$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/BGaBngElXVFRpkNipALknaZd7iw.roa File: BGaBngElXVFRpkNipALknaZd7iw.roa (raw, json) Hash identifier: wzFkirHIRmUTeP2/SzdQjzFFw7NTZ4KCLU2Qys9Bfp4= Subject key identifier: 04:66:81:9E:01:25:5D:51:51:A6:43:62:A4:02:E4:9D:A6:5D:EE:2C Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0B6F Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/BGaBngElXVFRpkNipALknaZd7iw.roa Signing time: Fri 01 Sep 2023 10:13:56 +0000 ROA not before: Fri 01 Sep 2023 10:13:56 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 2914 IP address blocks: 122.255.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 23:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2927 (0xb6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Sep 1 10:13:56 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0466819E01255D5151A64362A402E49DA65DEE2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:aa:e1:59:84:97:83:0b:2a:4d:1d:02:3b:de: b4:85:d2:c4:31:30:54:1b:cf:56:8f:c5:62:b5:ff: 6b:59:84:b6:99:c2:56:2b:37:fe:b9:4f:f0:95:e9: de:84:c4:7a:7b:99:5b:60:61:c9:fa:e0:55:0a:f2: 0f:f0:cb:03:22:22:60:02:0f:18:7e:7c:a3:47:0e: ea:c2:6c:a0:26:25:fb:e7:2d:86:f2:38:ff:a5:9c: e7:71:41:07:31:cc:83:1e:49:cc:a9:e7:fa:77:c4: 03:2b:3d:77:fb:77:b6:cc:40:e1:5e:f3:5a:10:1a: ef:af:1d:d6:ce:70:32:b2:88:c4:bf:9c:28:a0:43: 4c:3f:a8:8f:7d:24:52:d2:17:19:43:73:84:fc:3b: e6:4d:c8:0b:8e:58:5c:3d:7c:3a:11:8e:75:1b:28: 33:cb:b4:08:2d:b7:17:b6:bc:87:ce:5f:a0:d4:9b: db:bc:88:af:e3:34:85:ca:02:0f:73:fa:f4:d3:ea: 01:ae:e2:ba:9e:ca:a6:8f:f8:b7:f4:07:0b:6d:40: 93:ed:3f:5d:81:a5:fb:24:7d:76:0e:af:3c:20:6e: f8:a2:cb:18:50:e3:79:b0:42:6d:c1:a1:6c:90:35: 6d:94:28:bf:55:7a:2e:81:af:2c:80:0b:75:a9:db: a2:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:66:81:9E:01:25:5D:51:51:A6:43:62:A4:02:E4:9D:A6:5D:EE:2C X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/BGaBngElXVFRpkNipALknaZd7iw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.255.80.0/20 Signature Algorithm: sha256WithRSAEncryption b5:a9:72:90:3a:53:4c:73:ef:08:66:0c:1c:89:6b:94:77:56: 26:fc:8c:62:a8:8d:96:ce:85:21:bb:12:04:d0:6d:bd:21:63: 19:9b:ad:1a:8d:09:d0:8b:d0:38:bd:6e:a7:31:fb:7c:20:94: 2a:58:36:29:3d:52:49:20:9a:f7:de:42:3f:65:07:8f:1d:d0: b0:d8:2e:0a:d7:30:e1:0f:50:7a:23:3a:82:e9:3b:18:70:ca: 01:d3:a1:54:84:1a:36:00:6f:77:b2:d8:3f:3f:10:13:d7:81: 68:6f:ae:ab:86:17:0d:9f:93:26:88:c7:10:bf:9d:a5:30:0d: 4d:97:fb:0c:01:b4:90:0e:af:07:c2:c5:7d:2d:2a:47:5b:c0: 10:7d:ea:f9:97:50:0b:b1:74:81:db:04:28:75:fa:fd:11:40: 26:6f:d7:d3:d5:a8:09:3f:ff:31:2f:f3:92:29:94:95:7f:cd: 39:57:e6:76:85:05:a1:10:71:8f:c0:e0:f7:3a:11:f2:c7:e7: 2d:85:58:5c:e1:56:4e:fb:ad:f8:55:5c:20:5e:34:33:53:2f: 6c:74:1e:79:e7:3b:5d:ad:df:cb:84:36:35:8f:48:5e:ce:43: 3f:06:0f:c6:e3:37:fe:f0:e9:b8:b6:a4:86:e9:41:b2:53:fd: e1:ae:71:25 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICC28wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yMzA5MDEx MDEzNTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDA0NjY4MTlFMDEyNTVE NTE1MUE2NDM2MkE0MDJFNDlEQTY1REVFMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD3quFZhJeDCypNHQI73rSF0sQxMFQbz1aPxWK1/2tZhLaZwlYr N/65T/CV6d6ExHp7mVtgYcn64FUK8g/wywMiImACDxh+fKNHDurCbKAmJfvnLYby OP+lnOdxQQcxzIMeScyp5/p3xAMrPXf7d7bMQOFe81oQGu+vHdbOcDKyiMS/nCig Q0w/qI99JFLSFxlDc4T8O+ZNyAuOWFw9fDoRjnUbKDPLtAgttxe2vIfOX6DUm9u8 iK/jNIXKAg9z+vTT6gGu4rqeyqaP+Lf0BwttQJPtP12BpfskfXYOrzwgbviiyxhQ 43mwQm3BoWyQNW2UKL9Vei6BryyAC3Wp26IVAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUBGaBngElXVFRpkNipALknaZd7iwwHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9CR2FCbmdFbFhWRlJwa05pcEFM a25hWmQ3aXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEev9Q MA0GCSqGSIb3DQEBCwUAA4IBAQC1qXKQOlNMc+8IZgwciWuUd1Ym/IxiqI2WzoUh uxIE0G29IWMZm60ajQnQi9A4vW6nMft8IJQqWDYpPVJJIJr33kI/ZQePHdCw2C4K 1zDhD1B6IzqC6TsYcMoB06FUhBo2AG93stg/PxAT14Fob66rhhcNn5MmiMcQv52l MA1Nl/sMAbSQDq8HwsV9LSpHW8AQfer5l1ALsXSB2wQodfr9EUAmb9fT1agJP/8x L/OSKZSVf805V+Z2hQWhEHGPwOD3OhHyx+cthVhc4VZO+634VVwgXjQzUy9sdB55 5ztdrd/LhDY1j0hezkM/Bg/G4zf+8Om4tqSG6UGyU/3hrnEl -----END CERTIFICATE-----Generated at Fri May 3 17:13:57 2024 by rpki-client on console-fra.rpki-client.org