$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/GVc9bOEGCFH_jMWW-3Mwh-K16jo.roa File: GVc9bOEGCFH_jMWW-3Mwh-K16jo.roa (raw, json) Hash identifier: 2YDy4CTa/vJ848DarEdFcdZt/JdZTTeyUvecyS6iTCE= Subject key identifier: 19:57:3D:6C:E1:06:08:51:FF:8C:C5:96:FB:73:30:87:E2:B5:EA:3A Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Certificate serial: 0AFE Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/GVc9bOEGCFH_jMWW-3Mwh-K16jo.roa Signing time: Fri 01 Sep 2023 09:40:22 +0000 ROA not before: Fri 01 Sep 2023 09:40:22 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 48024 IP address blocks: 103.122.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:45:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2814 (0xafe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Validity Not Before: Sep 1 09:40:22 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=19573D6CE1060851FF8CC596FB733087E2B5EA3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:aa:0b:06:84:99:6f:28:85:1e:8e:34:2a:24: e8:72:57:41:25:0b:fc:67:96:c7:aa:58:d9:d1:d7: 89:83:b6:35:a6:8b:6f:92:82:67:ae:9d:05:4f:6d: 11:21:cc:b2:60:c4:74:61:e8:e2:75:23:5d:96:d7: 9f:5c:1c:73:f0:c3:c0:30:18:5a:10:73:8a:f7:e0: 63:be:8f:08:13:45:b8:91:69:26:77:f2:41:5f:76: 73:b7:11:8f:29:0e:9a:e5:41:7d:6f:77:72:9d:fd: e2:8d:4c:ec:25:ce:6a:3d:15:1c:10:cc:ae:5b:23: ad:1f:70:8f:2c:82:7c:7f:00:21:8c:ef:5a:71:ff: 48:bf:7a:05:60:af:04:d3:2d:45:a9:5c:7c:8b:10: 37:b1:0d:6e:3d:d0:a2:bd:51:ce:00:ed:6e:cc:db: 23:ca:b4:c2:76:a2:94:1a:dd:22:6d:1b:d5:d6:66: 3b:80:aa:d0:62:9f:90:69:eb:4d:f0:4c:5a:1a:f0: ce:df:dc:20:49:de:09:56:22:78:c2:0a:d8:3f:9d: 81:6a:fd:c2:c5:3d:f8:f7:fd:9e:71:19:ea:c7:2e: 6b:38:97:93:c3:f7:81:4c:49:44:06:cf:7f:dc:0c: 9a:02:cb:af:80:76:c0:7d:8e:5d:cf:78:5e:6f:54: 38:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:57:3D:6C:E1:06:08:51:FF:8C:C5:96:FB:73:30:87:E2:B5:EA:3A X509v3 Authority Key Identifier: keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/GVc9bOEGCFH_jMWW-3Mwh-K16jo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.22.0/24 Signature Algorithm: sha256WithRSAEncryption 28:ae:77:90:f4:2d:da:c3:6f:2b:74:5e:8b:ff:50:d1:42:b5: d1:a3:25:b1:e9:e5:7f:1a:27:b4:d2:46:9a:94:c2:39:55:dd: 3e:ba:d7:0a:78:56:15:3a:e0:29:29:5a:6b:98:8d:ec:46:2e: 8d:15:30:c1:37:7a:c0:62:5f:dc:97:b2:cf:0c:3e:6d:c5:54: 08:e5:ee:f9:cb:6d:ad:58:8d:d1:84:c3:c5:d7:37:a9:a6:49: 0d:38:33:b1:4a:e5:19:74:c6:aa:d5:cc:d1:86:05:a3:26:14: af:b3:6a:42:94:ae:bb:51:67:09:39:55:a9:93:25:d6:5a:53: 45:98:7f:02:41:f0:ad:47:99:51:8c:ce:a7:f7:77:40:2c:57: f4:ed:3c:c1:95:e9:20:5d:5c:71:90:85:cd:7b:60:2e:fa:57: 1d:f3:4a:c1:6a:66:6a:7c:19:80:8f:01:09:0a:58:27:de:07: d7:7e:60:41:c5:20:59:92:a1:06:e8:42:e6:bb:ac:8e:53:df: a6:21:96:82:e4:15:57:e4:d4:b0:55:ec:4a:7a:f4:1f:a4:a1: e8:f5:73:57:e2:c9:92:b6:f0:f0:29:fd:70:3f:de:01:59:75: 43:61:c1:b1:f1:72:92:fc:79:fe:99:37:6d:cc:a9:68:24:7d: fb:ea:46:a8 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICCv4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTkz RjcyODBGMUY5QjY1NDM5REQ2NUFERkI2OENBMEQ2Qzk5QkVDNTAeFw0yMzA5MDEw OTQwMjJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE5NTczRDZDRTEwNjA4 NTFGRjhDQzU5NkZCNzMzMDg3RTJCNUVBM0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMqgsGhJlvKIUejjQqJOhyV0ElC/xnlseqWNnR14mDtjWmi2+S gmeunQVPbREhzLJgxHRh6OJ1I12W159cHHPww8AwGFoQc4r34GO+jwgTRbiRaSZ3 8kFfdnO3EY8pDprlQX1vd3Kd/eKNTOwlzmo9FRwQzK5bI60fcI8sgnx/ACGM71px /0i/egVgrwTTLUWpXHyLEDexDW490KK9Uc4A7W7M2yPKtMJ2opQa3SJtG9XWZjuA qtBin5Bp603wTFoa8M7f3CBJ3glWInjCCtg/nYFq/cLFPfj3/Z5xGerHLms4l5PD 94FMSUQGz3/cDJoCy6+AdsB9jl3PeF5vVDhvAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUGVc9bOEGCFH/jMWW+3Mwh+K16jowHwYDVR0jBBgwFoAUmT9ygPH5tlQ53WWt +2jKDWyZvsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FLVVJB SE9TVC9tVDl5Z1BINXRsUTUzV1d0LTJqS0RXeVp2c1UuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21UOXlnUEg1dGxRNTNXV3QtMmpLRFd5WnZzVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBS1VSQUhPU1QvR1ZjOWJPRUdD Rkhfak1XVy0zTXdoLUsxNmpvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGd6FjANBgkqhkiG9w0BAQsFAAOCAQEAKK53kPQt2sNvK3Rei/9Q0UK1 0aMlsenlfxontNJGmpTCOVXdPrrXCnhWFTrgKSlaa5iN7EYujRUwwTd6wGJf3Jey zww+bcVUCOXu+cttrViN0YTDxdc3qaZJDTgzsUrlGXTGqtXM0YYFoyYUr7NqQpSu u1FnCTlVqZMl1lpTRZh/AkHwrUeZUYzOp/d3QCxX9O08wZXpIF1ccZCFzXtgLvpX HfNKwWpmanwZgI8BCQpYJ94H135gQcUgWZKhBuhC5rusjlPfpiGWguQVV+TUsFXs Snr0H6Sh6PVzV+LJkrbw8Cn9cD/eAVl1Q2HBsfFykvx5/pk3bcypaCR9++pGqA== -----END CERTIFICATE-----Generated at Mon May 6 16:53:01 2024 by rpki-client on console-fra.rpki-client.org