$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/BI09JkZ75E3cDtA9-EOCudpygeE.roa File: BI09JkZ75E3cDtA9-EOCudpygeE.roa (raw, json) Hash identifier: tHuqMovx7JiRAexz+pKrPaXvTKY+BRXX6RszLT5TPhU= Subject key identifier: 04:8D:3D:26:46:7B:E4:4D:DC:0E:D0:3D:F8:43:82:B9:DA:72:81:E1 Certificate issuer: /CN=2DEF2B3C3A9A1B53C16C1C70E5511AD5903284FB Certificate serial: 0735 Authority key identifier: 2D:EF:2B:3C:3A:9A:1B:53:C1:6C:1C:70:E5:51:1A:D5:90:32:84:FB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/BI09JkZ75E3cDtA9-EOCudpygeE.roa Signing time: Fri 01 Sep 2023 09:34:16 +0000 ROA not before: Fri 01 Sep 2023 09:34:16 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131674 IP address blocks: 2405:e4c0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1845 (0x735) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DEF2B3C3A9A1B53C16C1C70E5511AD5903284FB Validity Not Before: Sep 1 09:34:16 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=048D3D26467BE44DDC0ED03DF84382B9DA7281E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:70:e4:62:2b:4c:09:db:50:21:2a:70:d0:c4: 9d:5b:53:59:de:b4:58:b9:fb:8b:38:3c:6e:e5:3e: 34:4f:e3:cc:b2:9c:f8:1a:e4:74:7b:2b:0f:31:16: 3b:d6:4c:d3:4e:18:61:6b:db:af:46:85:12:27:8f: a3:77:41:49:90:49:bb:d7:ea:b0:3f:71:58:f5:1b: 07:60:de:90:9c:5d:47:69:d1:88:a7:96:7b:00:61: ec:e2:f2:b9:38:d5:a5:95:52:4e:bb:2e:d4:9f:a7: b9:b8:e0:7b:66:97:7e:5f:a9:2f:d4:5d:b6:79:21: 2a:cf:00:dd:a0:b5:ce:13:e6:9c:31:4e:2c:59:ef: 7f:05:0e:fa:e6:91:9f:dc:bc:d5:39:d5:8d:40:58: 5f:c2:57:16:1a:f7:54:23:b1:cc:66:04:09:21:70: 2a:74:69:15:92:fa:30:03:91:f9:9b:90:c6:76:f6: 8c:72:e2:ae:07:98:3b:84:ec:20:44:db:f0:c4:75: 75:a1:c0:fc:8a:81:e7:35:e2:c0:e3:65:3a:6d:ad: 6c:cb:db:07:6d:d7:1e:e5:8d:ab:6c:ed:39:fe:51: 32:82:80:a4:95:ab:e2:7e:8a:eb:19:e4:33:c0:08: 1c:09:fd:e5:cf:fa:61:c1:9c:d2:1f:6d:91:1d:83: 7e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:8D:3D:26:46:7B:E4:4D:DC:0E:D0:3D:F8:43:82:B9:DA:72:81:E1 X509v3 Authority Key Identifier: keyid:2D:EF:2B:3C:3A:9A:1B:53:C1:6C:1C:70:E5:51:1A:D5:90:32:84:FB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/BI09JkZ75E3cDtA9-EOCudpygeE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:e4c0::/32 Signature Algorithm: sha256WithRSAEncryption 81:ea:8d:67:40:6b:70:43:5e:23:88:79:c8:0f:19:79:85:3b: 88:af:86:6c:5b:85:4f:02:35:2d:41:72:48:4d:75:54:b4:ed: a2:70:80:be:d0:51:f1:db:c5:12:fe:57:71:91:45:9b:07:07: ef:00:02:d2:ea:40:a9:61:c6:cb:e8:9a:6c:4e:f1:37:62:18: 67:9a:79:89:fc:12:7b:c3:b0:72:b5:75:88:d1:7c:72:06:62: 7c:e6:6e:bd:17:7b:4b:33:5e:12:cc:03:72:14:f1:d2:bd:79: 4d:36:72:0e:9c:4b:87:9e:72:0b:42:8b:04:f2:1b:f6:59:52: 55:40:ff:59:71:1e:e5:54:fc:a1:e1:a8:b9:70:8f:c0:c0:0a: 31:73:f7:98:e2:83:59:29:77:1f:3d:76:09:1a:af:bd:62:0d: b5:58:13:d7:74:0e:57:8e:49:a7:d4:ce:04:b1:5a:0a:5d:92: 45:8f:5f:27:72:59:84:54:4d:f4:68:90:db:10:17:47:5d:83: 89:73:98:9c:31:68:73:53:cf:48:f7:44:b3:56:b3:6a:a9:15: fd:34:b5:cf:80:ee:5d:f1:72:d1:02:a4:61:54:b7:25:b1:f9: 6a:ce:f2:14:39:38:52:5b:5d:d4:b1:f8:54:53:5a:7a:ed:fe: d1:a3:0b:b8 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICBzUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRF RjJCM0MzQTlBMUI1M0MxNkMxQzcwRTU1MTFBRDU5MDMyODRGQjAeFw0yMzA5MDEw OTM0MTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDA0OEQzRDI2NDY3QkU0 NEREQzBFRDAzREY4NDM4MkI5REE3MjgxRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpcORiK0wJ21AhKnDQxJ1bU1netFi5+4s4PG7lPjRP48yynPga 5HR7Kw8xFjvWTNNOGGFr269GhRInj6N3QUmQSbvX6rA/cVj1Gwdg3pCcXUdp0Yin lnsAYezi8rk41aWVUk67LtSfp7m44Html35fqS/UXbZ5ISrPAN2gtc4T5pwxTixZ 738FDvrmkZ/cvNU51Y1AWF/CVxYa91QjscxmBAkhcCp0aRWS+jADkfmbkMZ29oxy 4q4HmDuE7CBE2/DEdXWhwPyKgec14sDjZTptrWzL2wdt1x7ljats7Tn+UTKCgKSV q+J+iusZ5DPACBwJ/eXP+mHBnNIfbZEdg36rAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUBI09JkZ75E3cDtA9+EOCudpygeEwHwYDVR0jBBgwFoAULe8rPDqaG1PBbBxw 5VEa1ZAyhPswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT1BFTkZP Ui9MZThyUERxYUcxUEJiQnh3NVZFYTFaQXloUHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0xlOHJQRHFhRzFQQmJCeHc1VkVhMVpBeWhQcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL09QRU5GT1IvQkkwOUprWjc1RTNjRHRB OS1FT0N1ZHB5Z2VFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQF5MAwDQYJKoZIhvcNAQELBQADggEBAIHqjWdAa3BDXiOIecgPGXmFO4ivhmxb hU8CNS1BckhNdVS07aJwgL7QUfHbxRL+V3GRRZsHB+8AAtLqQKlhxsvommxO8Tdi GGeaeYn8EnvDsHK1dYjRfHIGYnzmbr0Xe0szXhLMA3IU8dK9eU02cg6cS4eecgtC iwTyG/ZZUlVA/1lxHuVU/KHhqLlwj8DACjFz95jig1kpdx89dgkar71iDbVYE9d0 DleOSafUzgSxWgpdkkWPXydyWYRUTfRokNsQF0ddg4lzmJwxaHNTz0j3RLNWs2qp Ff00tc+A7l3xctECpGFUtyWx+WrO8hQ5OFJbXdSx+FRTWnrt/tGjC7g= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:50 2024 by rpki-client on console-ams.rpki-client.org