$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/ChK9QhOhTvOllUpVeunpKvXtCHw.roa File: ChK9QhOhTvOllUpVeunpKvXtCHw.roa (raw, json) Hash identifier: /ehRgSRRIcjS6HptakPJRBhE5Qys0sPd/mX+BWwjwwM= Subject key identifier: 0A:12:BD:42:13:A1:4E:F3:A5:95:4A:55:7A:E9:E9:2A:F5:ED:08:7C Certificate issuer: /CN=3730D9A195AB710286722CE5CCA467CFBA5BD494 Certificate serial: 08 Authority key identifier: 37:30:D9:A1:95:AB:71:02:86:72:2C:E5:CC:A4:67:CF:BA:5B:D4:94 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NzDZoZWrcQKGcizlzKRnz7pb1JQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/ChK9QhOhTvOllUpVeunpKvXtCHw.roa Signing time: Wed 13 Dec 2023 04:02:18 +0000 ROA not before: Wed 13 Dec 2023 04:02:18 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 132369 IP address blocks: 64.78.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/NzDZoZWrcQKGcizlzKRnz7pb1JQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/NzDZoZWrcQKGcizlzKRnz7pb1JQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NzDZoZWrcQKGcizlzKRnz7pb1JQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 05:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3730D9A195AB710286722CE5CCA467CFBA5BD494 Validity Not Before: Dec 13 04:02:18 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0A12BD4213A14EF3A5954A557AE9E92AF5ED087C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2f:1a:f6:f6:d4:09:2f:c6:8d:3b:b6:da:28: 52:56:31:83:85:0a:a8:45:c2:11:b3:13:f8:13:37: 75:ec:76:3a:1d:65:b8:61:f4:86:e6:c8:9d:c5:90: 23:f1:0e:f4:f8:4e:d1:6b:57:9a:fe:cd:96:ca:0d: 1b:e3:70:58:d8:5a:96:d9:15:a2:3b:31:52:dd:42: 62:64:58:74:c8:71:91:0a:85:3c:c5:6a:76:f3:44: 43:72:8d:8c:5d:eb:ee:dd:ea:39:0f:51:15:f4:98: 54:a5:ef:52:3c:a7:36:2a:32:c0:ee:f1:3b:2c:0d: a2:b2:56:d4:ba:c6:e7:11:ce:fe:1b:de:5d:91:9c: 74:58:92:56:0c:7d:3c:73:dc:ea:b6:bd:b0:b6:85: 4f:33:68:1b:64:54:ac:04:a8:0a:08:ca:1f:9e:1c: fa:8f:87:7f:a8:0b:a4:c6:16:88:47:05:16:4e:07: 60:57:38:8d:37:0d:59:e4:be:7f:e5:8c:15:c3:a0: a7:70:3f:f9:5c:53:61:29:6d:13:9a:42:16:f0:b5: 60:b6:41:93:bd:71:79:c8:3b:d9:17:52:c9:0d:cf: d2:42:0f:62:02:e0:67:3c:23:e9:4e:9f:71:8e:0d: 76:8a:17:fb:90:ac:19:2d:c3:13:a7:6b:af:bf:d6: fe:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:12:BD:42:13:A1:4E:F3:A5:95:4A:55:7A:E9:E9:2A:F5:ED:08:7C X509v3 Authority Key Identifier: keyid:37:30:D9:A1:95:AB:71:02:86:72:2C:E5:CC:A4:67:CF:BA:5B:D4:94 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/NzDZoZWrcQKGcizlzKRnz7pb1JQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NzDZoZWrcQKGcizlzKRnz7pb1JQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/ChK9QhOhTvOllUpVeunpKvXtCHw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 