$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/5LCe248Wpgv1dtHf1AvfLzWCfhM.roa File: 5LCe248Wpgv1dtHf1AvfLzWCfhM.roa (raw, json) Hash identifier: oKvrED/yIU1XHIinEGNH/HMXf6m8fYVDBUZoZrBQJ/I= Subject key identifier: E4:B0:9E:DB:8F:16:A6:0B:F5:76:D1:DF:D4:0B:DF:2F:35:82:7E:13 Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Certificate serial: 0AE8 Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/5LCe248Wpgv1dtHf1AvfLzWCfhM.roa Signing time: Fri 01 Sep 2023 10:11:11 +0000 ROA not before: Fri 01 Sep 2023 10:11:11 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 133955 IP address blocks: 223.165.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2792 (0xae8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Validity Not Before: Sep 1 10:11:11 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E4B09EDB8F16A60BF576D1DFD40BDF2F35827E13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:90:8f:f9:fb:75:15:57:5e:b4:70:d9:45:35: 60:38:aa:60:34:85:18:c4:3d:6e:d4:09:6d:6b:4a: 92:7f:4f:95:35:37:5f:77:a2:a7:93:6a:77:7e:35: 30:5c:c7:13:98:24:e8:aa:d9:ad:d9:4d:81:b2:83: 5c:ed:87:61:b7:5f:0c:43:c0:22:64:f9:e2:11:57: 7f:71:1d:57:1d:9b:91:a1:07:f9:65:bc:38:da:c6: 68:06:bb:32:7a:f4:c6:ce:a7:a7:21:3b:42:29:05: 20:da:38:38:36:14:f0:d3:ac:e0:7e:21:1c:b5:a6: f7:4c:00:fa:6d:f4:fb:fb:c0:48:7d:6f:1b:9b:a1: 33:a4:a5:a1:ca:bc:70:fa:99:e5:4d:0c:ca:49:0a: 17:22:1c:ba:cd:6e:12:6f:b7:5c:ca:39:c5:93:e1: a5:fd:f8:d3:be:8e:24:dc:a0:7c:46:33:bd:9b:74: 13:fa:53:94:97:bc:64:94:f1:44:9b:c3:c6:4c:1f: ef:1f:34:41:9c:29:e3:a6:d9:33:3c:c3:a0:08:c8: 70:54:91:b1:cf:71:9e:c8:ca:0f:92:67:fa:d7:9a: f0:14:5e:3f:4a:89:70:b7:72:22:46:c4:16:3e:17: b3:af:85:dd:53:ee:c3:3d:d3:a8:d6:9d:09:a7:03: 55:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B0:9E:DB:8F:16:A6:0B:F5:76:D1:DF:D4:0B:DF:2F:35:82:7E:13 X509v3 Authority Key Identifier: keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/5LCe248Wpgv1dtHf1AvfLzWCfhM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.165.9.0/24 Signature Algorithm: sha256WithRSAEncryption 33:ab:a6:fe:89:cc:80:44:1c:e5:18:22:4c:f1:22:07:1a:0b: b2:0d:b8:3e:1e:2c:93:4c:9d:50:9a:61:cc:32:ca:fd:15:cb: 5c:74:0e:f3:78:7e:e3:f0:64:08:42:6a:36:52:72:2c:2f:50: 9c:8e:31:b6:5d:ef:89:08:ff:78:8a:3c:f4:00:61:26:21:36: be:7f:a2:fe:25:1f:d9:e2:70:49:0f:a9:0f:31:4e:3a:5d:c0: c0:da:4b:b1:31:b0:30:96:79:bd:d7:95:32:e7:ea:b8:06:b5: 33:a5:db:f5:ae:6d:ec:5f:2c:09:6f:90:23:c7:d1:29:1f:79: 90:cc:32:6f:c3:71:7a:e4:2c:8d:4a:8c:e0:16:cb:01:22:7c: 2b:d6:69:f0:b2:07:a5:31:cf:ee:f3:a6:71:ef:4b:c7:20:a9: d1:f1:e6:f2:03:9c:4b:e1:c3:e8:a2:19:b8:9b:ac:98:30:13: ed:39:ab:98:47:4b:8e:c6:46:20:a5:ca:1e:da:d3:aa:50:20: 82:07:2f:2e:2a:ee:c7:42:bf:8e:0e:0a:d9:05:b9:c1:b7:a4: 61:c6:57:e4:c1:8e:bd:8c:94:3c:c9:a3:46:3f:39:7e:2e:36: 8d:3a:29:3e:18:f8:98:4b:93:f3:bf:3c:0a:56:b2:7e:d3:43: ed:59:2e:2d -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICCugwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI4 RjU3MzI0RTc2NkJDNUU5RkE5OUM0RDdBRDRDNDBEMzk1OEZDNjAeFw0yMzA5MDEx MDExMTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU0QjA5RURCOEYxNkE2 MEJGNTc2RDFERkQ0MEJERjJGMzU4MjdFMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6kI/5+3UVV160cNlFNWA4qmA0hRjEPW7UCW1rSpJ/T5U1N193 oqeTand+NTBcxxOYJOiq2a3ZTYGyg1zth2G3XwxDwCJk+eIRV39xHVcdm5GhB/ll vDjaxmgGuzJ69MbOp6chO0IpBSDaODg2FPDTrOB+IRy1pvdMAPpt9Pv7wEh9bxub oTOkpaHKvHD6meVNDMpJChciHLrNbhJvt1zKOcWT4aX9+NO+jiTcoHxGM72bdBP6 U5SXvGSU8USbw8ZMH+8fNEGcKeOm2TM8w6AIyHBUkbHPcZ7Iyg+SZ/rXmvAUXj9K iXC3ciJGxBY+F7Ovhd1T7sM906jWnQmnA1XzAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU5LCe248Wpgv1dtHf1AvfLzWCfhMwHwYDVR0jBBgwFoAUwo9XMk52a8Xp+pnE 161MQNOVj8YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdELUNP TS1UVy93bzlYTWs1MmE4WHAtcG5FMTYxTVFOT1ZqOFkuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3dvOVhNazUyYThYcC1wbkUxNjFNUU5PVmo4WS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXRC1DT00tVFcvNUxDZTI0OFdw Z3YxZHRIZjFBdmZMeldDZmhNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAN+lCTANBgkqhkiG9w0BAQsFAAOCAQEAM6um/onMgEQc5RgiTPEiBxoL sg24Ph4sk0ydUJphzDLK/RXLXHQO83h+4/BkCEJqNlJyLC9QnI4xtl3viQj/eIo8 9ABhJiE2vn+i/iUf2eJwSQ+pDzFOOl3AwNpLsTGwMJZ5vdeVMufquAa1M6Xb9a5t 7F8sCW+QI8fRKR95kMwyb8NxeuQsjUqM4BbLASJ8K9Zp8LIHpTHP7vOmce9LxyCp 0fHm8gOcS+HD6KIZuJusmDAT7TmrmEdLjsZGIKXKHtrTqlAgggcvLirux0K/jg4K 2QW5wbekYcZX5MGOvYyUPMmjRj85fi42jTopPhj4mEuT8788ClayftND7VkuLQ== -----END CERTIFICATE-----Generated at Mon Jun 3 15:52:41 2024 by rpki-client on console-ams.rpki-client.org