$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDTV/sZCSjw-Vy39sfTa2qhn4L2b6X5I.roa File: sZCSjw-Vy39sfTa2qhn4L2b6X5I.roa (raw, json) Hash identifier: ehXuiFzLpqP91nPVZ7UnHRVf0nXVbid4KK+Jp6/OqRs= Subject key identifier: B1:90:92:8F:0F:95:CB:7F:6C:7D:36:B6:AA:19:F8:2F:66:FA:5F:92 Certificate issuer: /CN=7F5D8D54ECB7CEEB46FD8DF5467C41C002443526 Certificate serial: 0B26 Authority key identifier: 7F:5D:8D:54:EC:B7:CE:EB:46:FD:8D:F5:46:7C:41:C0:02:44:35:26 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/f12NVOy3zutG_Y31RnxBwAJENSY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/sZCSjw-Vy39sfTa2qhn4L2b6X5I.roa Signing time: Fri 01 Sep 2023 09:41:21 +0000 ROA not before: Fri 01 Sep 2023 09:41:21 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131611 IP address blocks: 103.100.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/f12NVOy3zutG_Y31RnxBwAJENSY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/f12NVOy3zutG_Y31RnxBwAJENSY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/f12NVOy3zutG_Y31RnxBwAJENSY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:08:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2854 (0xb26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7F5D8D54ECB7CEEB46FD8DF5467C41C002443526 Validity Not Before: Sep 1 09:41:21 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B190928F0F95CB7F6C7D36B6AA19F82F66FA5F92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a9:53:b8:27:6d:91:2d:bb:38:bd:a3:68:7f: 0e:b5:3c:a2:dd:ae:40:90:44:0e:f3:b7:30:32:72: 37:ac:f2:f0:04:63:db:81:f3:a5:9e:b4:a2:79:7e: 1a:c3:3e:11:71:8d:d4:4c:1b:75:8d:3b:df:72:01: 1a:51:50:56:c5:0b:91:09:91:53:a5:27:72:81:62: c2:98:d3:4a:ff:08:79:da:01:1f:9b:7a:7c:97:74: 77:fc:a3:ad:40:6a:5f:c0:1d:c9:1c:db:dc:0f:94: bc:3c:73:f4:76:50:7a:01:ea:28:94:60:06:00:11: 5b:36:c6:58:bf:b1:dc:00:f8:9c:20:21:70:48:dd: df:40:5e:18:65:0b:a0:bd:3e:23:41:ff:b7:ca:e3: 93:76:ca:ba:e1:83:c3:2c:f9:b0:ae:eb:0b:37:2b: 20:5c:0a:da:3a:50:1b:01:ca:4b:75:0e:f0:ed:ee: e6:21:86:1d:63:01:f8:41:ca:56:8b:fc:99:cd:5f: 7c:cf:7d:4d:6b:be:0c:73:c3:19:c7:57:84:b8:a8: 2e:b7:bf:0b:5f:0c:3c:0e:1f:83:46:cd:53:33:23: 57:d4:17:a5:56:14:60:4e:03:17:99:38:ab:5f:18: d7:6e:dc:28:34:26:45:aa:03:03:76:da:d3:08:66: 4d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:90:92:8F:0F:95:CB:7F:6C:7D:36:B6:AA:19:F8:2F:66:FA:5F:92 X509v3 Authority Key Identifier: keyid:7F:5D:8D:54:EC:B7:CE:EB:46:FD:8D:F5:46:7C:41:C0:02:44:35:26 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/f12NVOy3zutG_Y31RnxBwAJENSY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/f12NVOy3zutG_Y31RnxBwAJENSY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/sZCSjw-Vy39sfTa2qhn4L2b6X5I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.100.164.