$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/5kJF2Sgxqkp8KA2cJBS5OBCSQNw.roa File: 5kJF2Sgxqkp8KA2cJBS5OBCSQNw.roa (raw, json) Hash identifier: 4kWEExZ39X7TizROSJ57pG2Ay2bQQ5J43jT+0aC5IKs= Subject key identifier: E6:42:45:D9:28:31:AA:4A:7C:28:0D:9C:24:14:B9:38:10:92:40:DC Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0BAA Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/5kJF2Sgxqkp8KA2cJBS5OBCSQNw.roa Signing time: Tue 28 Nov 2023 06:05:55 +0000 ROA not before: Tue 28 Nov 2023 06:05:55 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9922 IP address blocks: 39.1.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 10:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2986 (0xbaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Nov 28 06:05:55 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E64245D92831AA4A7C280D9C2414B938109240DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f9:fc:40:2d:db:2e:6c:b6:bd:08:bc:f4:70: 7e:9b:ff:41:23:22:10:3d:8b:4d:a4:23:20:d3:ec: c0:e2:78:11:b0:5a:e5:4a:55:41:a7:d5:10:5e:10: 17:d5:a7:7b:cc:99:9b:3f:ee:3b:86:ca:39:0b:ed: 83:d9:ba:24:ea:17:35:d1:47:81:7a:40:c7:25:8d: 3a:1d:7f:4c:99:92:37:8a:e8:55:ce:9d:fb:8a:bc: 5f:0f:75:e0:75:e0:0e:f2:36:22:96:a7:d1:6a:ad: 1f:04:13:3e:92:b7:0e:89:f4:74:c5:0c:b2:fb:30: 94:7a:85:29:d5:1b:08:99:66:0d:9f:04:91:37:01: 6c:40:6a:eb:6e:34:89:ee:0f:18:01:18:b7:50:60: 8b:37:f5:9f:3c:23:fa:5a:27:8d:58:03:7f:72:8e: 94:43:91:72:79:8e:12:db:f3:bf:f1:93:f1:29:8d: 1b:f1:0c:e3:85:d9:f5:f1:1f:ac:e6:a5:1a:a3:71: 06:77:28:51:a3:76:97:96:98:de:9f:be:a4:a1:87: 8f:13:bc:20:61:ed:15:75:91:35:4a:70:e8:ca:15: 5f:b3:5c:b8:c3:42:29:58:fb:44:aa:fc:90:b3:1c: 6d:2c:67:53:0e:3e:17:06:62:a7:5a:5f:8c:85:df: 6e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:42:45:D9:28:31:AA:4A:7C:28:0D:9C:24:14:B9:38:10:92:40:DC X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/5kJF2Sgxqkp8KA2cJBS5OBCSQNw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.1.0.0/20 Signature Algorithm: sha256WithRSAEncryption c3:19:d9:0f:80:2b:11:7c:ed:c1:96:c0:8c:f3:ed:00:44:16: c5:49:49:4b:cf:bb:52:7a:26:e9:c0:35:75:50:ec:d7:65:9e: de:b7:5f:35:23:74:45:09:78:37:c8:13:e2:53:cc:a3:6b:62: e3:79:c2:23:39:9d:dd:df:ab:b1:2b:95:fb:11:1b:1b:c4:a5: af:d0:18:b3:06:2a:87:34:a3:72:c8:f7:2f:09:ac:e7:99:69: 5c:6d:91:1e:20:e7:e5:6c:e8:2d:8b:91:05:19:0a:19:08:10: 49:dd:a5:46:f0:06:51:a3:84:d5:c2:b3:9e:d2:53:4c:34:01: 1f:e6:9b:ea:55:e5:b4:6b:5a:7e:04:db:0e:d0:88:51:15:9d: a0:30:6d:5a:0c:9e:89:07:2c:2c:96:d0:7b:8e:81:01:70:39: ba:f6:37:0d:17:6b:42:3b:fd:bd:33:17:35:39:32:a2:9a:a7: f6:26:a3:63:50:90:97:0f:28:fc:62:0c:e6:8d:9c:73:23:dc: ca:57:f4:40:c4:6c:d4:35:96:f3:1e:59:3b:5e:4b:b8:33:6f: 23:05:40:62:b0:c7:ab:b6:ac:27:ea:71:59:50:d7:f6:22:15: 4d:91:49:c0:e2:bb:8d:55:c4:55:ad:05:7e:d7:56:15:e1:7b: e6:70:f4:4f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICC6owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yMzExMjgw NjA1NTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU2NDI0NUQ5MjgzMUFB NEE3QzI4MEQ5QzI0MTRCOTM4MTA5MjQwREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw+fxALdsubLa9CLz0cH6b/0EjIhA9i02kIyDT7MDieBGwWuVK VUGn1RBeEBfVp3vMmZs/7juGyjkL7YPZuiTqFzXRR4F6QMcljTodf0yZkjeK6FXO nfuKvF8PdeB14A7yNiKWp9FqrR8EEz6Stw6J9HTFDLL7MJR6hSnVGwiZZg2fBJE3 AWxAautuNInuDxgBGLdQYIs39Z88I/paJ41YA39yjpRDkXJ5jhLb87/xk/EpjRvx DOOF2fXxH6zmpRqjcQZ3KFGjdpeWmN6fvqShh48TvCBh7RV1kTVKcOjKFV+zXLjD QilY+0Sq/JCzHG0sZ1MOPhcGYqdaX4yF324JAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU5kJF2Sgxqkp8KA2cJBS5OBCSQNwwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC81a0pGMlNneHFrcDhLQTJjSkJT NU9CQ1NRTncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEJwEA MA0GCSqGSIb3DQEBCwUAA4IBAQDDGdkPgCsRfO3BlsCM8+0ARBbFSUlLz7tSeibp wDV1UOzXZZ7et181I3RFCXg3yBPiU8yja2LjecIjOZ3d36uxK5X7ERsbxKWv0Biz BiqHNKNyyPcvCaznmWlcbZEeIOflbOgti5EFGQoZCBBJ3aVG8AZRo4TVwrOe0lNM NAEf5pvqVeW0a1p+BNsO0IhRFZ2gMG1aDJ6JBywsltB7joEBcDm69jcNF2tCO/29 Mxc1OTKimqf2JqNjUJCXDyj8YgzmjZxzI9zKV/RAxGzUNZbzHlk7Xku4M28jBUBi sMertqwn6nFZUNf2IhVNkUnA4ruNVcRVrQV+11YV4XvmcPRP -----END CERTIFICATE-----Generated at Sat Jun 1 15:05:03 2024 by rpki-client on console-fra.rpki-client.org