$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKPC/AZPjEbfWWHS8cAKmsJiWvNlLDAE.roa File: AZPjEbfWWHS8cAKmsJiWvNlLDAE.roa (raw, json) Hash identifier: 03Y3ZwpD8C1Ne90mg4pH8jkpgNeEH28KCdvqTBcHPLA= Subject key identifier: 01:93:E3:11:B7:D6:58:74:BC:70:02:A6:B0:98:96:BC:D9:4B:0C:01 Certificate issuer: /CN=CE37D7C99185A3D9AC611718DA78559B6E99A31B Certificate serial: 0CB6 Authority key identifier: CE:37:D7:C9:91:85:A3:D9:AC:61:17:18:DA:78:55:9B:6E:99:A3:1B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zjfXyZGFo9msYRcY2nhVm26Zoxs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/AZPjEbfWWHS8cAKmsJiWvNlLDAE.roa Signing time: Fri 01 Sep 2023 09:14:42 +0000 ROA not before: Fri 01 Sep 2023 09:14:42 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131645 IP address blocks: 2405:14c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/zjfXyZGFo9msYRcY2nhVm26Zoxs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/zjfXyZGFo9msYRcY2nhVm26Zoxs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zjfXyZGFo9msYRcY2nhVm26Zoxs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3254 (0xcb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE37D7C99185A3D9AC611718DA78559B6E99A31B Validity Not Before: Sep 1 09:14:42 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0193E311B7D65874BC7002A6B09896BCD94B0C01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f5:1f:68:69:fe:2c:c4:05:c1:9b:fa:a6:b0: d0:69:50:50:a3:43:4f:e7:64:c1:ae:bf:1e:1a:38: 49:56:4f:f7:7d:90:96:59:34:05:cb:a0:63:a0:4e: 24:84:4b:b5:5f:8b:65:0e:4a:27:97:b2:c2:b3:bd: d1:7b:86:d2:c1:9e:c8:d7:a9:15:cd:36:97:fe:db: 94:f2:87:09:6a:2b:6d:1a:48:2d:21:5e:34:04:a2: e6:f6:b8:ee:c6:26:61:2d:e0:ce:af:fd:34:2f:10: fe:74:55:17:97:02:79:f0:01:9e:81:77:88:43:06: 0f:d8:e2:8d:50:0e:59:03:a2:71:26:6f:2f:f0:3f: cb:ea:f1:87:56:ca:21:b3:b0:39:28:93:24:15:03: 0d:50:19:90:cb:4e:91:b4:19:68:92:ac:6b:c4:d6: 83:18:71:7e:9a:10:99:c8:09:e0:59:9e:f0:9e:c1: 62:20:70:c5:19:61:52:30:50:ef:cd:79:81:b6:03: 43:9b:49:9a:87:aa:e0:6a:67:53:f2:3d:d3:f2:64: 0d:eb:71:2e:59:22:50:9c:07:07:45:2b:f5:92:c7: 5b:30:73:ed:00:44:ee:9a:16:a5:fe:f5:15:55:19: 56:e9:ad:d5:3c:bb:f6:0c:3c:af:72:6e:e5:e6:9a: a0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:93:E3:11:B7:D6:58:74:BC:70:02:A6:B0:98:96:BC:D9:4B:0C:01 X509v3 Authority Key Identifier: keyid:CE:37:D7:C9:91:85:A3:D9:AC:61:17:18:DA:78:55:9B:6E:99:A3:1B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/zjfXyZGFo9msYRcY2nhVm26Zoxs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zjfXyZGFo9msYRcY2nhVm26Zoxs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/AZPjEbfWWHS8cAKmsJiWvNlLDAE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:14c0::/32 