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:6b:b8:05:a7:0b:6d:cc:9b:94:bc:5b:45:d5:41:7e:08:31: b9:63:78:18:d8:48:db:1e:c0:c3:9b:3b:04:dd:0b:60:83:4a: 59:83:7d:00:30:51:68:4c:f0:bd:da:c2:7e:a5:45:28:34:5e: cb:79:f6:83:d1:aa:73:26:37:3f:7c:8c:fd:a2:92:a9:97:1e: d9:fd:2f:b5:b3:1e:21:f3:aa:d5:ef:b4:1c:91:e4:e5:c7:66: 0b:59:1a:8d:b6:97:2e:ab:22:5e:de:39:2a:c2:f7:ed:cf:34: ef:c7:6a:9d:b9:3c:0e:0a:bf:18:d7:7a:69:a7:84:a1:93:7c: 5d:ab:b4:f7:07:0c:f7:e6:5c:e7:29:8c:3b:a9:9d:e9:7e:33: 9f:9a:50:0a:40:b6:86:e8:d5:8b:02:9b:73:71:ae:78:2b:ba: 3a:c0:2f:d9:2c:01:35:80:c8:6d:ab:21:36:78:22:99:16:c7: 3f:d5:77:20:1e:2e:b6:11:df:e2:31:c5:e1:42:a1:12:49:4f: 83:47:93:18:13:ab:5c:de:6c:ac:43:13:60:27:a8:7c:8b:45: c9:e5:72:57:67:a2:d1:74:d1:30:59:d5:b7:ba:60:64:0d:95: 1a:7b:00:2d:99:0a:95:7c:b3:d9:2f:35:17:8e:5c:72:cf:a5: 94:9c:82:60 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICCyYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Y1 RDhENTRFQ0I3Q0VFQjQ2RkQ4REY1NDY3QzQxQzAwMjQ0MzUyNjAeFw0yMzA5MDEw OTQxMjFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEIxOTA5MjhGMEY5NUNC N0Y2QzdEMzZCNkFBMTlGODJGNjZGQTVGOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6qVO4J22RLbs4vaNofw61PKLdrkCQRA7ztzAycjes8vAEY9uB 86WetKJ5fhrDPhFxjdRMG3WNO99yARpRUFbFC5EJkVOlJ3KBYsKY00r/CHnaAR+b enyXdHf8o61Aal/AHckc29wPlLw8c/R2UHoB6iiUYAYAEVs2xli/sdwA+JwgIXBI 3d9AXhhlC6C9PiNB/7fK45N2yrrhg8Ms+bCu6ws3KyBcCto6UBsBykt1DvDt7uYh hh1jAfhBylaL/JnNX3zPfU1rvgxzwxnHV4S4qC63vwtfDDwOH4NGzVMzI1fUF6VW FGBOAxeZOKtfGNdu3Cg0JkWqAwN22tMIZk09AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUsZCSjw+Vy39sfTa2qhn4L2b6X5IwHwYDVR0jBBgwFoAUf12NVOy3zutG/Y31 RnxBwAJENSYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RUVi9m MTJOVk95M3p1dEdfWTMxUm54QndBSkVOU1kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2YxMk5WT3kzenV0R19ZMzFSbnhCd0FKRU5TWS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1NEVFYvc1pDU2p3LVZ5MzlzZlRhMnFobjRM MmI2WDVJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdkpDAN BgkqhkiG9w0BAQsFAAOCAQEAfGu4BacLbcyblLxbRdVBfggxuWN4GNhI2x7Aw5s7 BN0LYINKWYN9ADBRaEzwvdrCfqVFKDRey3n2g9GqcyY3P3yM/aKSqZce2f0vtbMe IfOq1e+0HJHk5cdmC1kajbaXLqsiXt45KsL37c8078dqnbk8Dgq/GNd6aaeEoZN8 Xau09wcM9+Zc5ymMO6md6X4zn5pQCkC2hujViwKbc3GueCu6OsAv2SwBNYDIbash NngimRbHP9V3IB4uthHf4jHF4UKhEklPg0eTGBOrXN5srEMTYCeofItFyeVyV2ei 0XTRMFnVt7pgZA2VGnsALZkKlXyz2S81F45ccs+llJyCYA== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:52 2024 by rpki-client on console-ams.rpki-client.org