$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/eHlIerO5qbL5wy_P3OorN2Jurcs.roa File: eHlIerO5qbL5wy_P3OorN2Jurcs.roa (raw, json) Hash identifier: 2FSE8G2snXCylCsSjMMtIjriw+gcd9fsv29+ETfD4Yw= Subject key identifier: 78:79:48:7A:B3:B9:A9:B2:F9:C3:2F:CF:DC:EA:2B:37:62:6E:AD:CB Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 0E04 Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/eHlIerO5qbL5wy_P3OorN2Jurcs.roa Signing time: Fri 01 Sep 2023 08:36:23 +0000 ROA not before: Fri 01 Sep 2023 08:36:23 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18424 IP address blocks: 2404:8cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 11:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3588 (0xe04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Sep 1 08:36:23 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=7879487AB3B9A9B2F9C32FCFDCEA2B37626EADCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:05:b7:6d:8d:b7:62:ca:47:b2:d2:a9:d3:13: d1:1b:67:ed:73:0f:e6:64:b6:e2:a1:80:33:e1:ce: 4b:c9:4c:91:c7:bd:87:55:e7:1d:74:8c:99:32:bc: c9:5a:3f:89:23:91:04:34:75:1a:88:2d:ae:7a:cc: 6a:58:d0:c3:fc:36:f3:cc:da:fc:7a:5d:a1:f7:c6: 18:5c:6a:c1:e3:4e:f2:49:3f:af:2a:2f:00:e8:3c: 20:84:37:d0:de:6a:77:ad:85:0e:93:27:e7:11:d4: 65:45:41:42:27:d3:9b:3b:21:36:23:6b:56:c8:af: e0:b4:b6:6a:b3:92:e1:11:c7:67:c4:ba:fd:de:ce: d9:c5:d4:7a:9c:96:ff:f4:3f:94:a4:b1:54:72:69: 1f:38:ee:5b:ab:84:74:16:19:aa:45:6c:ee:2d:af: 83:34:a8:09:3b:7c:dc:3f:1f:10:a2:fd:c0:10:ec: 9f:fe:39:c5:20:4c:9c:cf:1c:2c:a7:73:fd:4b:7d: 1c:56:ab:2b:29:94:c4:13:90:58:b3:4a:58:34:a8: 6e:45:77:5b:18:dc:1c:b7:e9:c6:e0:81:7f:3d:5e: 50:dd:bf:e2:77:ed:1d:f6:c5:2b:c1:34:00:f9:fa: a3:72:d5:8f:17:8e:ef:c8:60:04:59:ad:04:d4:e6: 63:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:79:48:7A:B3:B9:A9:B2:F9:C3:2F:CF:DC:EA:2B:37:62:6E:AD:CB X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/eHlIerO5qbL5wy_P3OorN2Jurcs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:8cc0::/32 Signature Algorithm: sha256WithRSAEncryption 6b:20:27:73:ac:40:37:21:8f:ec:e3:84:aa:44:a7:f0:ce:4e: df:55:fc:2c:da:16:f5:52:e2:ee:6d:6f:15:de:7f:f7:fe:4c: 58:2e:6f:67:3a:7c:b9:d8:13:9d:e3:d3:a4:72:37:35:55:a6: f9:cc:68:54:86:9c:52:29:c9:0c:1f:ad:c9:ac:a8:55:c1:ba: 56:d5:e2:2c:c3:f0:ad:00:5b:aa:a7:1b:ac:c6:9d:44:89:78: 56:75:50:30:0b:e7:75:1d:23:73:75:04:de:37:5d:93:cd:e8: 66:4b:b6:da:79:86:51:ba:98:2a:3c:9f:64:06:3f:2d:75:db: 2d:14:43:c9:64:b2:f3:29:6c:7f:fb:69:bc:fd:6c:e6:df:69: 41:fe:79:9f:43:38:02:86:03:52:eb:f8:29:c1:79:2d:fb:d1: ff:ff:ff:a7:f7:be:d3:32:58:3e:c3:d0:e6:07:e1:ff:cc:90: 3c:72:12:21:79:55:ad:06:7a:9a:d9:fd:8d:a9:2e:16:b0:a0: f3:4b:c9:8e:52:1a:a0:1c:d7:d0:d3:0e:67:35:ae:8a:a6:a2: f9:91:06:c7:b8:5c:3d:f2:49:25:4d:fd:28:21:82:6a:c5:ea: 87:19:78:86:18:b3:10:5d:8c:fa:b4:9d:1d:e4:3d:af:04:cd: dc:2d:e4:ac -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICDgQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yMzA5MDEw ODM2MjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc4Nzk0ODdBQjNCOUE5 QjJGOUMzMkZDRkRDRUEyQjM3NjI2RUFEQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYBbdtjbdiykey0qnTE9EbZ+1zD+ZktuKhgDPhzkvJTJHHvYdV 5x10jJkyvMlaP4kjkQQ0dRqILa56zGpY0MP8NvPM2vx6XaH3xhhcasHjTvJJP68q LwDoPCCEN9DeanethQ6TJ+cR1GVFQUIn05s7ITYja1bIr+C0tmqzkuERx2fEuv3e ztnF1Hqclv/0P5SksVRyaR847lurhHQWGapFbO4tr4M0qAk7fNw/HxCi/cAQ7J/+ OcUgTJzPHCync/1LfRxWqysplMQTkFizSlg0qG5Fd1sY3By36cbggX89XlDdv+J3 7R32xSvBNAD5+qNy1Y8Xju/IYARZrQTU5mNBAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUeHlIerO5qbL5wy/P3OorN2JurcswHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL2VIbEllck81cWJMNXd5X1AzT29yTjJK dXJjcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBIzAMA0G CSqGSIb3DQEBCwUAA4IBAQBrICdzrEA3IY/s44SqRKfwzk7fVfws2hb1UuLubW8V 3n/3/kxYLm9nOny52BOd49Okcjc1Vab5zGhUhpxSKckMH63JrKhVwbpW1eIsw/Ct AFuqpxusxp1EiXhWdVAwC+d1HSNzdQTeN12TzehmS7baeYZRupgqPJ9kBj8tddst FEPJZLLzKWx/+2m8/Wzm32lB/nmfQzgChgNS6/gpwXkt+9H///+n977TMlg+w9Dm B+H/zJA8chIheVWtBnqa2f2NqS4WsKDzS8mOUhqgHNfQ0w5nNa6KpqL5kQbHuFw9 8kklTf0oIYJqxeqHGXiGGLMQXYz6tJ0d5D2vBM3cLeSs -----END CERTIFICATE-----Generated at Thu May 2 22:22:39 2024 by rpki-client on console-fra.rpki-client.org