$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/V9OU9n-j2UNy0s3aNXDDwEKRLLo.roa File: V9OU9n-j2UNy0s3aNXDDwEKRLLo.roa (raw, json) Hash identifier: 1wh/5Ay6UAhQPWzxU69ARoGcs0arrJJpJWTjBkZi0Yk= Subject key identifier: 57:D3:94:F6:7F:A3:D9:43:72:D2:CD:DA:35:70:C3:C0:42:91:2C:BA Certificate issuer: /CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Certificate serial: 06 Authority key identifier: D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/V9OU9n-j2UNy0s3aNXDDwEKRLLo.roa Signing time: Mon 29 Apr 2024 13:26:18 +0000 ROA not before: Mon 29 Apr 2024 13:26:18 +0000 ROA not after: Sat 26 Apr 2025 10:00:55 +0000 asID: 131147 IP address blocks: 157.66.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 01:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Validity Not Before: Apr 29 13:26:18 2024 GMT Not After : Apr 26 10:00:55 2025 GMT Subject: CN=57D394F67FA3D94372D2CDDA3570C3C042912CBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:33:21:d6:c2:61:e9:0f:e6:7c:78:ec:cd:8f: e2:4c:8d:e6:e2:3c:a3:e2:8c:f1:8b:ef:16:7c:a3: fe:3e:15:8f:1b:6e:42:95:81:4d:24:5a:97:22:f8: 45:4f:44:a5:e7:9a:ca:1a:23:5c:16:a2:ca:de:16: a1:b5:10:42:44:e5:34:df:f0:2e:b5:9e:42:5c:f3: 0f:44:49:a1:8c:3e:02:76:f3:29:0d:69:92:61:76: b6:22:62:c5:40:1e:01:17:75:23:ee:f0:fa:74:a5: 87:c8:ae:49:e4:35:66:d8:d3:af:bf:ea:2d:98:a2: 4c:a5:89:e3:71:b7:f5:30:32:cd:d0:f5:6a:50:df: 91:dd:50:41:86:50:05:0c:eb:36:53:59:b2:69:66: 79:38:c8:f4:e1:75:59:26:34:54:75:b7:27:7b:ab: 1c:3c:37:d9:38:c8:9b:a3:8f:a4:c5:37:90:ca:fd: ae:70:0a:a4:84:32:19:72:bd:90:8c:5e:14:0c:c9: 41:40:00:81:b5:a5:15:26:85:20:e4:34:06:b5:08: 14:ad:e5:6a:be:0c:60:52:88:e8:c1:c4:1c:17:2c: 6c:c7:c0:46:51:f6:f5:37:1a:b3:4d:19:c4:6b:66: 4a:ac:32:4b:31:4e:09:4a:c6:06:e3:f4:64:0b:6f: 81:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:D3:94:F6:7F:A3:D9:43:72:D2:CD:DA:35:70:C3:C0:42:91:2C:BA X509v3 Authority Key Identifier: keyid:D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/V9OU9n-j2UNy0s3aNXDDwEKRLLo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.66.166.0/24 Signature Algorithm: sha256WithRSAEncryption 31:d4:1f:c1:b7:a8:ce:d0:e4:79:d6:cd:26:2f:2c:e3:3b:bc: b4:78:06:33:ec:35:b9:ac:d4:53:c0:e7:b5:8f:6d:b5:29:17: 96:b0:7a:6b:ea:61:c2:33:2d:fb:f8:08:64:21:02:15:01:5d: 9f:f9:fb:33:ec:66:ee:c5:5a:ca:c0:9d:18:80:b3:d2:a2:c5: 9b:99:a0:84:54:70:21:d0:a4:1b:7a:b3:99:8c:f9:38:4d:c5: 62:31:85:ca:57:13:cb:3f:1c:e1:a1:e9:45:fa:70:97:c4:6f: 9c:95:b5:d2:13:22:d3:06:c7:75:f7:e2:97:f8:eb:4e:2c:3d: ab:c6:be:a1:3a:50:2d:4b:a0:8e:df:3e:dc:97:44:cf:db:ba: 40:b1:66:51:b6:b8:e2:33:53:08:ef:40:04:22:fa:6c:b2:72: 31:bb:7e:ca:ac:3b:00:e7:c7:d7:6a:65:b0:f8:1e:0f:cb:d3: ff:98:35:53:a2:43:f4:cd:be:56:45:10:f6:c6:73:94:95:9c: 3e:e9:6c:ab:d1:a2:f5:a7:b6:56:3e:65:1d:53:df:8d:33:8f: ce:c2:96:f7:b4:1b:2a:a2:43:a2:37:58:1e:c8:11:db:3b:16: ae:20:24:61:f8:91:c5:e3:dd:ee:e6:4b:da:d9:de:b9:96:6f: f7:3d:6e:0f -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIBBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEOTY2 QjU1OTA5MzI0MTgwQTg4QTQ1RTFGNjgzQ0Y0RDJFRDlCQ0E1MB4XDTI0MDQyOTEz MjYxOFoXDTI1MDQyNjEwMDA1NVowMzExMC8GA1UEAxMoNTdEMzk0RjY3RkEzRDk0 MzcyRDJDRERBMzU3MEMzQzA0MjkxMkNCQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMYzIdbCYekP5nx47M2P4kyN5uI8o+KM8YvvFnyj/j4VjxtuQpWB TSRalyL4RU9EpeeayhojXBaiyt4WobUQQkTlNN/wLrWeQlzzD0RJoYw+AnbzKQ1p kmF2tiJixUAeARd1I+7w+nSlh8iuSeQ1ZtjTr7/qLZiiTKWJ43G39TAyzdD1alDf kd1QQYZQBQzrNlNZsmlmeTjI9OF1WSY0VHW3J3urHDw32TjIm6OPpMU3kMr9rnAK pIQyGXK9kIxeFAzJQUAAgbWlFSaFIOQ0BrUIFK3lar4MYFKI6MHEHBcsbMfARlH2 9Tcas00ZxGtmSqwySzFOCUrGBuP0ZAtvgc0CAwEAAaOCAewwggHoMB0GA1UdDgQW BBRX05T2f6PZQ3LSzdo1cMPAQpEsujAfBgNVHSMEGDAWgBTZZrVZCTJBgKiKReH2 g89NLtm8pTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi8y V2ExV1FreVFZQ29pa1hoOW9QUFRTN1p2S1UuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzJXYTFXUWt5UVlDb2lrWGg5b1BQVFM3WnZLVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0xJUlVOL1Y5T1U5bi1qMlVOeTBzM2FOWERE d0VLUkxMby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdQqYw DQYJKoZIhvcNAQELBQADggEBADHUH8G3qM7Q5HnWzSYvLOM7vLR4BjPsNbms1FPA 57WPbbUpF5awemvqYcIzLfv4CGQhAhUBXZ/5+zPsZu7FWsrAnRiAs9KixZuZoIRU cCHQpBt6s5mM+ThNxWIxhcpXE8s/HOGh6UX6cJfEb5yVtdITItMGx3X34pf4604s PavGvqE6UC1LoI7fPtyXRM/bukCxZlG2uOIzUwjvQAQi+myycjG7fsqsOwDnx9dq ZbD4Hg/L0/+YNVOiQ/TNvlZFEPbGc5SVnD7pbKvRovWntlY+ZR1T340zj87Clve0 GyqiQ6I3WB7IEds7Fq4gJGH4kcXj3e7mS9rZ3rmWb/c9bg8= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:46 2024 by rpki-client on console-ams.rpki-client.org