$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/gKCAP8QHyy_5VJO1ui0fl1ZkGz0.roa File: gKCAP8QHyy_5VJO1ui0fl1ZkGz0.roa (raw, json) Hash identifier: wu/PVKJ96C5Qz8Lcg2gAx3964EGsWvFac8U+QbdMWBo= Subject key identifier: 80:A0:80:3F:C4:07:CB:2F:F9:54:93:B5:BA:2D:1F:97:56:64:1B:3D Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Certificate serial: 9E Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/gKCAP8QHyy_5VJO1ui0fl1ZkGz0.roa Signing time: Sun 31 Mar 2024 14:31:10 +0000 ROA not before: Sun 31 Mar 2024 14:31:10 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 134823 IP address blocks: 103.246.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 16:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Validity Not Before: Mar 31 14:31:10 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=80A0803FC407CB2FF95493B5BA2D1F9756641B3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:62:06:23:ff:bc:3f:8e:71:ac:4a:cf:29:d6: 48:3c:11:b1:67:82:69:51:cc:82:7f:ff:ae:f7:cc: eb:fc:94:9a:14:99:a2:dd:7b:c1:d5:c0:8c:6f:d2: 52:97:ad:3b:e3:3d:40:fe:44:e2:07:ed:8a:48:1d: f8:50:06:1b:47:5a:d4:c6:ef:f8:b0:69:6b:8d:e0: af:9c:40:44:6c:56:c0:bb:bb:4a:51:e0:28:35:c6: ef:98:61:da:b9:49:a8:a1:e9:ee:e3:21:02:e5:ee: ca:9e:08:9e:38:87:e4:8f:f5:f4:68:b6:64:a2:1d: 65:fe:b9:9b:b8:f8:6e:ac:c9:ee:15:c6:f8:ed:a4: 47:dc:91:67:9c:23:30:c2:95:e8:d3:32:8e:72:08: 3d:f8:38:fb:d3:2b:14:02:f5:1c:6d:bf:18:dc:60: a3:a1:d3:e7:45:11:14:a2:25:a7:5c:cf:0f:5a:6a: 5a:dc:5d:be:fc:bf:11:82:95:56:2e:c1:9e:d8:0c: fa:6f:4b:b4:95:e4:8c:78:91:df:e4:f1:cf:0d:65: 92:92:47:92:43:c1:57:a0:50:58:2c:08:0a:ec:b1: dc:e4:8c:5a:f4:da:ef:1a:db:f7:09:cd:a8:6f:ea: 8b:71:c9:e2:0a:c4:4d:3e:05:c4:82:7a:29:05:37: 4e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:A0:80:3F:C4:07:CB:2F:F9:54:93:B5:BA:2D:1F:97:56:64:1B:3D X509v3 Authority Key Identifier: keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/gKCAP8QHyy_5VJO1ui0fl1ZkGz0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.246.218.0/23 Signature Algorithm: sha256WithRSAEncryption 49:d1:96:6e:72:26:bd:71:f4:cd:df:f0:8a:cf:e1:08:34:bb: 78:fc:ac:d4:9e:e7:5d:a0:95:ab:f0:b6:c9:ca:64:ad:09:70: 01:63:b2:0b:73:08:ed:75:53:81:6c:d6:ed:0c:fe:bb:35:bc: f0:80:77:97:bf:98:1b:73:5d:9e:d6:35:7a:d0:0b:a1:07:7e: 0b:44:f2:2d:7d:47:04:bc:83:43:16:9b:67:e3:b9:e4:36:3c: 5d:a6:0b:6b:5b:cf:4e:01:56:74:19:c3:4a:5b:16:fe:00:9f: 7d:10:05:f0:1f:71:cb:44:67:89:13:30:5f:d6:15:15:0a:26: 92:b1:8c:88:26:6b:17:9c:f8:09:76:f7:35:5a:cf:14:6d:3a: 16:95:f7:33:72:7b:1d:6a:06:5f:f1:88:65:cf:2b:b4:f0:bd: 7b:df:c1:94:99:1d:47:65:dc:96:01:b8:c1:4c:4a:8c:42:93: aa:68:62:e4:c9:30:2d:ac:85:11:86:41:16:5d:56:07:74:8f: de:c7:89:b0:d7:60:1e:de:eb:9e:4f:78:cb:92:23:bf:41:c2: 30:18:87:a0:a7:7e:9f:b8:3f:1a:0a:3d:7f:82:50:ea:ec:44: 7a:83:8b:8f:ef:3a:c8:8d:03:41:b0:6b:83:c0:f4:59:6d:d4: 75:aa:3e:37 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI2 NEE0MUE3NDFFNUYwMEFFRDJCRDdFNEE3QTQyRjVCMUQ3NThENTAeFw0yNDAzMzEx NDMxMTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDgwQTA4MDNGQzQwN0NC MkZGOTU0OTNCNUJBMkQxRjk3NTY2NDFCM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmYgYj/7w/jnGsSs8p1kg8EbFngmlRzIJ//673zOv8lJoUmaLd e8HVwIxv0lKXrTvjPUD+ROIH7YpIHfhQBhtHWtTG7/iwaWuN4K+cQERsVsC7u0pR 4Cg1xu+YYdq5Saih6e7jIQLl7sqeCJ44h+SP9fRotmSiHWX+uZu4+G6sye4Vxvjt pEfckWecIzDClejTMo5yCD34OPvTKxQC9RxtvxjcYKOh0+dFERSiJadczw9aalrc Xb78vxGClVYuwZ7YDPpvS7SV5Ix4kd/k8c8NZZKSR5JDwVegUFgsCArssdzkjFr0 2u8a2/cJzahv6otxyeIKxE0+BcSCeikFN04tAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUgKCAP8QHyy/5VJO1ui0fl1ZkGz0wHwYDVR0jBBgwFoAUAmSkGnQeXwCu0r1+ SnpC9bHXWNUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RDTC1U Vy9BbVNrR25RZVh3Q3UwcjEtU25wQzliSFhXTlUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FtU2tHblFlWHdDdTByMS1TbnBDOWJIWFdOVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NEQ0wtVFcvZ0tDQVA4UUh5eV81VkpP MXVpMGZsMVprR3owLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWf22jANBgkqhkiG9w0BAQsFAAOCAQEASdGWbnImvXH0zd/wis/hCDS7ePys1J7n XaCVq/C2ycpkrQlwAWOyC3MI7XVTgWzW7Qz+uzW88IB3l7+YG3NdntY1etALoQd+ C0TyLX1HBLyDQxabZ+O55DY8XaYLa1vPTgFWdBnDSlsW/gCffRAF8B9xy0RniRMw X9YVFQomkrGMiCZrF5z4CXb3NVrPFG06FpX3M3J7HWoGX/GIZc8rtPC9e9/BlJkd R2XclgG4wUxKjEKTqmhi5MkwLayFEYZBFl1WB3SP3seJsNdgHt7rnk94y5Ijv0HC MBiHoKd+n7g/Ggo9f4JQ6uxEeoOLj+86yI0DQbBrg8D0WW3Udao+Nw== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:52 2024 by rpki-client on console-ams.rpki-client.org