$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/s5IFJub2NmSDuF5P5nvqcsVlLnI.roa File: s5IFJub2NmSDuF5P5nvqcsVlLnI.roa (raw, json) Hash identifier: wpHaaw4GoOcp32dCNYnIFBhew+p1uAmW1ObGenHHUyY= Subject key identifier: B3:92:05:26:E6:F6:36:64:83:B8:5E:4F:E6:7B:EA:72:C5:65:2E:72 Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Certificate serial: 9C Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/s5IFJub2NmSDuF5P5nvqcsVlLnI.roa Signing time: Sun 31 Mar 2024 14:29:45 +0000 ROA not before: Sun 31 Mar 2024 14:29:45 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 134823 IP address blocks: 103.208.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 16:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Validity Not Before: Mar 31 14:29:45 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B3920526E6F6366483B85E4FE67BEA72C5652E72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a3:76:a1:b4:ab:84:4a:bd:c2:fa:55:32:a1: cc:b3:19:e0:b9:fa:a3:65:97:55:38:43:50:4c:56: cd:c2:0d:e9:54:c0:da:e9:f4:5b:96:d9:ff:14:21: 35:15:e0:44:eb:0a:3b:98:1b:c7:2b:7d:32:35:9c: d4:00:ff:96:a0:4e:ad:54:ce:e3:e8:e4:96:e8:14: 4f:10:82:f0:8d:38:30:30:45:b7:74:e7:33:d8:6d: ee:5c:9c:31:19:80:6c:6a:71:88:a3:5b:44:13:35: 59:58:a3:20:6a:3a:1b:3a:4f:5c:b4:21:44:b5:5a: 80:f2:b0:fb:88:f1:7d:04:e4:ee:cc:8d:73:2f:f8: 09:7f:aa:6c:e2:f9:24:a6:1d:79:17:21:c1:99:c2: ca:ea:86:84:41:3f:70:82:68:7d:37:01:00:d7:1d: 95:f9:09:73:e3:38:a6:02:f0:1b:f1:b2:ec:f5:76: de:50:31:98:37:dd:c3:93:95:96:14:5d:2f:1f:da: 50:78:6f:0e:04:d5:f7:a1:5c:3b:bb:9f:81:df:19: 4f:77:f1:ab:73:91:a5:98:76:32:20:36:46:88:82: cd:03:3a:a3:c0:f6:91:16:12:d2:86:ed:80:ea:d5: 95:45:b0:0c:49:9b:0b:ff:3f:79:3c:5c:c8:87:ae: 62:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:92:05:26:E6:F6:36:64:83:B8:5E:4F:E6:7B:EA:72:C5:65:2E:72 X509v3 Authority Key Identifier: keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/s5IFJub2NmSDuF5P5nvqcsVlLnI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.208.196.0/23 Signature Algorithm: sha256WithRSAEncryption 54:6a:49:8b:34:52:9c:5c:a0:b0:8e:e8:5a:d3:6d:01:68:f3: 28:70:06:e7:b3:6f:23:2e:ae:61:1f:93:79:92:c4:c0:76:66: 87:4b:5e:58:81:96:47:8a:f6:a4:ee:d4:4e:04:28:f3:3b:59: 70:c4:ef:ea:9b:75:3a:1f:69:52:42:44:39:f0:b3:56:8c:ba: de:61:93:fa:10:fa:46:c0:61:ae:37:fc:b6:c6:a7:c4:7b:61: a7:6e:fe:08:41:13:a7:47:2f:47:c8:14:2c:41:6c:ff:96:3d: 5e:47:f9:8b:80:da:c3:76:23:d8:65:2c:c8:e9:26:b1:a0:0d: 3f:89:4c:bb:66:8d:ed:65:ab:8c:b6:6d:f9:dc:ef:49:ab:9f: 2d:b7:e9:bd:a8:89:8f:79:68:af:ab:89:79:8c:9e:80:0c:d6: 09:29:5b:f8:ee:58:eb:09:95:10:82:6e:1e:9c:3b:2e:48:cc: 5e:03:5c:cf:90:63:fb:80:b5:f0:53:03:10:9b:d0:6e:c5:49: 55:58:62:e3:fa:05:72:71:56:23:c8:63:55:a2:b7:86:41:d4: 4d:b8:d7:b8:ea:34:5a:a3:ea:ab:39:f0:10:0c:78:06:b9:8f: 99:45:b9:3a:3f:1f:23:51:28:61:1f:4f:b7:c1:86:12:0a:82: a0:f1:96:c6 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI2 NEE0MUE3NDFFNUYwMEFFRDJCRDdFNEE3QTQyRjVCMUQ3NThENTAeFw0yNDAzMzEx NDI5NDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEIzOTIwNTI2RTZGNjM2 NjQ4M0I4NUU0RkU2N0JFQTcyQzU2NTJFNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2o3ahtKuESr3C+lUyocyzGeC5+qNll1U4Q1BMVs3CDelUwNrp 9FuW2f8UITUV4ETrCjuYG8crfTI1nNQA/5agTq1UzuPo5JboFE8QgvCNODAwRbd0 5zPYbe5cnDEZgGxqcYijW0QTNVlYoyBqOhs6T1y0IUS1WoDysPuI8X0E5O7MjXMv +Al/qmzi+SSmHXkXIcGZwsrqhoRBP3CCaH03AQDXHZX5CXPjOKYC8Bvxsuz1dt5Q MZg33cOTlZYUXS8f2lB4bw4E1fehXDu7n4HfGU938atzkaWYdjIgNkaIgs0DOqPA 9pEWEtKG7YDq1ZVFsAxJmwv/P3k8XMiHrmIhAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUs5IFJub2NmSDuF5P5nvqcsVlLnIwHwYDVR0jBBgwFoAUAmSkGnQeXwCu0r1+ SnpC9bHXWNUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RDTC1U Vy9BbVNrR25RZVh3Q3UwcjEtU25wQzliSFhXTlUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FtU2tHblFlWHdDdTByMS1TbnBDOWJIWFdOVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NEQ0wtVFcvczVJRkp1YjJObVNEdUY1 UDVudnFjc1ZsTG5JLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWfQxDANBgkqhkiG9w0BAQsFAAOCAQEAVGpJizRSnFygsI7oWtNtAWjzKHAG57Nv Iy6uYR+TeZLEwHZmh0teWIGWR4r2pO7UTgQo8ztZcMTv6pt1Oh9pUkJEOfCzVoy6 3mGT+hD6RsBhrjf8tsanxHthp27+CEETp0cvR8gULEFs/5Y9Xkf5i4Daw3Yj2GUs yOkmsaANP4lMu2aN7WWrjLZt+dzvSaufLbfpvaiJj3lor6uJeYyegAzWCSlb+O5Y 6wmVEIJuHpw7LkjMXgNcz5Bj+4C18FMDEJvQbsVJVVhi4/oFcnFWI8hjVaK3hkHU TbjXuOo0WqPqqznwEAx4BrmPmUW5Oj8fI1EoYR9Pt8GGEgqCoPGWxg== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:52 2024 by rpki-client on console-ams.rpki-client.org