$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKCO/C6EwTkoEgBK143Kac-GfYrc1IMU.roa File: C6EwTkoEgBK143Kac-GfYrc1IMU.roa (raw, json) Hash identifier: I8fNwy7506HjQB/Zj43t/PKPTbbzFmbKNWTElCu6NIA= Subject key identifier: 0B:A1:30:4E:4A:04:80:12:B5:E3:72:9A:73:E1:9F:62:B7:35:20:C5 Certificate issuer: /CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1 Certificate serial: 0EB6 Authority key identifier: 82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/C6EwTkoEgBK143Kac-GfYrc1IMU.roa Signing time: Fri 01 Sep 2023 09:14:17 +0000 ROA not before: Fri 01 Sep 2023 09:14:17 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131645 IP address blocks: 103.134.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3766 (0xeb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1 Validity Not Before: Sep 1 09:14:17 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0BA1304E4A048012B5E3729A73E19F62B73520C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:d5:bb:38:d9:0c:51:64:20:17:78:41:0f:b9: bd:38:8e:94:1d:25:9d:85:11:8d:c2:54:54:97:61: 4d:3f:0d:fb:2c:59:29:60:fd:0a:4d:cc:29:3c:88: e7:58:59:07:85:6d:f3:61:98:c4:ff:d8:16:dd:e4: 70:60:1e:b6:a8:e0:d0:0a:fc:24:5c:58:94:f9:1d: 76:b8:f3:0b:2b:45:60:d8:06:58:67:15:39:73:4a: 46:1d:86:22:8f:0a:d1:bb:f9:31:0e:2f:40:1c:82: 26:0f:fe:52:1b:b6:63:d2:7b:6e:76:16:09:10:34: 7c:ae:1b:1d:bb:92:7d:92:ad:ee:92:2c:46:2f:cc: 48:dc:81:20:8b:a3:4c:4a:46:b2:05:be:ea:0e:1d: 02:29:99:5d:a5:a6:aa:ec:61:3b:b1:ee:09:a3:73: ea:4b:2f:db:60:68:ce:2d:ad:8f:38:f4:1d:88:5f: 24:88:26:28:5f:41:11:f6:70:ea:e6:03:84:00:95: f4:0c:e5:5e:49:45:4c:90:6f:da:bf:c0:de:0f:78: da:07:9c:9c:b4:b8:ef:b2:36:7e:46:5b:61:7e:c9: 74:20:db:ff:ed:99:ba:ad:22:a4:cf:d2:d3:ba:35: 9d:a1:dd:27:ae:16:96:59:95:0d:df:83:2a:d1:d8: 5a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:A1:30:4E:4A:04:80:12:B5:E3:72:9A:73:E1:9F:62:B7:35:20:C5 X509v3 Authority Key Identifier: keyid:82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/C6EwTkoEgBK143Kac-GfYrc1IMU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.134.120.0/22 Signature Algorithm: sha256WithRSAEncryption a0:7c:8b:ae:c7:41:dc:da:3a:aa:02:60:68:e2:1f:c7:22:7a: 98:ae:25:d8:81:5c:93:2e:14:9f:3c:4a:be:ab:29:83:60:89: ff:6f:6e:fd:87:76:51:f3:f9:f7:3e:45:aa:d9:17:25:2d:ee: cd:d7:d1:b3:0c:46:0b:b1:7d:78:40:73:18:f3:11:79:c9:51: 23:aa:db:39:4c:ef:a4:76:9f:a0:be:c2:27:0d:55:9c:71:27: c9:4e:d6:a5:1b:2e:51:be:80:d1:0d:33:35:bd:a3:ae:6f:2c: 96:86:c5:cd:ac:2e:a4:4d:24:7e:49:e0:ad:2d:1f:93:38:44: 8f:44:0b:45:f3:b3:71:d6:84:eb:08:b8:0c:23:ab:06:dd:9e: c0:68:5a:a4:15:c3:62:49:b6:6b:5d:8f:eb:30:1a:1b:d4:07: fc:c0:a7:03:8c:f0:1e:48:62:91:16:7f:da:7a:51:fd:84:01: 29:31:d8:d6:ef:ca:e3:ba:86:b1:b2:24:06:9b:e9:88:84:02: 01:9d:8f:43:d2:76:81:d0:e2:56:68:e6:9c:fb:ac:a0:4b:4c: 49:f2:d6:28:9c:cf:4f:b0:9f:92:fd:f9:5d:9d:2e:68:76:73: 78:1e:f4:ac:32:39:0f:90:30:67:07:20:f6:8d:f4:75:94:40: b9:1a:0e:c1 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDrYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODI4 QkQxOUVGQThFQkU1OUVGNDA3QkI3RkFCNjg5OEY3NTRDN0VDMTAeFw0yMzA5MDEw OTE0MTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBCQTEzMDRFNEEwNDgw MTJCNUUzNzI5QTczRTE5RjYyQjczNTIwQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCR1bs42QxRZCAXeEEPub04jpQdJZ2FEY3CVFSXYU0/DfssWSlg /QpNzCk8iOdYWQeFbfNhmMT/2Bbd5HBgHrao4NAK/CRcWJT5HXa48wsrRWDYBlhn FTlzSkYdhiKPCtG7+TEOL0AcgiYP/lIbtmPSe252FgkQNHyuGx27kn2Sre6SLEYv zEjcgSCLo0xKRrIFvuoOHQIpmV2lpqrsYTux7gmjc+pLL9tgaM4trY849B2IXySI JihfQRH2cOrmA4QAlfQM5V5JRUyQb9q/wN4PeNoHnJy0uO+yNn5GW2F+yXQg2//t mbqtIqTP0tO6NZ2h3SeuFpZZlQ3fgyrR2FqhAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUC6EwTkoEgBK143Kac+GfYrc1IMUwHwYDVR0jBBgwFoAUgovRnvqOvlnvQHu3 +raJj3VMfsEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tDTy9n b3ZSbnZxT3ZsbnZRSHUzLXJhSmozVk1mc0UuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2dvdlJudnFPdmxudlFIdTMtcmFKajNWTWZzRS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0tLQ08vQzZFd1Rrb0VnQksxNDNLYWMtR2ZZ cmMxSU1VLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmeGeDAN BgkqhkiG9w0BAQsFAAOCAQEAoHyLrsdB3No6qgJgaOIfxyJ6mK4l2IFcky4UnzxK vqspg2CJ/29u/Yd2UfP59z5FqtkXJS3uzdfRswxGC7F9eEBzGPMReclRI6rbOUzv pHafoL7CJw1VnHEnyU7WpRsuUb6A0Q0zNb2jrm8slobFzawupE0kfkngrS0fkzhE j0QLRfOzcdaE6wi4DCOrBt2ewGhapBXDYkm2a12P6zAaG9QH/MCnA4zwHkhikRZ/ 2npR/YQBKTHY1u/K47qGsbIkBpvpiIQCAZ2PQ9J2gdDiVmjmnPusoEtMSfLWKJzP T7Cfkv35XZ0uaHZzeB70rDI5D5AwZwcg9o30dZRAuRoOwQ== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:01 2024 by rpki-client on console-fra.rpki-client.org