$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/zgJ6r3wlm6vj9EP0V8P6zf-53n4.roa File: zgJ6r3wlm6vj9EP0V8P6zf-53n4.roa (raw, json) Hash identifier: Vf7dnADeEhEEZdT7zDBPXcR/iUnAIPfjpiX+HQBxjXY= Subject key identifier: CE:02:7A:AF:7C:25:9B:AB:E3:F4:43:F4:57:C3:FA:CD:FF:B9:DE:7E Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0BAD Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/zgJ6r3wlm6vj9EP0V8P6zf-53n4.roa Signing time: Fri 01 Sep 2023 10:01:11 +0000 ROA not before: Fri 01 Sep 2023 10:01:11 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 49.213.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:29:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2989 (0xbad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Sep 1 10:01:11 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CE027AAF7C259BABE3F443F457C3FACDFFB9DE7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c1:22:1b:b7:80:6e:67:a8:20:43:ee:68:fd: ec:44:74:07:bc:fb:8c:45:00:55:c2:ac:80:48:4b: d9:ff:4a:71:da:39:b1:df:0b:68:3b:28:7e:11:3a: 9f:a7:92:4c:a8:5c:e6:9f:5f:ac:cf:6f:e0:40:58: 32:4d:fd:ea:42:b7:aa:bd:34:11:53:09:24:60:06: c0:86:fd:58:5b:88:13:fc:36:8e:c3:6b:40:f0:79: cf:d3:3a:44:30:36:49:2b:c3:77:4f:b7:4a:82:e9: 0b:6a:f8:c4:f0:83:a7:1a:eb:10:b5:de:90:2a:2e: 33:79:cf:59:f9:3c:58:31:e2:47:07:18:c4:a0:c0: af:f0:d7:15:31:87:9b:21:d6:c4:d3:3a:4c:19:da: 45:52:d2:52:c1:8a:db:6a:08:60:2b:a2:11:eb:c8: 64:23:10:ab:d3:01:25:13:31:be:a6:d6:77:4b:6f: 66:b4:6f:17:31:87:06:6a:ef:cc:67:80:93:52:60: 63:48:dd:dd:21:72:40:dc:74:23:58:96:fc:58:40: 77:6a:37:04:90:f1:19:bb:eb:04:c7:de:90:23:05: f0:d8:a1:af:bb:7b:69:51:96:a4:bf:2a:ff:c3:bc: 36:72:9c:88:94:43:cb:bd:ba:15:8d:0a:56:ab:19: f8:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:02:7A:AF:7C:25:9B:AB:E3:F4:43:F4:57:C3:FA:CD:FF:B9:DE:7E X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/zgJ6r3wlm6vj9EP0V8P6zf-53n4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.213.128.0/17 Signature Algorithm: sha256WithRSAEncryption 51:6e:3c:38:d5:e4:85:f4:98:19:e2:cf:48:03:35:82:85:d4: 1d:19:98:c4:56:f1:40:00:c3:3e:81:5b:93:c0:01:df:34:55: 7a:23:76:ff:26:6b:6d:64:21:83:1e:4f:95:6f:69:a1:d9:d2: 69:4d:34:01:57:ac:69:ee:73:1a:ba:36:1c:9b:a1:ea:e5:c9: eb:d5:ee:44:8d:bb:95:37:12:43:e1:b8:01:fc:bd:34:59:dc: 13:09:68:11:20:d2:74:05:28:05:17:69:66:ee:01:a3:fa:00: e5:a1:b6:bd:33:01:fb:d0:39:8f:87:a3:da:ca:de:cd:22:68: 42:62:95:12:cd:9a:6f:30:21:32:fe:16:45:c5:78:bf:d6:a0: 34:ef:9c:d7:80:d5:cc:a1:92:37:18:c3:f4:a2:b7:c5:57:b4: 35:7e:bf:9c:c2:dd:26:ec:be:84:cd:58:59:e3:8a:d6:fa:8b: 66:f9:59:2e:33:45:dd:75:bf:bf:82:d4:10:7f:2a:e9:89:16: 87:b2:31:87:d2:70:98:99:47:87:88:8f:04:f2:91:0a:3c:74: a6:7e:da:3e:6d:bd:b9:37:13:2c:ed:cd:47:b8:29:f0:ad:00: d3:15:93:e6:3b:e6:94:67:54:3d:ed:43:f0:3b:b6:9f:0b:58: 8d:b7:e3:85 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICC60wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yMzA5MDEx MDAxMTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENFMDI3QUFGN0MyNTlC QUJFM0Y0NDNGNDU3QzNGQUNERkZCOURFN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1wSIbt4BuZ6ggQ+5o/exEdAe8+4xFAFXCrIBIS9n/SnHaObHf C2g7KH4ROp+nkkyoXOafX6zPb+BAWDJN/epCt6q9NBFTCSRgBsCG/VhbiBP8No7D a0Dwec/TOkQwNkkrw3dPt0qC6Qtq+MTwg6ca6xC13pAqLjN5z1n5PFgx4kcHGMSg wK/w1xUxh5sh1sTTOkwZ2kVS0lLBittqCGArohHryGQjEKvTASUTMb6m1ndLb2a0 bxcxhwZq78xngJNSYGNI3d0hckDcdCNYlvxYQHdqNwSQ8Rm76wTH3pAjBfDYoa+7 e2lRlqS/Kv/DvDZynIiUQ8u9uhWNClarGfiBAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUzgJ6r3wlm6vj9EP0V8P6zf+53n4wHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvemdKNnIzd2xtNnZqOUVQMFY4UDZ6 Zi01M240LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBzHVgDAN BgkqhkiG9w0BAQsFAAOCAQEAUW48ONXkhfSYGeLPSAM1goXUHRmYxFbxQADDPoFb k8AB3zRVeiN2/yZrbWQhgx5PlW9podnSaU00AVesae5zGro2HJuh6uXJ69XuRI27 lTcSQ+G4Afy9NFncEwloESDSdAUoBRdpZu4Bo/oA5aG2vTMB+9A5j4ej2srezSJo QmKVEs2abzAhMv4WRcV4v9agNO+c14DVzKGSNxjD9KK3xVe0NX6/nMLdJuy+hM1Y WeOK1vqLZvlZLjNF3XW/v4LUEH8q6YkWh7Ixh9JwmJlHh4iPBPKRCjx0pn7aPm29 uTcTLO3NR7gp8K0A0xWT5jvmlGdUPe1D8Du2nwtYjbfjhQ== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:53 2024 by rpki-client on console-ams.rpki-client.org