$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/9xIJpIe_V5ggeL1m389y8unz-wc.roa File: 9xIJpIe_V5ggeL1m389y8unz-wc.roa (raw, json) Hash identifier: xWkd2A7QhCS3up5bcFPzXYrbEcZ0Cwfnoyh8qyjtrlI= Subject key identifier: F7:12:09:A4:87:BF:57:98:20:78:BD:66:DF:CF:72:F2:E9:F3:FB:07 Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Certificate serial: 1035 Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/9xIJpIe_V5ggeL1m389y8unz-wc.roa Signing time: Fri 01 Sep 2023 09:44:19 +0000 ROA not before: Fri 01 Sep 2023 09:44:19 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131633 IP address blocks: 2404:29c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 23:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4149 (0x1035) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Validity Not Before: Sep 1 09:44:19 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F71209A487BF57982078BD66DFCF72F2E9F3FB07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b4:6b:05:13:cc:68:55:49:24:22:66:c0:67: ca:ce:54:ae:49:60:bb:7f:51:25:ff:5c:f6:20:41: ff:ad:24:02:1d:cf:bd:5f:3c:59:24:d0:1c:15:cd: d6:f9:0f:34:6c:4a:18:a8:be:d9:34:be:b2:0a:0a: 86:fc:18:79:f2:b0:c9:a6:6a:6e:e8:b5:6a:9c:d5: d3:89:56:1e:fa:f3:c8:9b:00:d1:f9:33:f0:27:c3: a1:94:a7:4a:75:87:f2:d6:83:d3:43:c4:6f:ad:8f: 00:7a:3f:94:22:70:9e:97:c6:5e:41:5b:88:7b:67: c6:27:c4:87:7f:b2:52:3b:55:ac:6f:4e:a9:96:a0: 1a:a9:8c:c1:af:35:a8:de:37:f5:d8:91:0e:a6:6f: f0:39:e3:81:7f:5a:51:1e:ab:6a:d6:7a:4d:df:04: 4a:74:d0:f2:3b:f6:e0:46:d7:2e:09:10:93:63:b3: 7b:64:77:8f:ca:0e:6b:b2:47:a4:8f:2e:ad:cd:48: 45:07:95:dd:7b:13:df:c2:69:5c:4d:9d:a0:86:c8: e2:68:bf:ec:c5:b0:b5:e5:8c:b5:9c:90:43:80:d1: 9f:6d:9b:b5:83:e0:fe:42:23:8d:eb:3a:10:f4:02: fb:3b:9d:35:8d:80:0d:65:6d:87:6e:60:54:3d:8c: c4:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:12:09:A4:87:BF:57:98:20:78:BD:66:DF:CF:72:F2:E9:F3:FB:07 X509v3 Authority Key Identifier: keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/9xIJpIe_V5ggeL1m389y8unz-wc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:29c0::/32 Signature Algorithm: sha256WithRSAEncryption 05:5c:ef:01:10:5d:4e:fd:67:dd:4d:d8:25:ed:eb:41:6d:2a: 46:29:b7:a0:40:3f:95:bb:58:63:1a:11:aa:2b:85:50:5d:22: ea:23:5d:0d:58:1d:4e:4d:16:67:b9:6d:15:b5:47:d5:7b:fe: b2:ad:15:5a:9a:71:b6:d0:6c:06:39:3e:67:ce:53:fd:32:37: 55:1c:e8:89:fa:02:87:0d:84:9b:d2:e7:9b:0e:f1:de:13:06: 35:bf:4b:d8:c0:53:3e:dd:bc:66:40:93:e6:fe:31:ee:59:f3: fa:f5:e3:9b:10:2a:26:aa:54:b1:b6:6f:b9:b5:35:a8:1d:8a: 10:90:02:c7:e2:d8:4e:7d:55:e6:97:2b:5d:78:ac:e1:28:26: 37:21:65:02:e0:1d:ee:43:31:be:72:a3:a9:30:2e:90:ba:b9: 91:22:5f:a3:3d:51:ed:b3:d1:a5:9a:77:0f:03:38:80:2b:5a: 55:3c:11:81:ac:62:50:10:b9:3f:f9:47:f3:af:49:1b:3b:72: f9:8a:aa:92:62:d3:60:65:0c:b1:4c:0d:76:fa:4a:be:9b:df: 3d:fd:3a:19:d6:38:dd:6c:cb:7c:06:00:ae:73:cc:f5:b1:1e: 7e:98:29:d5:96:44:a4:37:dd:f7:fa:c7:6e:d7:95:21:8e:ea: 37:3f:3c:d6 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICEDUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQx ODZGNjMxNEQ3QjU3MTNFRkZFQ0ZCOTNFQkMzRTgyMTk3RTJFRjAeFw0yMzA5MDEw OTQ0MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY3MTIwOUE0ODdCRjU3 OTgyMDc4QkQ2NkRGQ0Y3MkYyRTlGM0ZCMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCstGsFE8xoVUkkImbAZ8rOVK5JYLt/USX/XPYgQf+tJAIdz71f PFkk0BwVzdb5DzRsShiovtk0vrIKCob8GHnysMmmam7otWqc1dOJVh7688ibANH5 M/Anw6GUp0p1h/LWg9NDxG+tjwB6P5QicJ6Xxl5BW4h7Z8YnxId/slI7VaxvTqmW oBqpjMGvNajeN/XYkQ6mb/A544F/WlEeq2rWek3fBEp00PI79uBG1y4JEJNjs3tk d4/KDmuyR6SPLq3NSEUHld17E9/CaVxNnaCGyOJov+zFsLXljLWckEOA0Z9tm7WD 4P5CI43rOhD0Avs7nTWNgA1lbYduYFQ9jMQrAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU9xIJpIe/V5ggeL1m389y8unz+wcwHwYDVR0jBBgwFoAU7RhvYxTXtXE+/+z7 k+vD6CGX4u8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hVTllJ TkcvN1Jodll4VFh0WEUtXy16N2stdkQ2Q0dYNHU4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS83Umh2WXhUWHRYRS1fLXo3ay12RDZDR1g0dTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSFVOWUlORy85eElKcEllX1Y1Z2dl TDFtMzg5eTh1bnotd2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAQpwDANBgkqhkiG9w0BAQsFAAOCAQEABVzvARBdTv1n3U3YJe3rQW0qRim3 oEA/lbtYYxoRqiuFUF0i6iNdDVgdTk0WZ7ltFbVH1Xv+sq0VWppxttBsBjk+Z85T /TI3VRzoifoChw2Em9Lnmw7x3hMGNb9L2MBTPt28ZkCT5v4x7lnz+vXjmxAqJqpU sbZvubU1qB2KEJACx+LYTn1V5pcrXXis4SgmNyFlAuAd7kMxvnKjqTAukLq5kSJf oz1R7bPRpZp3DwM4gCtaVTwRgaxiUBC5P/lH869JGzty+YqqkmLTYGUMsUwNdvpK vpvfPf06GdY43WzLfAYArnPM9bEefpgp1ZZEpDfd9/rHbteVIY7qNz881g== -----END CERTIFICATE-----Generated at Tue Apr 30 21:02:35 2024 by rpki-client on console-ams.rpki-client.org