$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/v0vkiIGYey4SBnnzto4mUGdB11g.roa File: v0vkiIGYey4SBnnzto4mUGdB11g.roa (raw, json) Hash identifier: iVLjvOX+YU4FhnNVfJNGI2LoaGOOmHgSE8DLKWxBKWs= Subject key identifier: BF:4B:E4:88:81:98:7B:2E:12:06:79:F3:B6:8E:26:50:67:41:D7:58 Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Certificate serial: 0B5D Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/v0vkiIGYey4SBnnzto4mUGdB11g.roa Signing time: Fri 01 Sep 2023 09:48:57 +0000 ROA not before: Fri 01 Sep 2023 09:48:57 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4783 IP address blocks: 2405:a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2909 (0xb5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Validity Not Before: Sep 1 09:48:57 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=BF4BE48881987B2E120679F3B68E26506741D758 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f4:e2:61:cc:8b:d4:08:aa:2c:2b:40:c6:f4: 53:73:ea:4a:18:b1:65:75:eb:d3:52:f1:da:d9:cf: 4a:ef:89:7c:b6:8b:0d:92:ea:fa:8a:23:06:bc:a1: 24:a2:b1:f1:e5:28:32:58:16:c1:f1:e3:8a:25:8c: 39:9e:5d:7d:34:ed:cf:15:d2:c6:68:29:58:37:e6: df:b3:89:85:2f:7b:8c:0b:84:32:27:ed:da:f2:60: 83:7c:c1:c9:65:62:29:e6:75:af:aa:e1:c8:ee:c7: ce:6a:28:f6:b1:66:f7:3c:95:52:a9:db:bb:8c:a2: 21:30:97:86:ac:67:3e:6f:37:06:ca:d8:cb:a2:34: ad:92:f2:57:b4:b9:bc:ba:04:bf:65:04:bf:74:95: 84:61:ef:49:5d:df:8e:d0:4a:0f:0e:d4:c3:cc:a0: df:e2:b2:75:69:b7:4e:d5:b0:61:b5:71:a6:bf:d5: 79:a0:05:37:b0:d8:16:02:db:66:57:81:ff:6c:d4: 3a:5a:c6:0a:84:0c:75:c6:fa:d0:d3:91:40:12:34: 82:fb:63:f8:65:a6:50:83:b2:64:72:54:d5:3b:57: 09:77:b9:d2:b6:17:82:a8:59:d8:3b:0f:98:8f:78: 74:e5:c1:37:42:72:81:45:fb:7a:c0:d1:ec:80:40: a3:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:4B:E4:88:81:98:7B:2E:12:06:79:F3:B6:8E:26:50:67:41:D7:58 X509v3 Authority Key Identifier: keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/v0vkiIGYey4SBnnzto4mUGdB11g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:a00::/32 Signature Algorithm: sha256WithRSAEncryption 10:f4:ee:e7:85:d8:72:98:58:1d:d2:01:6a:11:92:c7:23:9f: 16:e2:b1:34:45:c6:6a:ba:68:26:c1:8d:48:84:70:47:00:35: 36:32:4b:99:2c:8f:2f:62:c7:2b:e4:c9:d1:38:72:8b:dc:4e: f8:2d:2b:22:38:b2:0f:74:40:f3:52:b4:a0:63:a9:c1:f8:17: 00:c8:82:82:9b:d9:62:cf:c7:10:d6:f2:42:cc:ca:91:e2:92: 47:1d:78:1d:05:0a:df:00:62:f6:2b:5f:18:d3:91:fd:cb:74: 9e:2c:e6:81:cf:72:69:90:78:93:e8:80:7c:1f:7a:85:32:5b: 89:a8:3d:ba:3d:24:1a:25:41:d9:a9:75:b1:44:de:01:db:5c: 2a:ea:2c:83:bf:e0:87:7a:dc:e0:ef:ea:44:de:57:63:d4:61: ed:b0:e0:5a:87:66:b4:3b:9d:a7:e2:2b:41:ac:bc:e7:dd:ec: 3c:72:8c:d0:6a:98:df:88:5c:0d:eb:33:4b:eb:c8:14:ee:71: 1d:31:e8:f0:fc:06:31:8f:b9:a6:d9:58:f1:f7:57:56:9c:ae: dd:44:64:23:a2:c9:a6:64:6b:82:08:c4:05:5e:40:c1:0c:bb: bf:f3:1c:15:dd:d1:34:51:e0:52:84:b4:f7:97:df:18:35:cd: 5f:e5:ff:83 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICC10wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yMzA5MDEw OTQ4NTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEJGNEJFNDg4ODE5ODdC MkUxMjA2NzlGM0I2OEUyNjUwNjc0MUQ3NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC9OJhzIvUCKosK0DG9FNz6koYsWV169NS8drZz0rviXy2iw2S 6vqKIwa8oSSisfHlKDJYFsHx44oljDmeXX007c8V0sZoKVg35t+ziYUve4wLhDIn 7dryYIN8wcllYinmda+q4cjux85qKPaxZvc8lVKp27uMoiEwl4asZz5vNwbK2Mui NK2S8le0uby6BL9lBL90lYRh70ld347QSg8O1MPMoN/isnVpt07VsGG1caa/1Xmg BTew2BYC22ZXgf9s1DpaxgqEDHXG+tDTkUASNIL7Y/hlplCDsmRyVNU7Vwl3udK2 F4KoWdg7D5iPeHTlwTdCcoFF+3rA0eyAQKP1AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUv0vkiIGYey4SBnnzto4mUGdB11gwHwYDVR0jBBgwFoAUlruUtFf52CoptbL9 nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVUL3YwdmtpSUdZZXk0U0Jubnp0 bzRtVUdkQjExZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk BQoAMA0GCSqGSIb3DQEBCwUAA4IBAQAQ9O7nhdhymFgd0gFqEZLHI58W4rE0RcZq umgmwY1IhHBHADU2MkuZLI8vYscr5MnROHKL3E74LSsiOLIPdEDzUrSgY6nB+BcA yIKCm9liz8cQ1vJCzMqR4pJHHXgdBQrfAGL2K18Y05H9y3SeLOaBz3JpkHiT6IB8 H3qFMluJqD26PSQaJUHZqXWxRN4B21wq6iyDv+CHetzg7+pE3ldj1GHtsOBah2a0 O52n4itBrLzn3ew8cozQapjfiFwN6zNL68gU7nEdMejw/AYxj7mm2Vjx91dWnK7d RGQjosmmZGuCCMQFXkDBDLu/8xwV3dE0UeBShLT3l98YNc1f5f+D -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:03 2024 by rpki-client on console-fra.rpki-client.org