$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/yjqkh3F5hkHAL2UITgcvpudOZT4.roa File: yjqkh3F5hkHAL2UITgcvpudOZT4.roa (raw, json) Hash identifier: FwKUW+hCo0BQwWHmt4TsmzLs6/QN4bnyuCnZAczbThw= Subject key identifier: CA:3A:A4:87:71:79:86:41:C0:2F:65:08:4E:07:2F:A6:E7:4E:65:3E Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA Certificate serial: 043F Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/yjqkh3F5hkHAL2UITgcvpudOZT4.roa Signing time: Fri 01 Sep 2023 08:03:46 +0000 ROA not before: Fri 01 Sep 2023 08:03:46 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38136 IP address blocks: 2406:8dc0::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 03:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1087 (0x43f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA Validity Not Before: Sep 1 08:03:46 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CA3AA48771798641C02F65084E072FA6E74E653E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4a:68:d8:66:46:f7:ac:88:87:f6:ec:b5:c4: ca:6f:25:82:e3:af:45:f9:da:69:76:ea:ec:ab:40: 62:35:ca:f5:ec:e3:66:8f:0b:e1:ef:6c:53:36:9e: e7:9d:7a:2d:78:9b:5a:dc:c6:eb:91:a8:6d:8d:f4: 36:74:3c:7c:a5:9a:f2:56:4f:3c:6e:bb:ad:c5:cd: 50:e1:01:5e:5e:0c:9c:67:05:44:a5:14:43:5d:6c: 09:10:ad:c0:a5:a8:e8:6b:41:41:7c:1f:4e:da:4a: 9e:cf:36:b9:cd:88:f4:63:ee:2e:23:b0:93:3e:d9: 42:84:62:eb:42:07:7d:f2:27:94:30:b1:63:71:d2: 18:6b:d0:99:ab:d5:f8:b8:7a:bc:14:24:c4:bf:b6: 54:76:94:86:15:b6:cb:b7:54:22:27:c5:26:31:4a: 19:8e:0c:63:a0:36:81:28:57:1f:8f:b6:57:ad:67: bf:44:ed:b1:31:e5:6f:5f:6f:ae:d2:48:97:26:75: bd:b5:ae:b8:f0:fb:be:45:c5:0d:22:85:92:4f:c6: 8e:4b:ef:b3:e5:f0:de:e0:ef:0d:b2:4d:b4:b6:13: e6:c2:b6:98:7b:54:ea:d2:32:62:56:2d:e9:8c:c7: 9c:94:01:f4:a3:db:1c:a7:a0:1f:06:30:87:eb:22: 48:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:3A:A4:87:71:79:86:41:C0:2F:65:08:4E:07:2F:A6:E7:4E:65:3E X509v3 Authority Key Identifier: keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/yjqkh3F5hkHAL2UITgcvpudOZT4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:8dc0::/36 Signature Algorithm: sha256WithRSAEncryption 5d:10:e0:17:bf:6d:e0:04:44:9b:0d:01:95:1a:d0:76:31:9d: 6a:bc:b8:09:24:95:3c:46:83:dc:9d:87:f7:61:1e:a0:4f:74: fc:f2:86:a4:3a:f4:97:d6:b3:8a:1e:13:73:72:74:50:c3:22: 49:b6:2c:a5:4c:d1:7c:34:4e:6b:c6:67:74:05:65:93:ef:6e: 4d:a6:17:e2:02:c1:b6:d1:aa:27:ca:d6:89:e6:7e:84:2a:06: 9f:fb:40:e8:08:6f:05:7b:51:3a:e1:2e:09:59:68:fc:21:dc: 1d:29:a7:f1:53:63:51:b0:f4:d8:e5:19:21:f6:a9:d0:68:89: 05:71:c4:8f:be:6e:75:d3:af:97:51:b3:37:9a:7c:30:cb:4b: 74:45:8b:fe:06:98:6a:18:e5:a2:62:34:91:cb:39:78:f7:e9: 4b:2b:51:fb:0b:81:d1:c6:b0:9c:71:1c:10:41:2a:26:6c:6f: 0e:9f:68:5e:4b:7b:c9:d7:10:f6:65:df:25:20:3f:af:5e:4b: 52:06:33:48:2a:11:7c:b6:dc:ad:08:57:9f:61:6e:19:2a:23: 35:3c:d7:23:f9:bb:38:c1:73:41:7a:44:08:91:27:ca:21:6c: ce:79:5c:6c:15:66:ee:66:e2:56:ce:33:07:2f:5c:22:21:eb: e8:16:58:04 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICBD8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yMzA5MDEw ODAzNDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENBM0FBNDg3NzE3OTg2 NDFDMDJGNjUwODRFMDcyRkE2RTc0RTY1M0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBSmjYZkb3rIiH9uy1xMpvJYLjr0X52ml26uyrQGI1yvXs42aP C+HvbFM2nuedei14m1rcxuuRqG2N9DZ0PHylmvJWTzxuu63FzVDhAV5eDJxnBUSl FENdbAkQrcClqOhrQUF8H07aSp7PNrnNiPRj7i4jsJM+2UKEYutCB33yJ5QwsWNx 0hhr0Jmr1fi4erwUJMS/tlR2lIYVtsu3VCInxSYxShmODGOgNoEoVx+PtletZ79E 7bEx5W9fb67SSJcmdb21rrjw+75FxQ0ihZJPxo5L77Pl8N7g7w2yTbS2E+bCtph7 VOrSMmJWLemMx5yUAfSj2xynoB8GMIfrIkgjAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUyjqkh3F5hkHAL2UITgcvpudOZT4wHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MveWpxa2gzRjVoa0hBTDJV SVRnY3ZwdWRPWlQ0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMG BCQGjcAAMA0GCSqGSIb3DQEBCwUAA4IBAQBdEOAXv23gBESbDQGVGtB2MZ1qvLgJ JJU8RoPcnYf3YR6gT3T88oakOvSX1rOKHhNzcnRQwyJJtiylTNF8NE5rxmd0BWWT 725NphfiAsG20aonytaJ5n6EKgaf+0DoCG8Fe1E64S4JWWj8IdwdKafxU2NRsPTY 5Rkh9qnQaIkFccSPvm5106+XUbM3mnwwy0t0RYv+BphqGOWiYjSRyzl49+lLK1H7 C4HRxrCccRwQQSombG8On2heS3vJ1xD2Zd8lID+vXktSBjNIKhF8ttytCFefYW4Z KiM1PNcj+bs4wXNBekQIkSfKIWzOeVxsFWbuZuJWzjMHL1wiIevoFlgE -----END CERTIFICATE-----Generated at Fri May 17 22:07:42 2024 by rpki-client on console-ams.rpki-client.org