$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/tgfqjbvUrYCqExG-aOHtOwLnDac.roa File: tgfqjbvUrYCqExG-aOHtOwLnDac.roa (raw, json) Hash identifier: pL8SlTwxk6KgZjv2gQruhkM7/MT8cJ3aif/pulrC7nY= Subject key identifier: B6:07:EA:8D:BB:D4:AD:80:AA:13:11:BE:68:E1:ED:3B:02:E7:0D:A7 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0BAE Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/tgfqjbvUrYCqExG-aOHtOwLnDac.roa Signing time: Tue 28 Nov 2023 06:07:17 +0000 ROA not before: Tue 28 Nov 2023 06:07:17 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9922 IP address blocks: 39.1.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 10:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2990 (0xbae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Nov 28 06:07:17 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B607EA8DBBD4AD80AA1311BE68E1ED3B02E70DA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bf:46:df:31:1e:e9:97:ad:5e:ea:87:1e:0b: f0:dd:a9:6c:3c:13:bf:8a:1c:9f:f9:f8:9f:f6:b6: 26:53:b5:19:33:cf:c5:20:b5:39:fb:9d:ea:1d:6c: 29:23:9d:2b:22:70:79:cc:24:f7:f0:df:62:90:c6: 00:f8:90:f9:5c:14:30:26:5a:b4:c9:74:a9:7c:49: 3c:00:d6:31:c1:5d:5a:bd:d8:6b:5b:b9:e7:87:5e: e1:06:5f:02:ee:eb:80:70:b1:ed:9c:0e:4c:a1:89: b0:b2:ec:18:3c:4a:c0:19:a4:66:eb:c0:48:ab:7a: 52:2d:a5:d6:79:03:c3:ec:e8:1c:6b:ca:92:0e:fa: 9d:00:6d:4e:aa:67:51:8b:25:45:8d:8c:00:19:1d: 38:bf:03:de:98:f7:fd:91:15:94:26:0e:da:46:c5: 2b:d6:94:bc:71:55:42:18:cf:78:b3:78:d0:ad:ec: 63:e5:9e:b1:da:a2:bd:8d:41:5a:e0:19:b9:4d:4c: d8:18:e0:c0:54:ac:e8:f2:05:dc:bc:bb:d1:06:44: 44:43:25:67:1b:de:23:63:36:8d:a9:08:bf:44:54: 5c:6a:b9:2f:43:34:05:ee:d7:51:c2:20:83:f2:28: f6:94:78:b6:a0:1b:9c:f0:f3:5f:86:7d:1e:58:3e: 6f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:07:EA:8D:BB:D4:AD:80:AA:13:11:BE:68:E1:ED:3B:02:E7:0D:A7 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/tgfqjbvUrYCqExG-aOHtOwLnDac.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.1.32.0/21 Signature Algorithm: sha256WithRSAEncryption b6:de:3e:47:aa:c8:0e:55:c2:5b:ba:ad:48:e0:dc:9c:9b:79: 24:c9:b6:eb:c4:3e:e3:78:ef:8d:87:55:95:d6:84:e6:63:f1: 80:82:99:3d:80:f0:87:7f:bd:db:49:29:01:ea:03:40:d4:22: b1:e6:79:d3:1a:fb:96:4e:fb:e5:5b:1f:57:08:9d:5b:34:e7: e4:a9:b4:28:ef:ba:b9:00:fe:9a:a5:0e:95:ed:02:3e:7f:52: ee:fa:f5:52:2c:3d:b0:81:d6:cf:0e:60:16:16:f1:4e:a7:15: d6:33:49:d5:71:43:7c:5a:8c:42:b6:f9:88:cc:6d:5d:e3:94: d8:7d:22:4f:96:55:e7:58:20:c3:bc:b9:e2:0a:63:2e:98:11: cf:77:52:79:60:b1:60:12:cf:d7:23:51:10:ae:c3:6d:e6:48: 71:a6:5d:06:19:8a:d1:b1:14:de:50:49:13:f5:7e:9a:d0:c9: 7d:1d:24:e4:24:b4:a3:2a:41:ec:62:03:a7:67:6c:fc:bb:1c: a3:78:a2:45:7c:15:1b:1d:95:12:79:c0:ba:12:60:d6:e3:e7: 8c:73:6b:d7:a7:f0:e6:c3:b1:23:75:ab:37:a6:80:32:47:c7: ae:0c:d0:dc:42:68:a2:fc:b8:66:af:b4:a0:a1:c2:72:f6:9a: 8c:17:f1:af -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICC64wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yMzExMjgw NjA3MTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI2MDdFQThEQkJENEFE ODBBQTEzMTFCRTY4RTFFRDNCMDJFNzBEQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5v0bfMR7pl61e6oceC/DdqWw8E7+KHJ/5+J/2tiZTtRkzz8Ug tTn7neodbCkjnSsicHnMJPfw32KQxgD4kPlcFDAmWrTJdKl8STwA1jHBXVq92Gtb ueeHXuEGXwLu64Bwse2cDkyhibCy7Bg8SsAZpGbrwEirelItpdZ5A8Ps6BxrypIO +p0AbU6qZ1GLJUWNjAAZHTi/A96Y9/2RFZQmDtpGxSvWlLxxVUIYz3izeNCt7GPl nrHaor2NQVrgGblNTNgY4MBUrOjyBdy8u9EGRERDJWcb3iNjNo2pCL9EVFxquS9D NAXu11HCIIPyKPaUeLagG5zw81+GfR5YPm9ZAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUtgfqjbvUrYCqExG+aOHtOwLnDacwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC90Z2ZxamJ2VXJZQ3FFeEctYU9I dE93TG5EYWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDJwEg MA0GCSqGSIb3DQEBCwUAA4IBAQC23j5HqsgOVcJbuq1I4Nycm3kkybbrxD7jeO+N h1WV1oTmY/GAgpk9gPCHf73bSSkB6gNA1CKx5nnTGvuWTvvlWx9XCJ1bNOfkqbQo 77q5AP6apQ6V7QI+f1Lu+vVSLD2wgdbPDmAWFvFOpxXWM0nVcUN8WoxCtvmIzG1d 45TYfSJPllXnWCDDvLniCmMumBHPd1J5YLFgEs/XI1EQrsNt5khxpl0GGYrRsRTe UEkT9X6a0Ml9HSTkJLSjKkHsYgOnZ2z8uxyjeKJFfBUbHZUSecC6EmDW4+eMc2vX p/Dmw7Ejdas3poAyR8euDNDcQmii/Lhmr7SgocJy9pqMF/Gv -----END CERTIFICATE-----Generated at Sat Jun 1 15:05:03 2024 by rpki-client on console-fra.rpki-client.org