$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/5fqCuPBz-LCVXJvrqVqgwSHgOAc.roa File: 5fqCuPBz-LCVXJvrqVqgwSHgOAc.roa (raw, json) Hash identifier: R33D/6lveTCxTwEH3l/m5ziv9urhGsQFcFtBksaMwKw= Subject key identifier: E5:FA:82:B8:F0:73:F8:B0:95:5C:9B:EB:A9:5A:A0:C1:21:E0:38:07 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0D36 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/5fqCuPBz-LCVXJvrqVqgwSHgOAc.roa Signing time: Mon 15 Jan 2024 21:25:19 +0000 ROA not before: Mon 15 Jan 2024 21:25:19 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7482 IP address blocks: 210.202.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3382 (0xd36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:25:19 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E5FA82B8F073F8B0955C9BEBA95AA0C121E03807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4d:b9:b2:c9:93:5b:fe:06:81:d3:20:a9:11: c1:02:6e:77:02:63:fb:43:65:af:06:bd:d4:4e:e0: 13:9f:05:56:ae:24:7c:4a:df:8f:76:00:ed:bf:4d: c9:ed:ce:9b:c0:36:62:14:fc:26:4f:67:f6:67:4c: 8b:21:ef:95:36:39:b2:49:67:f3:b2:ae:f5:47:b4: 6d:ac:df:e9:aa:f8:c3:ab:fd:0f:62:aa:c9:d5:23: a7:6b:61:07:5a:82:4c:86:6c:45:ee:6e:88:e9:ce: 0d:a6:fc:a9:f8:23:f4:d6:0b:c0:90:b2:98:b7:be: 35:a9:13:55:0b:0c:e6:22:a8:1a:79:98:76:66:77: 71:b8:49:d7:cf:3f:c9:a3:18:ba:fa:3d:c0:96:e3: c5:3b:79:a1:7c:5e:65:da:55:2c:95:46:63:e3:53: ae:6e:97:10:8b:99:7b:c3:55:84:c4:11:63:8f:af: 13:74:63:99:0e:78:70:b2:23:6a:24:3a:fb:69:f8: 81:1e:52:6b:6f:b6:24:96:76:12:03:c4:d7:e9:a6: 62:5c:69:12:58:c8:71:29:a4:8b:e6:3a:f3:d6:59: 74:02:13:c5:fe:eb:c5:e5:c8:97:c2:6d:d4:66:00: 75:32:8a:05:31:1f:c4:2c:44:13:33:7c:5a:fd:50: 1f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:FA:82:B8:F0:73:F8:B0:95:5C:9B:EB:A9:5A:A0:C1:21:E0:38:07 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/5fqCuPBz-LCVXJvrqVqgwSHgOAc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.202.64.0/18 Signature Algorithm: sha256WithRSAEncryption 50:62:11:8b:8e:35:67:b7:48:52:d2:f3:05:c1:f1:f2:30:6b: d2:98:93:2e:b5:0b:c3:52:d3:df:f1:71:66:66:0a:cf:d0:8f: 54:56:f1:23:9e:26:e8:1a:d7:16:98:3d:f9:af:a7:4f:3d:b2: e3:95:3b:3e:7f:5f:cd:2d:aa:d1:82:db:67:31:39:78:92:20: f2:58:ef:74:9d:40:11:a3:1c:c5:86:f2:15:0f:43:9b:f0:c1: 52:6d:ab:9e:56:d4:7a:62:e4:c3:02:83:9d:ac:35:93:51:28: c8:b8:32:ad:73:37:c4:e9:3f:6d:f9:6c:75:0c:75:30:f1:54: a1:22:e7:87:b2:17:f6:e9:94:da:42:32:77:1d:d5:65:60:08: 7c:84:24:d6:56:8a:83:5c:b3:b9:64:2c:4f:a6:61:ac:40:f3: 59:55:22:7f:b6:fd:b0:62:67:84:b1:a5:42:1f:9c:9a:1b:01: e8:4f:cb:b3:63:48:c5:7e:c3:5f:93:5f:6c:03:4f:c2:81:81: c5:00:1c:b3:53:b6:f7:cf:0e:2c:d0:00:54:46:57:10:48:b6: 53:2b:66:4b:3f:8a:d8:e2:c6:c7:31:37:74:c7:21:91:fe:1e: 33:25:9c:75:c3:96:d8:82:05:57:d8:8b:e3:12:85:4f:91:ae: 55:8c:ee:c7 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDTYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI1MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU1RkE4MkI4RjA3M0Y4 QjA5NTVDOUJFQkE5NUFBMEMxMjFFMDM4MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDATbmyyZNb/gaB0yCpEcECbncCY/tDZa8GvdRO4BOfBVauJHxK 3492AO2/TcntzpvANmIU/CZPZ/ZnTIsh75U2ObJJZ/OyrvVHtG2s3+mq+MOr/Q9i qsnVI6drYQdagkyGbEXubojpzg2m/Kn4I/TWC8CQspi3vjWpE1ULDOYiqBp5mHZm d3G4SdfPP8mjGLr6PcCW48U7eaF8XmXaVSyVRmPjU65ulxCLmXvDVYTEEWOPrxN0 Y5kOeHCyI2okOvtp+IEeUmtvtiSWdhIDxNfppmJcaRJYyHEppIvmOvPWWXQCE8X+ 68XlyJfCbdRmAHUyigUxH8QsRBMzfFr9UB/nAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU5fqCuPBz+LCVXJvrqVqgwSHgOAcwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzVmcUN1UEJ6LUxDVlhKdnJxVnFnd1NI Z09BYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSykAwDQYJ KoZIhvcNAQELBQADggEBAFBiEYuONWe3SFLS8wXB8fIwa9KYky61C8NS09/xcWZm Cs/Qj1RW8SOeJuga1xaYPfmvp089suOVOz5/X80tqtGC22cxOXiSIPJY73SdQBGj HMWG8hUPQ5vwwVJtq55W1Hpi5MMCg52sNZNRKMi4Mq1zN8TpP235bHUMdTDxVKEi 54eyF/bplNpCMncd1WVgCHyEJNZWioNcs7lkLE+mYaxA81lVIn+2/bBiZ4SxpUIf nJobAehPy7NjSMV+w1+TX2wDT8KBgcUAHLNTtvfPDizQAFRGVxBItlMrZks/itji xscxN3THIZH+HjMlnHXDltiCBVfYi+MShU+RrlWM7sc= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:00 2024 by rpki-client on console-fra.rpki-client.org