$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/uirkltB809j5ks7HV7LRQvpTrag.roa File: uirkltB809j5ks7HV7LRQvpTrag.roa (raw, json) Hash identifier: V8t981LjDHyu4DOLucwaJh4WfjRF/SMSJyZ89TyA3tw= Subject key identifier: BA:2A:E4:96:D0:7C:D3:D8:F9:92:CE:C7:57:B2:D1:42:FA:53:AD:A8 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0C19 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/uirkltB809j5ks7HV7LRQvpTrag.roa Signing time: Fri 01 Sep 2023 09:13:58 +0000 ROA not before: Fri 01 Sep 2023 09:13:58 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131602 IP address blocks: 211.78.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3097 (0xc19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Sep 1 09:13:58 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=BA2AE496D07CD3D8F992CEC757B2D142FA53ADA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:5d:dd:c2:60:18:57:06:6f:8a:91:e0:66:00: 96:09:71:11:67:42:cc:43:07:6d:06:16:e0:3d:e5: 1f:22:fe:8b:35:ea:d3:50:53:2d:ef:43:7e:eb:e4: 7f:a3:ca:eb:59:65:72:47:1e:49:68:a3:32:c4:3f: 0d:dd:13:bb:bb:58:7b:b1:b3:71:35:8b:2a:e9:f3: f0:9f:60:ae:ca:02:03:40:b8:c2:76:6e:5e:63:c9: fd:67:ab:48:82:65:1d:fe:68:22:ec:a7:b1:8f:96: d9:39:4b:07:d5:86:a3:0b:67:9d:7d:2d:bc:00:ba: dc:78:31:67:9a:5a:24:87:a9:5f:bf:43:50:82:2d: fc:67:35:2e:82:87:1f:fd:60:c2:3c:41:0a:f5:0c: a3:f9:23:92:4f:32:9e:78:9f:51:a0:db:db:ac:f8: da:e0:86:61:9f:ee:7c:47:17:86:2d:bd:ce:3b:38: 45:91:39:40:f2:a6:b8:f3:d7:72:ba:ae:14:2e:6c: 83:2e:d2:91:3e:bc:08:d4:1b:f8:30:2d:9a:a7:d4: d7:7a:6c:29:17:c1:24:30:c3:1f:be:46:fb:7f:1e: a1:34:ce:a1:14:9b:f4:09:4e:15:7a:55:bf:b9:52: 6f:da:12:6f:d9:bd:04:e7:68:c1:f7:ab:1b:46:44: a7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:2A:E4:96:D0:7C:D3:D8:F9:92:CE:C7:57:B2:D1:42:FA:53:AD:A8 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/uirkltB809j5ks7HV7LRQvpTrag.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.24.0/21 Signature Algorithm: sha256WithRSAEncryption 84:1e:32:4b:9b:27:2f:21:fd:6d:49:b4:88:73:d4:52:73:96: d2:f5:e5:ab:4f:5d:9e:02:7d:8f:c4:15:c6:1f:fc:84:de:6a: 15:f6:b7:10:67:57:e9:bb:6b:cd:ca:55:42:6d:c1:88:d0:4e: a7:a1:07:2e:ba:2e:56:23:b9:42:61:ed:4e:d7:93:c4:c6:33: 38:14:f1:8b:a8:b2:5a:21:b8:8e:eb:c1:7d:e8:95:4e:ff:cb: 01:94:26:80:8f:18:de:b4:c2:57:c8:c8:9c:6e:2c:da:dc:78: 1f:70:b2:ae:e3:43:61:4d:08:e6:1f:54:05:b3:af:c4:1b:80: 95:5f:3b:74:d9:fb:f9:0d:ab:dd:7d:0c:b7:da:d0:26:f9:1c: 68:44:b0:ae:71:70:d1:cf:7b:5d:55:c1:4d:b8:fe:76:15:6c: 71:b4:9c:20:3a:a2:97:1b:5c:bf:c7:2f:9f:ea:6b:6a:66:38: 5e:5c:23:6a:c2:ef:3c:89:08:09:37:5d:1b:8c:d7:46:80:4d: ef:aa:e9:46:91:d8:ab:d8:1d:a2:ff:c7:6f:5f:35:38:f3:c3: bb:2c:48:e0:66:fa:92:c9:88:8b:f6:70:a7:ed:68:2a:dd:fa: 8a:f4:de:4f:d4:fa:cc:ef:83:9a:aa:81:cb:1a:49:f6:27:5d: 1e:9d:37:54 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDBkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMzA5MDEw OTEzNThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEJBMkFFNDk2RDA3Q0Qz RDhGOTkyQ0VDNzU3QjJEMTQyRkE1M0FEQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdXd3CYBhXBm+KkeBmAJYJcRFnQsxDB20GFuA95R8i/os16tNQ Uy3vQ37r5H+jyutZZXJHHkloozLEPw3dE7u7WHuxs3E1iyrp8/CfYK7KAgNAuMJ2 bl5jyf1nq0iCZR3+aCLsp7GPltk5SwfVhqMLZ519LbwAutx4MWeaWiSHqV+/Q1CC LfxnNS6Chx/9YMI8QQr1DKP5I5JPMp54n1Gg29us+NrghmGf7nxHF4Ytvc47OEWR OUDyprjz13K6rhQubIMu0pE+vAjUG/gwLZqn1Nd6bCkXwSQwwx++Rvt/HqE0zqEU m/QJThV6Vb+5Um/aEm/ZvQTnaMH3qxtGRKdtAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUuirkltB809j5ks7HV7LRQvpTragwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL3VpcmtsdEI4MDlqNWtzN0hWN0xSUXZw VHJhZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPTThgwDQYJ KoZIhvcNAQELBQADggEBAIQeMkubJy8h/W1JtIhz1FJzltL15atPXZ4CfY/EFcYf /ITeahX2txBnV+m7a83KVUJtwYjQTqehBy66LlYjuUJh7U7Xk8TGMzgU8Yuosloh uI7rwX3olU7/ywGUJoCPGN60wlfIyJxuLNrceB9wsq7jQ2FNCOYfVAWzr8QbgJVf O3TZ+/kNq919DLfa0Cb5HGhEsK5xcNHPe11VwU24/nYVbHG0nCA6opcbXL/HL5/q a2pmOF5cI2rC7zyJCAk3XRuM10aATe+q6UaR2KvYHaL/x29fNTjzw7ssSOBm+pLJ iIv2cKftaCrd+or03k/U+szvg5qqgcsaSfYnXR6dN1Q= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:46 2024 by rpki-client on console-ams.rpki-client.org