$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/1yM7gE-xFQooYIO-ujfBT9LXU1g.roa File: 1yM7gE-xFQooYIO-ujfBT9LXU1g.roa (raw, json) Hash identifier: 8TwwCY/Hf5f4/dpYvn1RyY62c5F/CuEtWJmTEus9XhM= Subject key identifier: D7:23:3B:80:4F:B1:15:0A:28:60:83:BE:BA:37:C1:4F:D2:D7:53:58 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0DDA Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1yM7gE-xFQooYIO-ujfBT9LXU1g.roa Signing time: Mon 15 Jan 2024 21:35:00 +0000 ROA not before: Mon 15 Jan 2024 21:35:00 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9311 IP address blocks: 210.203.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3546 (0xdda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:35:00 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D7233B804FB1150A286083BEBA37C14FD2D75358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:11:81:ce:44:8d:40:1d:ba:f9:4f:61:57:ff: ce:3e:0d:35:ff:6e:f1:7b:23:d5:e6:1a:a1:c8:1a: 99:a1:14:02:4d:76:78:8e:b6:e3:dd:13:13:af:5f: 5a:7a:dd:bd:4e:e4:80:54:55:f6:15:6f:b6:c4:79: 38:b2:d9:bf:64:6e:bd:db:93:d7:a7:7d:56:3d:94: 3a:b8:af:be:1c:ff:76:e6:d0:4a:f6:f1:2d:31:11: ae:a4:eb:5d:7d:bd:30:7b:23:dc:eb:6d:9e:87:42: 81:b9:78:d1:4b:6d:02:c8:a0:23:90:18:fb:af:61: 3f:20:98:5a:ca:73:76:84:76:06:c5:a1:2d:4d:53: c0:9e:80:46:f5:5a:3d:45:c4:06:46:79:b0:9c:8e: 32:a0:79:38:78:dd:2f:3b:e9:f7:d7:b9:71:e6:34: 29:09:6b:a6:03:51:ec:38:ad:f0:5c:4d:ac:92:50: 8b:3d:e2:db:ac:2c:fc:11:37:bd:ce:ed:e6:84:2f: f7:b9:98:a4:f0:81:c8:41:7f:6c:33:4a:34:10:4d: bb:b6:ce:61:d6:73:16:0b:08:22:65:2a:ef:80:eb: 33:e7:10:cb:48:53:f2:a4:52:04:7c:8c:d2:78:f7: bd:45:b4:c2:76:e2:a2:4d:d7:43:92:b9:a5:bc:32: 11:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:23:3B:80:4F:B1:15:0A:28:60:83:BE:BA:37:C1:4F:D2:D7:53:58 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1yM7gE-xFQooYIO-ujfBT9LXU1g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.203.0.0/17 Signature Algorithm: sha256WithRSAEncryption 38:98:3c:44:d8:16:de:84:ee:57:84:98:76:af:79:27:f4:70: f2:8d:a1:b8:01:59:d5:25:65:2f:0d:b0:8e:dd:e6:f0:f3:b1: ed:9b:ca:92:21:63:74:6f:b2:22:c4:0b:95:3b:ee:fc:de:2d: ee:9d:74:a2:b4:c8:25:e7:7f:3f:16:56:46:12:db:b1:c8:68: eb:eb:47:f7:9d:c8:76:6f:e8:4a:42:d1:81:86:d1:e4:19:c1: 49:b8:61:cc:3b:9e:e0:bb:0f:ec:0b:30:ea:68:a8:0a:a3:5e: 9c:ae:78:a5:0b:7e:47:1e:2f:0c:47:9d:4f:65:c1:6d:63:05: b7:ac:22:54:79:88:35:c7:12:d9:98:52:ee:09:5b:cb:78:06: 99:86:e7:cd:f2:0a:75:fb:08:74:f3:ca:98:5e:dd:d6:35:6c: 7e:49:ec:a1:d1:fe:77:cb:b4:5c:ea:b0:95:9a:0f:71:2f:d9: fc:e0:0e:2d:ac:a4:b5:e2:e2:81:9c:d1:6a:43:50:89:e2:1c: 04:90:c6:1a:ce:d7:d9:e3:c7:2d:a8:ae:74:71:7d:12:0c:7e: e1:b5:6c:c7:43:ee:4f:84:bb:60:83:4a:9f:b6:33:80:db:0b: 04:67:48:87:a1:a6:fd:8a:81:57:5f:60:83:d5:61:71:76:a4: 0d:1c:39:dd -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDdowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTM1MDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ3MjMzQjgwNEZCMTE1 MEEyODYwODNCRUJBMzdDMTRGRDJENzUzNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCTEYHORI1AHbr5T2FX/84+DTX/bvF7I9XmGqHIGpmhFAJNdniO tuPdExOvX1p63b1O5IBUVfYVb7bEeTiy2b9kbr3bk9enfVY9lDq4r74c/3bm0Er2 8S0xEa6k6119vTB7I9zrbZ6HQoG5eNFLbQLIoCOQGPuvYT8gmFrKc3aEdgbFoS1N U8CegEb1Wj1FxAZGebCcjjKgeTh43S876ffXuXHmNCkJa6YDUew4rfBcTaySUIs9 4tusLPwRN73O7eaEL/e5mKTwgchBf2wzSjQQTbu2zmHWcxYLCCJlKu+A6zPnEMtI U/KkUgR8jNJ4971FtMJ24qJN10OSuaW8MhGBAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU1yM7gE+xFQooYIO+ujfBT9LXU1gwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzF5TTdnRS14RlFvb1lJTy11amZCVDlM WFUxZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfSywAwDQYJ KoZIhvcNAQELBQADggEBADiYPETYFt6E7leEmHaveSf0cPKNobgBWdUlZS8NsI7d 5vDzse2bypIhY3RvsiLEC5U77vzeLe6ddKK0yCXnfz8WVkYS27HIaOvrR/edyHZv 6EpC0YGG0eQZwUm4Ycw7nuC7D+wLMOpoqAqjXpyueKULfkceLwxHnU9lwW1jBbes IlR5iDXHEtmYUu4JW8t4BpmG583yCnX7CHTzyphe3dY1bH5J7KHR/nfLtFzqsJWa D3Ev2fzgDi2spLXi4oGc0WpDUIniHASQxhrO19njxy2ornRxfRIMfuG1bMdD7k+E u2CDSp+2M4DbCwRnSIehpv2KgVdfYIPVYXF2pA0cOd0= -----END CERTIFICATE-----Generated at Mon Jun 3 15:52:32 2024 by rpki-client on console-ams.rpki-client.org