$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PIXNET/wvgWlNe6XApgo2HuP0MoR5LoJbY.roa File: wvgWlNe6XApgo2HuP0MoR5LoJbY.roa (raw, json) Hash identifier: MBrTFq/QrAISqwKV++VXnV8G2yTq2+6jG/DBUl87WEM= Subject key identifier: C2:F8:16:94:D7:BA:5C:0A:60:A3:61:EE:3F:43:28:47:92:E8:25:B6 Certificate issuer: /CN=CDF44277BA96FC60729008649C09B0AEA07033E8 Certificate serial: 0AE3 Authority key identifier: CD:F4:42:77:BA:96:FC:60:72:90:08:64:9C:09:B0:AE:A0:70:33:E8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zfRCd7qW_GBykAhknAmwrqBwM-g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIXNET/wvgWlNe6XApgo2HuP0MoR5LoJbY.roa Signing time: Fri 01 Sep 2023 09:36:06 +0000 ROA not before: Fri 01 Sep 2023 09:36:06 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 103.23.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIXNET/zfRCd7qW_GBykAhknAmwrqBwM-g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PIXNET/zfRCd7qW_GBykAhknAmwrqBwM-g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zfRCd7qW_GBykAhknAmwrqBwM-g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2787 (0xae3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDF44277BA96FC60729008649C09B0AEA07033E8 Validity Not Before: Sep 1 09:36:06 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C2F81694D7BA5C0A60A361EE3F43284792E825B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:64:6e:df:b7:c7:83:eb:51:d0:bc:66:af:76: 64:51:76:fe:04:0f:a7:7c:13:81:92:e0:6e:e4:90: 3f:83:b5:51:d5:ac:39:47:93:42:16:97:01:54:4e: 45:de:8c:ce:23:0f:0f:e7:d6:ea:03:39:05:28:3d: 6f:32:af:40:49:ac:2b:6e:0f:2f:80:5a:17:b6:ca: eb:02:fd:d6:74:fe:07:a0:e4:5b:47:53:e1:20:06: b4:cf:58:0a:e0:95:ea:af:14:4f:1d:82:7e:cd:18: f6:13:ab:89:16:05:94:d9:1f:3a:8f:f0:44:b8:6a: 80:51:9f:e9:7e:b8:c9:7d:fb:44:91:80:16:c6:40: b2:26:43:71:f1:1d:04:ba:86:0a:cb:d7:90:07:f0: 97:55:4e:51:8d:94:d5:46:64:ae:45:f0:72:13:15: 71:67:36:8c:79:0b:e4:31:d5:ba:f2:c0:44:42:88: 5d:6a:d6:76:a3:7a:87:e3:36:d9:b4:49:e7:b9:df: da:5f:25:33:57:98:dc:dc:ca:0b:a6:da:11:b9:8a: 59:dc:eb:a3:0e:a9:de:8d:0e:69:a0:a1:ce:45:58: e7:6c:80:46:33:9d:f8:f4:0b:8e:15:e0:ba:99:1f: 47:8b:94:fc:2e:39:cc:a3:c6:19:29:76:ac:58:ac: 19:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:F8:16:94:D7:BA:5C:0A:60:A3:61:EE:3F:43:28:47:92:E8:25:B6 X509v3 Authority Key Identifier: keyid:CD:F4:42:77:BA:96:FC:60:72:90:08:64:9C:09:B0:AE:A0:70:33:E8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIXNET/zfRCd7qW_GBykAhknAmwrqBwM-g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zfRCd7qW_GBykAhknAmwrqBwM-g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIXNET/wvgWlNe6XApgo2HuP0MoR5LoJbY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.23.108.0/22 