$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWDS/FXbrfhBeRWzrcvq0DstGuA9mP54.roa File: FXbrfhBeRWzrcvq0DstGuA9mP54.roa (raw, json) Hash identifier: SOJiPc1bflIVxuz1zW8DzOstraYMWtZ9/zW+aKJYdrE= Subject key identifier: 15:76:EB:7E:10:5E:45:6C:EB:72:FA:B4:0E:CB:46:B8:0F:66:3F:9E Certificate issuer: /CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB Certificate serial: 08D7 Authority key identifier: 29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/FXbrfhBeRWzrcvq0DstGuA9mP54.roa Signing time: Fri 01 Sep 2023 10:11:24 +0000 ROA not before: Fri 01 Sep 2023 10:11:24 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 141173 IP address blocks: 2405:a640:1173::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 02:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2263 (0x8d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB Validity Not Before: Sep 1 10:11:24 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=1576EB7E105E456CEB72FAB40ECB46B80F663F9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7b:6f:e8:ee:52:e1:00:7c:89:ea:bf:ad:8f: ec:b4:ec:f8:b8:bb:f0:78:7b:27:d6:29:f7:76:42: d3:39:1d:5c:6b:f7:8d:b5:63:bc:ee:7c:f7:37:35: 0f:f2:e1:06:c1:d1:5d:f8:57:5b:35:10:50:7f:ca: 6f:71:54:a3:19:36:d7:27:55:e6:08:2c:cb:8b:40: 09:61:be:50:50:22:4d:cf:3e:05:46:a4:fa:f8:bb: 45:2c:24:56:b9:0b:33:95:cc:db:06:8a:cb:e8:52: 02:0b:5d:41:7f:95:e5:e3:6a:30:ab:75:a4:11:c9: fa:d2:47:c4:63:42:42:19:93:ba:1b:c9:f8:6e:c3: 4e:07:45:0c:01:80:22:de:cb:7c:8f:4e:5c:7a:8e: 46:c9:8d:ce:ce:f0:79:3d:08:a4:36:b5:dd:4e:b7: 76:39:f9:99:98:2a:dd:60:e2:15:da:33:c4:84:0e: d5:02:f8:6d:fd:83:57:70:8e:0a:06:4b:3c:55:9c: 4b:89:f9:30:bd:ba:f7:6b:07:67:ce:b3:64:24:e6: f5:88:71:de:40:5f:a1:c6:ea:31:07:ac:aa:67:d3: 05:4d:83:92:4c:9a:e5:a0:51:d8:37:31:4b:e6:06: 08:7e:b2:1c:fa:aa:fd:4c:dd:35:e7:79:6e:a8:97: 33:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:76:EB:7E:10:5E:45:6C:EB:72:FA:B4:0E:CB:46:B8:0F:66:3F:9E X509v3 Authority Key Identifier: keyid:29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/FXbrfhBeRWzrcvq0DstGuA9mP54.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:a640:1173::/48 Signature Algorithm: sha256WithRSAEncryption 97:3d:d3:eb:f1:58:e8:b6:82:56:75:3b:8f:06:fa:d3:e2:cd: 8b:37:87:bb:8c:e5:e6:fc:7c:f0:4b:65:16:d8:52:a0:ec:d5: b4:81:c1:7c:0c:9f:d7:f8:ec:7c:6b:94:00:f4:35:37:26:15: 92:cd:b5:7d:f6:59:e0:64:92:48:7f:8c:9d:45:b4:a6:34:eb: dd:ec:e9:11:8a:4c:9c:47:93:91:b9:b8:cd:01:ac:12:c0:9a: 43:68:68:80:36:7c:95:bd:3b:e3:91:d5:55:97:8b:3c:12:0a: 92:a8:6a:fe:27:75:cb:4b:87:c3:ea:84:41:5c:7a:f3:71:3d: 62:7e:f1:67:5d:cc:4d:6d:5f:7d:1b:37:ea:69:44:fb:83:65: 5b:06:95:5e:30:04:4d:36:3f:99:c5:bd:7e:85:5f:3b:a1:f0: 4f:5e:dd:5f:1a:e0:2a:87:79:11:cb:6c:dc:e2:6a:d0:a6:c6: e0:c3:2a:a8:49:10:b4:31:7d:af:7c:c4:0a:0a:83:44:20:bd: e3:f4:b2:15:7c:dc:c3:3f:ea:b4:93:63:d9:27:dc:6d:26:aa: 6a:04:a9:10:ad:92:f3:62:74:8d:1f:90:83:df:ab:d9:96:ee: c5:e1:c9:19:fc:00:90:2c:ad:89:d7:85:2a:7f:18:7f:01:ae: 1d:af:03:0a -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICCNcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjkx QkFGNkEwQzE3NkNFMEEzMjQyMzY2NkJDRTc4RjlEOTE4MjRDQjAeFw0yMzA5MDEx MDExMjRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE1NzZFQjdFMTA1RTQ1 NkNFQjcyRkFCNDBFQ0I0NkI4MEY2NjNGOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMe2/o7lLhAHyJ6r+tj+y07Pi4u/B4eyfWKfd2QtM5HVxr9421 Y7zufPc3NQ/y4QbB0V34V1s1EFB/ym9xVKMZNtcnVeYILMuLQAlhvlBQIk3PPgVG pPr4u0UsJFa5CzOVzNsGisvoUgILXUF/leXjajCrdaQRyfrSR8RjQkIZk7obyfhu w04HRQwBgCLey3yPTlx6jkbJjc7O8Hk9CKQ2td1Ot3Y5+ZmYKt1g4hXaM8SEDtUC +G39g1dwjgoGSzxVnEuJ+TC9uvdrB2fOs2Qk5vWIcd5AX6HG6jEHrKpn0wVNg5JM muWgUdg3MUvmBgh+shz6qv1M3TXneW6olzOxAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUFXbrfhBeRWzrcvq0DstGuA9mP54wHwYDVR0jBBgwFoAUKRuvagwXbOCjJCNm a854+dkYJMswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdEUy9L UnV2YWd3WGJPQ2pKQ05tYTg1NC1ka1lKTXMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0tSdXZhZ3dYYk9DakpDTm1hODU0LWRrWUpNcy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RXRFMvRlhicmZoQmVSV3pyY3ZxMERzdEd1 QTltUDU0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFpkAR czANBgkqhkiG9w0BAQsFAAOCAQEAlz3T6/FY6LaCVnU7jwb60+LNizeHu4zl5vx8 8EtlFthSoOzVtIHBfAyf1/jsfGuUAPQ1NyYVks21ffZZ4GSSSH+MnUW0pjTr3ezp EYpMnEeTkbm4zQGsEsCaQ2hogDZ8lb0745HVVZeLPBIKkqhq/id1y0uHw+qEQVx6 83E9Yn7xZ13MTW1ffRs36mlE+4NlWwaVXjAETTY/mcW9foVfO6HwT17dXxrgKod5 Ects3OJq0KbG4MMqqEkQtDF9r3zECgqDRCC94/SyFXzcwz/qtJNj2SfcbSaqagSp EK2S82J0jR+Qg9+r2ZbuxeHJGfwAkCytideFKn8YfwGuHa8DCg== -----END CERTIFICATE-----Generated at Thu Apr 25 18:15:01 2024 by rpki-client on console-ams.rpki-client.org