$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/aQJuLVVz_A7ZzhH_EPn2oW2Ze5c.roa File: aQJuLVVz_A7ZzhH_EPn2oW2Ze5c.roa (raw, json) Hash identifier: oJHkgosxQIPJvdpeT+y33M6yfRPBlaTj6AiRUee1PGY= Subject key identifier: 69:02:6E:2D:55:73:FC:0E:D9:CE:11:FF:10:F9:F6:A1:6D:99:7B:97 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 116E Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/aQJuLVVz_A7ZzhH_EPn2oW2Ze5c.roa Signing time: Fri 01 Sep 2023 03:14:21 +0000 ROA not before: Fri 01 Sep 2023 03:14:21 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131621 IP address blocks: 101.101.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 21:31:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4462 (0x116e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Sep 1 03:14:21 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=69026E2D5573FC0ED9CE11FF10F9F6A16D997B97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:80:f2:7b:1d:8b:c2:44:71:74:04:43:0e:c4: 7b:74:88:73:dd:db:e1:05:25:4f:61:38:89:40:a9: cb:76:42:31:7f:d4:72:e4:d7:c5:69:a2:c4:18:4c: 0e:63:da:76:08:90:63:11:e9:db:96:cd:f5:fa:70: 1c:c0:e1:42:31:d9:2f:f5:e5:60:51:c9:d0:9d:ba: 20:5e:c6:ce:02:e4:b5:a9:ee:83:e5:86:e1:4f:6d: 36:63:88:1f:19:f9:98:d3:a7:0b:ca:10:7d:a3:27: 7a:08:de:18:ce:cd:1c:fb:07:b9:58:13:d0:22:22: 8a:2f:d7:24:e1:c6:cd:9b:8d:19:64:f2:e8:9d:0a: 2b:f8:94:25:fd:c1:33:16:3c:ec:5a:fc:4d:0e:8c: 94:eb:27:a0:90:97:54:56:e6:50:64:c1:2a:f4:40: 06:10:9c:6d:f7:cd:bd:d3:fb:88:95:d9:bb:25:96: 32:6b:12:ad:fe:c3:05:7a:9a:51:0e:14:ef:9f:61: c8:a2:c3:86:aa:9a:95:63:25:90:99:65:73:a5:3c: 38:a6:9c:05:97:4d:55:7d:b4:7a:0a:d2:3e:b8:f5: d2:f9:16:12:f1:a6:c7:10:8e:3f:80:8c:15:80:bf: 00:60:fa:cd:3c:48:a4:34:ce:da:a2:22:46:49:02: 7a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:02:6E:2D:55:73:FC:0E:D9:CE:11:FF:10:F9:F6:A1:6D:99:7B:97 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/aQJuLVVz_A7ZzhH_EPn2oW2Ze5c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.101.101.0/24 Signature Algorithm: sha256WithRSAEncryption b4:fb:6d:a3:c2:4c:44:b0:56:88:02:a3:4c:1a:cb:4b:85:5f: 7b:19:36:2d:0b:fd:30:94:8e:61:43:d1:b2:1e:32:9f:bb:48: 95:65:c6:bb:4b:59:f6:17:20:f1:8f:c9:83:49:67:c0:e2:a1: 54:de:63:a0:4a:2c:90:d8:a1:86:56:e3:7e:67:76:7e:b4:b1: c8:c3:1f:87:dd:15:c8:e4:3d:15:86:a7:83:96:2f:2f:54:e0: 95:f5:5c:12:c5:c4:b1:56:f8:18:71:e6:ea:f4:2d:8d:c0:85: 53:b1:35:36:14:e0:22:ea:f6:fa:2a:20:e5:76:81:86:1c:a6: da:0a:04:7e:1e:b9:04:71:3c:80:c0:0e:10:b5:83:2a:96:fa: 59:43:e5:42:1d:1e:72:c9:67:b3:ed:4a:04:37:0b:71:8e:dc: 07:bc:0f:7e:53:74:7f:29:ba:76:10:bd:d0:52:86:ea:2e:aa: c4:eb:70:6b:ef:f1:22:6b:2e:7e:69:3c:f9:f1:c1:10:a8:96: 5d:45:19:ab:0f:f9:ec:a2:0f:24:30:dc:21:91:9f:9d:20:34: f4:89:f1:29:74:0c:b9:42:d0:72:43:0a:34:d9:b1:44:f0:32: 34:53:c6:79:e0:c4:54:3c:52:54:30:bd:5a:a1:59:3a:01:21: 26:e4:13:cc -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEW4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMzA5MDEw MzE0MjFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY5MDI2RTJENTU3M0ZD MEVEOUNFMTFGRjEwRjlGNkExNkQ5OTdCOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/gPJ7HYvCRHF0BEMOxHt0iHPd2+EFJU9hOIlAqct2QjF/1HLk 18VposQYTA5j2nYIkGMR6duWzfX6cBzA4UIx2S/15WBRydCduiBexs4C5LWp7oPl huFPbTZjiB8Z+ZjTpwvKEH2jJ3oI3hjOzRz7B7lYE9AiIoov1yThxs2bjRlk8uid Civ4lCX9wTMWPOxa/E0OjJTrJ6CQl1RW5lBkwSr0QAYQnG33zb3T+4iV2bslljJr Eq3+wwV6mlEOFO+fYciiw4aqmpVjJZCZZXOlPDimnAWXTVV9tHoK0j649dL5FhLx pscQjj+AjBWAvwBg+s08SKQ0ztqiIkZJAnqXAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUaQJuLVVz/A7ZzhH/EPn2oW2Ze5cwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9hUUp1TFZWel9BN1p6aEhfRVBu Mm9XMlplNWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZWVl MA0GCSqGSIb3DQEBCwUAA4IBAQC0+22jwkxEsFaIAqNMGstLhV97GTYtC/0wlI5h Q9GyHjKfu0iVZca7S1n2FyDxj8mDSWfA4qFU3mOgSiyQ2KGGVuN+Z3Z+tLHIwx+H 3RXI5D0VhqeDli8vVOCV9VwSxcSxVvgYcebq9C2NwIVTsTU2FOAi6vb6KiDldoGG HKbaCgR+HrkEcTyAwA4QtYMqlvpZQ+VCHR5yyWez7UoENwtxjtwHvA9+U3R/Kbp2 EL3QUobqLqrE63Br7/Eiay5+aTz58cEQqJZdRRmrD/nsog8kMNwhkZ+dIDT0ifEp dAy5QtByQwo02bFE8DI0U8Z54MRUPFJUML1aoVk6ASEm5BPM -----END CERTIFICATE-----Generated at Sun Jun 23 13:19:23 2024 by rpki-client on console-fra.rpki-client.org