$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/CklaCqmGIPJP3mFbg0IjdF1LhTw.roa File: CklaCqmGIPJP3mFbg0IjdF1LhTw.roa (raw, json) Hash identifier: ulPbRr3On3nJFWp4QZqF85/snKCTIVItSoR+ZqBgwVw= Subject key identifier: 0A:49:5A:0A:A9:86:20:F2:4F:DE:61:5B:83:42:23:74:5D:4B:85:3C Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0B5A Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/CklaCqmGIPJP3mFbg0IjdF1LhTw.roa Signing time: Fri 01 Sep 2023 10:24:08 +0000 ROA not before: Fri 01 Sep 2023 10:24:08 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131149 IP address blocks: 43.254.16.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 23:56:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2906 (0xb5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Sep 1 10:24:08 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0A495A0AA98620F24FDE615B834223745D4B853C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1d:d4:11:5c:ca:ea:a9:46:87:ca:98:9a:a9: 24:24:25:27:a7:21:ff:8a:02:03:27:e7:df:29:c0: ce:fc:10:dc:74:02:d9:04:0a:eb:9b:0f:98:26:e4: 2d:90:34:9a:7b:34:23:49:74:4c:4f:25:13:a8:c0: 63:12:d6:c8:fb:e1:8b:bc:7e:b6:63:1a:ce:3f:d9: 40:db:32:e6:d9:85:74:27:18:69:e8:1c:87:18:1e: b8:92:5f:4c:62:30:cb:0b:6b:0c:66:a9:00:68:49: 51:7e:ef:25:8c:8d:6e:b6:b7:6b:f0:36:a1:fe:35: 6b:76:33:3c:db:37:2d:8f:94:79:38:5d:3b:e7:85: 2a:e3:15:85:0b:db:d9:db:22:e7:6c:fe:24:7a:af: 16:0e:d5:67:89:ec:62:c7:64:92:6c:2a:93:30:a3: f5:d0:a4:52:b2:ec:f3:e0:af:de:73:af:3c:9c:04: 12:80:0c:68:13:ce:75:ea:da:7f:b7:2d:8b:37:fb: f1:03:c6:f1:d7:84:bb:9a:5c:a4:1d:f3:d9:c6:4f: 06:ed:24:8f:02:7c:e5:76:7c:e5:06:37:4c:ac:4b: c0:67:92:35:67:e8:2c:db:5f:10:ad:61:15:e3:21: 0c:c9:e7:2c:3a:5d:f7:6a:e5:01:80:15:24:c7:99: 4e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:49:5A:0A:A9:86:20:F2:4F:DE:61:5B:83:42:23:74:5D:4B:85:3C X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/CklaCqmGIPJP3mFbg0IjdF1LhTw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.254.16.0/22 Signature Algorithm: sha256WithRSAEncryption 42:fb:f4:f3:ca:97:c1:e5:bd:82:0e:aa:37:c4:35:85:b1:e4: 65:85:fd:3c:f9:6e:9c:1c:d6:fe:bc:07:fe:19:ee:f9:7b:ee: f6:23:a3:44:ef:d6:c4:bd:6f:82:e6:c5:b7:71:51:e0:40:4b: bd:71:28:d2:39:18:49:12:9f:56:df:b7:3c:e9:25:59:82:23: 99:1e:13:62:08:d5:e2:cf:86:02:65:4e:7e:cb:b1:7d:a0:b9: 41:17:f6:d4:c7:3f:1f:58:c3:c5:7c:f2:74:0e:5c:d0:23:12: 11:7f:79:59:53:fc:70:a2:12:d7:ef:7b:b6:a4:27:5f:5f:cb: e8:44:7b:c1:a7:06:54:8c:ef:c0:93:8e:53:b9:b7:c7:47:65: 6b:99:a7:66:fa:6e:3b:a4:b8:b4:dc:a4:9b:7e:a0:84:e9:19: 39:67:12:7a:80:9e:c4:1a:65:af:e2:ee:0d:fb:99:2b:51:6c: d4:5c:ba:84:cd:10:cb:00:79:1f:f3:86:cb:a9:29:bf:af:a8: fe:8c:e7:77:29:6c:91:30:e6:21:e5:62:74:be:ef:b7:6b:f5: 4d:7f:ed:df:a3:b9:7b:6f:18:21:92:98:c6:fb:53:aa:ae:d6: 0b:c6:04:7e:d8:f5:f6:f8:f7:a7:49:fb:9b:c6:33:05:1f:2d: ae:60:a8:27 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICC1owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yMzA5MDEx MDI0MDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBBNDk1QTBBQTk4NjIw RjI0RkRFNjE1QjgzNDIyMzc0NUQ0Qjg1M0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrHdQRXMrqqUaHypiaqSQkJSenIf+KAgMn598pwM78ENx0AtkE CuubD5gm5C2QNJp7NCNJdExPJROowGMS1sj74Yu8frZjGs4/2UDbMubZhXQnGGno HIcYHriSX0xiMMsLawxmqQBoSVF+7yWMjW62t2vwNqH+NWt2MzzbNy2PlHk4XTvn hSrjFYUL29nbIuds/iR6rxYO1WeJ7GLHZJJsKpMwo/XQpFKy7PPgr95zrzycBBKA DGgTznXq2n+3LYs3+/EDxvHXhLuaXKQd89nGTwbtJI8CfOV2fOUGN0ysS8BnkjVn 6CzbXxCtYRXjIQzJ5yw6Xfdq5QGAFSTHmU73AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUCklaCqmGIPJP3mFbg0IjdF1LhTwwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9Da2xhQ3FtR0lQSlAz bUZiZzBJamRGMUxoVHcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCK/4QMA0GCSqGSIb3DQEBCwUAA4IBAQBC+/TzypfB5b2CDqo3xDWFseRlhf08 +W6cHNb+vAf+Ge75e+72I6NE79bEvW+C5sW3cVHgQEu9cSjSORhJEp9W37c86SVZ giOZHhNiCNXiz4YCZU5+y7F9oLlBF/bUxz8fWMPFfPJ0DlzQIxIRf3lZU/xwohLX 73u2pCdfX8voRHvBpwZUjO/Ak45TubfHR2Vrmadm+m47pLi03KSbfqCE6Rk5ZxJ6 gJ7EGmWv4u4N+5krUWzUXLqEzRDLAHkf84bLqSm/r6j+jOd3KWyRMOYh5WJ0vu+3 a/VNf+3fo7l7bxghkpjG+1OqrtYLxgR+2PX2+PenSfubxjMFHy2uYKgn -----END CERTIFICATE-----Generated at Sun Jun 2 09:37:31 2024 by rpki-client on console-ams.rpki-client.org