$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/W5TMuZg7NFXe9xGMZOKkdEUCAJs.roa File: W5TMuZg7NFXe9xGMZOKkdEUCAJs.roa (raw, json) Hash identifier: bEHfKztJ132BHWb5lEYd/3M7r2KyKi5ihPe6fd08Pr4= Subject key identifier: 5B:94:CC:B9:98:3B:34:55:DE:F7:11:8C:64:E2:A4:74:45:02:00:9B Certificate issuer: /CN=A082F5D992E6BC25E08997538616180702E857C3 Certificate serial: 02AF Authority key identifier: A0:82:F5:D9:92:E6:BC:25:E0:89:97:53:86:16:18:07:02:E8:57:C3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oIL12ZLmvCXgiZdThhYYBwLoV8M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/W5TMuZg7NFXe9xGMZOKkdEUCAJs.roa Signing time: Fri 01 Sep 2023 08:31:37 +0000 ROA not before: Fri 01 Sep 2023 08:31:37 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38008 IP address blocks: 2406:d7c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/oIL12ZLmvCXgiZdThhYYBwLoV8M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/oIL12ZLmvCXgiZdThhYYBwLoV8M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oIL12ZLmvCXgiZdThhYYBwLoV8M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 11:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 687 (0x2af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A082F5D992E6BC25E08997538616180702E857C3 Validity Not Before: Sep 1 08:31:37 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5B94CCB9983B3455DEF7118C64E2A4744502009B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:11:b6:1b:94:bd:f4:59:d8:51:ef:08:89:95: 9d:30:1d:ea:99:a1:d4:db:15:93:fe:2c:3d:68:6f: b3:4e:48:2e:de:d6:11:f3:20:c7:0d:d4:6f:08:ab: 0b:7e:e9:14:c4:54:1a:7b:de:5f:22:bd:eb:6b:70: 1f:19:1b:9b:cb:e2:39:73:48:15:88:bb:69:f9:c8: b1:be:e0:e6:99:7a:79:be:2a:f9:f8:23:c3:b1:34: 12:33:15:68:f5:4a:c1:dc:af:25:f9:48:3b:91:dd: ab:8d:d3:2b:d2:9f:8c:c0:0a:77:4d:85:f4:7e:2e: 50:2b:83:c8:48:3c:e6:ee:f7:7c:d7:d1:60:e5:a4: ec:1c:25:a6:0f:24:4a:54:56:5f:17:94:18:04:f2: f5:fe:c0:53:90:c3:9c:0d:60:b5:fe:7f:cb:a5:89: 3b:a9:78:a8:b5:41:61:33:8e:bc:2f:41:f7:e7:d6: 97:24:b7:62:57:ae:b7:2b:9d:68:40:d3:76:c3:ec: da:88:1c:91:5b:97:fc:75:9b:25:55:9a:ee:3b:98: a7:46:5c:9c:74:a1:64:f6:e1:1d:66:fa:5d:62:3e: 4a:73:d6:95:3f:c4:26:52:c3:1f:dd:b5:3b:a5:69: eb:45:0c:7f:05:cc:53:bf:17:77:74:7d:ed:39:9d: 09:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:94:CC:B9:98:3B:34:55:DE:F7:11:8C:64:E2:A4:74:45:02:00:9B X509v3 Authority Key Identifier: keyid:A0:82:F5:D9:92:E6:BC:25:E0:89:97:53:86:16:18:07:02:E8:57:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/oIL12ZLmvCXgiZdThhYYBwLoV8M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oIL12ZLmvCXgiZdThhYYBwLoV8M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/W5TMuZg7NFXe9xGMZOKkdEUCAJs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:d7c0::/32 