$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINENET/QDg9GDdDc3jaTQuvHYSnIiitYec.roa File: QDg9GDdDc3jaTQuvHYSnIiitYec.roa (raw, json) Hash identifier: L3eXDoal3OnqxZdhfq/Ec72QVErkghJog7sWfjHn8IU= Subject key identifier: 40:38:3D:18:37:43:73:78:DA:4D:0B:AF:1D:84:A7:22:28:AD:61:E7 Certificate issuer: /CN=45542320685E62421C114DBA65B8F5705A774845 Certificate serial: B6 Authority key identifier: 45:54:23:20:68:5E:62:42:1C:11:4D:BA:65:B8:F5:70:5A:77:48:45 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RVQjIGheYkIcEU26Zbj1cFp3SEU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/QDg9GDdDc3jaTQuvHYSnIiitYec.roa Signing time: Wed 06 Mar 2024 12:15:16 +0000 ROA not before: Wed 06 Mar 2024 12:15:16 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 150770 IP address blocks: 2400:fe60::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/RVQjIGheYkIcEU26Zbj1cFp3SEU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/RVQjIGheYkIcEU26Zbj1cFp3SEU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RVQjIGheYkIcEU26Zbj1cFp3SEU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45542320685E62421C114DBA65B8F5705A774845 Validity Not Before: Mar 6 12:15:16 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=40383D1837437378DA4D0BAF1D84A72228AD61E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:4d:6a:64:f8:aa:39:8d:a5:15:b8:2e:fd:7d: b8:67:52:55:f0:23:85:81:11:5e:b2:0d:10:b8:62: 5e:22:80:62:78:2c:a3:f5:6a:f3:3f:93:09:64:3b: 93:c6:87:ac:d7:39:89:5c:eb:cf:0e:a6:b0:23:c8: 4a:c4:28:03:af:58:16:11:47:9a:a5:46:61:07:56: 46:07:31:ab:17:1f:6d:d2:f8:f4:b2:4e:4b:2d:15: 9e:f6:9a:27:21:ab:51:e3:28:1f:c0:9f:9e:d7:69: bc:1e:ab:05:3b:ab:1c:72:b3:88:e7:ad:54:91:ea: 09:34:0f:f7:2d:15:22:aa:e6:77:b1:a2:bb:87:5a: 2a:42:8a:16:5b:ca:eb:99:46:f1:0a:50:c9:ff:6d: 9e:cd:dd:51:78:48:ea:d2:a9:5b:2e:ab:e9:44:02: ea:09:7b:f9:56:26:7d:6a:2c:3e:99:24:a9:68:f9: 1f:4c:2c:54:ae:de:69:9f:c3:ce:75:ff:b7:1e:f2: 08:93:b4:59:73:a0:00:6b:0f:76:ca:f3:78:db:fe: 8c:17:7c:40:df:7b:56:64:0e:80:aa:01:64:71:56: d9:bd:73:5c:80:0f:18:b6:23:6f:c2:23:48:68:b2: ba:66:09:8c:db:c3:43:10:62:53:c0:65:54:58:10: b9:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:38:3D:18:37:43:73:78:DA:4D:0B:AF:1D:84:A7:22:28:AD:61:E7 X509v3 Authority Key Identifier: keyid:45:54:23:20:68:5E:62:42:1C:11:4D:BA:65:B8:F5:70:5A:77:48:45 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/RVQjIGheYkIcEU26Zbj1cFp3SEU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RVQjIGheYkIcEU26Zbj1cFp3SEU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/QDg9GDdDc3jaTQuvHYSnIiitYec.