$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/jd9G8ScyY_YgOaDZGs4jMC3_Oco.roa File: jd9G8ScyY_YgOaDZGs4jMC3_Oco.roa (raw, json) Hash identifier: 6/IUnm1z2RXBBDoxUH/u87d0A7qwfIMiGYz6tFhwGB8= Subject key identifier: 8D:DF:46:F1:27:32:63:F6:20:39:A0:D9:1A:CE:23:30:2D:FF:39:CA Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1175 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/jd9G8ScyY_YgOaDZGs4jMC3_Oco.roa Signing time: Fri 01 Sep 2023 03:14:23 +0000 ROA not before: Fri 01 Sep 2023 03:14:23 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 16509 IP address blocks: 2001:dc1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 11:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4469 (0x1175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Sep 1 03:14:23 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8DDF46F1273263F62039A0D91ACE23302DFF39CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5f:06:47:3a:4b:9a:60:32:30:64:bb:85:04: a6:bf:1f:54:89:40:b5:b8:62:6c:56:e8:73:f2:f6: 81:1a:d0:b9:5f:dd:50:22:4c:db:cb:bb:a7:0d:81: 16:e7:4d:a8:a1:74:6d:ea:a3:65:2e:cf:d8:98:1d: 49:f9:f2:c7:01:9c:de:05:3e:4d:3f:d7:df:dc:f1: 21:02:53:93:fb:39:81:37:40:39:22:9b:41:20:be: b8:32:9f:b1:1c:97:dc:c5:f6:6a:0b:9c:f0:03:3f: cb:0a:3b:88:2b:42:79:74:b0:20:e6:bc:a2:03:23: 37:4e:70:70:f3:40:8c:ad:ef:0e:45:94:41:6d:44: d8:1b:36:2e:c3:ba:42:08:73:ca:09:06:a6:72:25: e4:a9:5c:49:db:14:e7:68:d2:cb:a4:68:02:a4:27: 59:bc:cb:d4:58:d6:c4:24:71:a7:fa:28:a8:c3:1f: 23:d9:bb:74:85:9b:ed:07:82:2d:80:94:29:b0:87: b4:3b:b6:ad:28:c8:b0:7c:15:dd:6f:85:8f:03:bc: d5:72:73:4a:85:58:3c:88:fa:62:72:ac:3f:e0:80: 0d:83:27:8c:ee:d7:b7:a4:50:56:97:7b:ba:89:d0: 16:b7:16:76:e2:6a:74:77:c0:40:07:d5:c9:52:43: ad:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:DF:46:F1:27:32:63:F6:20:39:A0:D9:1A:CE:23:30:2D:FF:39:CA X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/jd9G8ScyY_YgOaDZGs4jMC3_Oco.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:dc1::/48 Signature Algorithm: sha256WithRSAEncryption 6f:9a:aa:38:cc:67:60:fd:75:9b:38:55:61:fc:54:ae:9b:96: 02:ce:03:0e:74:b9:77:5f:b0:a9:bb:0f:aa:fd:1f:81:7c:d8: ec:a7:7e:b8:d3:c1:ae:6f:ab:c1:7a:2c:b2:2b:a7:98:44:5e: b2:7d:7f:48:50:d5:67:f6:e9:f3:e6:0c:24:09:7a:c8:f0:e4: a9:b5:ed:b8:60:3c:d2:a8:0d:28:e0:0f:81:0d:14:da:e8:e8: 72:91:91:22:03:ba:55:a5:cb:de:04:0d:74:b9:7c:b3:32:37: 95:69:27:a9:8a:42:a2:46:1a:6c:e7:61:9e:9e:d6:ed:a7:c0: 30:06:ab:c9:17:e0:ff:4f:27:23:8f:36:e3:f1:39:6d:a6:53: a7:43:4c:4a:10:40:3d:b8:3e:31:70:88:f5:f1:d7:5c:37:89: 05:13:8d:84:05:1e:1e:30:08:56:8f:ca:0c:dd:48:aa:a0:70: 3d:c1:c0:9e:88:c5:f9:92:16:7a:35:56:ae:a4:ce:53:6e:4b: c5:ad:3e:23:0b:04:18:4e:97:fc:ab:13:f1:00:09:7e:78:59: 38:9f:b9:da:1a:84:a7:4e:f0:7e:4e:29:3f:de:bf:40:1d:25: 3e:2b:09:e6:d3:78:28:29:c6:54:1d:aa:57:36:d6:46:6b:d3: 78:e1:78:a8 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICEXUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMzA5MDEw MzE0MjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhEREY0NkYxMjczMjYz RjYyMDM5QTBEOTFBQ0UyMzMwMkRGRjM5Q0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuXwZHOkuaYDIwZLuFBKa/H1SJQLW4YmxW6HPy9oEa0Llf3VAi TNvLu6cNgRbnTaihdG3qo2Uuz9iYHUn58scBnN4FPk0/19/c8SECU5P7OYE3QDki m0Egvrgyn7Ecl9zF9moLnPADP8sKO4grQnl0sCDmvKIDIzdOcHDzQIyt7w5FlEFt RNgbNi7DukIIc8oJBqZyJeSpXEnbFOdo0sukaAKkJ1m8y9RY1sQkcaf6KKjDHyPZ u3SFm+0Hgi2AlCmwh7Q7tq0oyLB8Fd1vhY8DvNVyc0qFWDyI+mJyrD/ggA2DJ4zu 17ekUFaXe7qJ0Ba3FnbianR3wEAH1clSQ60RAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUjd9G8ScyY/YgOaDZGs4jMC3/OcowHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9qZDlHOFNjeVlfWWdPYURaR3M0 ak1DM19PY28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN wQAAMA0GCSqGSIb3DQEBCwUAA4IBAQBvmqo4zGdg/XWbOFVh/FSum5YCzgMOdLl3 X7Cpuw+q/R+BfNjsp36408Gub6vBeiyyK6eYRF6yfX9IUNVn9unz5gwkCXrI8OSp te24YDzSqA0o4A+BDRTa6OhykZEiA7pVpcveBA10uXyzMjeVaSepikKiRhps52Ge ntbtp8AwBqvJF+D/Tycjjzbj8TltplOnQ0xKEEA9uD4xcIj18ddcN4kFE42EBR4e MAhWj8oM3UiqoHA9wcCeiMX5khZ6NVaupM5TbkvFrT4jCwQYTpf8qxPxAAl+eFk4 n7naGoSnTvB+Tik/3r9AHSU+Kwnm03goKcZUHapXNtZGa9N44Xio -----END CERTIFICATE-----Generated at Thu May 2 22:39:46 2024 by rpki-client on console-ams.rpki-client.org