$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/G3B8zzP0eXopunNRvIOh16zKEAc.roa File: G3B8zzP0eXopunNRvIOh16zKEAc.roa (raw, json) Hash identifier: /YCGwMs8oI40be78TZN4BpxKvHTdm2xw0Ixgz/mMdEc= Subject key identifier: 1B:70:7C:CF:33:F4:79:7A:29:BA:73:51:BC:83:A1:D7:AC:CA:10:07 Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Certificate serial: 0AE7 Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/G3B8zzP0eXopunNRvIOh16zKEAc.roa Signing time: Fri 01 Sep 2023 10:11:11 +0000 ROA not before: Fri 01 Sep 2023 10:11:11 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17408 IP address blocks: 223.165.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2791 (0xae7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Validity Not Before: Sep 1 10:11:11 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=1B707CCF33F4797A29BA7351BC83A1D7ACCA1007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:46:af:ff:9c:4d:26:5d:87:13:74:b4:aa:73: db:45:ff:58:62:b1:a4:a7:f8:0e:73:4f:11:21:96: 86:2a:13:2f:81:ec:a0:b9:c1:0f:35:59:d6:ae:7c: f7:e2:7f:26:56:c8:36:e0:3e:4b:4c:b2:2c:4b:d8: 00:0d:77:39:d6:ee:91:2f:5c:b9:a4:63:db:d0:14: 3b:38:6c:88:f0:d0:2c:d8:09:a1:ba:e2:8f:b4:57: fd:06:3d:29:e9:fe:30:8a:23:0a:95:9a:c7:4e:6e: 4c:70:2d:15:9a:e7:e1:e4:23:f7:e6:25:2d:7a:cf: fb:02:6f:85:c1:bd:80:cf:ba:7b:70:b9:b3:a7:ca: 28:ce:24:37:bb:8a:d7:7e:7d:b3:3d:3f:71:aa:d2: db:ff:60:30:97:07:05:14:05:0b:ee:66:aa:bb:b6: 25:1b:a7:a9:98:7f:50:34:2d:b2:e1:0e:de:c3:ed: 80:3f:ea:03:01:1c:b0:5f:f9:0d:49:e1:75:fd:e7: 2d:f6:ef:6f:62:45:ad:7f:77:cc:8c:ed:c7:e9:bd: a5:06:75:48:2f:fd:04:2b:72:98:4b:10:43:2f:6a: f3:69:78:91:72:11:26:2c:6d:f7:e4:e3:80:a0:5c: f3:06:7f:a1:fc:2d:ec:eb:e8:cb:25:19:27:6e:72: 07:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:70:7C:CF:33:F4:79:7A:29:BA:73:51:BC:83:A1:D7:AC:CA:10:07 X509v3 Authority Key Identifier: keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/G3B8zzP0eXopunNRvIOh16zKEAc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.165.12.0/24 Signature Algorithm: sha256WithRSAEncryption 26:30:98:33:23:b4:13:81:a9:71:95:ea:f1:dd:4a:58:60:69: f6:21:e8:28:6a:99:1f:42:2a:c7:40:2e:3e:b5:73:c7:a0:f0: a7:5d:16:d7:67:ee:9a:31:24:fd:fc:e7:89:83:84:76:82:c5: 98:9f:22:66:71:d7:4a:53:f9:0e:07:ef:9c:ce:ed:38:85:14: 9b:7d:ee:60:cd:fb:eb:40:ba:bf:98:15:2f:11:94:8e:1f:c0: 17:10:ab:3f:2b:18:ca:37:38:78:07:30:a2:60:76:6a:57:4c: 06:2d:b2:18:12:f3:00:7a:d3:e0:bc:e1:28:6a:b7:9d:00:32: 1d:5d:0e:be:63:4d:88:f6:b3:ea:0b:29:8c:79:ae:31:47:21: 4c:6e:ea:d6:58:c3:63:6f:38:90:0c:e1:62:5c:e0:eb:a5:8e: 79:bd:56:69:e9:c9:4a:d5:8c:95:ce:28:8e:78:5a:2c:aa:9a: 15:a5:3f:42:cb:0b:ff:b9:04:66:93:bf:ac:70:b4:c2:78:d3: 69:a0:ef:05:bd:95:55:d9:ad:93:7f:1a:fa:bb:db:fc:48:05: 45:0b:74:c0:0f:48:f1:db:81:64:65:76:c5:47:6b:47:a0:55: de:48:22:db:51:46:93:07:e0:c4:7a:fb:be:ff:62:e4:4d:ac: cb:8c:eb:28 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICCucwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI4 RjU3MzI0RTc2NkJDNUU5RkE5OUM0RDdBRDRDNDBEMzk1OEZDNjAeFw0yMzA5MDEx MDExMTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFCNzA3Q0NGMzNGNDc5 N0EyOUJBNzM1MUJDODNBMUQ3QUNDQTEwMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5Rq//nE0mXYcTdLSqc9tF/1hisaSn+A5zTxEhloYqEy+B7KC5 wQ81WdaufPfifyZWyDbgPktMsixL2AANdznW7pEvXLmkY9vQFDs4bIjw0CzYCaG6 4o+0V/0GPSnp/jCKIwqVmsdObkxwLRWa5+HkI/fmJS16z/sCb4XBvYDPuntwubOn yijOJDe7itd+fbM9P3Gq0tv/YDCXBwUUBQvuZqq7tiUbp6mYf1A0LbLhDt7D7YA/ 6gMBHLBf+Q1J4XX95y32729iRa1/d8yM7cfpvaUGdUgv/QQrcphLEEMvavNpeJFy ESYsbffk44CgXPMGf6H8Lezr6MslGSducgfrAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUG3B8zzP0eXopunNRvIOh16zKEAcwHwYDVR0jBBgwFoAUwo9XMk52a8Xp+pnE 161MQNOVj8YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdELUNP TS1UVy93bzlYTWs1MmE4WHAtcG5FMTYxTVFOT1ZqOFkuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3dvOVhNazUyYThYcC1wbkUxNjFNUU5PVmo4WS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXRC1DT00tVFcvRzNCOHp6UDBl WG9wdW5OUnZJT2gxNnpLRUFjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAN+lDDANBgkqhkiG9w0BAQsFAAOCAQEAJjCYMyO0E4GpcZXq8d1KWGBp 9iHoKGqZH0Iqx0AuPrVzx6Dwp10W12fumjEk/fzniYOEdoLFmJ8iZnHXSlP5Dgfv nM7tOIUUm33uYM3760C6v5gVLxGUjh/AFxCrPysYyjc4eAcwomB2aldMBi2yGBLz AHrT4LzhKGq3nQAyHV0OvmNNiPaz6gspjHmuMUchTG7q1ljDY284kAzhYlzg66WO eb1WaenJStWMlc4ojnhaLKqaFaU/QssL/7kEZpO/rHC0wnjTaaDvBb2VVdmtk38a +rvb/EgFRQt0wA9I8duBZGV2xUdrR6BV3kgi21FGkwfgxHr7vv9i5E2sy4zrKA== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:07 2024 by rpki-client on console-fra.rpki-client.org