$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CROWN/FRbmpM5fxvdKMlsXuYRM_pO0NlU.roa File: FRbmpM5fxvdKMlsXuYRM_pO0NlU.roa (raw, json) Hash identifier: npiMtG+AvaWOPAaMoWzjne8aSBSlPpjws3lk0AkjU2E= Subject key identifier: 15:16:E6:A4:CE:5F:C6:F7:4A:32:5B:17:B9:84:4C:FE:93:B4:36:55 Certificate issuer: /CN=4A7B5FFF97B89C87BDBFD46164EE924A87D696E9 Certificate serial: 05 Authority key identifier: 4A:7B:5F:FF:97:B8:9C:87:BD:BF:D4:61:64:EE:92:4A:87:D6:96:E9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Sntf_5e4nIe9v9RhZO6SSofWluk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CROWN/FRbmpM5fxvdKMlsXuYRM_pO0NlU.roa Signing time: Wed 23 Aug 2023 16:38:55 +0000 ROA not before: Wed 23 Aug 2023 16:38:55 +0000 ROA not after: Thu 22 Aug 2024 01:11:24 +0000 asID: 131642 IP address blocks: 2401:29e0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CROWN/Sntf_5e4nIe9v9RhZO6SSofWluk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CROWN/Sntf_5e4nIe9v9RhZO6SSofWluk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Sntf_5e4nIe9v9RhZO6SSofWluk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A7B5FFF97B89C87BDBFD46164EE924A87D696E9 Validity Not Before: Aug 23 16:38:55 2023 GMT Not After : Aug 22 01:11:24 2024 GMT Subject: CN=1516E6A4CE5FC6F74A325B17B9844CFE93B43655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:c2:99:4f:67:01:a7:09:42:cd:33:e6:88:da: dd:7b:6c:bf:b4:6b:90:05:4e:5e:7e:da:a8:25:18: 91:56:2a:d5:f2:65:c7:67:2a:09:58:1e:f6:96:aa: e1:82:5f:7e:80:a8:88:d0:b6:d3:8b:7c:ee:d7:e6: 58:e7:0f:29:8e:ac:3c:fb:ae:e7:8e:43:be:b8:96: 23:9b:5d:6d:ae:46:77:3e:77:e8:94:9b:6b:96:e6: 91:86:bc:1e:7b:7e:3f:0e:8f:9d:93:14:a5:06:98: 83:6b:f6:58:d2:70:52:7a:e0:47:5b:bb:17:ce:02: 99:f1:4e:fd:78:f8:6c:e5:f7:0f:b6:ec:4f:d8:5a: dc:fa:10:4e:c6:79:39:ec:6a:f4:bc:39:1b:f0:c1: 07:69:69:03:10:eb:59:f8:f7:92:e9:e4:f1:8f:44: 2b:1f:c0:69:49:8b:41:64:2e:50:8c:41:46:a7:98: a9:76:70:d2:ed:85:01:39:0c:52:11:28:8b:86:53: 8a:ba:3a:07:54:a7:5b:04:5b:98:a3:ca:84:df:4a: f9:49:95:73:86:76:94:8c:36:0e:1c:ae:1a:03:1f: c0:a6:4a:9b:64:c0:e7:78:45:e4:de:1a:87:c7:49: ae:4b:bd:ea:1d:ca:42:c9:15:30:54:10:81:50:8d: 79:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:16:E6:A4:CE:5F:C6:F7:4A:32:5B:17:B9:84:4C:FE:93:B4:36:55 X509v3 Authority Key Identifier: keyid:4A:7B:5F:FF:97:B8:9C:87:BD:BF:D4:61:64:EE:92:4A:87:D6:96:E9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CROWN/Sntf_5e4nIe9v9RhZO6SSofWluk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Sntf_5e4nIe9v9RhZO6SSofWluk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CROWN/FRbmpM5fxvdKMlsXuYRM_pO0NlU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:29e0::/32 