$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/SA7ixOC3G5vmmztHazk5zoCrr7c.roa File: SA7ixOC3G5vmmztHazk5zoCrr7c.roa (raw, json) Hash identifier: FVqOhP6KqfLvnfDU60YpBOwvHRJrFTw2Z7+LYScOov4= Subject key identifier: 48:0E:E2:C4:E0:B7:1B:9B:E6:9B:3B:47:6B:39:39:CE:80:AB:AF:B7 Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0B67 Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/SA7ixOC3G5vmmztHazk5zoCrr7c.roa Signing time: Fri 01 Sep 2023 10:13:53 +0000 ROA not before: Fri 01 Sep 2023 10:13:53 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18018 IP address blocks: 61.58.34.0/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 23:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2919 (0xb67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Sep 1 10:13:53 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=480EE2C4E0B71B9BE69B3B476B3939CE80ABAFB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7b:50:10:44:ea:f3:bc:59:a7:d3:23:cb:c5: 00:3e:68:fe:2e:db:20:9b:7d:8e:c1:4d:1a:cd:6a: 33:fe:6a:34:1b:f1:eb:27:5c:22:60:1c:89:9e:7c: 8d:86:a4:5d:38:2b:3d:d9:b5:67:c8:97:2f:0e:8b: 5f:cd:7c:f3:35:f8:47:70:15:0d:6f:41:9b:cd:21: de:24:46:5f:a8:26:de:92:64:fd:d4:6a:5c:ed:04: 43:79:54:dc:55:97:af:2b:44:ee:5c:79:aa:9e:fc: cb:12:bb:e2:44:94:cc:d1:14:c4:86:3f:a6:13:18: 3d:fe:ea:d1:bf:a1:ba:f3:be:35:7f:59:3e:ac:c3: 0b:19:8b:86:9d:2c:70:9f:f2:5b:c9:88:26:31:6c: 9c:e8:b0:fa:35:3d:85:02:40:cb:8b:80:1a:f3:27: b7:8c:71:53:f2:62:df:f4:b1:39:71:b9:8e:8a:99: 54:ad:ba:9c:de:b6:be:55:bd:3d:82:12:d6:09:fd: 30:78:eb:d4:a4:b6:eb:9e:73:b5:4d:cf:98:a0:1c: 9b:70:dc:09:22:e8:8c:af:c4:13:eb:98:ca:c1:42: 92:91:6f:1c:e2:64:0b:27:9f:36:55:bc:da:01:21: eb:9c:8c:87:66:e5:7a:85:9b:e6:68:c2:4a:30:29: 2d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:0E:E2:C4:E0:B7:1B:9B:E6:9B:3B:47:6B:39:39:CE:80:AB:AF:B7 X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/SA7ixOC3G5vmmztHazk5zoCrr7c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.34.0/25 Signature Algorithm: sha256WithRSAEncryption 95:96:55:1e:fb:24:a8:7c:8e:f9:40:f8:d1:36:2d:bc:61:57: 99:72:61:82:f5:29:bb:08:7e:d6:30:9b:f7:94:d3:80:03:d2: 70:36:c9:f7:bc:56:86:2a:24:44:5a:3d:d3:d7:2b:b0:39:b0: 78:aa:0e:37:db:5e:c9:81:b0:6f:d5:c6:cf:95:7d:ba:8d:2b: ad:af:69:76:b2:7f:e7:82:26:1b:f9:00:59:c8:2b:84:9d:59: 10:2a:85:b8:b4:26:21:16:9d:b0:e6:91:7a:9e:0c:f2:28:38: ad:2f:df:b6:cc:ed:f7:29:ba:9a:64:79:40:11:09:04:fc:c3: 06:af:db:6e:e3:10:de:7d:81:0e:7e:26:1d:13:33:7f:7e:59: 4c:ce:b5:f8:4c:09:86:12:32:5a:cc:4b:47:86:4c:78:d3:bd: cf:1a:e8:60:b1:06:cf:df:86:24:11:bf:07:09:fa:60:92:7d: 64:69:a4:78:a6:2c:30:5a:12:db:30:55:c1:1b:45:fd:54:0a: 7e:54:73:68:88:33:b2:0e:b6:99:4a:9b:79:97:8c:fa:06:77: 10:77:8e:66:a2:70:2a:58:db:bd:ce:c0:64:80:b2:a9:fd:c7: 9d:d9:9d:ea:9f:b4:71:bf:db:45:91:9c:c8:fc:0f:62:6d:cf: 9b:18:12:d2 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICC2cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yMzA5MDEx MDEzNTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQ4MEVFMkM0RTBCNzFC OUJFNjlCM0I0NzZCMzkzOUNFODBBQkFGQjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCme1AQROrzvFmn0yPLxQA+aP4u2yCbfY7BTRrNajP+ajQb8esn XCJgHImefI2GpF04Kz3ZtWfIly8Oi1/NfPM1+EdwFQ1vQZvNId4kRl+oJt6SZP3U alztBEN5VNxVl68rRO5ceaqe/MsSu+JElMzRFMSGP6YTGD3+6tG/obrzvjV/WT6s wwsZi4adLHCf8lvJiCYxbJzosPo1PYUCQMuLgBrzJ7eMcVPyYt/0sTlxuY6KmVSt upzetr5VvT2CEtYJ/TB469Sktuuec7VNz5igHJtw3Aki6IyvxBPrmMrBQpKRbxzi ZAsnnzZVvNoBIeucjIdm5XqFm+ZowkowKS2ZAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUSA7ixOC3G5vmmztHazk5zoCrr7cwHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9TQTdpeE9DM0c1dm1tenRIYXpr NXpvQ3JyN2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUHPToi ADANBgkqhkiG9w0BAQsFAAOCAQEAlZZVHvskqHyO+UD40TYtvGFXmXJhgvUpuwh+ 1jCb95TTgAPScDbJ97xWhiokRFo909crsDmweKoON9teyYGwb9XGz5V9uo0rra9p drJ/54ImG/kAWcgrhJ1ZECqFuLQmIRadsOaRep4M8ig4rS/ftszt9ym6mmR5QBEJ BPzDBq/bbuMQ3n2BDn4mHRMzf35ZTM61+EwJhhIyWsxLR4ZMeNO9zxroYLEGz9+G JBG/Bwn6YJJ9ZGmkeKYsMFoS2zBVwRtF/VQKflRzaIgzsg62mUqbeZeM+gZ3EHeO ZqJwKljbvc7AZICyqf3Hndmd6p+0cb/bRZGcyPwPYm3PmxgS0g== -----END CERTIFICATE-----Generated at Fri May 3 17:13:57 2024 by rpki-client on console-fra.rpki-client.org