$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/88fUDKvIm9QsRObav0GyN71ISCA.roa File: 88fUDKvIm9QsRObav0GyN71ISCA.roa (raw, json) Hash identifier: +mxIzPfzEvLl1I72+CfokOhyQ/VHHDdf6w9irnBzJvk= Subject key identifier: F3:C7:D4:0C:AB:C8:9B:D4:2C:44:E6:DA:BF:41:B2:37:BD:48:48:20 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0CD8 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/88fUDKvIm9QsRObav0GyN71ISCA.roa Signing time: Mon 15 Jan 2024 21:11:28 +0000 ROA not before: Mon 15 Jan 2024 21:11:28 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24154 IP address blocks: 210.63.192.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3288 (0xcd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:11:28 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F3C7D40CABC89BD42C44E6DABF41B237BD484820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c7:73:c7:c5:f7:2b:7a:66:7e:c2:51:2a:02: c6:12:65:49:10:76:b3:e0:fb:12:28:16:d6:88:0b: 90:b8:c4:bd:02:6b:d8:b5:19:de:25:af:dd:1e:41: 91:b5:b0:84:08:b1:67:ab:f2:e8:24:03:4b:08:4e: 62:2e:17:cd:63:8a:f7:31:e7:da:9e:8a:ae:e1:c6: 10:02:a6:f8:eb:f4:ae:dd:04:e0:f9:56:c5:4b:0b: da:16:3e:d5:3e:eb:30:a3:e6:45:fe:f5:cf:02:77: 05:2c:35:00:73:20:f3:f1:7a:f0:ca:ed:51:d9:60: 6e:32:2a:2f:68:a9:65:87:ae:23:09:b3:be:80:9c: 90:00:04:08:b7:40:21:6c:cf:7f:9d:13:14:8c:1c: 72:66:0c:f6:24:c8:85:4c:db:fc:7b:c1:88:01:7d: 40:b7:78:85:0c:b1:e9:ab:58:af:fd:e9:b4:48:05: e5:77:c9:1d:3e:30:f2:8c:83:fe:8d:5d:e2:ae:2e: a0:78:d0:f2:b8:02:5c:d1:7d:c8:01:18:62:4a:5c: 06:e9:c9:3b:48:ca:f6:71:25:44:f4:d9:26:6a:fa: 2b:72:98:30:1c:be:26:f2:2b:09:f7:b7:78:85:dc: a4:07:65:08:b3:1c:f4:24:b1:13:f3:c8:de:2c:ca: 87:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:C7:D4:0C:AB:C8:9B:D4:2C:44:E6:DA:BF:41:B2:37:BD:48:48:20 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/88fUDKvIm9QsRObav0GyN71ISCA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.192.0/21 Signature Algorithm: sha256WithRSAEncryption 22:3e:e1:e8:bf:a9:51:7d:b5:87:41:7d:3e:92:fc:66:29:49: 2a:ef:86:73:43:9a:c2:76:67:1c:8c:8f:c4:05:13:97:fb:f5: 3a:74:47:16:b3:d6:f2:18:3e:49:ee:ff:e7:b2:ed:df:e1:52: 24:a9:db:00:e4:2c:0e:d6:bb:48:26:a0:b2:14:2b:57:fa:8e: 16:85:ce:6e:90:d1:81:fb:43:b2:b4:cd:22:34:5f:d6:cf:c3: 1f:be:50:cb:26:04:20:b6:1c:ca:3e:63:4b:c8:79:d2:db:f7: 2a:59:03:4d:6f:21:08:c2:18:46:6c:5f:3d:83:ae:9f:ec:81: 63:64:29:bf:78:4e:ad:1f:e1:d5:c4:b4:49:23:10:3c:a0:43: 0f:64:9d:50:9b:59:b0:d8:c0:e0:43:6c:d0:3b:e5:b0:cc:bb: b9:1d:0f:e8:da:c1:4e:b9:f2:4e:2b:ca:e1:a9:82:03:a1:af: 84:1f:2f:ba:50:a3:78:c9:47:db:2b:93:25:61:f5:85:99:50: b5:a6:33:79:c8:84:79:5c:4f:45:37:2c:de:de:dc:6d:53:15: df:81:dc:30:14:4b:b9:1b:2a:21:5c:2e:c2:d2:88:7a:3e:e9: 92:fd:03:62:ff:be:3e:b9:10:3b:c9:97:6c:33:60:b4:fe:6a: 1f:7d:55:9e -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDNgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTExMjhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEYzQzdENDBDQUJDODlC RDQyQzQ0RTZEQUJGNDFCMjM3QkQ0ODQ4MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcx3PHxfcremZ+wlEqAsYSZUkQdrPg+xIoFtaIC5C4xL0Ca9i1 Gd4lr90eQZG1sIQIsWer8ugkA0sITmIuF81jivcx59qeiq7hxhACpvjr9K7dBOD5 VsVLC9oWPtU+6zCj5kX+9c8CdwUsNQBzIPPxevDK7VHZYG4yKi9oqWWHriMJs76A nJAABAi3QCFsz3+dExSMHHJmDPYkyIVM2/x7wYgBfUC3eIUMsemrWK/96bRIBeV3 yR0+MPKMg/6NXeKuLqB40PK4AlzRfcgBGGJKXAbpyTtIyvZxJUT02SZq+itymDAc vibyKwn3t3iF3KQHZQizHPQksRPzyN4syofNAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU88fUDKvIm9QsRObav0GyN71ISCAwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzg4ZlVES3ZJbTlRc1JPYmF2MEd5Tjcx SVNDQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPSP8AwDQYJ KoZIhvcNAQELBQADggEBACI+4ei/qVF9tYdBfT6S/GYpSSrvhnNDmsJ2ZxyMj8QF E5f79Tp0Rxaz1vIYPknu/+ey7d/hUiSp2wDkLA7Wu0gmoLIUK1f6jhaFzm6Q0YH7 Q7K0zSI0X9bPwx++UMsmBCC2HMo+Y0vIedLb9ypZA01vIQjCGEZsXz2Drp/sgWNk Kb94Tq0f4dXEtEkjEDygQw9knVCbWbDYwOBDbNA75bDMu7kdD+jawU658k4ryuGp ggOhr4QfL7pQo3jJR9srkyVh9YWZULWmM3nIhHlcT0U3LN7e3G1TFd+B3DAUS7kb KiFcLsLSiHo+6ZL9A2L/vj65EDvJl2wzYLT+ah99VZ4= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:00 2024 by rpki-client on console-fra.rpki-client.org