Signature Algorithm: sha256WithRSAEncryption 70:ed:e5:9c:82:0f:c5:e9:4b:00:cc:f4:b9:01:34:9e:51:99: 51:39:78:03:1a:8b:23:e0:11:cc:a3:9b:9d:07:2b:19:67:e0: 48:91:0a:eb:63:c3:38:3c:a9:b2:f3:97:e2:24:ec:c6:d5:fa: 9d:6d:43:11:d0:81:22:bd:f9:71:e6:1e:e1:f2:78:00:d4:46: 1f:8b:fb:07:de:36:a2:a5:c6:02:6b:18:06:c4:4b:d6:9c:ec: a8:49:83:62:f9:33:ac:60:a6:b7:f4:93:ec:b0:3d:4d:98:08: bb:26:63:95:b8:41:c7:da:e1:27:29:5b:ff:de:11:59:a8:7d: be:0c:83:64:9d:4c:d8:ad:e5:da:7f:83:b1:1d:5e:23:85:77: 9a:9d:7d:72:7e:82:cc:ce:10:a4:c0:4f:ee:dc:fb:85:f6:8a: 4b:60:92:f7:61:45:03:af:9c:86:e2:ca:30:e3:43:a1:65:ba: 4d:f3:88:93:3e:72:5a:ff:9a:22:15:95:6e:8b:34:31:43:28: 45:dc:95:18:da:bb:94:80:3a:29:37:80:97:83:53:a0:79:9e: 9f:ec:3c:67:75:5a:59:02:d7:fc:bd:03:60:74:31:00:a8:b3: 53:47:56:b5:f6:cd:e9:57:cc:43:82:eb:fc:25:c2:a9:9d:42: 4a:c5:7c:28 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICCuMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0RG NDQyNzdCQTk2RkM2MDcyOTAwODY0OUMwOUIwQUVBMDcwMzNFODAeFw0yMzA5MDEw OTM2MDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEMyRjgxNjk0RDdCQTVD MEE2MEEzNjFFRTNGNDMyODQ3OTJFODI1QjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUZG7ft8eD61HQvGavdmRRdv4ED6d8E4GS4G7kkD+DtVHVrDlH k0IWlwFUTkXejM4jDw/n1uoDOQUoPW8yr0BJrCtuDy+AWhe2yusC/dZ0/geg5FtH U+EgBrTPWArgleqvFE8dgn7NGPYTq4kWBZTZHzqP8ES4aoBRn+l+uMl9+0SRgBbG QLImQ3HxHQS6hgrL15AH8JdVTlGNlNVGZK5F8HITFXFnNox5C+Qx1brywERCiF1q 1najeofjNtm0See539pfJTNXmNzcygum2hG5ilnc66MOqd6NDmmgoc5FWOdsgEYz nfj0C44V4LqZH0eLlPwuOcyjxhkpdqxYrBlTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUwvgWlNe6XApgo2HuP0MoR5LoJbYwHwYDVR0jBBgwFoAUzfRCd7qW/GBykAhk nAmwrqBwM+gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUElYTkVU L3pmUkNkN3FXX0dCeWtBaGtuQW13cnFCd00tZy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvemZSQ2Q3cVdfR0J5a0Foa25BbXdycUJ3TS1nLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvUElYTkVUL3d2Z1dsTmU2WEFwZ28ySHVQ ME1vUjVMb0piWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn F2wwDQYJKoZIhvcNAQELBQADggEBAHDt5ZyCD8XpSwDM9LkBNJ5RmVE5eAMaiyPg Ecyjm50HKxln4EiRCutjwzg8qbLzl+Ik7MbV+p1tQxHQgSK9+XHmHuHyeADURh+L +wfeNqKlxgJrGAbES9ac7KhJg2L5M6xgprf0k+ywPU2YCLsmY5W4Qcfa4ScpW//e EVmofb4Mg2SdTNit5dp/g7EdXiOFd5qdfXJ+gszOEKTAT+7c+4X2iktgkvdhRQOv nIbiyjDjQ6Fluk3ziJM+clr/miIVlW6LNDFDKEXclRjau5SAOik3gJeDU6B5np/s PGd1WlkC1/y9A2B0MQCos1NHVrX2zelXzEOC6/wlwqmdQkrFfCg= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:51 2024 by rpki-client on console-ams.rpki-client.org