$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/7_N6ip0oy_-i9o82CP79-fdsKdA.roa File: 7_N6ip0oy_-i9o82CP79-fdsKdA.roa (raw, json) Hash identifier: /Npglv0O7MvqPASCpIjoVHsMxOUe1qnizI3+DmXdKU8= Subject key identifier: EF:F3:7A:8A:9D:28:CB:FF:A2:F6:8F:36:08:FE:FD:F9:F7:6C:29:D0 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0BB5 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/7_N6ip0oy_-i9o82CP79-fdsKdA.roa Signing time: Fri 01 Sep 2023 08:50:54 +0000 ROA not before: Fri 01 Sep 2023 08:50:54 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18412 IP address blocks: 39.12.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2997 (0xbb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Sep 1 08:50:54 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=EFF37A8A9D28CBFFA2F68F3608FEFDF9F76C29D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:cb:59:c4:07:eb:1d:b3:63:80:2e:d6:a1:54: 3b:cc:cb:6b:63:00:f0:86:f4:e6:a3:31:db:a7:9e: 8c:0f:4f:41:3c:34:15:e8:c9:fb:d8:6e:d1:a7:ce: 1e:09:4f:a0:df:1b:ba:38:3c:33:38:3f:5e:e3:73: 33:08:e9:7c:27:68:df:b6:b1:07:64:5b:a5:37:c3: 06:a6:ee:3d:3e:6b:0d:82:76:3f:a4:23:92:87:26: 1e:5e:68:e1:a1:cc:78:0f:c5:eb:de:02:7e:2b:77: e5:11:19:ff:52:fa:f7:ec:e3:a6:3f:a3:c4:7a:43: c9:36:30:15:76:3d:a8:e2:c2:55:cf:fd:aa:a4:96: 8d:30:39:e6:35:fa:fe:be:95:10:c6:6e:ad:d1:9b: 86:5d:97:c1:b5:d5:9a:92:ec:3d:fe:d5:95:00:61: 32:a5:a2:94:92:e2:f5:68:30:a3:ee:04:07:7c:02: 82:a7:03:f4:70:f6:11:4b:e3:7b:84:fa:88:20:e3: d7:73:a2:b4:c1:7a:71:37:6f:bb:6d:a3:f4:50:67: be:a4:2c:74:a0:a8:64:e4:51:ad:4d:12:5a:c1:d5: c2:34:08:47:3a:62:26:19:06:1a:72:37:03:39:f2: fe:49:16:f1:f4:dd:1b:27:bd:37:46:9a:88:6a:d2: b6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:F3:7A:8A:9D:28:CB:FF:A2:F6:8F:36:08:FE:FD:F9:F7:6C:29:D0 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/7_N6ip0oy_-i9o82CP79-fdsKdA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.12.0.0/18 Signature Algorithm: sha256WithRSAEncryption 27:f8:db:f8:14:92:6e:7b:91:26:d6:a3:19:eb:4d:90:fd:88: 00:61:55:30:10:3c:24:3e:02:8d:e5:18:ef:5e:88:c3:21:fb: 2d:8f:d4:39:5d:f6:86:5b:4d:25:80:6b:1c:98:78:3d:84:c8: ed:54:15:88:c2:5d:28:12:14:62:a9:88:51:f5:4a:93:28:2d: 5f:a9:24:2d:f2:ed:f3:a5:b9:ef:6e:ea:3b:bc:d3:01:b7:fe: 78:0f:c7:5d:03:aa:df:67:89:dd:6b:57:0d:93:cb:d2:4e:35: b8:4b:35:de:9e:31:fa:6e:a9:03:d1:4f:d0:73:4d:3d:49:d4: da:50:e7:77:e1:8f:98:ff:82:bb:43:3d:78:9c:19:ab:36:b7: 30:76:18:71:33:9a:76:0d:bb:46:4e:9d:2a:54:6f:57:ae:92: c8:c9:a3:a3:35:c8:86:c1:20:07:8a:c4:c1:a9:58:d3:9c:a8: d4:d3:e0:7a:28:7f:13:c9:9d:3e:6e:07:28:51:de:6a:7f:fa: 2a:48:14:93:db:53:d9:86:73:4c:46:a9:1b:4c:a2:91:3d:20: 4a:c3:46:b1:14:10:f6:3f:1c:4f:0c:7b:0e:cc:00:6d:56:73: d7:ff:09:b9:1f:d9:ad:55:08:fa:4a:53:eb:9f:c9:0a:8f:ab: 2a:3b:f5:a1 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICC7UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzA5MDEw ODUwNTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVGRjM3QThBOUQyOENC RkZBMkY2OEYzNjA4RkVGREY5Rjc2QzI5RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCny1nEB+sds2OALtahVDvMy2tjAPCG9OajMdunnowPT0E8NBXo yfvYbtGnzh4JT6DfG7o4PDM4P17jczMI6XwnaN+2sQdkW6U3wwam7j0+aw2Cdj+k I5KHJh5eaOGhzHgPxeveAn4rd+URGf9S+vfs46Y/o8R6Q8k2MBV2PajiwlXP/aqk lo0wOeY1+v6+lRDGbq3Rm4Zdl8G11ZqS7D3+1ZUAYTKlopSS4vVoMKPuBAd8AoKn A/Rw9hFL43uE+ogg49dzorTBenE3b7tto/RQZ76kLHSgqGTkUa1NElrB1cI0CEc6 YiYZBhpyNwM58v5JFvH03RsnvTdGmohq0rb3AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU7/N6ip0oy/+i9o82CP79+fdsKdAwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzdfTjZpcDBveV8taTlvODJDUDc5LWZk c0tkQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAYnDAAwDQYJ KoZIhvcNAQELBQADggEBACf42/gUkm57kSbWoxnrTZD9iABhVTAQPCQ+Ao3lGO9e iMMh+y2P1Dld9oZbTSWAaxyYeD2EyO1UFYjCXSgSFGKpiFH1SpMoLV+pJC3y7fOl ue9u6ju80wG3/ngPx10Dqt9nid1rVw2Ty9JONbhLNd6eMfpuqQPRT9BzTT1J1NpQ 53fhj5j/grtDPXicGas2tzB2GHEzmnYNu0ZOnSpUb1euksjJo6M1yIbBIAeKxMGp WNOcqNTT4HoofxPJnT5uByhR3mp/+ipIFJPbU9mGc0xGqRtMopE9IErDRrEUEPY/ HE8Mew7MAG1Wc9f/Cbkf2a1VCPpKU+ufyQqPqyo79aE= -----END CERTIFICATE-----Generated at Mon May 20 08:32:39 2024 by rpki-client on console-fra.rpki-client.org