$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/Fu_c-n-nncEKHXXPT8LOta8z6A0.roa File: Fu_c-n-nncEKHXXPT8LOta8z6A0.roa (raw, json) Hash identifier: RDfIYrJD2g56h5JAYcsP4h6qxvgn3Amy3u6guYdbwro= Subject key identifier: 16:EF:DC:FA:7F:A7:9D:C1:0A:1D:75:CF:4F:C2:CE:B5:AF:33:E8:0D Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28 Certificate serial: 0B5B Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/Fu_c-n-nncEKHXXPT8LOta8z6A0.roa Signing time: Fri 01 Sep 2023 10:00:09 +0000 ROA not before: Fri 01 Sep 2023 10:00:09 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131590 IP address blocks: 103.227.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2907 (0xb5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28 Validity Not Before: Sep 1 10:00:09 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=16EFDCFA7FA79DC10A1D75CF4FC2CEB5AF33E80D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:71:72:8a:6b:da:50:8b:77:68:7d:a9:80:c4: 76:70:9b:5c:b8:f4:f0:bf:2b:7d:fa:51:09:84:b0: 58:2d:60:32:1e:dd:d2:e8:7b:14:f8:7c:04:08:77: 6f:db:ae:0b:60:72:fe:db:99:61:a6:c3:4a:6b:a2: 9b:45:67:33:a4:f2:fe:7f:7b:0a:41:ab:5a:2b:41: 27:2e:21:9b:cb:15:51:cc:d7:8e:5a:11:b3:b0:3f: d2:02:77:ed:15:20:9d:21:b9:43:94:24:c8:72:90: 02:cc:03:ca:d0:ec:53:25:3c:d3:02:90:f0:f9:0e: 51:89:8c:13:cd:be:37:a5:57:fe:2f:17:e4:ce:6e: 4e:cc:e0:fc:47:45:64:37:a4:d4:00:bb:73:73:b4: 1d:0e:1c:e6:e3:5f:ee:03:47:b3:46:7f:08:27:50: b8:25:86:34:99:79:2c:e7:dd:ab:26:91:a9:33:d9: 9b:ce:c5:24:2c:1c:63:a2:46:c1:6c:bf:6a:45:d5: 62:8c:a7:6a:52:26:85:a2:1a:a6:9a:ba:02:19:84: 61:dc:ae:00:ae:2f:9d:96:08:8f:b9:e1:22:fa:36: 68:75:92:b6:84:68:4f:81:3d:3c:db:0b:b6:24:ba: 9b:56:9f:d6:43:41:11:0f:97:7b:69:bd:70:dd:fe: d2:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:EF:DC:FA:7F:A7:9D:C1:0A:1D:75:CF:4F:C2:CE:B5:AF:33:E8:0D X509v3 Authority Key Identifier: keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/Fu_c-n-nncEKHXXPT8LOta8z6A0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.227.224.0/22 Signature Algorithm: sha256WithRSAEncryption 35:7a:93:e8:ae:fa:ff:f9:9a:5b:6d:cc:27:32:f4:f0:d5:79: a6:24:9c:1c:18:51:94:ac:b4:0e:fb:0c:a3:5e:04:7b:7e:e6: d2:51:5e:c7:8c:4f:c3:22:52:e4:60:e4:a5:05:5a:49:38:6e: 7e:d4:84:cd:1a:23:ba:71:0e:c1:42:b9:54:9e:cf:10:cf:ad: b2:63:97:f3:f3:4a:8b:7c:fe:ba:4a:15:4b:78:1a:62:9c:df: 88:f2:16:04:70:01:66:d3:b2:27:60:12:25:a7:21:5a:85:45: e8:47:5d:b3:e9:34:63:81:5f:39:0e:1a:17:3d:12:31:c4:e3: 77:23:bb:d6:18:7d:91:03:0e:70:26:1d:b9:23:87:78:04:9b: a7:e5:b0:fe:7f:37:7a:af:7d:e8:44:2d:c2:37:c3:ca:18:29: 0c:b0:55:38:3f:87:86:06:e1:3a:45:b9:93:6d:ed:01:6d:d9: 24:d2:2a:32:bc:3b:3e:2b:86:bd:e2:4e:79:7d:18:8b:22:5d: b3:e0:6f:62:a7:2e:9b:03:52:20:31:c3:64:a3:96:f1:bc:8d: 6e:99:67:41:4a:67:ca:9b:2d:6d:63:b1:36:61:74:96:c0:0b: 30:d1:14:9a:1c:20:df:82:13:7a:77:5a:39:5f:3f:ed:34:ef: 5b:57:16:d2 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICC1swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkY4 MkEzQUMxMTQ1NTAzMDc0M0MwQTc0MzcxMUY4QTBEOEVCQUUyODAeFw0yMzA5MDEx MDAwMDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE2RUZEQ0ZBN0ZBNzlE QzEwQTFENzVDRjRGQzJDRUI1QUYzM0U4MEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWcXKKa9pQi3dofamAxHZwm1y49PC/K336UQmEsFgtYDIe3dLo exT4fAQId2/brgtgcv7bmWGmw0proptFZzOk8v5/ewpBq1orQScuIZvLFVHM145a EbOwP9ICd+0VIJ0huUOUJMhykALMA8rQ7FMlPNMCkPD5DlGJjBPNvjelV/4vF+TO bk7M4PxHRWQ3pNQAu3NztB0OHObjX+4DR7NGfwgnULglhjSZeSzn3asmkakz2ZvO xSQsHGOiRsFsv2pF1WKMp2pSJoWiGqaaugIZhGHcrgCuL52WCI+54SL6Nmh1kraE aE+BPTzbC7YkuptWn9ZDQREPl3tpvXDd/tJXAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUFu/c+n+nncEKHXXPT8LOta8z6A0wHwYDVR0jBBgwFoAUv4KjrBFFUDB0PAp0 NxH4oNjrrigwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENCL3Y0 S2pyQkZGVURCMFBBcDBOeEg0b05qcnJpZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev djRLanJCRkZVREIwUEFwME54SDRvTmpycmlnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVENCL0Z1X2Mtbi1ubmNFS0hYWFBUOExPdGE4 ejZBMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn4+AwDQYJ KoZIhvcNAQELBQADggEBADV6k+iu+v/5mlttzCcy9PDVeaYknBwYUZSstA77DKNe BHt+5tJRXseMT8MiUuRg5KUFWkk4bn7UhM0aI7pxDsFCuVSezxDPrbJjl/PzSot8 /rpKFUt4GmKc34jyFgRwAWbTsidgEiWnIVqFRehHXbPpNGOBXzkOGhc9EjHE43cj u9YYfZEDDnAmHbkjh3gEm6flsP5/N3qvfehELcI3w8oYKQywVTg/h4YG4TpFuZNt 7QFt2STSKjK8Oz4rhr3iTnl9GIsiXbPgb2KnLpsDUiAxw2SjlvG8jW6ZZ0FKZ8qb LW1jsTZhdJbACzDRFJocIN+CE3p3WjlfP+0071tXFtI= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:03 2024 by rpki-client on console-fra.rpki-client.org