64.78.160.0/20 Signature Algorithm: sha256WithRSAEncryption bf:63:fd:7d:99:98:2d:3e:23:29:b2:04:cb:ac:c9:5b:46:4d: 65:93:ba:54:65:2d:e2:ba:79:a5:3a:0a:c9:17:2a:57:4e:1b: 41:91:85:58:01:f7:b9:f4:0b:b5:5d:9e:3d:53:5c:d5:2a:84: 74:e1:1e:0a:cc:08:c7:c8:69:e7:76:75:c0:b3:5b:87:7e:ff: b1:0c:0b:c8:87:96:f8:8b:af:88:47:49:4a:65:f0:a9:56:96: 42:5a:d3:72:20:fe:90:59:35:e0:cf:2c:a7:88:2e:14:a6:61: 4e:0f:43:e9:c7:1a:e7:25:ab:87:78:ed:e0:cd:2e:5f:fd:ab: 74:6f:cf:e0:f6:38:eb:55:55:e3:3a:be:57:1e:00:dc:83:50: 2a:b9:35:38:72:87:8e:a8:9d:f6:dd:60:dd:cb:7b:78:b9:5e: f4:ce:2c:c6:96:e0:a1:3a:32:b9:00:3d:97:18:ca:5b:f2:ce: 9c:4f:e4:0e:6a:64:83:c3:6c:26:3e:75:be:d8:79:1f:19:a4: 7c:c2:7c:7b:40:4e:98:c9:3f:07:7e:9e:73:7e:ce:02:8a:12: 13:27:33:1c:f8:6a:78:a7:8b:32:f5:c6:51:f0:1e:08:92:29: 2e:e4:f3:64:ea:1e:11:59:05:8f:49:3f:05:38:50:48:85:34: fc:df:ad:da -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBCDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNzMw RDlBMTk1QUI3MTAyODY3MjJDRTVDQ0E0NjdDRkJBNUJENDk0MB4XDTIzMTIxMzA0 MDIxOFoXDTI0MDgzMTAzMTA1M1owMzExMC8GA1UEAxMoMEExMkJENDIxM0ExNEVG M0E1OTU0QTU1N0FFOUU5MkFGNUVEMDg3QzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL0vGvb21Akvxo07ttooUlYxg4UKqEXCEbMT+BM3dex2Oh1luGH0 hubIncWQI/EO9PhO0WtXmv7NlsoNG+NwWNhaltkVojsxUt1CYmRYdMhxkQqFPMVq dvNEQ3KNjF3r7t3qOQ9RFfSYVKXvUjynNioywO7xOywNorJW1LrG5xHO/hveXZGc dFiSVgx9PHPc6ra9sLaFTzNoG2RUrASoCgjKH54c+o+Hf6gLpMYWiEcFFk4HYFc4 jTcNWeS+f+WMFcOgp3A/+VxTYSltE5pCFvC1YLZBk71xecg72RdSyQ3P0kIPYgLg Zzwj6U6fcY4NdooX+5CsGS3DE6drr7/W/kUCAwEAAaOCAfQwggHwMB0GA1UdDgQW BBQKEr1CE6FO86WVSlV66ekq9e0IfDAfBgNVHSMEGDAWgBQ3MNmhlatxAoZyLOXM pGfPulvUlDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OSU1CVVND T00vTnpEWm9aV3JjUUtHY2l6bHpLUm56N3BiMUpRLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9OekRab1pXcmNRS0djaXpsektSbno3cGIxSlEuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OSU1CVVNDT00vQ2hLOVFoT2hUdk9s bFVwVmV1bnBLdlh0Q0h3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3 bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBEBOoDANBgkqhkiG9w0BAQsFAAOCAQEAv2P9fZmYLT4jKbIEy6zJW0ZNZZO6 VGUt4rp5pToKyRcqV04bQZGFWAH3ufQLtV2ePVNc1SqEdOEeCswIx8hp53Z1wLNb h37/sQwLyIeW+IuviEdJSmXwqVaWQlrTciD+kFk14M8sp4guFKZhTg9D6cca5yWr h3jt4M0uX/2rdG/P4PY461VV4zq+Vx4A3INQKrk1OHKHjqid9t1g3ct7eLle9M4s xpbgoToyuQA9lxjKW/LOnE/kDmpkg8NsJj51vth5HxmkfMJ8e0BOmMk/B36ec37O AooSEyczHPhqeKeLMvXGUfAeCJIpLuTzZOoeEVkFj0k/BThQSIU0/N+t2g== -----END CERTIFICATE-----Generated at Mon Jun 3 15:52:35 2024 by rpki-client on console-ams.rpki-client.org