$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/6D1ceYFVIy7yAstauqqlz7tzywU.roa File: 6D1ceYFVIy7yAstauqqlz7tzywU.roa (raw, json) Hash identifier: fPgDE/EIdY3hKwzZNWz8W5OQUu5h4jM2bbSHGunt43g= Subject key identifier: E8:3D:5C:79:81:55:23:2E:F2:02:CB:5A:BA:AA:A5:CF:BB:73:CB:05 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0C30 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/6D1ceYFVIy7yAstauqqlz7tzywU.roa Signing time: Mon 15 Jan 2024 21:08:28 +0000 ROA not before: Mon 15 Jan 2024 21:08:28 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7482 IP address blocks: 60.244.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3120 (0xc30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:08:28 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E83D5C798155232EF202CB5ABAAAA5CFBB73CB05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4d:e5:23:eb:5d:6c:2e:09:8f:70:80:9f:f4: 62:93:f4:e6:78:13:68:58:2e:06:66:6b:18:bf:f7: 09:b5:38:7a:21:e8:20:5d:f6:fd:c0:0f:26:7a:35: 09:4f:e8:23:ef:ac:26:b8:6a:43:0b:64:d1:75:73: 0e:9f:cd:15:9f:3c:86:8a:9c:ff:ac:c5:b0:cc:91: f8:69:34:0a:39:6a:ac:5c:4e:8d:57:4d:81:aa:7d: d4:84:39:e3:d6:a6:8a:e8:1c:5e:24:1f:70:31:1b: d3:e7:55:8e:2f:85:9f:8a:3b:b6:a8:cb:fa:4a:9a: 1a:8b:3a:3f:29:00:c8:82:4d:a8:fb:2e:16:15:b4: 5d:3e:c8:c7:c6:c3:98:79:34:7d:d5:c4:63:e4:b0: fc:7b:b7:29:c2:05:b1:d2:53:3a:e3:64:96:fa:6b: a2:a2:26:1e:44:e5:d7:3e:c4:9e:c6:77:17:a0:d1: 33:ef:5d:42:db:d2:07:f8:6d:a7:2d:dd:4f:db:47: e0:79:52:ea:7e:b7:cb:d8:07:e0:63:17:c6:b4:6f: f1:65:48:be:eb:6d:30:04:8e:43:f5:87:78:d1:94: f0:19:ec:96:f0:c3:17:ab:a9:c9:73:a0:d1:75:e6: c4:72:1c:22:e3:33:08:8e:b1:2f:3a:92:dd:52:9a: eb:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:3D:5C:79:81:55:23:2E:F2:02:CB:5A:BA:AA:A5:CF:BB:73:CB:05 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/6D1ceYFVIy7yAstauqqlz7tzywU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.244.0.0/17 Signature Algorithm: sha256WithRSAEncryption 4d:f9:fe:9a:22:b1:f8:03:3e:4b:14:89:71:13:1e:b1:71:2c: 05:70:29:0f:e7:32:34:f7:a9:ce:42:2f:64:a9:df:ae:ac:3b: 91:c6:48:d3:d1:86:12:92:09:d3:4a:30:ee:cd:57:a4:51:5c: bc:a1:43:15:bf:15:30:28:60:4d:45:4b:08:88:dd:30:01:7e: 43:19:b5:96:1e:9c:44:fe:d6:f0:c0:de:73:05:cf:ba:26:16: 87:33:80:a0:f9:17:29:ba:e7:13:39:a5:e8:a7:7f:ff:1f:28: 97:ac:79:a1:2e:ea:d6:34:6d:65:ea:9c:a8:a9:9b:23:e7:98: e8:79:df:d4:4a:63:86:23:2a:49:04:8c:7d:26:ce:af:02:fb: 28:be:fd:e8:e7:36:fa:bf:d3:f9:1c:d9:55:9a:68:86:7f:93: f4:e8:6d:73:f4:24:50:a5:7d:2e:22:64:97:52:0b:4f:79:08: 7e:d0:05:52:a0:9e:09:c9:22:21:d4:20:8e:95:8b:98:ef:54: e4:85:d8:1e:fe:11:60:8d:ca:9b:22:0d:1d:ab:65:73:d4:d0: 40:b0:7d:4a:e4:0b:67:3b:8e:db:dc:5b:80:39:81:d0:2a:c5: 6b:5e:37:16:32:90:9c:a1:23:78:e5:da:50:4f:ee:26:49:16: ea:e1:b6:a1 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDDAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTA4MjhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU4M0Q1Qzc5ODE1NTIz MkVGMjAyQ0I1QUJBQUFBNUNGQkI3M0NCMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBTeUj611sLgmPcICf9GKT9OZ4E2hYLgZmaxi/9wm1OHoh6CBd 9v3ADyZ6NQlP6CPvrCa4akMLZNF1cw6fzRWfPIaKnP+sxbDMkfhpNAo5aqxcTo1X TYGqfdSEOePWporoHF4kH3AxG9PnVY4vhZ+KO7aoy/pKmhqLOj8pAMiCTaj7LhYV tF0+yMfGw5h5NH3VxGPksPx7tynCBbHSUzrjZJb6a6KiJh5E5dc+xJ7Gdxeg0TPv XULb0gf4bact3U/bR+B5Uup+t8vYB+BjF8a0b/FlSL7rbTAEjkP1h3jRlPAZ7Jbw wxerqclzoNF15sRyHCLjMwiOsS86kt1SmutbAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU6D1ceYFVIy7yAstauqqlz7tzywUwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzZEMWNlWUZWSXk3eUFzdGF1cXFsejd0 enl3VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc89AAwDQYJ KoZIhvcNAQELBQADggEBAE35/poisfgDPksUiXETHrFxLAVwKQ/nMjT3qc5CL2Sp 366sO5HGSNPRhhKSCdNKMO7NV6RRXLyhQxW/FTAoYE1FSwiI3TABfkMZtZYenET+ 1vDA3nMFz7omFoczgKD5Fym65xM5peinf/8fKJeseaEu6tY0bWXqnKipmyPnmOh5 39RKY4YjKkkEjH0mzq8C+yi+/ejnNvq/0/kc2VWaaIZ/k/TobXP0JFClfS4iZJdS C095CH7QBVKgngnJIiHUII6Vi5jvVOSF2B7+EWCNypsiDR2rZXPU0ECwfUrkC2c7 jtvcW4A5gdAqxWteNxYykJyhI3jl2lBP7iZJFurhtqE= -----END CERTIFICATE-----Generated at Mon Jun 3 15:52:33 2024 by rpki-client on console-ams.rpki-client.org