$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/5sSAcQ9SFmerb5auQjdMemBOXVw.roa File: 5sSAcQ9SFmerb5auQjdMemBOXVw.roa (raw, json) Hash identifier: MMz5Sm2bU5ZF7LZtqPMSD8a/IaC/TvNuN3cj3qah/K0= Subject key identifier: E6:C4:80:71:0F:52:16:67:AB:6F:96:AE:42:37:4C:7A:60:4E:5D:5C Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0C64 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/5sSAcQ9SFmerb5auQjdMemBOXVw.roa Signing time: Mon 15 Jan 2024 21:09:20 +0000 ROA not before: Mon 15 Jan 2024 21:09:20 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9311 IP address blocks: 203.79.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3172 (0xc64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:09:20 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E6C480710F521667AB6F96AE42374C7A604E5D5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:06:b3:be:49:8b:18:b3:e0:58:d0:eb:21:20: 20:7a:3f:fd:ac:7f:31:df:cf:90:9a:ac:7d:6f:41: 38:51:c9:f3:22:51:9c:40:95:ea:58:74:a9:31:83: e7:e1:6d:d7:4b:b6:35:71:28:b6:c2:b7:df:f7:53: 7f:f3:82:e9:f2:c9:e8:66:9c:1c:56:6b:1d:d1:7a: 66:39:50:2c:9f:52:25:86:9e:5c:de:b2:ad:4d:60: 09:db:9d:8b:e5:61:00:86:d9:78:e6:2e:f0:21:c5: 88:77:47:0e:ab:81:ae:85:2d:27:ca:a5:0f:29:54: 2c:9d:8e:df:86:ec:7f:41:45:6c:bb:93:fd:95:0a: e7:62:9f:1a:bf:84:ac:42:f7:df:3d:d4:a3:5b:ed: f9:fb:1e:70:40:ef:08:d6:23:9c:11:71:64:a5:97: 3a:75:8e:0e:0f:b4:74:32:ba:ad:76:3c:d0:fc:3c: 4c:eb:ba:bd:57:43:ba:96:07:49:db:8e:4c:91:a0: d3:37:67:a5:a1:d7:98:79:92:5a:68:49:dc:7d:db: 2f:0c:8a:c3:a1:e2:42:b3:9c:90:30:7f:7e:1c:d9: da:3f:10:ec:ff:3e:7d:67:b4:d4:bb:d5:e7:18:56: 56:47:5b:b3:fb:4d:a6:78:cc:30:35:66:90:f6:ed: 6b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:C4:80:71:0F:52:16:67:AB:6F:96:AE:42:37:4C:7A:60:4E:5D:5C X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/5sSAcQ9SFmerb5auQjdMemBOXVw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.79.220.0/22 Signature Algorithm: sha256WithRSAEncryption ab:23:e5:18:1b:e6:1d:0e:09:8c:08:09:55:6e:2a:77:cc:e1: 95:4c:46:a5:9d:cc:f1:ef:e4:58:72:08:1e:03:57:ff:8e:84: 21:03:68:8c:8f:39:44:2e:8a:63:34:6e:db:15:11:7d:52:b5: d9:b5:d7:f8:6b:47:df:d8:d7:66:c8:ac:4d:55:53:4a:ee:61: 46:63:f6:ab:8b:2e:7d:da:ee:83:eb:ac:04:3a:44:0f:36:70: 6c:0b:9a:8b:24:5f:1f:eb:70:be:22:2b:e4:58:8a:58:d7:a4: 6f:03:0d:0b:26:54:ca:ad:1e:27:54:f8:6e:f2:1c:9a:ba:a4: f7:bf:68:bf:8a:d8:44:13:33:be:30:37:4e:38:f1:00:71:56: a3:7b:25:75:29:4c:8a:97:1e:52:65:48:cf:cb:e6:06:17:3d: 78:48:6a:74:06:7f:37:4b:40:75:29:b5:3d:c8:56:c7:75:a7: 49:7e:43:14:05:37:bb:0b:93:c9:71:d1:5b:28:69:1b:6f:83: ce:f1:39:30:29:42:59:48:24:a4:13:fd:f3:2c:05:d5:6a:a9: e9:49:af:b2:5d:a3:94:17:06:e1:7a:c6:d8:2f:3f:cf:a3:3a: 89:94:ad:d2:93:b3:54:21:11:0a:a2:b8:68:79:ce:8a:53:eb: 22:30:2d:03 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDGQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTA5MjBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU2QzQ4MDcxMEY1MjE2 NjdBQjZGOTZBRTQyMzc0QzdBNjA0RTVENUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSBrO+SYsYs+BY0OshICB6P/2sfzHfz5CarH1vQThRyfMiUZxA lepYdKkxg+fhbddLtjVxKLbCt9/3U3/zgunyyehmnBxWax3RemY5UCyfUiWGnlze sq1NYAnbnYvlYQCG2XjmLvAhxYh3Rw6rga6FLSfKpQ8pVCydjt+G7H9BRWy7k/2V Cudinxq/hKxC99891KNb7fn7HnBA7wjWI5wRcWSllzp1jg4PtHQyuq12PND8PEzr ur1XQ7qWB0nbjkyRoNM3Z6Wh15h5klpoSdx92y8MisOh4kKznJAwf34c2do/EOz/ Pn1ntNS71ecYVlZHW7P7TaZ4zDA1ZpD27WsZAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU5sSAcQ9SFmerb5auQjdMemBOXVwwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzVzU0FjUTlTRm1lcmI1YXVRamRNZW1C T1hWdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALLT9wwDQYJ KoZIhvcNAQELBQADggEBAKsj5Rgb5h0OCYwICVVuKnfM4ZVMRqWdzPHv5FhyCB4D V/+OhCEDaIyPOUQuimM0btsVEX1Stdm11/hrR9/Y12bIrE1VU0ruYUZj9quLLn3a 7oPrrAQ6RA82cGwLmoskXx/rcL4iK+RYiljXpG8DDQsmVMqtHidU+G7yHJq6pPe/ aL+K2EQTM74wN0448QBxVqN7JXUpTIqXHlJlSM/L5gYXPXhIanQGfzdLQHUptT3I Vsd1p0l+QxQFN7sLk8lx0VsoaRtvg87xOTApQllIJKQT/fMsBdVqqelJr7Jdo5QX BuF6xtgvP8+jOomUrdKTs1QhEQqiuGh5zopT6yIwLQM= -----END CERTIFICATE-----Generated at Mon May 20 08:32:39 2024 by rpki-client on console-fra.rpki-client.org