$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/L1XPqjavjJvtGFKIRBX8SlOOyeg.roa File: L1XPqjavjJvtGFKIRBX8SlOOyeg.roa (raw, json) Hash identifier: dqwZrggDnbyUmAvn3aC5VXb2gaDoTmSJhndxH88QAN0= Subject key identifier: 2F:55:CF:AA:36:AF:8C:9B:ED:18:52:88:44:15:FC:4A:53:8E:C9:E8 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0B6B Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/L1XPqjavjJvtGFKIRBX8SlOOyeg.roa Signing time: Fri 01 Sep 2023 09:45:57 +0000 ROA not before: Fri 01 Sep 2023 09:45:57 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18182 IP address blocks: 39.1.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 10:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2923 (0xb6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Sep 1 09:45:57 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2F55CFAA36AF8C9BED1852884415FC4A538EC9E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:85:10:b2:ae:6e:2a:ca:23:b1:0a:57:2d:7d: 63:94:7f:7d:f9:38:87:d2:aa:fa:b8:b9:ca:e9:0c: a3:b1:fe:4e:4a:48:02:03:63:4a:50:c4:58:23:17: 74:dc:86:fd:d9:26:e8:6b:8b:00:a4:55:4b:d4:3c: 00:ea:cf:2c:b6:eb:85:02:9f:af:2c:50:24:bf:df: ae:18:a6:26:8f:f7:72:b4:92:b6:f3:63:8d:4c:d8: ad:0f:82:6e:40:6d:d5:af:67:10:ce:e3:37:7e:8e: 80:53:7f:bd:f7:cf:a9:29:6e:b8:ad:9b:09:c9:ba: c7:d3:f8:b8:7f:d5:ae:c9:8a:83:a6:49:e8:00:ea: c0:60:ce:e4:f0:94:e6:5b:00:66:97:4c:f3:4f:15: e2:14:01:04:38:f0:f1:9f:40:fc:f8:6a:93:6e:ca: 4d:26:ac:d2:ae:0c:00:2b:97:d2:c4:66:a8:a6:d6: 1d:69:10:8c:62:fa:95:37:2d:2e:e4:f2:f6:b8:57: 07:1a:21:55:fd:18:2e:1b:8b:13:02:0f:92:39:ac: 20:05:51:e9:86:dd:b0:c8:2a:d0:57:18:77:82:b5: 89:c8:b4:70:c0:97:ad:28:7a:2c:1b:51:37:15:2e: c6:a3:31:13:42:6f:7c:8a:d8:53:9a:36:d4:70:bf: c7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:55:CF:AA:36:AF:8C:9B:ED:18:52:88:44:15:FC:4A:53:8E:C9:E8 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/L1XPqjavjJvtGFKIRBX8SlOOyeg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.1.0.0/16 Signature Algorithm: sha256WithRSAEncryption ca:4d:03:fc:69:8b:c4:cc:fa:cc:c3:aa:88:d5:20:c2:1d:54: eb:2c:c9:0d:3f:e3:b1:28:c4:f9:d8:40:59:fe:31:26:4c:01: 16:7a:52:16:a0:71:1f:c1:f2:69:c5:c2:4f:50:a9:50:79:3d: af:1b:e4:b5:83:e6:11:47:1c:38:f9:bd:d3:b0:62:f0:c8:bc: 6c:b3:10:7a:0b:66:02:e1:3f:8a:7c:a6:d5:40:45:fe:88:d5: 1a:5b:0c:62:20:e6:e3:df:0d:8c:45:b0:3f:2f:60:d8:39:ff: 0a:5f:2f:c4:da:29:51:87:f7:a0:27:80:04:ef:2f:e1:1c:22: df:a4:4b:54:9a:09:36:b4:40:3a:a8:18:bd:12:dd:29:3c:02: 87:50:45:23:5a:8f:36:72:f5:3b:f3:cd:3c:5d:06:83:bc:23: a7:45:73:49:61:50:32:2f:6d:4c:76:35:e0:81:b2:9e:b3:1e: 9a:2b:b4:0f:6d:ab:44:dd:d8:80:98:90:76:02:0d:1a:65:52: 9a:ec:e1:38:6d:67:3b:43:6b:15:34:1f:68:74:c9:28:11:ff: 09:1f:24:27:10:6b:09:0b:d5:8f:5d:94:7e:7c:29:66:1b:1c: 59:11:4f:2a:60:30:71:ac:14:c2:6c:3e:b9:1a:fb:11:34:d7: 08:36:cd:42 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICC2swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yMzA5MDEw OTQ1NTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJGNTVDRkFBMzZBRjhD OUJFRDE4NTI4ODQ0MTVGQzRBNTM4RUM5RTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJhRCyrm4qyiOxClctfWOUf335OIfSqvq4ucrpDKOx/k5KSAID Y0pQxFgjF3Tchv3ZJuhriwCkVUvUPADqzyy264UCn68sUCS/364YpiaP93K0krbz Y41M2K0Pgm5AbdWvZxDO4zd+joBTf733z6kpbritmwnJusfT+Lh/1a7JioOmSegA 6sBgzuTwlOZbAGaXTPNPFeIUAQQ48PGfQPz4apNuyk0mrNKuDAArl9LEZqim1h1p EIxi+pU3LS7k8va4VwcaIVX9GC4bixMCD5I5rCAFUemG3bDIKtBXGHeCtYnItHDA l60oeiwbUTcVLsajMRNCb3yK2FOaNtRwv8cZAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUL1XPqjavjJvtGFKIRBX8SlOOyegwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9MMVhQcWphdmpKdnRHRktJUkJY OFNsT095ZWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAJwEw DQYJKoZIhvcNAQELBQADggEBAMpNA/xpi8TM+szDqojVIMIdVOssyQ0/47EoxPnY QFn+MSZMARZ6UhagcR/B8mnFwk9QqVB5Pa8b5LWD5hFHHDj5vdOwYvDIvGyzEHoL ZgLhP4p8ptVARf6I1RpbDGIg5uPfDYxFsD8vYNg5/wpfL8TaKVGH96AngATvL+Ec It+kS1SaCTa0QDqoGL0S3Sk8AodQRSNajzZy9TvzzTxdBoO8I6dFc0lhUDIvbUx2 NeCBsp6zHportA9tq0Td2ICYkHYCDRplUprs4ThtZztDaxU0H2h0ySgR/wkfJCcQ awkL1Y9dlH58KWYbHFkRTypgMHGsFMJsPrka+xE01wg2zUI= -----END CERTIFICATE-----Generated at Sat Jun 1 15:05:03 2024 by rpki-client on console-fra.rpki-client.org