$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/ju5XuVTy7pDhYOtHXt0RqI-VpT8.roa File: ju5XuVTy7pDhYOtHXt0RqI-VpT8.roa (raw, json) Hash identifier: iEeAo6LGVXvn67Wb7TVwnszAC1lyT4kXqi2pY+1tRxQ= Subject key identifier: 8E:EE:57:B9:54:F2:EE:90:E1:60:EB:47:5E:DD:11:A8:8F:95:A5:3F Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0B3D Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/ju5XuVTy7pDhYOtHXt0RqI-VpT8.roa Signing time: Fri 01 Sep 2023 09:34:46 +0000 ROA not before: Fri 01 Sep 2023 09:34:46 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17420 IP address blocks: 210.67.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:59:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2877 (0xb3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Sep 1 09:34:46 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8EEE57B954F2EE90E160EB475EDD11A88F95A53F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:4b:65:a1:d7:b2:a3:e9:9e:59:62:fe:2e:1c: 57:ee:e2:61:65:0c:8e:4c:27:a6:e5:3b:ad:51:cb: 54:e4:2f:68:69:31:94:59:f4:93:17:b4:e5:e9:ba: e2:4e:60:88:04:86:2f:5e:9b:2f:5f:fb:07:84:ea: bd:fb:d5:01:fd:75:b3:e0:c3:b0:13:67:db:c7:f2: 49:9b:d8:c1:a8:0e:c9:cc:56:c5:d0:54:56:a0:6d: 93:c7:7e:d2:7a:4d:cc:43:07:88:df:bc:ae:f8:c2: d7:e3:d6:8e:f4:4d:1a:f8:16:ea:b4:50:a4:f7:b6: c5:3a:ec:d3:a4:51:9a:d5:78:d5:45:0d:1e:ca:07: 7c:0a:81:b5:29:d3:96:a3:0a:9e:d7:f3:29:2c:4f: 2f:12:3a:de:88:8a:e0:e8:cf:3f:78:46:46:d1:6c: a7:f5:f5:47:a8:2b:0d:d0:67:50:42:f0:68:cf:ba: 3f:3f:9c:02:70:40:2d:31:a1:f0:3e:81:90:74:3a: ae:2c:0e:3f:2b:1a:b5:1d:16:97:4f:46:8a:e3:c6: a0:de:98:6f:54:37:c2:93:5d:ec:b2:e5:7e:f8:75: 32:87:11:ba:55:c3:e8:dd:a5:14:25:ea:ec:31:b8: 2a:42:ff:03:30:5f:1b:ab:9b:f5:07:87:21:ac:01: 49:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:EE:57:B9:54:F2:EE:90:E1:60:EB:47:5E:DD:11:A8:8F:95:A5:3F X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/ju5XuVTy7pDhYOtHXt0RqI-VpT8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.64.0/19 Signature Algorithm: sha256WithRSAEncryption 4a:12:82:7a:a1:8d:24:d0:a2:e8:bc:be:8f:7d:f8:5d:43:90: 9b:60:f0:16:8b:70:9f:7d:77:b3:45:20:c6:19:16:92:99:3d: 5f:5b:0f:e8:c7:3c:b8:7f:12:b9:4b:e9:90:b7:40:23:28:ad: 06:28:a1:b0:36:f5:ba:6c:c3:ed:6f:d8:9b:e9:9d:99:7a:8f: ca:8a:7e:b4:9b:d9:58:bb:0b:1f:99:a2:29:5d:a7:97:60:da: 2e:e0:7b:15:11:a3:b0:f0:d1:f6:38:4f:01:70:13:2e:01:85: 24:00:8a:35:80:bd:9e:e1:42:61:78:e6:b6:b4:86:9c:97:49: cc:83:4a:fb:30:f6:fa:87:07:00:7f:c3:bb:ea:ff:eb:86:7e: 7d:f7:d8:1b:e1:1f:20:32:eb:1c:06:79:e1:2f:54:d8:bf:0a: 99:fc:43:12:ba:5f:ba:b8:ea:e9:ca:e3:d7:df:d7:af:16:09: b4:cc:f5:88:66:5a:bc:e1:ca:4f:4d:7f:e6:67:f0:4c:78:e6: 17:e7:69:ef:eb:40:f9:2d:03:e1:0b:c6:19:21:ad:34:d9:b2: 0c:24:37:64:cc:e0:f9:18:d2:de:6c:b1:d7:f0:7a:29:f2:83: 35:ae:d3:4d:f2:77:44:18:38:cb:4c:43:79:f0:29:ae:d4:11: a0:8c:e5:e0 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICCz0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yMzA5MDEw OTM0NDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhFRUU1N0I5NTRGMkVF OTBFMTYwRUI0NzVFREQxMUE4OEY5NUE1M0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsS2Wh17Kj6Z5ZYv4uHFfu4mFlDI5MJ6blO61Ry1TkL2hpMZRZ 9JMXtOXpuuJOYIgEhi9emy9f+weE6r371QH9dbPgw7ATZ9vH8kmb2MGoDsnMVsXQ VFagbZPHftJ6TcxDB4jfvK74wtfj1o70TRr4Fuq0UKT3tsU67NOkUZrVeNVFDR7K B3wKgbUp05ajCp7X8yksTy8SOt6IiuDozz94RkbRbKf19UeoKw3QZ1BC8GjPuj8/ nAJwQC0xofA+gZB0Oq4sDj8rGrUdFpdPRorjxqDemG9UN8KTXeyy5X74dTKHEbpV w+jdpRQl6uwxuCpC/wMwXxurm/UHhyGsAUmFAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUju5XuVTy7pDhYOtHXt0RqI+VpT8wHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9qdTVYdVZUeTdwRGhZT3RIWHQw UnFJLVZwVDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF0kNA MA0GCSqGSIb3DQEBCwUAA4IBAQBKEoJ6oY0k0KLovL6PffhdQ5CbYPAWi3CffXez RSDGGRaSmT1fWw/oxzy4fxK5S+mQt0AjKK0GKKGwNvW6bMPtb9ib6Z2Zeo/Kin60 m9lYuwsfmaIpXaeXYNou4HsVEaOw8NH2OE8BcBMuAYUkAIo1gL2e4UJheOa2tIac l0nMg0r7MPb6hwcAf8O76v/rhn5999gb4R8gMuscBnnhL1TYvwqZ/EMSul+6uOrp yuPX39evFgm0zPWIZlq84cpPTX/mZ/BMeOYX52nv60D5LQPhC8YZIa002bIMJDdk zOD5GNLebLHX8Hop8oM1rtNN8ndEGDjLTEN58Cmu1BGgjOXg -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:42 2024 by rpki-client on console-fra.rpki-client.org