$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/GIhAQs2Tj_sHGzOgY-4zaKMspb0.roa File: GIhAQs2Tj_sHGzOgY-4zaKMspb0.roa (raw, json) Hash identifier: n1D3nT1Cv0c+Y+Tv1PGJEwvDRjeW75CpbftaWj3bxUk= Subject key identifier: 18:88:40:42:CD:93:8F:FB:07:1B:33:A0:63:EE:33:68:A3:2C:A5:BD Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0BA2 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/GIhAQs2Tj_sHGzOgY-4zaKMspb0.roa Signing time: Fri 01 Sep 2023 10:01:07 +0000 ROA not before: Fri 01 Sep 2023 10:01:07 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18049 IP address blocks: 116.118.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:29:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2978 (0xba2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Sep 1 10:01:07 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=18884042CD938FFB071B33A063EE3368A32CA5BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a7:24:b6:e8:9e:99:36:84:dd:f0:c0:b3:91: d7:bd:84:42:ae:74:14:54:4d:98:2d:72:63:58:fe: 8c:03:39:77:b0:42:72:54:5a:57:27:d7:9e:b1:e0: 56:95:0f:32:8c:c9:23:0a:bc:f3:c5:26:b2:36:94: c2:e7:0d:a7:50:d3:a6:ed:1f:58:93:46:3b:9f:1b: 75:0e:ce:53:d8:a4:2f:cf:8f:51:a9:01:7b:00:10: d2:2f:7f:be:ea:a2:51:5d:57:7e:7d:e9:b6:8a:5c: 43:d4:af:26:b3:53:56:59:93:e8:f8:d9:8e:40:8f: 4a:77:ec:18:c1:d5:60:5c:4a:58:c5:72:6b:a1:10: 90:ea:cf:17:a8:71:77:64:f3:bd:69:ab:dd:bb:ff: ec:d1:fc:f7:76:2a:9e:b5:12:3e:b8:17:00:c3:2c: 77:4a:c6:57:8c:22:55:47:e2:eb:4d:78:a9:e7:93: c8:5e:22:5f:4a:09:0e:f5:10:3d:cc:49:24:8c:53: 49:71:17:75:b5:64:98:86:6f:3f:4f:de:bf:7e:6e: 82:91:7c:93:fd:ca:d7:cf:a1:b8:77:36:30:b9:38: 6a:e8:4a:84:41:be:ad:fb:74:2e:0e:d9:0e:e4:1c: 8f:c3:a6:bb:b8:5d:95:9e:08:13:f9:65:57:4d:b2: 85:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:88:40:42:CD:93:8F:FB:07:1B:33:A0:63:EE:33:68:A3:2C:A5:BD X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/GIhAQs2Tj_sHGzOgY-4zaKMspb0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 116.118.128.0/18 Signature Algorithm: sha256WithRSAEncryption 7b:ec:54:71:ef:d4:b8:21:90:ec:f4:a9:03:48:ab:14:02:2c: 1d:54:02:b7:35:3c:d7:5b:0d:94:35:0a:2c:90:b8:3f:c9:50: 2d:74:9b:31:01:ee:3f:8b:48:75:22:b5:39:ad:68:f5:86:63: 46:c6:31:88:5b:54:df:53:c3:4e:a5:da:81:aa:ce:70:83:71: 80:e3:5f:7b:93:64:40:97:f6:7d:ea:fa:3e:2b:48:21:41:72: ee:87:8f:6a:67:46:a7:42:fe:57:af:1c:02:7a:bb:cb:5a:24: 1d:9e:5f:0e:72:50:bd:40:81:79:2d:3d:c9:18:63:49:f5:bd: 04:ba:15:bf:47:b6:c6:ca:31:c3:0b:36:54:d6:13:3b:3d:e5: 15:40:11:bf:1a:f6:0b:80:31:d9:f2:9a:93:c0:0e:01:96:ff: d2:d0:7d:d4:ae:db:94:89:40:a4:a7:f8:58:ef:6f:5e:fd:68: 38:e6:ee:d6:17:02:be:78:67:47:c2:f9:07:f2:cd:12:7d:5b: 61:f2:0e:27:d0:ef:36:50:01:97:e3:16:b5:08:d5:84:9b:f7: 20:09:54:07:1d:b4:1b:e0:9c:2d:26:3c:9b:a7:76:c0:12:a8: 85:d9:89:ff:f3:59:ac:d6:e3:16:13:4b:a1:02:f1:86:d8:05: 9d:df:5f:6b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICC6IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yMzA5MDEx MDAxMDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE4ODg0MDQyQ0Q5MzhG RkIwNzFCMzNBMDYzRUUzMzY4QTMyQ0E1QkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjpyS26J6ZNoTd8MCzkde9hEKudBRUTZgtcmNY/owDOXewQnJU Wlcn156x4FaVDzKMySMKvPPFJrI2lMLnDadQ06btH1iTRjufG3UOzlPYpC/Pj1Gp AXsAENIvf77qolFdV3596baKXEPUryazU1ZZk+j42Y5Aj0p37BjB1WBcSljFcmuh EJDqzxeocXdk871pq927/+zR/Pd2Kp61Ej64FwDDLHdKxleMIlVH4utNeKnnk8he Il9KCQ71ED3MSSSMU0lxF3W1ZJiGbz9P3r9+boKRfJP9ytfPobh3NjC5OGroSoRB vq37dC4O2Q7kHI/Dpru4XZWeCBP5ZVdNsoUdAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUGIhAQs2Tj/sHGzOgY+4zaKMspb0wHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvR0loQVFzMlRqX3NIR3pPZ1ktNHph S01zcGIwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnR2gDAN BgkqhkiG9w0BAQsFAAOCAQEAe+xUce/UuCGQ7PSpA0irFAIsHVQCtzU811sNlDUK LJC4P8lQLXSbMQHuP4tIdSK1Oa1o9YZjRsYxiFtU31PDTqXagarOcINxgONfe5Nk QJf2fer6PitIIUFy7oePamdGp0L+V68cAnq7y1okHZ5fDnJQvUCBeS09yRhjSfW9 BLoVv0e2xsoxwws2VNYTOz3lFUARvxr2C4Ax2fKak8AOAZb/0tB91K7blIlApKf4 WO9vXv1oOObu1hcCvnhnR8L5B/LNEn1bYfIOJ9DvNlABl+MWtQjVhJv3IAlUBx20 G+CcLSY8m6d2wBKohdmJ//NZrNbjFhNLoQLxhtgFnd9faw== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:53 2024 by rpki-client on console-ams.rpki-client.org