$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/eeoZoN7R_LlK7E8QZ_xb0GDKfKY.roa File: eeoZoN7R_LlK7E8QZ_xb0GDKfKY.roa (raw, json) Hash identifier: WyAkax+PgDXfgH77cRid7hLWTS3yBMtoSp22+l55QN0= Subject key identifier: 79:EA:19:A0:DE:D1:FC:B9:4A:EC:4F:10:67:FC:5B:D0:60:CA:7C:A6 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0B6C Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/eeoZoN7R_LlK7E8QZ_xb0GDKfKY.roa Signing time: Fri 01 Sep 2023 09:45:57 +0000 ROA not before: Fri 01 Sep 2023 09:45:57 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18182 IP address blocks: 219.84.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 10:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2924 (0xb6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Sep 1 09:45:57 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=79EA19A0DED1FCB94AEC4F1067FC5BD060CA7CA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:25:a2:54:d9:01:dd:ea:29:66:fc:5f:9c:bd: 9b:80:d1:cc:8e:fd:71:60:7e:3b:40:b7:f9:92:a8: 65:c2:a3:94:c9:42:d2:3c:92:9b:3e:cb:72:71:b2: a2:52:69:aa:63:82:d9:3d:64:89:0a:58:44:a9:6f: 2d:39:33:67:e7:8c:55:ac:c3:f0:1b:93:19:c9:7a: 46:6c:29:af:99:83:f2:da:56:1d:90:9f:2b:cd:8d: 0e:72:6b:b8:f4:f5:1e:54:f6:05:29:29:18:6e:44: 4e:41:23:8e:26:d6:5f:cb:d4:c6:c6:56:89:63:26: e7:73:fd:25:f0:93:81:42:a6:86:18:b9:c2:02:3e: c0:d8:1b:90:70:ec:64:11:39:2c:9b:0c:81:9f:6c: a6:71:28:8e:03:85:2e:10:c2:6b:5c:e2:bc:c3:bc: 9a:8c:a5:7d:41:3b:d0:24:1f:e9:4b:c2:2d:ed:a9: f8:d6:9c:57:5e:ec:01:dc:10:e4:4e:91:3b:28:75: d3:89:8a:5c:d7:05:12:b0:86:98:03:25:fe:29:95: 3e:9b:70:0a:96:1c:dd:94:fb:bd:c8:69:e2:10:d3: f1:08:92:b2:1d:bf:9b:a1:18:a7:8f:32:2d:0a:07: 95:56:89:76:52:7d:56:2f:bd:c6:ee:99:6f:a6:31: 20:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:EA:19:A0:DE:D1:FC:B9:4A:EC:4F:10:67:FC:5B:D0:60:CA:7C:A6 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/eeoZoN7R_LlK7E8QZ_xb0GDKfKY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.84.0.0/16 Signature Algorithm: sha256WithRSAEncryption 58:74:5f:35:fa:74:a9:c8:34:81:d3:ee:d7:b5:13:b7:b5:36: b1:e9:18:e5:3d:07:fb:0a:7f:28:d6:3f:e4:23:ac:f8:cb:e3: f0:4e:99:f2:1d:6f:c7:79:79:10:68:db:8b:97:13:6f:85:c8: fa:a9:79:e7:12:40:28:29:50:40:b2:d4:d8:ee:fa:51:72:7f: e7:32:46:4a:57:1e:ae:ac:4c:c6:e7:bf:37:6e:d6:2a:e6:36: 30:62:ea:94:81:ec:c1:d6:85:66:4e:aa:03:63:90:98:80:64: d7:49:4d:10:23:0f:0b:c9:7d:1a:dd:8a:ac:52:db:bb:55:0b: f6:4a:9f:4e:14:fa:18:7a:e3:db:00:5e:c1:f4:8c:0f:d0:06: b5:60:14:ab:11:26:ad:c5:52:d8:a0:e5:ef:df:bb:dc:f1:5c: 49:e0:26:d0:38:5a:ea:4f:01:5d:3f:b4:82:c1:37:8a:9a:68: 75:a4:95:b1:80:19:37:8b:5c:5b:75:1b:b5:53:f8:6c:3e:16: 8a:06:8a:00:c9:43:95:2e:2d:9c:ff:73:d5:42:9f:58:4c:a9: 39:16:0d:08:89:55:6f:75:84:d8:85:21:2f:57:59:3f:0d:f1: 2c:50:7b:e7:7b:31:67:a7:6c:b7:ae:fa:b9:50:ce:e8:9c:c6: ae:35:e7:66 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICC2wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yMzA5MDEw OTQ1NTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc5RUExOUEwREVEMUZD Qjk0QUVDNEYxMDY3RkM1QkQwNjBDQTdDQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTJaJU2QHd6ilm/F+cvZuA0cyO/XFgfjtAt/mSqGXCo5TJQtI8 kps+y3JxsqJSaapjgtk9ZIkKWESpby05M2fnjFWsw/AbkxnJekZsKa+Zg/LaVh2Q nyvNjQ5ya7j09R5U9gUpKRhuRE5BI44m1l/L1MbGVoljJudz/SXwk4FCpoYYucIC PsDYG5Bw7GQROSybDIGfbKZxKI4DhS4Qwmtc4rzDvJqMpX1BO9AkH+lLwi3tqfjW nFde7AHcEOROkTsoddOJilzXBRKwhpgDJf4plT6bcAqWHN2U+73IaeIQ0/EIkrId v5uhGKePMi0KB5VWiXZSfVYvvcbumW+mMSB5AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUeeoZoN7R/LlK7E8QZ/xb0GDKfKYwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9lZW9ab043Ul9MbEs3RThRWl94 YjBHREtmS1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA21Qw DQYJKoZIhvcNAQELBQADggEBAFh0XzX6dKnINIHT7te1E7e1NrHpGOU9B/sKfyjW P+QjrPjL4/BOmfIdb8d5eRBo24uXE2+FyPqpeecSQCgpUECy1Nju+lFyf+cyRkpX Hq6sTMbnvzdu1irmNjBi6pSB7MHWhWZOqgNjkJiAZNdJTRAjDwvJfRrdiqxS27tV C/ZKn04U+hh649sAXsH0jA/QBrVgFKsRJq3FUtig5e/fu9zxXEngJtA4WupPAV0/ tILBN4qaaHWklbGAGTeLXFt1G7VT+Gw+FooGigDJQ5UuLZz/c9VCn1hMqTkWDQiJ VW91hNiFIS9XWT8N8SxQe+d7MWenbLeu+rlQzuicxq4152Y= -----END CERTIFICATE-----Generated at Sat Jun 1 17:04:07 2024 by rpki-client on console-ams.rpki-client.org