$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/4NHmH1Ygkux9LZnK7oh0dtXtf2s.roa File: 4NHmH1Ygkux9LZnK7oh0dtXtf2s.roa (raw, json) Hash identifier: vHCPrximF0AEam537BLW8mNcxTIvbQ1qqGEJJVim27A= Subject key identifier: E0:D1:E6:1F:56:20:92:EC:7D:2D:99:CA:EE:88:74:76:D5:ED:7F:6B Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0D44 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/4NHmH1Ygkux9LZnK7oh0dtXtf2s.roa Signing time: Mon 15 Jan 2024 21:25:38 +0000 ROA not before: Mon 15 Jan 2024 21:25:38 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7482 IP address blocks: 223.22.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3396 (0xd44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:25:38 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E0D1E61F562092EC7D2D99CAEE887476D5ED7F6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bd:9d:31:15:fd:55:6e:0e:b9:5f:08:95:ff: c2:94:d7:20:dd:f5:8f:41:fa:f1:11:e7:d6:7f:e3: db:5f:e1:86:ad:cd:d3:74:af:de:d1:16:63:4c:c6: 37:c8:73:fd:47:46:e7:6e:42:4b:47:f7:58:da:e0: 6b:83:bc:c7:63:d4:02:d6:43:fe:6b:2d:9d:aa:21: b4:4c:e1:76:1e:11:ac:ee:8a:21:6f:07:e9:e4:97: 8c:5b:47:4a:8d:f7:b3:9c:6d:ea:f7:bb:67:94:09: 05:bb:c5:b1:58:fe:8f:28:df:4c:d8:d7:5e:2a:fd: 30:85:89:95:e6:d4:cb:fc:83:40:54:a4:d6:34:fc: 0f:e6:56:81:48:f4:69:1b:60:48:66:3d:f0:68:7c: 77:7c:c1:71:cd:8a:5a:99:a6:d3:74:8a:63:ec:e7: 52:9e:54:72:6c:75:c1:00:ad:71:fb:34:c2:49:37: 88:11:8c:44:d0:69:55:18:1f:1a:99:b2:72:fd:4f: 39:94:80:e9:e7:9a:76:bc:51:93:41:9d:45:94:b6: 2b:14:82:8c:85:80:d9:8c:d7:e0:18:41:c0:6f:37: bc:01:80:35:ae:9a:02:7e:33:29:0c:15:1d:b5:ec: 4a:98:67:a3:b6:ca:99:30:d5:73:68:47:bc:fe:8b: 80:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:D1:E6:1F:56:20:92:EC:7D:2D:99:CA:EE:88:74:76:D5:ED:7F:6B X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/4NHmH1Ygkux9LZnK7oh0dtXtf2s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.22.0.0/18 Signature Algorithm: sha256WithRSAEncryption 51:0a:d7:42:90:4b:f8:a3:46:ef:a9:22:f6:a1:aa:f3:5e:ea: eb:8b:33:1c:58:2e:34:da:31:15:8f:a2:07:86:f8:39:06:de: 35:a7:3a:f7:8d:e7:f1:be:11:bd:c7:08:27:96:8b:5a:e9:70: ad:78:eb:4b:df:5c:4d:1f:dc:e1:2e:55:27:66:ec:67:44:49: 89:94:ab:28:af:a5:9a:a2:73:e5:1a:08:47:ce:b5:27:fc:92: 80:d0:a0:4d:7b:73:21:11:e6:ff:ac:69:8f:4a:f8:ff:c2:d6: 9b:0f:87:f0:7d:83:5d:25:a9:ba:c5:ac:11:57:41:b3:54:17: 2d:c6:eb:0c:5d:e1:5d:26:72:02:e8:b3:cd:df:ea:45:3f:c8: af:5e:af:db:16:a7:b9:67:87:f0:c5:1a:f1:a0:63:54:76:0e: b8:1c:64:a1:7e:8b:39:3c:bd:23:b8:12:d6:53:b7:40:2c:12: b3:9a:59:be:89:aa:d0:a2:12:ed:e1:11:ff:27:f1:0c:ac:8d: e9:3a:69:d4:8d:37:21:e9:0e:cb:9b:f3:f9:2f:73:8f:7a:d0: 9c:99:d3:00:c3:00:6c:34:62:ce:ff:ff:6d:a8:84:04:c4:57: 73:8e:8f:12:65:3c:d9:9d:00:7d:47:2b:50:6a:97:30:5c:bb: 40:e7:b0:c8 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDUQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI1MzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEUwRDFFNjFGNTYyMDky RUM3RDJEOTlDQUVFODg3NDc2RDVFRDdGNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+vZ0xFf1Vbg65XwiV/8KU1yDd9Y9B+vER59Z/49tf4YatzdN0 r97RFmNMxjfIc/1HRuduQktH91ja4GuDvMdj1ALWQ/5rLZ2qIbRM4XYeEazuiiFv B+nkl4xbR0qN97Ocber3u2eUCQW7xbFY/o8o30zY114q/TCFiZXm1Mv8g0BUpNY0 /A/mVoFI9GkbYEhmPfBofHd8wXHNilqZptN0imPs51KeVHJsdcEArXH7NMJJN4gR jETQaVUYHxqZsnL9TzmUgOnnmna8UZNBnUWUtisUgoyFgNmM1+AYQcBvN7wBgDWu mgJ+MykMFR217EqYZ6O2ypkw1XNoR7z+i4ADAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU4NHmH1Ygkux9LZnK7oh0dtXtf2swHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzROSG1IMVlna3V4OUxabks3b2gwZHRY dGYycy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbfFgAwDQYJ KoZIhvcNAQELBQADggEBAFEK10KQS/ijRu+pIvahqvNe6uuLMxxYLjTaMRWPogeG +DkG3jWnOveN5/G+Eb3HCCeWi1rpcK1460vfXE0f3OEuVSdm7GdESYmUqyivpZqi c+UaCEfOtSf8koDQoE17cyER5v+saY9K+P/C1psPh/B9g10lqbrFrBFXQbNUFy3G 6wxd4V0mcgLos83f6kU/yK9er9sWp7lnh/DFGvGgY1R2DrgcZKF+izk8vSO4EtZT t0AsErOaWb6JqtCiEu3hEf8n8Qysjek6adSNNyHpDsub8/kvc4960JyZ0wDDAGw0 Ys7//22ohATEV3OOjxJlPNmdAH1HK1BqlzBcu0DnsMg= -----END CERTIFICATE-----Generated at Mon May 20 08:58:19 2024 by rpki-client on console-ams.rpki-client.org