Signature Algorithm: sha256WithRSAEncryption 52:50:f1:53:e7:82:e0:fe:18:37:0b:f2:75:5b:30:a0:42:5b: fa:b7:e0:d4:5e:3c:8f:26:f2:13:2e:e2:fa:56:57:bf:92:06: 88:56:e7:ed:89:26:58:34:6d:ff:f8:48:fb:63:30:9c:89:6a: a3:aa:b8:d8:a3:cc:7d:d8:b8:ba:ee:5f:d3:86:3a:d4:09:fb: f5:a2:f2:01:63:61:2f:41:a4:c0:ea:18:73:f1:15:ca:c7:26: 74:2d:a0:88:2a:3b:37:ad:70:1f:f3:9f:7f:92:de:5e:e8:35: 91:9b:4a:99:4d:b4:06:06:8d:f0:b4:33:36:ff:df:20:1a:d7: 2f:1b:c5:37:18:6d:27:2d:ea:ce:e5:82:1e:2e:34:53:b8:bd: 60:60:77:4d:5b:13:e7:7a:72:03:76:cc:41:55:40:f8:12:45: 8b:2e:f3:3b:b2:00:9c:e1:d2:93:dd:4c:3a:d7:ef:af:93:e2: b0:97:a0:99:7e:a8:e4:24:ac:40:00:a1:3f:9a:6a:71:46:d4: 19:60:22:c7:e7:dd:7b:e7:8f:a5:d5:76:3f:6e:bc:82:7d:43: 9a:55:f6:2e:9a:30:6a:16:69:3a:78:d7:78:9b:08:4f:69:ee: 1c:21:94:9f:88:78:4c:e2:95:12:26:86:be:3d:b4:35:75:08: bd:85:67:8a -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICAq8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTA4 MkY1RDk5MkU2QkMyNUUwODk5NzUzODYxNjE4MDcwMkU4NTdDMzAeFw0yMzA5MDEw ODMxMzdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVCOTRDQ0I5OTgzQjM0 NTVERUY3MTE4QzY0RTJBNDc0NDUwMjAwOUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoEbYblL30WdhR7wiJlZ0wHeqZodTbFZP+LD1ob7NOSC7e1hHz IMcN1G8Iqwt+6RTEVBp73l8ivetrcB8ZG5vL4jlzSBWIu2n5yLG+4OaZenm+Kvn4 I8OxNBIzFWj1SsHcryX5SDuR3auN0yvSn4zACndNhfR+LlArg8hIPObu93zX0WDl pOwcJaYPJEpUVl8XlBgE8vX+wFOQw5wNYLX+f8uliTupeKi1QWEzjrwvQffn1pck t2JXrrcrnWhA03bD7NqIHJFbl/x1myVVmu47mKdGXJx0oWT24R1m+l1iPkpz1pU/ xCZSwx/dtTulaetFDH8FzFO/F3d0fe05nQlXAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUW5TMuZg7NFXe9xGMZOKkdEUCAJswHwYDVR0jBBgwFoAUoIL12ZLmvCXgiZdT hhYYBwLoV8MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1NQVEVL L29JTDEyWkxtdkNYZ2laZFRoaFlZQndMb1Y4TS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0Evb0lMMTJaTG12Q1hnaVpkVGhoWVlCd0xvVjhNLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1NQVEVLL1c1VE11Wmc3TkZYZTl4R01a T0trZEVVQ0FKcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk BtfAMA0GCSqGSIb3DQEBCwUAA4IBAQBSUPFT54Lg/hg3C/J1WzCgQlv6t+DUXjyP JvITLuL6Vle/kgaIVuftiSZYNG3/+Ej7YzCciWqjqrjYo8x92Li67l/ThjrUCfv1 ovIBY2EvQaTA6hhz8RXKxyZ0LaCIKjs3rXAf859/kt5e6DWRm0qZTbQGBo3wtDM2 /98gGtcvG8U3GG0nLerO5YIeLjRTuL1gYHdNWxPnenIDdsxBVUD4EkWLLvM7sgCc 4dKT3Uw61++vk+Kwl6CZfqjkJKxAAKE/mmpxRtQZYCLH591754+l1XY/bryCfUOa VfYumjBqFmk6eNd4mwhPae4cIZSfiHhM4pUSJoa+PbQ1dQi9hWeK -----END CERTIFICATE-----Generated at Sun May 5 03:06:48 2024 by rpki-client on console-fra.rpki-client.org