$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/yzpce2PNyNXSA55vabx9GvfZuPA.roa File: yzpce2PNyNXSA55vabx9GvfZuPA.roa (raw, json) Hash identifier: G46m6GPxkNUMT43Dp0JS8pP25Us1pKhhPc9VkrtCknw= Subject key identifier: CB:3A:5C:7B:63:CD:C8:D5:D2:03:9E:6F:69:BC:7D:1A:F7:D9:B8:F0 Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC Certificate serial: 0777 Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/yzpce2PNyNXSA55vabx9GvfZuPA.roa Signing time: Fri 01 Sep 2023 10:10:57 +0000 ROA not before: Fri 01 Sep 2023 10:10:57 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9678 IP address blocks: 103.150.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 16:35:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1911 (0x777) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC Validity Not Before: Sep 1 10:10:57 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CB3A5C7B63CDC8D5D2039E6F69BC7D1AF7D9B8F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:74:f8:14:45:b1:6a:bb:15:90:f7:20:d5:28: 9e:b4:e7:30:98:4c:85:fe:ab:b3:cb:12:81:5f:01: 25:68:f3:8a:55:db:46:9f:5e:97:f2:cd:3e:2d:67: dc:5d:7e:28:71:5f:05:99:76:64:9c:50:0c:58:4c: 01:5a:25:3e:7c:08:35:35:08:1d:40:1f:7d:46:33: ad:4c:f4:73:1b:81:d2:d9:f2:d8:3e:60:36:f2:a2: 56:27:c0:2b:dd:77:5d:6b:08:06:70:ae:00:0f:b1: b9:01:9d:b7:bf:86:1b:ee:89:e4:71:55:b8:10:18: 53:28:cb:ae:d7:80:31:d3:6c:57:ba:2f:1f:0f:29: e9:e6:1b:a2:6f:e1:49:31:44:d9:08:e6:c1:2a:b0: e9:61:32:26:2f:b6:31:e4:28:76:3c:49:00:fd:a3: d8:47:ca:51:47:63:e3:e7:28:d0:52:39:83:d5:5e: d5:67:ec:ba:8b:2a:f1:9b:20:a6:e8:3e:43:1e:c3: 3e:50:f8:43:e9:94:77:c4:56:e4:fa:b5:05:cc:42: 85:43:2f:3e:5b:9e:59:75:6f:f7:a1:9e:63:78:1f: 90:a8:fa:fb:d6:70:57:2f:91:26:b9:05:bf:92:95: ba:c7:f2:02:b8:05:22:ee:71:6e:7c:b4:be:bb:d6: 68:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:3A:5C:7B:63:CD:C8:D5:D2:03:9E:6F:69:BC:7D:1A:F7:D9:B8:F0 X509v3 Authority Key Identifier: keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/yzpce2PNyNXSA55vabx9GvfZuPA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.150.36.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:7b:1e:5f:20:f5:2c:d6:ac:7d:3b:dd:e8:41:ba:2c:01:7f: 66:54:3a:50:24:9b:d2:e7:45:d7:c4:29:fb:b7:7b:55:84:dc: a2:c4:8a:77:42:85:19:50:7f:84:a8:4f:d4:ce:1c:fd:97:35: 12:2c:8d:74:a5:d0:f6:eb:63:7c:0c:7e:35:ea:55:00:e3:28: 2c:4a:12:c4:a7:f8:7c:ab:7d:15:06:c0:bf:fb:0a:91:7d:9d: 5d:5f:16:1b:df:58:72:be:ce:8a:bc:bd:90:db:0b:02:50:89: eb:b4:18:9f:57:d7:49:ec:dc:a8:b5:9d:69:1e:3a:5b:1c:fb: 8f:00:0e:d7:68:67:2c:37:85:65:0f:da:0f:13:ae:8e:e2:b2: 39:4a:74:81:29:a7:e3:ce:98:56:ae:6f:b9:c3:ce:e3:ce:73: 94:69:10:6b:35:53:07:46:7f:43:e4:0d:30:e8:55:08:c1:85: 34:65:6a:56:74:42:be:d0:ca:b4:5a:af:d9:81:40:5b:2a:ce: 31:82:ff:da:eb:96:c5:cd:43:cd:6f:ad:7d:c7:cb:76:5f:cd: e1:63:f6:06:af:3b:2b:a7:ab:12:34:b2:e0:ab:58:41:e5:a0: cd:4f:64:a9:3d:5a:3b:80:a5:b3:85:ff:78:9d:0a:74:de:50: 31:b9:e6:8b -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICB3cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0FE NTI3MDIyQzhDRDA3NTY4RUM5RkM4MkExQ0UwRERFNUIyQzRBQzAeFw0yMzA5MDEx MDEwNTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENCM0E1QzdCNjNDREM4 RDVEMjAzOUU2RjY5QkM3RDFBRjdEOUI4RjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKdPgURbFquxWQ9yDVKJ605zCYTIX+q7PLEoFfASVo84pV20af XpfyzT4tZ9xdfihxXwWZdmScUAxYTAFaJT58CDU1CB1AH31GM61M9HMbgdLZ8tg+ YDbyolYnwCvdd11rCAZwrgAPsbkBnbe/hhvuieRxVbgQGFMoy67XgDHTbFe6Lx8P KenmG6Jv4UkxRNkI5sEqsOlhMiYvtjHkKHY8SQD9o9hHylFHY+PnKNBSOYPVXtVn 7LqLKvGbIKboPkMewz5Q+EPplHfEVuT6tQXMQoVDLz5bnll1b/ehnmN4H5Co+vvW cFcvkSa5Bb+SlbrH8gK4BSLucW58tL671mivAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUyzpce2PNyNXSA55vabx9GvfZuPAwHwYDVR0jBBgwFoAUytUnAiyM0HVo7J/I Khzg3eWyxKwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdCRVNU V0FSRS95dFVuQWl5TTBIVm83Sl9JS2h6ZzNlV3l4S3cuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3l0VW5BaXlNMEhWbzdKX0lLaHpnM2VXeXhLdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXQkVTVFdBUkUveXpwY2UyUE55 TlhTQTU1dmFieDlHdmZadVBBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGeWJDANBgkqhkiG9w0BAQsFAAOCAQEALnseXyD1LNasfTvd6EG6LAF/ ZlQ6UCSb0udF18Qp+7d7VYTcosSKd0KFGVB/hKhP1M4c/Zc1EiyNdKXQ9utjfAx+ NepVAOMoLEoSxKf4fKt9FQbAv/sKkX2dXV8WG99Ycr7Oiry9kNsLAlCJ67QYn1fX SezcqLWdaR46Wxz7jwAO12hnLDeFZQ/aDxOujuKyOUp0gSmn486YVq5vucPO485z lGkQazVTB0Z/Q+QNMOhVCMGFNGVqVnRCvtDKtFqv2YFAWyrOMYL/2uuWxc1DzW+t fcfLdl/N4WP2Bq87K6erEjSy4KtYQeWgzU9kqT1aO4Cls4X/eJ0KdN5QMbnmiw== -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:50 2024 by rpki-client on console-ams.rpki-client.org