$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/8cDD5q3N5ozBZxjjp29of6W_Irg.roa File: 8cDD5q3N5ozBZxjjp29of6W_Irg.roa (raw, json) Hash identifier: vpKDhxc6h9Osb47VO9XcKheobe/GBs5Vd1YMDU7YmME= Subject key identifier: F1:C0:C3:E6:AD:CD:E6:8C:C1:67:18:E3:A7:6F:68:7F:A5:BF:22:B8 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0DB8 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/8cDD5q3N5ozBZxjjp29of6W_Irg.roa Signing time: Mon 15 Jan 2024 21:30:23 +0000 ROA not before: Mon 15 Jan 2024 21:30:23 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18419 IP address blocks: 124.218.108.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3512 (0xdb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:30:23 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F1C0C3E6ADCDE68CC16718E3A76F687FA5BF22B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:06:a1:8b:d7:58:8d:08:b4:a7:c8:0c:a0:11: 3a:63:87:fb:94:49:dc:3c:d4:77:1e:75:00:ac:04: 7c:97:89:1a:d3:27:27:55:43:71:8a:6d:d9:ec:64: 86:f7:7d:8e:83:12:c4:9f:22:3e:07:5d:38:2b:31: 1d:32:12:28:5e:41:b0:3b:60:ab:73:bb:52:bf:a6: a0:a3:45:e8:20:f6:19:e3:92:81:1d:f9:17:96:e9: 1d:52:cb:34:ff:08:84:55:f4:47:82:0f:04:c6:d1: 63:74:fd:30:45:9f:9a:28:df:da:ac:0b:94:d3:12: de:82:d4:7a:d1:d6:9f:e0:03:dd:a5:b8:c4:54:b4: d0:0e:d6:01:9b:0f:9e:a6:30:d2:25:9a:9f:87:0d: b7:22:8e:ca:ac:28:a0:8e:93:6b:22:71:70:da:d7: ff:8f:8a:1c:51:67:37:21:a7:18:05:a3:6f:d2:cd: 5a:32:21:54:29:8c:73:cf:ad:64:8d:b5:df:ae:c8: eb:cd:13:87:7c:c8:19:34:46:f3:3d:c1:1c:d7:88: 84:23:7b:15:a8:c7:ff:8a:82:dc:c7:2d:20:49:5b: 48:36:90:22:59:53:f3:5e:46:a5:7e:11:e3:45:23: 8b:0d:3f:07:21:d8:af:c9:9a:61:b6:2e:95:3b:41: 95:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C0:C3:E6:AD:CD:E6:8C:C1:67:18:E3:A7:6F:68:7F:A5:BF:22:B8 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/8cDD5q3N5ozBZxjjp29of6W_Irg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.108.0/22 Signature Algorithm: sha256WithRSAEncryption bf:a8:d9:04:71:12:a8:c5:fc:03:04:76:fb:c3:15:97:95:c0: 90:47:90:c7:79:18:b6:7d:f4:15:02:bd:0c:a0:61:54:49:4c: 21:6f:87:4d:16:97:c8:cf:79:37:13:52:dd:52:f5:cd:37:e9: 3c:bf:e9:90:89:bf:d0:1b:45:64:8e:8d:0b:94:61:1c:b8:24: 86:2d:11:73:9b:e3:5c:e2:b3:d3:04:19:de:dc:46:10:44:dc: 25:8e:a3:e2:b7:50:82:72:07:d2:ff:df:1f:51:b1:cf:bd:1c: 66:9d:c6:7a:7d:46:29:7a:02:0b:69:3e:02:99:7d:ff:f9:7c: 1e:c4:ae:26:29:98:56:46:d5:79:61:9c:df:4f:56:6e:a7:fb: 9f:92:01:bd:f1:b5:7d:a8:cd:a8:98:1a:37:63:9f:5f:6f:cb: e9:12:f3:16:a0:ec:6b:04:d0:28:f1:58:e5:54:37:c4:e3:9d: a7:56:9d:64:6b:90:85:cf:cc:5d:88:7d:15:a8:8e:5c:b2:6d: ba:d8:41:a9:1c:f3:1a:fc:e3:85:bc:88:14:94:86:8e:7f:95: 1b:2b:29:be:ee:54:68:78:29:f3:38:e7:08:7c:92:ee:0c:01: 85:6c:94:50:a5:98:fb:9b:f2:ff:0e:78:2a:70:10:0e:b2:a3: 2b:fb:bf:80 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDbgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTMwMjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEYxQzBDM0U2QURDREU2 OENDMTY3MThFM0E3NkY2ODdGQTVCRjIyQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCBqGL11iNCLSnyAygETpjh/uUSdw81HcedQCsBHyXiRrTJydV Q3GKbdnsZIb3fY6DEsSfIj4HXTgrMR0yEiheQbA7YKtzu1K/pqCjRegg9hnjkoEd +ReW6R1SyzT/CIRV9EeCDwTG0WN0/TBFn5oo39qsC5TTEt6C1HrR1p/gA92luMRU tNAO1gGbD56mMNIlmp+HDbcijsqsKKCOk2sicXDa1/+PihxRZzchpxgFo2/SzVoy IVQpjHPPrWSNtd+uyOvNE4d8yBk0RvM9wRzXiIQjexWox/+KgtzHLSBJW0g2kCJZ U/NeRqV+EeNFI4sNPwch2K/JmmG2LpU7QZVbAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU8cDD5q3N5ozBZxjjp29of6W/IrgwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzhjREQ1cTNONW96Qlp4ampwMjlvZjZX X0lyZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ82mwwDQYJ KoZIhvcNAQELBQADggEBAL+o2QRxEqjF/AMEdvvDFZeVwJBHkMd5GLZ99BUCvQyg YVRJTCFvh00Wl8jPeTcTUt1S9c036Ty/6ZCJv9AbRWSOjQuUYRy4JIYtEXOb41zi s9MEGd7cRhBE3CWOo+K3UIJyB9L/3x9Rsc+9HGadxnp9Ril6AgtpPgKZff/5fB7E riYpmFZG1XlhnN9PVm6n+5+SAb3xtX2ozaiYGjdjn19vy+kS8xag7GsE0CjxWOVU N8TjnadWnWRrkIXPzF2IfRWojlyybbrYQakc8xr844W8iBSUho5/lRsrKb7uVGh4 KfM45wh8ku4MAYVslFClmPub8v8OeCpwEA6yoyv7v4A= -----END CERTIFICATE-----Generated at Mon May 20 08:58:19 2024 by rpki-client on console-ams.rpki-client.org