$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/jjC2JQrUKm2JThp9pM-6cCksxpE.roa File: jjC2JQrUKm2JThp9pM-6cCksxpE.roa (raw, json) Hash identifier: Oa9YkmxQK7LcgKH5Z/zzujiHSOfRBnsXSr9BpKQ7EQE= Subject key identifier: 8E:30:B6:25:0A:D4:2A:6D:89:4E:1A:7D:A4:CF:BA:70:29:2C:C6:91 Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0B6E Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/jjC2JQrUKm2JThp9pM-6cCksxpE.roa Signing time: Fri 01 Sep 2023 10:13:55 +0000 ROA not before: Fri 01 Sep 2023 10:13:55 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3949 IP address blocks: 122.255.94.16/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 07:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2926 (0xb6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Sep 1 10:13:55 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8E30B6250AD42A6D894E1A7DA4CFBA70292CC691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7d:db:f5:01:09:4b:0d:29:97:dc:c8:1c:f5: c9:de:6a:08:ef:de:e6:a4:46:41:c9:99:84:1a:01: 55:18:b5:4f:95:50:bb:d7:f2:28:89:c8:34:44:48: 3b:33:0a:e2:a1:62:51:2a:ba:00:f7:24:15:cd:8f: 23:bd:fb:20:7b:ca:c6:9c:c4:36:2d:a8:f0:fb:04: 1a:4a:a8:c6:d2:48:c2:00:a3:71:a0:67:33:37:5b: 5e:ce:45:57:d6:73:b0:10:2c:21:5b:0a:c0:c4:33: be:77:a2:2c:30:cc:5e:ea:9e:45:03:55:62:e6:93: 50:2c:a5:37:79:b5:0e:6b:65:1b:c7:6e:35:c0:52: b1:11:c4:6e:93:c5:f3:0d:0a:a6:0e:a7:6b:0d:f8: 5b:87:64:d0:f0:7d:b3:98:17:d4:fb:18:04:89:ef: 72:9d:79:09:ae:da:43:1a:7e:d0:7f:e5:08:29:a0: d6:ed:74:cf:af:c2:f3:09:10:55:b4:00:92:b0:c7: d5:37:e3:31:1a:5e:fa:0a:28:e9:6c:79:d0:ca:59: 31:c3:74:1c:61:b4:c6:bd:7a:3a:de:08:e7:e3:41: 2b:9a:7c:5b:d0:6c:a3:5d:26:ab:6b:e7:a0:76:bd: db:3a:28:b2:92:f3:fd:3e:78:7b:9b:9f:28:76:bd: 53:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:30:B6:25:0A:D4:2A:6D:89:4E:1A:7D:A4:CF:BA:70:29:2C:C6:91 X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/jjC2JQrUKm2JThp9pM-6cCksxpE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.255.94.16/28 Signature Algorithm: sha256WithRSAEncryption ca:9e:73:f4:19:64:80:0d:10:94:0b:88:10:c3:c4:73:3d:fc: ce:94:e8:84:26:ad:b0:1b:38:7a:b0:a3:f2:81:43:8a:37:c4: 8c:f5:1f:ed:72:dd:e7:41:de:ce:2e:c6:ef:3e:aa:ca:48:ed: 95:a4:41:17:b2:9c:c0:62:88:2b:99:5e:c2:36:b7:64:37:15: 17:ce:ad:da:cd:ab:d1:0b:66:e5:38:04:2f:25:c0:8c:66:47: 9b:9b:51:b3:8b:31:7a:54:9c:4b:1d:13:69:1c:8f:6c:30:fc: 1a:88:8a:33:17:03:3b:f0:cd:96:83:07:52:28:8f:21:cb:ec: 63:87:57:0e:f5:ba:2e:e9:13:11:76:46:d5:f5:0c:96:99:18: b2:44:5d:73:42:39:70:c7:4c:85:ea:bb:35:2c:bc:8e:48:46: d5:00:db:8e:02:71:89:98:61:2c:c5:59:10:77:a9:6b:e8:5e: 6b:2b:ba:91:41:2a:76:be:87:2b:08:30:f0:7f:5b:c4:62:49: 6b:84:68:11:37:9e:ba:cb:69:6e:d6:6e:1c:69:f6:b7:54:75: a3:e3:c8:93:d3:d0:bf:16:79:63:0f:48:61:f8:49:38:bd:f8: 80:52:2f:c1:1d:5b:1a:f6:62:de:3d:4f:a4:51:82:a7:67:4a: db:a4:f6:93 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICC24wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yMzA5MDEx MDEzNTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhFMzBCNjI1MEFENDJB NkQ4OTRFMUE3REE0Q0ZCQTcwMjkyQ0M2OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBfdv1AQlLDSmX3Mgc9cneagjv3uakRkHJmYQaAVUYtU+VULvX 8iiJyDRESDszCuKhYlEqugD3JBXNjyO9+yB7ysacxDYtqPD7BBpKqMbSSMIAo3Gg ZzM3W17ORVfWc7AQLCFbCsDEM753oiwwzF7qnkUDVWLmk1AspTd5tQ5rZRvHbjXA UrERxG6TxfMNCqYOp2sN+FuHZNDwfbOYF9T7GASJ73KdeQmu2kMaftB/5QgpoNbt dM+vwvMJEFW0AJKwx9U34zEaXvoKKOlsedDKWTHDdBxhtMa9ejreCOfjQSuafFvQ bKNdJqtr56B2vds6KLKS8/0+eHubnyh2vVPJAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUjjC2JQrUKm2JThp9pM+6cCksxpEwHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9qakMySlFyVUttMkpUaHA5cE0t NmNDa3N4cEUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUEev9e EDANBgkqhkiG9w0BAQsFAAOCAQEAyp5z9BlkgA0QlAuIEMPEcz38zpTohCatsBs4 erCj8oFDijfEjPUf7XLd50Hezi7G7z6qykjtlaRBF7KcwGKIK5lewja3ZDcVF86t 2s2r0Qtm5TgELyXAjGZHm5tRs4sxelScSx0TaRyPbDD8GoiKMxcDO/DNloMHUiiP IcvsY4dXDvW6LukTEXZG1fUMlpkYskRdc0I5cMdMheq7NSy8jkhG1QDbjgJxiZhh LMVZEHepa+heayu6kUEqdr6HKwgw8H9bxGJJa4RoETeeustpbtZuHGn2t1R1o+PI k9PQvxZ5Yw9IYfhJOL34gFIvwR1bGvZi3j1PpFGCp2dK26T2kw== -----END CERTIFICATE-----Generated at Sat May 4 12:14:02 2024 by rpki-client on console-ams.rpki-client.org