$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/1IyMJmjO71U5ElQdihOXzs-2T1k.roa File: 1IyMJmjO71U5ElQdihOXzs-2T1k.roa (raw, json) Hash identifier: JeDDcD7ny+nItnywnMYQrrjmKVqiJW9VbzcIoYcOSPE= Subject key identifier: D4:8C:8C:26:68:CE:EF:55:39:12:54:1D:8A:13:97:CE:CF:B6:4F:59 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0DCE Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1IyMJmjO71U5ElQdihOXzs-2T1k.roa Signing time: Mon 15 Jan 2024 21:34:43 +0000 ROA not before: Mon 15 Jan 2024 21:34:43 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 103.36.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3534 (0xdce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:34:43 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D48C8C2668CEEF553912541D8A1397CECFB64F59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cd:aa:f0:31:d6:90:37:d3:88:a9:4e:2a:b2: 7a:bf:e4:4b:f2:08:8d:96:0c:a9:ae:fc:6f:76:66: b6:41:3b:e0:e5:65:14:ca:61:8a:b6:48:87:67:f7: 58:8b:07:f7:46:33:12:96:6a:d5:3a:d0:b9:51:fe: 88:72:a3:4b:ec:80:91:26:ab:44:b8:75:78:6f:81: f3:3f:a7:62:af:5a:d2:3c:34:c1:a1:b6:be:25:52: 6e:5c:49:d0:b1:ef:eb:77:ff:5c:fc:76:31:88:60: 8e:18:38:a2:77:ac:45:ed:fb:93:92:92:5d:a7:e0: 3a:a7:77:11:af:50:85:19:2b:8c:6e:fe:e4:d8:46: 77:d3:32:18:83:89:8c:ac:23:1e:1d:db:e5:87:75: df:12:fc:9d:b7:58:5f:27:c3:8e:39:09:52:b9:ae: 7c:a2:ba:2c:97:3f:07:de:13:f0:d1:43:31:ef:d2: fb:16:6d:53:44:a6:21:6f:0f:71:f3:19:33:9a:71: 71:c2:0f:93:3a:95:33:d6:a4:15:38:b8:e3:fa:e0: 45:92:46:25:a7:5a:e6:bc:c2:15:c8:ad:b7:73:82: 46:4c:e6:d3:4f:57:74:0b:c1:0b:bf:18:38:6b:e1: de:23:70:c6:0d:ef:fd:14:7f:8a:a5:4d:a7:19:18: 4c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:8C:8C:26:68:CE:EF:55:39:12:54:1D:8A:13:97:CE:CF:B6:4F:59 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1IyMJmjO71U5ElQdihOXzs-2T1k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.36.116.0/22 Signature Algorithm: sha256WithRSAEncryption a3:0f:8c:b4:33:2d:64:75:12:f8:39:de:aa:f0:3e:cb:9c:d5: c5:f7:00:da:eb:48:2a:f8:ee:dd:31:5e:a9:1c:71:c2:d0:90: 8e:60:2c:83:95:2a:05:32:1e:58:9c:11:07:cf:f1:5e:fc:04: 34:06:c9:25:51:8d:a5:4f:5a:8e:68:11:7c:07:a1:96:4f:cb: 0f:cc:1f:53:46:ce:ac:8b:03:36:31:d5:01:58:03:98:c9:e0: 76:8c:f1:e0:15:74:c3:87:5c:05:a2:58:9f:74:8b:d6:38:f1: 51:9e:8a:2b:ff:c2:c5:c1:c4:c7:34:d5:6e:43:cc:70:12:2a: 3b:d5:a3:b3:d1:fc:48:98:c7:90:2d:4e:1f:29:b1:61:45:17: 40:1f:9e:30:d8:54:28:d9:f8:83:6b:83:c9:07:ac:bd:c4:7a: 56:53:0b:ef:44:4b:43:34:12:c4:2e:2b:3e:f1:de:17:2f:fb: b9:05:df:d6:7f:8d:c8:f5:77:69:e4:1a:d5:b3:c1:7c:61:4c: 11:bd:0c:da:d1:7c:14:e9:3b:96:b5:0c:2b:3d:a0:86:56:b9: 50:a7:d1:13:73:44:7f:07:48:93:72:b0:cf:20:cb:59:c6:38: 16:6f:b2:a4:ea:20:12:22:9b:9c:27:d7:e7:33:46:b5:01:51: 34:7e:59:16 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDc4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTM0NDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ0OEM4QzI2NjhDRUVG NTUzOTEyNTQxRDhBMTM5N0NFQ0ZCNjRGNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9zarwMdaQN9OIqU4qsnq/5EvyCI2WDKmu/G92ZrZBO+DlZRTK YYq2SIdn91iLB/dGMxKWatU60LlR/ohyo0vsgJEmq0S4dXhvgfM/p2KvWtI8NMGh tr4lUm5cSdCx7+t3/1z8djGIYI4YOKJ3rEXt+5OSkl2n4DqndxGvUIUZK4xu/uTY RnfTMhiDiYysIx4d2+WHdd8S/J23WF8nw445CVK5rnyiuiyXPwfeE/DRQzHv0vsW bVNEpiFvD3HzGTOacXHCD5M6lTPWpBU4uOP64EWSRiWnWua8whXIrbdzgkZM5tNP V3QLwQu/GDhr4d4jcMYN7/0Uf4qlTacZGEwbAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU1IyMJmjO71U5ElQdihOXzs+2T1kwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzFJeU1KbWpPNzFVNUVsUWRpaE9YenMt MlQxay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnJHQwDQYJ KoZIhvcNAQELBQADggEBAKMPjLQzLWR1Evg53qrwPsuc1cX3ANrrSCr47t0xXqkc ccLQkI5gLIOVKgUyHlicEQfP8V78BDQGySVRjaVPWo5oEXwHoZZPyw/MH1NGzqyL AzYx1QFYA5jJ4HaM8eAVdMOHXAWiWJ90i9Y48VGeiiv/wsXBxMc01W5DzHASKjvV o7PR/EiYx5AtTh8psWFFF0AfnjDYVCjZ+INrg8kHrL3EelZTC+9ES0M0EsQuKz7x 3hcv+7kF39Z/jcj1d2nkGtWzwXxhTBG9DNrRfBTpO5a1DCs9oIZWuVCn0RNzRH8H SJNysM8gy1nGOBZvsqTqIBIim5wn1+czRrUBUTR+WRY= -----END CERTIFICATE-----Generated at Mon May 20 08:32:39 2024 by rpki-client on console-fra.rpki-client.org