$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/thdgU2miN3TR2PDKkSWGCDiA8Aw.roa File: thdgU2miN3TR2PDKkSWGCDiA8Aw.roa (raw, json) Hash identifier: n5trhbBfSiFwe9qGmx8X6n2ME0xeAZO/ZjrIs+XdX40= Subject key identifier: B6:17:60:53:69:A2:37:74:D1:D8:F0:CA:91:25:86:08:38:80:F0:0C Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DF3 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/thdgU2miN3TR2PDKkSWGCDiA8Aw.roa Signing time: Mon 26 Aug 2024 05:27:24 +0000 ROA not before: Mon 26 Aug 2024 05:27:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 192.83.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 01:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3571 (0xdf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B617605369A23774D1D8F0CA912586083880F00C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:a3:dd:0a:55:86:88:d5:9b:07:7a:b8:f6:2e: 51:c9:e7:5e:14:0a:27:3c:a7:e2:4d:8e:ac:2f:d1: 45:b5:4b:9a:e9:00:63:1d:41:a2:7f:5b:b2:9a:48: 00:a7:df:78:40:82:13:22:c6:4d:62:51:12:9f:f8: 5e:6f:e9:69:2d:cc:b6:20:54:70:53:96:fe:cd:cd: 63:fc:5f:b1:99:a0:fe:f8:19:2d:68:e9:b8:0c:e2: 58:54:d4:6b:4f:25:8c:99:20:69:e9:02:00:61:3c: f4:45:9a:e0:a5:df:e6:fc:12:41:a9:29:43:e3:98: 4a:95:3d:3d:9c:fd:09:cf:c7:b8:7b:94:85:8a:ab: 45:cc:d0:80:9a:bd:90:88:d4:9d:b4:a6:b0:7a:2e: 79:e7:5d:ec:70:49:a9:fb:d1:fa:eb:5a:fd:4d:e7: 53:2d:eb:83:b4:d2:1c:a7:27:11:7e:b8:c3:40:47: d7:78:6c:e4:61:d6:f5:bd:fc:27:db:13:f1:83:16: b5:a9:1c:d6:f6:43:97:41:76:41:02:55:d5:8d:ea: 16:fc:f2:5c:35:6e:eb:9c:11:df:17:44:5f:78:30: 52:0b:b5:e1:a6:5e:c9:a1:3b:15:fc:ec:88:c2:c6: fe:86:32:00:c1:f3:0c:1e:f2:8e:5c:be:10:b0:2d: 50:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:17:60:53:69:A2:37:74:D1:D8:F0:CA:91:25:86:08:38:80:F0:0C X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/thdgU2miN3TR2PDKkSWGCDiA8Aw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.83.168.0/21 Signature Algorithm: sha256WithRSAEncryption 2e:d3:95:a3:31:b4:a8:4f:5c:6a:e3:fa:b1:76:79:e7:88:b7: 19:d4:4d:7e:31:19:2b:f6:ff:ac:f8:e9:41:bf:16:f5:e6:e1: 53:7e:06:2c:9f:87:28:fa:01:c4:d4:52:32:85:20:f7:29:50: 74:61:5f:82:c4:08:b8:73:88:cf:00:9d:c8:18:43:69:50:bd: db:0e:4f:99:19:62:31:24:3e:6d:cb:f7:db:b2:b4:cf:81:d6: 36:43:c0:fa:56:b7:a2:dc:49:d2:5b:0e:03:f8:b8:e3:ad:c2: 2a:90:1d:cc:65:23:85:12:5b:31:84:9d:4d:66:fe:d2:9f:88: 5b:08:b1:95:fe:92:9b:e6:09:14:b2:9b:29:de:c0:36:5c:54: 61:8a:c7:d5:51:e8:62:ba:26:3c:1e:54:7a:c3:f9:06:74:cd: 91:cc:62:c3:cf:f0:13:5a:e5:fe:bb:b1:bc:47:5d:c4:eb:ea: 09:bb:22:1d:ae:81:c4:3e:78:fa:2e:9a:6d:c1:73:98:fa:62: 4b:8d:10:2c:1a:6a:d5:47:56:ce:dc:c3:bd:35:98:e9:63:54: 83:46:8c:19:46:db:18:cb:3c:2c:b7:3e:88:79:c2:e6:96:36: 6b:5f:d8:47:da:6b:1a:a4:93:db:38:5c:a4:18:eb:64:49:60: fa:43:35:5d -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDfMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI2MTc2MDUzNjlBMjM3 NzREMUQ4RjBDQTkxMjU4NjA4Mzg4MEYwMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD2o90KVYaI1ZsHerj2LlHJ514UCic8p+JNjqwv0UW1S5rpAGMd QaJ/W7KaSACn33hAghMixk1iURKf+F5v6WktzLYgVHBTlv7NzWP8X7GZoP74GS1o 6bgM4lhU1GtPJYyZIGnpAgBhPPRFmuCl3+b8EkGpKUPjmEqVPT2c/QnPx7h7lIWK q0XM0ICavZCI1J20prB6LnnnXexwSan70frrWv1N51Mt64O00hynJxF+uMNAR9d4 bORh1vW9/CfbE/GDFrWpHNb2Q5dBdkECVdWN6hb88lw1buucEd8XRF94MFILteGm XsmhOxX87IjCxv6GMgDB8wwe8o5cvhCwLVAJAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUthdgU2miN3TR2PDKkSWGCDiA8AwwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC90aGRnVTJtaU4zVFIyUERLa1NX R0NEaUE4QXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDwFOo MA0GCSqGSIb3DQEBCwUAA4IBAQAu05WjMbSoT1xq4/qxdnnniLcZ1E1+MRkr9v+s +OlBvxb15uFTfgYsn4co+gHE1FIyhSD3KVB0YV+CxAi4c4jPAJ3IGENpUL3bDk+Z GWIxJD5ty/fbsrTPgdY2Q8D6Vrei3EnSWw4D+LjjrcIqkB3MZSOFElsxhJ1NZv7S n4hbCLGV/pKb5gkUspsp3sA2XFRhisfVUehiuiY8HlR6w/kGdM2RzGLDz/ATWuX+ u7G8R13E6+oJuyIdroHEPnj6LpptwXOY+mJLjRAsGmrVR1bO3MO9NZjpY1SDRowZ RtsYyzwstz6IecLmljZrX9hH2msapJPbOFykGOtkSWD6QzVd -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:50 2024 by rpki-client on console-ams.rpki-client.org