$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/5lTGNa3WRM8vQeI9nUtylWNQZ6Q.roa File: 5lTGNa3WRM8vQeI9nUtylWNQZ6Q.roa (raw, json) Hash identifier: /DCh3SJWiZrN6YAUj1eVX4T+d1bIrhP0v4DGWVlvKgg= Subject key identifier: E6:54:C6:35:AD:D6:44:CF:2F:41:E2:3D:9D:4B:72:95:63:50:67:A4 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0C76 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/5lTGNa3WRM8vQeI9nUtylWNQZ6Q.roa Signing time: Mon 15 Jan 2024 21:09:38 +0000 ROA not before: Mon 15 Jan 2024 21:09:38 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24154 IP address blocks: 210.200.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3190 (0xc76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:09:38 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E654C635ADD644CF2F41E23D9D4B7295635067A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:c4:24:48:14:f7:ce:aa:78:40:3f:65:3d:df: df:a3:61:70:87:2b:97:87:a1:0e:04:c2:a1:b7:a5: 5b:3d:8d:93:5d:34:64:e0:4f:55:1d:f2:08:20:1a: 4a:33:10:99:ad:e4:38:c9:e4:0a:7d:6f:fd:d6:08: 6c:52:e4:2f:e7:11:42:59:69:5f:82:2f:92:91:96: eb:e1:05:59:09:bc:28:31:53:06:d9:91:2b:fd:6f: 50:9b:16:7e:67:f5:5d:ce:8c:08:36:d5:41:dd:e6: 2f:e0:c4:72:33:5a:01:c9:22:42:01:a4:ea:89:e5: 56:77:ea:0b:7e:cc:dc:f3:a6:fd:03:55:23:99:49: 2c:8a:41:b0:9b:19:af:20:06:a6:a6:35:a1:73:a7: 5f:8e:94:c0:b1:cb:33:a7:e9:d3:0b:2b:b9:7e:4d: 43:6a:69:b2:d6:0f:b2:ba:9d:31:25:0d:23:e2:f4: 9f:81:b4:02:99:bb:3c:ba:f4:c3:0c:c3:fe:fd:9c: a0:da:aa:da:35:cb:20:7b:04:f3:61:9d:f1:fe:f0: a6:c1:91:b4:0e:1d:71:f6:2e:4f:ce:77:5f:5a:94: c6:f0:84:54:de:47:cc:85:d4:dd:d6:6a:9e:71:98: f3:80:ba:36:23:86:36:ec:05:9f:05:41:be:4a:f2: c5:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:54:C6:35:AD:D6:44:CF:2F:41:E2:3D:9D:4B:72:95:63:50:67:A4 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/5lTGNa3WRM8vQeI9nUtylWNQZ6Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.200.4.0/22 Signature Algorithm: sha256WithRSAEncryption 54:59:f3:f9:4f:1c:fa:d3:43:d9:50:26:75:e6:23:77:34:03: 99:e7:c1:6f:e7:c9:d6:85:6e:0c:85:db:cb:e1:a2:3f:3b:16: e8:86:7c:8f:9c:b1:a8:96:90:0d:ba:a6:86:9a:bf:05:02:4e: 59:a3:86:ca:58:21:f8:01:d3:fb:aa:fc:16:85:50:b9:a4:0b: 94:71:47:fe:ae:27:5e:45:34:53:1a:0b:06:5d:4a:14:3c:79: f7:5e:fa:4c:33:48:9a:f9:4d:cb:9d:4c:05:54:83:e0:d5:ef: e4:45:52:c5:ec:88:ef:d1:d0:fe:9a:8f:22:88:04:0d:cf:ed: 38:4f:c7:ae:d9:0d:42:63:dd:d9:a7:d3:bc:dc:c6:a7:13:af: d2:a3:45:4e:5a:cd:1b:f2:aa:79:0d:28:23:f6:c0:b5:e8:c0: 01:f3:d2:ba:f0:a4:a1:37:a0:a3:d8:6f:0c:68:d9:fc:ab:80: 0b:db:ab:08:87:63:f8:98:25:ea:68:26:88:62:71:dd:55:27: 3f:3a:2a:36:02:64:32:fc:a9:e7:41:b3:99:5f:6a:93:e1:6c: c1:6f:8f:f7:60:cf:85:03:1f:84:5e:02:5d:2b:3f:1a:b0:23: fb:3f:3b:05:69:1e:e9:79:8e:9f:80:fb:ba:48:04:9a:ad:da: 48:49:30:06 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDHYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTA5MzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU2NTRDNjM1QURENjQ0 Q0YyRjQxRTIzRDlENEI3Mjk1NjM1MDY3QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYxCRIFPfOqnhAP2U939+jYXCHK5eHoQ4EwqG3pVs9jZNdNGTg T1Ud8gggGkozEJmt5DjJ5Ap9b/3WCGxS5C/nEUJZaV+CL5KRluvhBVkJvCgxUwbZ kSv9b1CbFn5n9V3OjAg21UHd5i/gxHIzWgHJIkIBpOqJ5VZ36gt+zNzzpv0DVSOZ SSyKQbCbGa8gBqamNaFzp1+OlMCxyzOn6dMLK7l+TUNqabLWD7K6nTElDSPi9J+B tAKZuzy69MMMw/79nKDaqto1yyB7BPNhnfH+8KbBkbQOHXH2Lk/Od19alMbwhFTe R8yF1N3Wap5xmPOAujYjhjbsBZ8FQb5K8sXTAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU5lTGNa3WRM8vQeI9nUtylWNQZ6QwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzVsVEdOYTNXUk04dlFlSTluVXR5bFdO UVo2US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALSyAQwDQYJ KoZIhvcNAQELBQADggEBAFRZ8/lPHPrTQ9lQJnXmI3c0A5nnwW/nydaFbgyF28vh oj87FuiGfI+csaiWkA26poaavwUCTlmjhspYIfgB0/uq/BaFULmkC5RxR/6uJ15F NFMaCwZdShQ8efde+kwzSJr5TcudTAVUg+DV7+RFUsXsiO/R0P6ajyKIBA3P7ThP x67ZDUJj3dmn07zcxqcTr9KjRU5azRvyqnkNKCP2wLXowAHz0rrwpKE3oKPYbwxo 2fyrgAvbqwiHY/iYJepoJohicd1VJz86KjYCZDL8qedBs5lfapPhbMFvj/dgz4UD H4ReAl0rPxqwI/s/OwVpHul5jp+A+7pIBJqt2khJMAY= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:00 2024 by rpki-client on console-fra.rpki-client.org