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:fe60::/32 Signature Algorithm: sha256WithRSAEncryption 32:58:bf:ac:14:be:f2:c8:65:85:6c:49:3c:d7:e7:51:27:a9: ad:ff:b8:59:40:29:ff:a7:56:00:b4:de:ee:45:54:9b:fd:59: 44:b9:b1:2d:45:bb:e3:b0:3e:c9:78:8a:59:55:82:0b:28:9f: 5a:98:13:a8:a5:09:c7:bd:6f:65:69:06:b0:3b:c9:9b:7e:c3: 87:69:ff:ce:23:b7:7c:91:bd:02:31:26:5c:59:44:3f:88:b3: 74:df:ec:f7:aa:d7:22:98:ef:b1:05:70:6d:d8:c4:27:c8:db: d2:e7:38:02:24:be:fc:30:9d:6b:c0:a3:af:87:6a:11:ec:29: ac:49:ab:6b:50:a8:f8:60:65:1e:a2:7c:90:05:40:5d:8e:f4: 97:dd:b7:df:60:fe:79:2d:e4:1e:2d:2b:bd:24:73:c3:7c:5d: a1:ee:a3:7a:6b:4a:9f:86:8b:7e:9a:64:6c:3e:fe:fd:d3:2d: 80:45:b8:d4:ef:8c:aa:f5:39:4c:ba:2a:f7:30:e1:32:1c:26: 83:58:cd:47:86:a8:dc:db:2d:f4:52:8e:68:5e:32:28:d0:47: d9:69:7d:a8:a6:ea:30:ff:6a:df:eb:e8:19:5f:bd:98:5c:2b: 90:a8:8f:4d:f6:75:95:76:b3:b8:3c:50:a5:d5:f0:b1:10:ee: c2:b0:50:8d -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICALYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU1 NDIzMjA2ODVFNjI0MjFDMTE0REJBNjVCOEY1NzA1QTc3NDg0NTAeFw0yNDAzMDYx MjE1MTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQwMzgzRDE4Mzc0Mzcz NzhEQTREMEJBRjFEODRBNzIyMjhBRDYxRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDuTWpk+Ko5jaUVuC79fbhnUlXwI4WBEV6yDRC4Yl4igGJ4LKP1 avM/kwlkO5PGh6zXOYlc688OprAjyErEKAOvWBYRR5qlRmEHVkYHMasXH23S+PSy TkstFZ72michq1HjKB/An57XabweqwU7qxxys4jnrVSR6gk0D/ctFSKq5nexoruH WipCihZbyuuZRvEKUMn/bZ7N3VF4SOrSqVsuq+lEAuoJe/lWJn1qLD6ZJKlo+R9M LFSu3mmfw851/7ce8giTtFlzoABrD3bK83jb/owXfEDfe1ZkDoCqAWRxVtm9c1yA Dxi2I2/CI0hosrpmCYzbw0MQYlPAZVRYELnVAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUQDg9GDdDc3jaTQuvHYSnIiitYecwHwYDVR0jBBgwFoAURVQjIGheYkIcEU26 Zbj1cFp3SEUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkVO RVQvUlZRaklHaGVZa0ljRVUyNlpiajFjRnAzU0VVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9SVlFqSUdoZVlrSWNFVTI2WmJqMWNGcDNTRVUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSElORU5FVC9RRGc5R0RkRGMzamFU UXV2SFlTbklpaXRZZWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAD+YDANBgkqhkiG9w0BAQsFAAOCAQEAMli/rBS+8shlhWxJPNfnUSeprf+4 WUAp/6dWALTe7kVUm/1ZRLmxLUW747A+yXiKWVWCCyifWpgTqKUJx71vZWkGsDvJ m37Dh2n/ziO3fJG9AjEmXFlEP4izdN/s96rXIpjvsQVwbdjEJ8jb0uc4AiS+/DCd a8Cjr4dqEewprEmra1Co+GBlHqJ8kAVAXY70l92332D+eS3kHi0rvSRzw3xdoe6j emtKn4aLfppkbD7+/dMtgEW41O+MqvU5TLoq9zDhMhwmg1jNR4ao3Nst9FKOaF4y KNBH2Wl9qKbqMP9q3+voGV+9mFwrkKiPTfZ1lXazuDxQpdXwsRDuwrBQjQ== -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:43 2024 by rpki-client on console-fra.rpki-client.org