$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/dTE6wk1Hcdtace_pA_3Z_aI8d-Y.roa File: dTE6wk1Hcdtace_pA_3Z_aI8d-Y.roa (raw, json) Hash identifier: ySrvrw7h5TsfVUZ3ZiC3UilQFTKqJllBncHSKrx8y3g= Subject key identifier: 75:31:3A:C2:4D:47:71:DB:5A:71:EF:E9:03:FD:D9:FD:A2:3C:77:E6 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1171 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/dTE6wk1Hcdtace_pA_3Z_aI8d-Y.roa Signing time: Fri 01 Sep 2023 03:14:21 +0000 ROA not before: Fri 01 Sep 2023 03:14:21 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9311 IP address blocks: 150.242.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 00:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4465 (0x1171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Sep 1 03:14:21 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=75313AC24D4771DB5A71EFE903FDD9FDA23C77E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:64:45:ec:c6:f8:69:43:44:59:ca:34:0c:65: a0:b9:c4:a1:60:14:f8:8f:e8:a6:ce:2b:77:16:d9: 49:69:54:d4:70:62:45:0d:1d:84:83:d5:1c:ba:81: 73:1a:e6:58:1d:35:98:0b:60:cd:2f:68:ad:aa:65: 97:e4:89:07:ba:7f:4f:04:53:3c:e9:89:ea:9a:8c: 3f:4f:b1:d1:87:47:55:e8:1d:73:d0:80:8d:00:f3: 85:68:59:2d:ab:c5:b3:3d:eb:14:4c:25:4b:1c:f9: ea:e5:a9:48:32:4a:3b:fb:fe:92:fe:b1:ff:3a:5c: c0:44:bc:c2:36:ad:71:ce:b4:da:71:08:47:0a:08: 8e:cb:8c:2e:7d:e4:22:c7:88:1c:95:f8:9a:7b:0d: 96:b1:a4:86:d8:f1:74:66:e2:35:ac:e7:d3:f6:1a: 16:6a:2b:3b:23:29:a5:c7:7f:b6:0d:b7:f8:ab:f9: a6:c1:7e:14:ed:4d:a2:5d:df:ad:05:42:90:2c:86: 21:8b:e0:a8:74:0c:5e:a0:0d:db:a4:3b:28:8a:bc: 37:11:45:3e:be:6d:55:ae:95:cf:a8:7a:81:46:ea: 59:5d:a2:25:be:2e:54:4b:d8:b6:29:80:cf:56:44: c3:ac:45:64:d4:2e:eb:f9:e2:51:e4:9b:59:6f:87: c9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:31:3A:C2:4D:47:71:DB:5A:71:EF:E9:03:FD:D9:FD:A2:3C:77:E6 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/dTE6wk1Hcdtace_pA_3Z_aI8d-Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.242.100.0/22 Signature Algorithm: sha256WithRSAEncryption 48:0d:2b:a6:00:79:fa:97:15:4c:4f:81:a1:41:db:40:f2:ab: 0a:b4:c4:61:bd:42:ee:0b:e5:a1:00:d7:06:4c:01:fd:4b:33: 2d:33:6a:90:5c:78:eb:ec:99:a6:e5:0f:38:0f:a5:bc:a0:89: 20:d6:ca:f1:aa:b3:d2:21:ff:20:2a:0e:43:4e:9a:c0:79:d8: 34:41:df:60:8d:bb:7b:82:8d:48:42:86:9d:8b:10:c2:07:f0: b0:3a:8d:4f:d1:5c:16:f2:02:4a:cf:89:8d:69:e8:c7:2c:64: eb:4e:cd:32:d6:07:77:02:39:42:02:1f:13:21:57:0c:6d:7b: 71:c1:5e:8d:b9:e2:b7:5b:db:8a:13:d2:bd:a2:c7:e2:25:cf: 47:17:b1:6d:6f:2a:3e:22:42:a0:d9:cd:4f:7f:b5:bc:78:e4: 77:31:fb:c9:fb:5a:5e:18:fd:a8:06:a6:c3:1d:43:21:b4:94: 3b:5b:a2:5a:de:fb:a1:ee:44:9f:08:b8:95:66:db:c9:fd:7b: d5:4e:d5:51:17:8b:a3:e5:aa:4a:1a:d3:97:94:a5:ad:b7:0d: c7:e7:21:5b:56:88:4b:9e:17:f6:6a:45:0e:dc:96:87:06:b6: c1:f6:f4:b4:de:90:04:7e:f6:05:29:ae:dd:f2:43:ff:35:08: 34:d7:27:f4 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEXEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMzA5MDEw MzE0MjFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc1MzEzQUMyNEQ0Nzcx REI1QTcxRUZFOTAzRkREOUZEQTIzQzc3RTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmZEXsxvhpQ0RZyjQMZaC5xKFgFPiP6KbOK3cW2UlpVNRwYkUN HYSD1Ry6gXMa5lgdNZgLYM0vaK2qZZfkiQe6f08EUzzpieqajD9PsdGHR1XoHXPQ gI0A84VoWS2rxbM96xRMJUsc+erlqUgySjv7/pL+sf86XMBEvMI2rXHOtNpxCEcK CI7LjC595CLHiByV+Jp7DZaxpIbY8XRm4jWs59P2GhZqKzsjKaXHf7YNt/ir+abB fhTtTaJd360FQpAshiGL4Kh0DF6gDdukOyiKvDcRRT6+bVWulc+oeoFG6lldoiW+ LlRL2LYpgM9WRMOsRWTULuv54lHkm1lvh8lLAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUdTE6wk1Hcdtace/pA/3Z/aI8d+YwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9kVEU2d2sxSGNkdGFjZV9wQV8z Wl9hSThkLVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQClvJk MA0GCSqGSIb3DQEBCwUAA4IBAQBIDSumAHn6lxVMT4GhQdtA8qsKtMRhvULuC+Wh ANcGTAH9SzMtM2qQXHjr7Jmm5Q84D6W8oIkg1srxqrPSIf8gKg5DTprAedg0Qd9g jbt7go1IQoadixDCB/CwOo1P0VwW8gJKz4mNaejHLGTrTs0y1gd3AjlCAh8TIVcM bXtxwV6NueK3W9uKE9K9osfiJc9HF7Ftbyo+IkKg2c1Pf7W8eOR3MfvJ+1peGP2o BqbDHUMhtJQ7W6Ja3vuh7kSfCLiVZtvJ/XvVTtVRF4uj5apKGtOXlKWttw3H5yFb VohLnhf2akUO3JaHBrbB9vS03pAEfvYFKa7d8kP/NQg01yf0 -----END CERTIFICATE-----Generated at Tue May 28 21:46:42 2024 by rpki-client on console-ams.rpki-client.org