$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/AKGxtVDRxYqrWfRlEpACNa4hOdI.roa File: AKGxtVDRxYqrWfRlEpACNa4hOdI.roa (raw, json) Hash identifier: WUY2u/OkeIMSF80vEeSI5gRWAsRkPvj/S4hkrHbdmN8= Subject key identifier: 00:A1:B1:B5:50:D1:C5:8A:AB:59:F4:65:12:90:02:35:AE:21:39:D2 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0DD0 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/AKGxtVDRxYqrWfRlEpACNa4hOdI.roa Signing time: Mon 15 Jan 2024 21:34:46 +0000 ROA not before: Mon 15 Jan 2024 21:34:46 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 124.218.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3536 (0xdd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:34:46 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=00A1B1B550D1C58AAB59F46512900235AE2139D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0a:47:a1:76:e3:24:5a:92:8c:d2:4f:8c:53: 1a:45:2e:41:67:8a:78:64:e9:46:c1:86:28:77:56: f7:37:b6:16:e1:d8:62:97:f4:b2:c7:6f:6c:b6:64: 2d:83:3f:eb:9c:b8:df:f3:de:66:d3:f3:49:d9:91: 14:8d:9e:e9:2b:33:61:e5:ef:90:21:54:b6:3a:d0: 76:c3:87:0e:8e:15:b2:77:13:2a:71:03:8d:3c:dd: ed:95:3a:a7:56:91:60:3e:79:af:3c:ae:99:8d:0a: ed:ed:36:58:29:3d:8c:d7:fa:d7:1d:a0:db:fe:e3: b6:eb:1c:01:29:95:ea:75:de:b6:90:c0:fb:3e:b4: 93:d3:ff:75:7a:1a:00:68:d4:ae:92:cf:60:fb:bc: bb:58:58:b0:14:06:1d:e2:f1:69:3c:9c:91:6b:03: 92:61:75:4a:7a:74:82:23:77:e7:7c:be:1c:25:e2: 9e:6a:d2:3a:fc:8f:c3:8a:b0:e5:26:12:aa:0e:a4: 01:39:24:4e:68:05:8a:2e:a7:8a:d6:12:ad:d1:3b: 13:88:3f:e8:cf:05:77:be:cc:28:44:77:32:6d:ee: 76:fe:20:bf:2f:38:57:f3:08:25:6e:91:05:4b:45: 07:17:f6:5e:1a:ed:79:88:58:1a:5d:fa:80:55:85: 5f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:A1:B1:B5:50:D1:C5:8A:AB:59:F4:65:12:90:02:35:AE:21:39:D2 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/AKGxtVDRxYqrWfRlEpACNa4hOdI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.0.0/16 Signature Algorithm: sha256WithRSAEncryption 73:26:68:42:d3:2a:31:d6:ea:8b:d3:d7:55:a8:4c:46:a1:fd: a9:12:b4:11:a6:a1:03:92:75:09:73:3b:8d:96:48:a2:03:08: 68:f0:4e:8d:04:bb:76:4d:93:13:78:bc:c8:b3:64:8c:3e:8f: 1f:8e:40:42:2c:42:3d:9f:c6:ca:7a:3c:10:5d:45:1d:de:07: cf:21:0f:03:a1:d1:2d:0c:26:3b:a3:66:04:f8:26:55:f1:45: 81:cc:6f:9e:62:28:90:43:a6:56:89:5f:da:49:e0:c6:45:53: 30:b0:d2:de:0b:87:6f:91:99:31:c6:ff:ac:a8:81:64:71:ce: 4a:31:40:4d:25:c4:7b:00:96:81:0b:85:0d:e6:a4:79:4a:49: 57:03:40:c3:4a:22:18:a7:4c:0e:57:a8:28:59:a5:60:c0:88: 58:b0:84:a3:55:f4:e1:eb:2c:a3:32:ac:77:fc:d5:4b:18:a3: f6:2d:c3:c4:02:a3:62:5d:e6:11:37:dd:67:15:b8:f5:88:0f: a5:5e:f5:aa:c3:7b:55:ad:40:39:a0:f5:7d:f9:bb:85:70:64: 82:5f:12:6e:eb:18:92:d5:05:a6:94:77:ba:f3:fb:11:dd:37: 20:e5:47:19:4b:f3:4d:61:91:81:85:4b:03:98:76:87:b5:12: 97:68:31:73 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICDdAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTM0NDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAwQTFCMUI1NTBEMUM1 OEFBQjU5RjQ2NTEyOTAwMjM1QUUyMTM5RDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZCkehduMkWpKM0k+MUxpFLkFninhk6UbBhih3Vvc3thbh2GKX 9LLHb2y2ZC2DP+ucuN/z3mbT80nZkRSNnukrM2Hl75AhVLY60HbDhw6OFbJ3Eypx A4083e2VOqdWkWA+ea88rpmNCu3tNlgpPYzX+tcdoNv+47brHAEplep13raQwPs+ tJPT/3V6GgBo1K6Sz2D7vLtYWLAUBh3i8Wk8nJFrA5JhdUp6dIIjd+d8vhwl4p5q 0jr8j8OKsOUmEqoOpAE5JE5oBYoup4rWEq3ROxOIP+jPBXe+zChEdzJt7nb+IL8v OFfzCCVukQVLRQcX9l4a7XmIWBpd+oBVhV/RAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUAKGxtVDRxYqrWfRlEpACNa4hOdIwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0FLR3h0VkRSeFlxcldmUmxFcEFDTmE0 aE9kSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB82jANBgkq hkiG9w0BAQsFAAOCAQEAcyZoQtMqMdbqi9PXVahMRqH9qRK0EaahA5J1CXM7jZZI ogMIaPBOjQS7dk2TE3i8yLNkjD6PH45AQixCPZ/Gyno8EF1FHd4HzyEPA6HRLQwm O6NmBPgmVfFFgcxvnmIokEOmVolf2kngxkVTMLDS3guHb5GZMcb/rKiBZHHOSjFA TSXEewCWgQuFDeakeUpJVwNAw0oiGKdMDleoKFmlYMCIWLCEo1X04essozKsd/zV Sxij9i3DxAKjYl3mETfdZxW49YgPpV71qsN7Va1AOaD1ffm7hXBkgl8SbusYktUF ppR3uvP7Ed03IOVHGUvzTWGRgYVLA5h2h7USl2gxcw== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:42 2024 by rpki-client on console-ams.rpki-client.org