Signature Algorithm: sha256WithRSAEncryption 94:87:4d:60:85:8d:44:4f:19:d6:6a:24:56:e5:3a:f3:27:29: a5:d5:9e:b6:33:4d:30:d5:de:53:b0:8a:96:3e:ea:66:ad:a4: e2:6b:80:d5:36:5a:d8:f0:bc:fe:81:19:c0:4e:b2:e9:46:15: 4c:d8:33:8b:a7:89:b3:35:2d:83:95:ab:d9:bd:d2:a1:48:28: 2a:36:ce:89:d3:ac:40:2c:99:2f:41:e4:8d:cc:3c:36:20:6c: 52:3a:1f:fe:43:2e:f3:ef:a6:e2:29:82:5e:83:41:6d:b3:7e: 19:4e:dd:4a:7d:dd:d4:e3:02:25:ed:fa:39:8b:b2:f7:3a:48: d4:2e:58:11:da:e1:98:18:ea:1c:01:7a:4b:ef:c4:94:9a:38: 47:82:6b:ae:dc:fa:ad:87:54:26:f2:7d:5d:4a:57:2e:ab:42: 15:bf:3d:5f:af:28:47:83:8d:20:e9:59:fe:d7:cb:50:ba:63: f1:41:f9:a8:8a:56:6b:bb:b9:53:bd:27:e7:fd:b3:8f:c3:08: 2c:c0:57:8c:14:b4:a0:c6:b3:d8:49:d2:9d:ea:4d:02:f1:a3: f8:5f:9e:9b:88:36:b0:5e:b0:66:0c:de:7d:e9:da:70:e5:7f: a7:07:6b:ca:84:2b:63:87:57:0c:52:1a:da:bc:16:84:fe:77: 5e:92:ac:05 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDLYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Uz N0Q3Qzk5MTg1QTNEOUFDNjExNzE4REE3ODU1OUI2RTk5QTMxQjAeFw0yMzA5MDEw OTE0NDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAxOTNFMzExQjdENjU4 NzRCQzcwMDJBNkIwOTg5NkJDRDk0QjBDMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ9R9oaf4sxAXBm/qmsNBpUFCjQ0/nZMGuvx4aOElWT/d9kJZZ NAXLoGOgTiSES7Vfi2UOSieXssKzvdF7htLBnsjXqRXNNpf+25TyhwlqK20aSC0h XjQEoub2uO7GJmEt4M6v/TQvEP50VReXAnnwAZ6Bd4hDBg/Y4o1QDlkDonEmby/w P8vq8YdWyiGzsDkokyQVAw1QGZDLTpG0GWiSrGvE1oMYcX6aEJnICeBZnvCewWIg cMUZYVIwUO/NeYG2A0ObSZqHquBqZ1PyPdPyZA3rcS5ZIlCcBwdFK/WSx1swc+0A RO6aFqX+9RVVGVbprdU8u/YMPK9ybuXmmqA1AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUAZPjEbfWWHS8cAKmsJiWvNlLDAEwHwYDVR0jBBgwFoAUzjfXyZGFo9msYRcY 2nhVm26ZoxswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tQQy96 amZYeVpHRm85bXNZUmNZMm5oVm0yNlpveHMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3pqZlh5WkdGbzltc1lSY1kybmhWbTI2Wm94cy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0tLUEMvQVpQakViZldXSFM4Y0FLbXNKaVd2 TmxMREFFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFFMAw DQYJKoZIhvcNAQELBQADggEBAJSHTWCFjURPGdZqJFblOvMnKaXVnrYzTTDV3lOw ipY+6matpOJrgNU2WtjwvP6BGcBOsulGFUzYM4unibM1LYOVq9m90qFIKCo2zonT rEAsmS9B5I3MPDYgbFI6H/5DLvPvpuIpgl6DQW2zfhlO3Up93dTjAiXt+jmLsvc6 SNQuWBHa4ZgY6hwBekvvxJSaOEeCa67c+q2HVCbyfV1KVy6rQhW/PV+vKEeDjSDp Wf7Xy1C6Y/FB+aiKVmu7uVO9J+f9s4/DCCzAV4wUtKDGs9hJ0p3qTQLxo/hfnpuI NrBesGYM3n3p2nDlf6cHa8qEK2OHVwxSGtq8FoT+d16SrAU= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:01 2024 by rpki-client on console-fra.rpki-client.org