$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWDS/_Eu0QVjsRtaEkhcxXXXoqKvWpvQ.roa File: _Eu0QVjsRtaEkhcxXXXoqKvWpvQ.roa (raw, json) Hash identifier: OScsdmAxtsyJ2IujWkagKPoJ3qh3XL23QCxE7mtY/eo= Subject key identifier: FC:4B:B4:41:58:EC:46:D6:84:92:17:31:5D:75:E8:A8:AB:D6:A6:F4 Certificate issuer: /CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB Certificate serial: 08D9 Authority key identifier: 29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/_Eu0QVjsRtaEkhcxXXXoqKvWpvQ.roa Signing time: Fri 01 Sep 2023 10:11:25 +0000 ROA not before: Fri 01 Sep 2023 10:11:25 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18041 IP address blocks: 2405:a640::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 19:28:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2265 (0x8d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB Validity Not Before: Sep 1 10:11:25 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=FC4BB44158EC46D6849217315D75E8A8ABD6A6F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3f:d7:77:cf:fc:7b:87:12:76:cf:03:44:fe: cb:d3:90:57:3a:70:76:e8:ef:b9:d5:65:98:76:4d: 40:76:ca:5b:d6:40:62:c2:02:5a:b7:2f:56:e7:d8: de:a6:4d:fc:cd:b1:1f:b8:ee:ef:f6:31:35:08:f9: cb:87:84:43:33:30:83:96:43:17:b5:ec:33:96:73: bc:c3:13:d4:68:e0:6e:b0:db:f1:2d:cc:a9:bb:81: 34:3d:cc:b7:20:63:3a:6c:05:78:85:5e:87:38:95: 9d:06:be:28:7d:4e:4f:9c:51:cb:27:dd:ec:55:ba: 5b:74:e3:64:de:1c:7f:e6:69:5a:d2:45:7c:f7:97: 96:4d:ec:7d:f5:a0:49:83:e5:8e:35:78:48:61:43: cb:f9:da:b5:d4:3b:f1:0e:e3:61:28:92:4b:86:fc: 98:e7:70:a5:7e:8e:a0:68:58:e3:2e:2b:c7:e8:e2: 21:77:7a:d0:1e:fb:4d:f6:37:ac:83:a5:78:b5:51: cb:f6:8b:69:82:02:ec:45:1b:f0:2f:8b:a8:36:97: 7c:fe:67:1c:0d:0b:b9:9e:b8:7b:8e:50:fa:b1:3d: c6:f8:3f:7e:0e:a8:d7:5e:d1:e4:93:c9:ae:a2:65: 16:99:c3:1b:c3:48:63:2e:74:c2:b9:df:ff:f3:75: 69:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:4B:B4:41:58:EC:46:D6:84:92:17:31:5D:75:E8:A8:AB:D6:A6:F4 X509v3 Authority Key Identifier: keyid:29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/_Eu0QVjsRtaEkhcxXXXoqKvWpvQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:a640::/32 Signature Algorithm: sha256WithRSAEncryption b8:dc:02:91:fd:65:65:0b:23:b3:64:a8:92:bc:87:cc:87:88: cb:45:b0:e1:4d:12:1b:d9:d9:2c:ce:4e:54:5f:14:6f:20:c9: d0:2a:20:09:71:1f:1f:1e:5a:33:02:f9:12:80:06:a2:29:5e: e3:04:a9:4e:79:93:51:28:aa:3b:4b:3d:5b:88:91:7c:57:00: e8:c1:00:77:32:0b:32:f1:d9:e2:ac:8d:7f:65:dd:9d:f9:f4: c5:ab:8e:ad:41:7f:e8:44:d3:38:2f:39:26:4a:7f:95:ed:0e: d9:42:26:74:ff:d4:7c:91:46:df:ff:cc:7c:91:a6:49:c9:1a: da:31:51:15:75:07:d4:6d:b6:6c:d4:49:0d:8c:85:d8:6b:2a: 51:11:b1:25:42:3f:37:09:21:9c:6c:d6:ae:72:74:d5:33:41: 59:3d:a8:ae:e1:3a:61:b4:2e:17:56:e5:b7:69:2b:67:0b:42: 16:53:b7:98:eb:35:d7:17:9d:a0:88:16:c9:bb:ad:06:49:85: 7e:1d:9c:17:6c:d9:41:08:a0:87:f4:85:89:4d:33:10:d6:63: bc:f6:a2:7f:c0:a4:bd:03:eb:46:6d:a2:69:3e:77:1c:70:17: 49:78:60:b3:86:87:2b:aa:59:65:08:a9:67:da:a9:7e:df:2f: 04:0f:89:47 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICCNkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjkx QkFGNkEwQzE3NkNFMEEzMjQyMzY2NkJDRTc4RjlEOTE4MjRDQjAeFw0yMzA5MDEx MDExMjVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZDNEJCNDQxNThFQzQ2 RDY4NDkyMTczMTVENzVFOEE4QUJENkE2RjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOP9d3z/x7hxJ2zwNE/svTkFc6cHbo77nVZZh2TUB2ylvWQGLC Alq3L1bn2N6mTfzNsR+47u/2MTUI+cuHhEMzMIOWQxe17DOWc7zDE9Ro4G6w2/Et zKm7gTQ9zLcgYzpsBXiFXoc4lZ0Gvih9Tk+cUcsn3exVult042TeHH/maVrSRXz3 l5ZN7H31oEmD5Y41eEhhQ8v52rXUO/EO42EokkuG/JjncKV+jqBoWOMuK8fo4iF3 etAe+032N6yDpXi1Ucv2i2mCAuxFG/Avi6g2l3z+ZxwNC7meuHuOUPqxPcb4P34O qNde0eSTya6iZRaZwxvDSGMudMK53//zdWmvAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU/Eu0QVjsRtaEkhcxXXXoqKvWpvQwHwYDVR0jBBgwFoAUKRuvagwXbOCjJCNm a854+dkYJMswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdEUy9L UnV2YWd3WGJPQ2pKQ05tYTg1NC1ka1lKTXMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0tSdXZhZ3dYYk9DakpDTm1hODU0LWRrWUpNcy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RXRFMvX0V1MFFWanNSdGFFa2hjeFhYWG9x S3ZXcHZRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFpkAw DQYJKoZIhvcNAQELBQADggEBALjcApH9ZWULI7NkqJK8h8yHiMtFsOFNEhvZ2SzO TlRfFG8gydAqIAlxHx8eWjMC+RKABqIpXuMEqU55k1EoqjtLPVuIkXxXAOjBAHcy CzLx2eKsjX9l3Z359MWrjq1Bf+hE0zgvOSZKf5XtDtlCJnT/1HyRRt//zHyRpknJ GtoxURV1B9RttmzUSQ2MhdhrKlERsSVCPzcJIZxs1q5ydNUzQVk9qK7hOmG0LhdW 5bdpK2cLQhZTt5jrNdcXnaCIFsm7rQZJhX4dnBds2UEIoIf0hYlNMxDWY7z2on/A pL0D60Ztomk+dxxwF0l4YLOGhyuqWWUIqWfaqX7fLwQPiUc= -----END CERTIFICATE-----Generated at Sun May 19 18:41:19 2024 by rpki-client on console-ams.rpki-client.org