_ahPLaPUmIoWKaJjXFxc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.0.0/17 Signature Algorithm: sha256WithRSAEncryption 6f:30:74:c7:5a:65:06:ab:52:e2:34:0e:ae:74:e1:12:43:5d: bb:05:08:e0:6a:c8:e0:b4:8c:1d:21:0e:6e:9e:4a:2e:21:d8: 79:9b:6e:69:ad:75:81:0d:bd:68:dd:39:b2:71:88:25:46:55: c9:60:fb:73:95:f5:0f:b4:ce:c2:7f:16:b5:8a:9a:c7:98:0b: 8e:86:30:1a:5f:12:c7:97:de:e0:b6:c9:56:50:bb:6c:c6:b5: 4f:06:48:40:f5:eb:c7:15:cb:4c:0e:6e:99:17:68:09:c7:98: 10:22:81:4a:36:d7:48:e3:47:bc:cc:55:7b:ac:9d:77:09:36: b6:a4:67:f1:87:32:5b:e2:4c:16:51:8e:c2:06:f2:e7:27:d0: a7:6d:7f:5d:54:8d:6a:a2:d6:fd:38:f8:99:28:1e:2b:fd:75: 07:c0:dd:25:37:a6:5c:7d:d3:9a:06:23:1f:d5:fa:91:50:6b: 61:42:f2:e6:97:b3:81:04:d0:ee:c1:f7:84:7d:21:b7:44:e9: ad:68:ce:7c:50:2b:07:f8:98:b5:23:d9:24:cb:b9:21:1a:0d: 24:56:5f:ac:1b:f4:65:7a:de:f2:fb:b8:d1:67:d0:b5:72:31: 82:7e:45:a9:4e:06:c9:23:8d:30:35:94:ab:9f:da:da:43:1f: 45:43:29:bb -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDBMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMzA5MDEw OTEzNTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEJCREQwNTcxQzM3RjZB MTNDQjY4RjUyNjIyODU4QTY4OThENzE3MTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChT6BDHp/eWGTH62wAEaRaAnoWpPov/VYIOnYiuYes82t9v/f9 EGUNsRmqOx1WaS7mLls6MDoyi2Uyr/wXme1ZBhIxt3/w2OKRC8VO2C6WULNygG8k D9eSALTWRoazwf/xpHeFxYeQJNH3A27bHQivezsXSCrj2jT3Iw4XauUixmDq/q6Z k6jsHgo9HumLIchD2WJWghGA+bk2GjxfpZaddd51z6j/+GWTpsXoxpwXa7BCKwdd /miX2uNuSg+o+ZOLHCdJgpouBZygIZCe5+aa4Pr23E0oyxCVUqwoLYvhyo716zQU eguS3cNZID5w5LnpI6m7HUfB848K2Srt3H7pAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUu90FccN/ahPLaPUmIoWKaJjXFxcwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL3U5MEZjY05fYWhQTGFQVW1Jb1dLYUpq WEZ4Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc9PQAwDQYJ KoZIhvcNAQELBQADggEBAG8wdMdaZQarUuI0Dq504RJDXbsFCOBqyOC0jB0hDm6e Si4h2HmbbmmtdYENvWjdObJxiCVGVclg+3OV9Q+0zsJ/FrWKmseYC46GMBpfEseX 3uC2yVZQu2zGtU8GSED168cVy0wObpkXaAnHmBAigUo210jjR7zMVXusnXcJNrak Z/GHMlviTBZRjsIG8ucn0Kdtf11UjWqi1v04+JkoHiv9dQfA3SU3plx905oGIx/V +pFQa2FC8uaXs4EE0O7B94R9IbdE6a1oznxQKwf4mLUj2STLuSEaDSRWX6wb9GV6 3vL7uNFn0LVyMYJ+RalOBskjjTA1lKuf2tpDH0VDKbs= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:46 2024 by rpki-client on console-ams.rpki-client.org