$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/mvV4fMAjb_FiMIk1rqFPZOfCNcM.roa File: mvV4fMAjb_FiMIk1rqFPZOfCNcM.roa (raw, json) Hash identifier: E+AGgTwhs8zO7t4iuMctZv0JJfanUHHxX6lbe0xu2Jg= Subject key identifier: 9A:F5:78:7C:C0:23:6F:F1:62:30:89:35:AE:A1:4F:64:E7:C2:35:C3 Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28 Certificate serial: 0B59 Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/mvV4fMAjb_FiMIk1rqFPZOfCNcM.roa Signing time: Fri 01 Sep 2023 10:00:09 +0000 ROA not before: Fri 01 Sep 2023 10:00:09 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131590 IP address blocks: 2400:c780:fffe:1d67::/64 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2905 (0xb59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28 Validity Not Before: Sep 1 10:00:09 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9AF5787CC0236FF162308935AEA14F64E7C235C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1f:e7:3c:3c:a1:03:c2:18:15:ad:44:e2:11: 20:84:28:b5:eb:1f:51:df:01:5b:eb:43:e1:59:30: 03:ca:b6:61:b9:04:26:40:b2:da:f2:f8:66:65:0c: 6b:f9:9f:92:10:2f:1c:5c:49:e2:2f:98:2e:e8:86: d6:65:39:6b:16:02:72:3e:00:95:9a:4b:29:d9:d3: 50:5c:41:6e:38:3b:a1:60:59:96:07:66:25:68:48: 63:f7:88:74:aa:93:18:b9:09:29:5a:3d:b3:a3:79: 91:64:84:d1:db:94:c5:55:a3:23:c4:1a:ed:58:32: 0b:22:16:11:a7:74:29:42:da:fb:8a:ae:ce:a0:94: 5c:5d:69:63:bd:c4:da:1b:f9:c6:b7:68:97:7c:a0: 27:58:a9:9a:d0:62:d4:b9:91:b6:ad:28:84:9a:16: d8:6a:e0:c1:3b:b0:50:6f:3c:bc:db:d1:17:af:1b: fd:fc:9e:ec:91:e6:21:6d:79:52:81:c8:0e:c8:d1: 07:24:d0:9a:d7:05:29:49:42:07:11:f9:4a:5e:ee: fe:55:d5:6d:12:10:46:82:7d:d5:bf:4c:ac:04:2b: 33:ad:f9:95:47:71:5d:b3:6d:38:c7:41:a4:39:0c: 08:c0:1c:4b:2e:fe:fa:95:b1:e2:a2:c9:96:64:5b: 3c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:F5:78:7C:C0:23:6F:F1:62:30:89:35:AE:A1:4F:64:E7:C2:35:C3 X509v3 Authority Key Identifier: keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/mvV4fMAjb_FiMIk1rqFPZOfCNcM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:c780:fffe:1d67::/64 Signature Algorithm: sha256WithRSAEncryption a4:d4:04:79:cd:04:37:51:f9:a8:09:1a:a6:bf:1f:07:17:46: c3:35:77:ba:8f:53:62:a1:09:96:9d:b7:a1:6b:f7:d9:8c:70: ec:db:50:08:af:bb:43:ba:19:e5:ee:2c:ba:ae:e0:27:08:85: b6:3b:17:3f:ef:b6:f3:ff:5f:7c:0e:98:e7:81:cc:8b:59:f0: 6c:81:db:4a:96:e2:ff:85:d2:5a:7b:d7:c8:bd:ab:84:5e:78: 98:26:29:ba:d6:e6:60:c5:24:11:71:59:be:4e:63:93:d2:ff: be:2c:97:fa:7e:b4:62:8e:e3:b2:89:42:7f:8b:c5:86:8a:a3: a1:9b:ca:67:4d:a9:bb:ea:e4:b5:97:40:31:3d:8a:47:ff:3f: 47:8f:ae:e9:73:1d:d8:06:8d:a3:aa:b2:59:37:66:36:8c:2d: c2:61:a6:d8:f9:b9:a9:82:c4:58:5f:33:a6:aa:02:18:50:d8: 18:a1:fb:75:cf:ae:ee:c8:9a:6e:87:77:35:97:59:54:8f:bd: d4:7e:97:be:10:9a:a2:8c:bf:4c:f8:98:36:dd:2a:4e:de:3c: 79:a8:40:dd:9c:f7:f6:cf:9d:7e:90:15:7d:3a:57:bf:6c:1c: 69:e1:32:3c:b0:94:a2:97:58:b3:a1:5c:a3:a1:d7:83:ce:42: 47:1c:ab:ce -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICC1kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkY4 MkEzQUMxMTQ1NTAzMDc0M0MwQTc0MzcxMUY4QTBEOEVCQUUyODAeFw0yMzA5MDEx MDAwMDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlBRjU3ODdDQzAyMzZG RjE2MjMwODkzNUFFQTE0RjY0RTdDMjM1QzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgH+c8PKEDwhgVrUTiESCEKLXrH1HfAVvrQ+FZMAPKtmG5BCZA stry+GZlDGv5n5IQLxxcSeIvmC7ohtZlOWsWAnI+AJWaSynZ01BcQW44O6FgWZYH ZiVoSGP3iHSqkxi5CSlaPbOjeZFkhNHblMVVoyPEGu1YMgsiFhGndClC2vuKrs6g lFxdaWO9xNob+ca3aJd8oCdYqZrQYtS5kbatKISaFthq4ME7sFBvPLzb0RevG/38 nuyR5iFteVKByA7I0Qck0JrXBSlJQgcR+Upe7v5V1W0SEEaCfdW/TKwEKzOt+ZVH cV2zbTjHQaQ5DAjAHEsu/vqVseKiyZZkWzyHAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUmvV4fMAjb/FiMIk1rqFPZOfCNcMwHwYDVR0jBBgwFoAUv4KjrBFFUDB0PAp0 NxH4oNjrrigwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENCL3Y0 S2pyQkZGVURCMFBBcDBOeEg0b05qcnJpZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev djRLanJCRkZVREIwUEFwME54SDRvTmpycmlnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVENCL212VjRmTUFqYl9GaU1JazFycUZQWk9m Q05jTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwJAYIKwYBBQUHAQcBAf8EFTATMBEEAgACMAsDCQAkAMeA//4d ZzANBgkqhkiG9w0BAQsFAAOCAQEApNQEec0EN1H5qAkapr8fBxdGwzV3uo9TYqEJ lp23oWv32Yxw7NtQCK+7Q7oZ5e4suq7gJwiFtjsXP++28/9ffA6Y54HMi1nwbIHb Spbi/4XSWnvXyL2rhF54mCYputbmYMUkEXFZvk5jk9L/viyX+n60Yo7jsolCf4vF hoqjoZvKZ02pu+rktZdAMT2KR/8/R4+u6XMd2AaNo6qyWTdmNowtwmGm2Pm5qYLE WF8zpqoCGFDYGKH7dc+u7siabod3NZdZVI+91H6XvhCaooy/TPiYNt0qTt48eahA 3Zz39s+dfpAVfTpXv2wcaeEyPLCUopdYs6Fco6HXg85CRxyrzg== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:53 2024 by rpki-client on console-ams.rpki-client.org