$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/dS2Se_jQg02ts2VIhygfNqiwUhY.roa File: dS2Se_jQg02ts2VIhygfNqiwUhY.roa (raw, json) Hash identifier: W1PDZneljxYP8+Nawg06SRIfFp0zz8E+mhwqq5B5hTU= Subject key identifier: 75:2D:92:7B:F8:D0:83:4D:AD:B3:65:48:87:28:1F:36:A8:B0:52:16 Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 0E0B Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/dS2Se_jQg02ts2VIhygfNqiwUhY.roa Signing time: Fri 01 Sep 2023 08:36:25 +0000 ROA not before: Fri 01 Sep 2023 08:36:25 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24168 IP address blocks: 2404:8cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 11:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3595 (0xe0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Sep 1 08:36:25 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=752D927BF8D0834DADB3654887281F36A8B05216 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4e:42:06:5e:70:52:3f:fb:74:0b:5b:f0:bc: 2d:c1:bd:b1:7e:1e:4e:fe:cf:1f:69:db:d8:d5:26: 81:21:b4:e0:ec:ab:3a:3f:97:9b:60:e0:5d:9d:a8: 31:20:43:cf:5c:52:fb:a3:54:54:62:18:9d:b4:9d: 10:a6:74:2d:41:2c:a9:b5:de:29:c6:88:fb:8a:72: 85:62:a1:12:d0:3a:9b:58:5e:94:34:79:32:3b:27: cf:98:e2:f0:97:e8:ad:7c:56:10:fa:1d:da:ce:fd: 6e:18:41:f3:77:e7:31:17:e4:85:f9:f7:28:f0:9f: df:ab:d0:27:aa:d6:b4:d8:1c:c6:3a:b4:f9:0d:7f: 71:58:2d:16:50:f9:a8:44:f2:18:85:a7:3b:7a:d8: 89:3a:79:fc:4f:54:c9:29:5c:77:61:d9:94:80:d1: ed:73:f4:76:95:c4:76:2e:50:82:41:d5:b9:8e:70: 70:ee:76:27:c8:35:45:67:22:ce:c3:61:ab:e3:37: 1a:07:f8:0d:9e:59:26:2a:b9:ab:37:18:4e:63:b6: 25:62:26:3c:5b:da:9c:7b:74:bf:92:98:9a:02:38: 6f:8e:1a:0a:96:38:2b:a4:aa:fa:2e:5d:65:8c:b5: 4d:96:ba:04:23:7a:13:fa:39:b7:c9:ff:cd:2c:98: e9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:2D:92:7B:F8:D0:83:4D:AD:B3:65:48:87:28:1F:36:A8:B0:52:16 X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/dS2Se_jQg02ts2VIhygfNqiwUhY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:8cc0::/32 Signature Algorithm: sha256WithRSAEncryption 4e:72:ac:11:e5:88:f9:c8:9f:ac:4d:8b:2d:cc:4a:f8:f0:aa: 0c:9e:09:15:f3:15:b6:ab:ef:88:71:1f:2b:61:b3:a3:0a:c4: be:e2:0b:f8:ae:8e:5f:3e:3c:f3:e1:23:6f:a0:91:3e:27:69: 36:f3:78:3a:44:a5:da:61:5c:5a:6e:46:1d:40:55:a4:d2:fa: 51:c4:f9:45:e7:af:f0:d1:40:6d:67:76:73:7e:0c:7d:82:01: ef:da:e9:26:30:b1:90:da:2f:4e:ec:23:37:9b:26:50:ff:38: 43:e5:a8:fb:d9:3d:b0:f8:4b:ee:c6:1a:29:02:8d:b8:13:78: 42:ce:bc:ad:6f:12:bd:63:68:f7:85:a7:83:42:de:8f:3a:3c: 6a:da:29:d9:24:97:e3:b7:8f:81:c0:b0:86:71:29:b1:07:50: f6:17:28:59:40:04:63:1d:ca:81:80:2f:b3:25:d1:cc:24:35: d5:2e:0b:07:86:1f:ca:d1:3c:3a:ca:5e:6d:d8:eb:fe:ac:05: dd:50:31:cf:29:b3:82:74:8d:c7:10:90:d1:d0:54:08:e7:fc: 20:d7:27:74:5b:90:83:09:a1:ce:b2:24:b6:02:26:1d:4d:ba: 0c:ec:f7:28:eb:0c:c2:2b:40:0a:97:3e:95:64:4e:ee:20:bc: 4a:2e:d9:d0 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICDgswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yMzA5MDEw ODM2MjVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc1MkQ5MjdCRjhEMDgz NERBREIzNjU0ODg3MjgxRjM2QThCMDUyMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+TkIGXnBSP/t0C1vwvC3BvbF+Hk7+zx9p29jVJoEhtODsqzo/ l5tg4F2dqDEgQ89cUvujVFRiGJ20nRCmdC1BLKm13inGiPuKcoVioRLQOptYXpQ0 eTI7J8+Y4vCX6K18VhD6HdrO/W4YQfN35zEX5IX59yjwn9+r0Ceq1rTYHMY6tPkN f3FYLRZQ+ahE8hiFpzt62Ik6efxPVMkpXHdh2ZSA0e1z9HaVxHYuUIJB1bmOcHDu difINUVnIs7DYavjNxoH+A2eWSYquas3GE5jtiViJjxb2px7dL+SmJoCOG+OGgqW OCukqvouXWWMtU2WugQjehP6ObfJ/80smOmrAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUdS2Se/jQg02ts2VIhygfNqiwUhYwHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL2RTMlNlX2pRZzAydHMyVkloeWdmTnFp d1VoWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBIzAMA0G CSqGSIb3DQEBCwUAA4IBAQBOcqwR5Yj5yJ+sTYstzEr48KoMngkV8xW2q++IcR8r YbOjCsS+4gv4ro5fPjzz4SNvoJE+J2k283g6RKXaYVxabkYdQFWk0vpRxPlF56/w 0UBtZ3Zzfgx9ggHv2ukmMLGQ2i9O7CM3myZQ/zhD5aj72T2w+EvuxhopAo24E3hC zrytbxK9Y2j3haeDQt6POjxq2inZJJfjt4+BwLCGcSmxB1D2FyhZQARjHcqBgC+z JdHMJDXVLgsHhh/K0Tw6yl5t2Ov+rAXdUDHPKbOCdI3HEJDR0FQI5/wg1yd0W5CD CaHOsiS2AiYdTboM7Pco6wzCK0AKlz6VZE7uILxKLtnQ -----END CERTIFICATE-----Generated at Sun May 5 02:31:28 2024 by rpki-client on console-ams.rpki-client.org