Signature Algorithm: sha256WithRSAEncryption be:8c:03:9c:ee:b3:c1:82:cc:88:14:6b:86:08:1c:46:36:8a: fe:31:78:9e:57:29:d5:0f:15:46:2f:6d:43:7f:27:36:d9:27: 18:24:bf:48:08:bb:ed:36:28:0c:67:19:d6:b8:76:b8:ea:00: dd:95:16:43:de:6d:eb:5e:18:04:53:08:5f:6c:bc:1a:10:7f: 6a:0f:03:12:76:f4:91:9e:c1:1f:41:c6:ad:19:e9:7e:d3:70: 9d:1d:94:f6:51:47:0c:e1:a9:20:a9:af:09:8e:f7:d9:8f:62: c7:55:46:68:4b:42:ca:41:fc:9f:fd:5c:80:0b:ad:7d:26:fc: d4:e0:55:8b:45:f1:41:2e:00:b7:53:5b:c7:b2:6e:f7:0f:90: dc:e5:60:08:38:5d:55:6f:de:fc:cb:d4:20:ee:0e:30:de:41: db:0f:22:66:e5:ff:a4:69:f4:d7:ba:d4:fc:fb:82:99:84:89: a5:38:51:b5:c3:19:76:a8:c1:f5:a4:ae:a8:62:31:02:cf:84: 6c:a8:e8:07:f4:75:1e:14:75:0c:e2:a2:a8:d7:da:c0:a9:29: 72:7a:91:e3:97:4f:91:aa:50:2d:c5:c1:fc:51:bc:ec:f4:fb: 7b:78:13:a6:95:c5:7c:3f:7d:fa:85:79:76:b4:97:dc:21:81: d4:ff:91:b9 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0QTdC NUZGRjk3Qjg5Qzg3QkRCRkQ0NjE2NEVFOTI0QTg3RDY5NkU5MB4XDTIzMDgyMzE2 Mzg1NVoXDTI0MDgyMjAxMTEyNFowMzExMC8GA1UEAxMoMTUxNkU2QTRDRTVGQzZG NzRBMzI1QjE3Qjk4NDRDRkU5M0I0MzY1NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAO7CmU9nAacJQs0z5oja3Xtsv7RrkAVOXn7aqCUYkVYq1fJlx2cq CVge9paq4YJffoCoiNC204t87tfmWOcPKY6sPPuu545DvriWI5tdba5Gdz536JSb a5bmkYa8Hnt+Pw6PnZMUpQaYg2v2WNJwUnrgR1u7F84CmfFO/Xj4bOX3D7bsT9ha 3PoQTsZ5Oexq9Lw5G/DBB2lpAxDrWfj3kunk8Y9EKx/AaUmLQWQuUIxBRqeYqXZw 0u2FATkMUhEoi4ZTiro6B1SnWwRbmKPKhN9K+UmVc4Z2lIw2DhyuGgMfwKZKm2TA 53hF5N4ah8dJrku96h3KQskVMFQQgVCNeWcCAwEAAaOCAe0wggHpMB0GA1UdDgQW BBQVFuakzl/G90oyWxe5hEz+k7Q2VTAfBgNVHSMEGDAWgBRKe1//l7ich72/1GFk 7pJKh9aW6TAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DUk9XTi9T bnRmXzVlNG5JZTl2OVJoWk82U1NvZldsdWsuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1NudGZfNWU0bkllOXY5UmhaTzZTU29mV2x1ay5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0NST1dOL0ZSYm1wTTVmeHZkS01sc1h1WVJN X3BPME5sVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkASng MA0GCSqGSIb3DQEBCwUAA4IBAQC+jAOc7rPBgsyIFGuGCBxGNor+MXieVynVDxVG L21Dfyc22ScYJL9ICLvtNigMZxnWuHa46gDdlRZD3m3rXhgEUwhfbLwaEH9qDwMS dvSRnsEfQcatGel+03CdHZT2UUcM4akgqa8JjvfZj2LHVUZoS0LKQfyf/VyAC619 JvzU4FWLRfFBLgC3U1vHsm73D5Dc5WAIOF1Vb978y9Qg7g4w3kHbDyJm5f+kafTX utT8+4KZhImlOFG1wxl2qMH1pK6oYjECz4RsqOgH9HUeFHUM4qKo19rAqSlyepHj l0+RqlAtxcH8Ubzs9Pt7eBOmlcV8P336hXl2tJfcIYHU/5G5 -----END CERTIFICATE-----Generated at Mon Jun 3 12:43:59 2024 by rpki-client on console-fra.rpki-client.org