$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/3pnHNW4RiNFVYcw4-PhW4F_1liY.roa File: 3pnHNW4RiNFVYcw4-PhW4F_1liY.roa (raw, json) Hash identifier: pmk3rvBV7mm56ZfQYEoWgQ3/z6Y3AT0G7JNL/3pM1K8= Subject key identifier: DE:99:C7:35:6E:11:88:D1:55:61:CC:38:F8:F8:56:E0:5F:F5:96:26 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0BA8 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/3pnHNW4RiNFVYcw4-PhW4F_1liY.roa Signing time: Fri 01 Sep 2023 08:50:51 +0000 ROA not before: Fri 01 Sep 2023 08:50:51 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18412 IP address blocks: 2401:e180:8c00::/44 maxlen: 44 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2984 (0xba8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Sep 1 08:50:51 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=DE99C7356E1188D15561CC38F8F856E05FF59626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:df:f9:53:c8:4f:3d:ba:f7:4d:d4:40:bb:b2: 72:1b:c2:67:f2:25:80:ef:cc:2e:71:14:a9:53:37: 05:f3:9a:9e:f2:77:89:a5:60:be:e1:ea:4a:92:d2: 17:e9:6e:f3:1b:13:89:88:86:e1:c0:30:6d:07:74: e5:c6:ff:33:54:29:ad:ff:a2:c4:53:03:f5:bb:f5: ec:4c:ad:08:82:07:7f:70:a7:8b:8e:39:45:98:50: d1:5d:be:9a:4a:4d:6a:62:f7:99:7a:3c:12:7d:50: cc:f8:58:86:ab:08:38:d1:da:8d:c1:95:7c:ff:3e: ee:cf:86:89:6e:e0:58:f9:cb:3f:65:10:d0:1f:1d: 1a:bc:2a:39:46:86:d2:03:e8:e1:d4:58:ca:97:8b: d7:03:a5:fd:32:c3:28:7a:0f:87:f3:97:28:c1:b0: ab:c2:7a:4e:41:07:41:14:06:1c:73:71:c0:74:e6: cd:89:92:98:49:c8:33:71:41:ce:81:b9:71:04:22: 61:fe:59:cb:b4:92:53:fb:dc:94:04:f4:a4:ee:4b: 6f:56:4f:ab:11:e1:4f:04:b0:78:bd:2e:21:fc:ba: b5:82:c4:25:a6:dc:1d:cb:a2:bf:e6:97:12:6f:5b: 10:3a:ff:21:92:b0:3b:9a:75:6c:1a:45:63:32:45: 45:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:99:C7:35:6E:11:88:D1:55:61:CC:38:F8:F8:56:E0:5F:F5:96:26 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/3pnHNW4RiNFVYcw4-PhW4F_1liY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:e180:8c00::/44 Signature Algorithm: sha256WithRSAEncryption 39:0a:d4:0d:5b:e8:c5:dc:9a:42:28:e0:65:9e:c3:23:bc:a0: 0a:c0:33:9d:33:ef:8b:f2:45:a5:39:c8:a7:b0:03:08:9e:cc: da:90:9b:83:90:d5:92:4a:0a:63:33:dc:ef:df:af:2c:24:ff: dd:ac:09:98:80:0a:9f:64:23:61:34:85:b2:13:2f:eb:37:f1: 03:37:da:91:b6:7f:8b:ce:32:6e:cc:4a:5c:be:48:77:d3:68: ed:48:a6:32:18:1f:9f:b9:af:ed:da:5f:87:b4:44:f8:b8:94: 72:56:69:eb:3b:bf:ae:d0:c7:69:ab:ec:4a:eb:e5:ee:1c:44: 1a:2c:c1:9a:a4:c8:b0:97:3e:4c:1d:15:39:3a:32:33:ff:e5: c7:35:dc:cd:c8:16:af:04:05:81:8d:34:fb:3b:88:44:51:57: 91:9a:ed:9c:ff:ef:2e:95:ab:a6:8d:82:9d:70:2e:bb:38:c5: de:d1:29:2f:d1:08:84:83:19:6f:8d:19:c0:83:e7:f5:7a:8a: b6:67:d8:7a:d8:77:d2:bc:4f:2c:5f:c9:22:49:67:7c:73:dc: 58:a0:11:33:b1:6f:65:f7:58:b8:59:d9:bb:ad:c1:2e:b1:82: 74:6c:1f:51:64:ab:2e:58:30:7b:6a:fd:23:bc:eb:b9:85:80: 03:cf:24:da -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICC6gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzA5MDEw ODUwNTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKERFOTlDNzM1NkUxMTg4 RDE1NTYxQ0MzOEY4Rjg1NkUwNUZGNTk2MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDD3/lTyE89uvdN1EC7snIbwmfyJYDvzC5xFKlTNwXzmp7yd4ml YL7h6kqS0hfpbvMbE4mIhuHAMG0HdOXG/zNUKa3/osRTA/W79exMrQiCB39wp4uO OUWYUNFdvppKTWpi95l6PBJ9UMz4WIarCDjR2o3BlXz/Pu7Pholu4Fj5yz9lENAf HRq8KjlGhtID6OHUWMqXi9cDpf0ywyh6D4fzlyjBsKvCek5BB0EUBhxzccB05s2J kphJyDNxQc6BuXEEImH+Wcu0klP73JQE9KTuS29WT6sR4U8EsHi9LiH8urWCxCWm 3B3Lor/mlxJvWxA6/yGSsDuadWwaRWMyRUU1AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU3pnHNW4RiNFVYcw4+PhW4F/1liYwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzNwbkhOVzRSaU5GVlljdzQtUGhXNEZf MWxpWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkAeGAjAAw DQYJKoZIhvcNAQELBQADggEBADkK1A1b6MXcmkIo4GWewyO8oArAM50z74vyRaU5 yKewAwiezNqQm4OQ1ZJKCmMz3O/frywk/92sCZiACp9kI2E0hbITL+s38QM32pG2 f4vOMm7MSly+SHfTaO1IpjIYH5+5r+3aX4e0RPi4lHJWaes7v67Qx2mr7Err5e4c RBoswZqkyLCXPkwdFTk6MjP/5cc13M3IFq8EBYGNNPs7iERRV5Ga7Zz/7y6Vq6aN gp1wLrs4xd7RKS/RCISDGW+NGcCD5/V6irZn2HrYd9K8TyxfySJJZ3xz3FigETOx b2X3WLhZ2butwS6xgnRsH1Fkqy5YMHtq/SO867mFgAPPJNo= -----END CERTIFICATE-----Generated at Mon May 20 22:04:47 2024 by rpki-client on console-fra.rpki-client.org