$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/CRfMD--_hv9Ujc7LCpKblK8u8xU.roa File: CRfMD--_hv9Ujc7LCpKblK8u8xU.roa (raw, json) Hash identifier: bc20Z9rhBwlMyFetdnCVOrIZLZh7MNlO1P9jjvPuzBE= Subject key identifier: 09:17:CC:0F:EF:BF:86:FF:54:8D:CE:CB:0A:92:9B:94:AF:2E:F3:15 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0CF8 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/CRfMD--_hv9Ujc7LCpKblK8u8xU.roa Signing time: Mon 15 Jan 2024 21:24:02 +0000 ROA not before: Mon 15 Jan 2024 21:24:02 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24154 IP address blocks: 222.156.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 13:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3320 (0xcf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:24:02 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0917CC0FEFBF86FF548DCECB0A929B94AF2EF315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:08:ba:67:b6:73:61:cd:ad:fe:d7:77:c8:fc: 71:b0:b8:ae:ed:5f:91:8d:f4:a7:68:fc:a7:d7:92: 13:9f:e9:b8:32:99:b0:51:bc:b3:db:79:e4:28:7c: 16:9c:38:d8:14:23:1a:e8:d2:e7:b8:2b:a3:f0:30: 57:f5:27:25:01:1d:7a:85:5f:76:d4:85:fa:6f:57: 64:f6:b9:f2:8a:6e:8b:20:e4:f9:f1:f2:a8:79:6b: a9:2f:33:c9:6c:29:f3:48:f5:04:92:8e:b3:cd:95: d1:0b:4b:d1:7c:e7:62:af:7d:62:02:25:af:d6:e0: 7a:fa:f0:3a:a5:93:b7:59:96:fa:82:b8:20:a2:6d: 0d:3e:f7:bd:d1:b5:62:c7:b7:b8:59:fa:d3:35:8a: 04:53:94:e7:c1:b4:21:81:9f:42:fb:ac:ed:78:aa: f4:44:17:bd:1c:b1:39:d1:7b:0a:8b:a0:ef:e9:3c: 9a:27:f4:ae:c7:d6:47:29:f8:5d:b5:28:4f:f6:ee: ee:e5:ba:70:f2:4e:b7:5f:4f:7e:7f:91:c7:49:04: 59:21:61:46:21:f6:f0:02:f7:ac:fa:9a:c5:0d:39: 02:d9:53:f1:9c:08:f4:4a:85:4b:47:7f:22:2e:e9: a1:5d:d6:17:fa:78:8b:48:56:f9:1d:2b:a5:7b:9a: 09:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:17:CC:0F:EF:BF:86:FF:54:8D:CE:CB:0A:92:9B:94:AF:2E:F3:15 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/CRfMD--_hv9Ujc7LCpKblK8u8xU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 222.156.254.0/24 Signature Algorithm: sha256WithRSAEncryption bb:2b:f0:6d:d6:04:35:99:d8:ee:3c:a4:2e:21:70:61:1f:84: 50:f2:d9:ed:ac:55:57:e1:11:c4:5d:57:ce:f5:a8:00:28:71: 0e:7e:84:b8:a3:11:63:c5:47:b7:55:75:c9:ae:09:fe:49:06: 7a:83:79:51:8e:2d:76:f8:5c:90:cc:af:19:53:3a:fb:f6:0a: ea:92:72:d2:8c:e6:5d:f0:e1:a3:64:eb:37:82:85:38:52:fc: 8c:34:cc:06:48:46:63:89:89:c5:f8:a9:6e:cc:94:c8:98:f2: 26:5b:35:93:b0:fa:0e:4a:bd:98:f6:25:a2:dc:ea:22:ca:e1: 66:d5:02:ba:00:af:83:97:6a:c7:35:71:25:01:48:9e:c9:3c: 19:d1:3b:35:45:73:f2:79:6e:92:f8:f5:47:d0:b9:e3:0d:6d: 5b:17:46:c5:cc:27:9a:23:bc:49:37:f9:fc:57:c8:7f:7d:58: 02:4f:4f:df:c1:5b:79:a9:b4:47:e9:6d:99:fd:8b:07:e9:ba: 4b:2f:84:21:ac:6b:1f:72:fc:3c:aa:2e:35:b8:62:4d:b9:5d: 5d:e8:c3:c1:14:fd:28:1c:0f:8c:ac:1c:41:41:ee:16:ee:e3: ea:bc:b8:aa:f1:7d:99:70:e2:5a:90:7a:f4:83:b9:1f:95:e1: 51:2b:49:a5 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDPgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI0MDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDA5MTdDQzBGRUZCRjg2 RkY1NDhEQ0VDQjBBOTI5Qjk0QUYyRUYzMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPCLpntnNhza3+13fI/HGwuK7tX5GN9Kdo/KfXkhOf6bgymbBR vLPbeeQofBacONgUIxro0ue4K6PwMFf1JyUBHXqFX3bUhfpvV2T2ufKKbosg5Pnx 8qh5a6kvM8lsKfNI9QSSjrPNldELS9F852KvfWICJa/W4Hr68Dqlk7dZlvqCuCCi bQ0+973RtWLHt7hZ+tM1igRTlOfBtCGBn0L7rO14qvREF70csTnRewqLoO/pPJon 9K7H1kcp+F21KE/27u7lunDyTrdfT35/kcdJBFkhYUYh9vAC96z6msUNOQLZU/Gc CPRKhUtHfyIu6aFd1hf6eItIVvkdK6V7mgkvAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUCRfMD++/hv9Ujc7LCpKblK8u8xUwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0NSZk1ELS1faHY5VWpjN0xDcEtibEs4 dTh4VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADenP4wDQYJ KoZIhvcNAQELBQADggEBALsr8G3WBDWZ2O48pC4hcGEfhFDy2e2sVVfhEcRdV871 qAAocQ5+hLijEWPFR7dVdcmuCf5JBnqDeVGOLXb4XJDMrxlTOvv2CuqSctKM5l3w 4aNk6zeChThS/Iw0zAZIRmOJicX4qW7MlMiY8iZbNZOw+g5KvZj2JaLc6iLK4WbV AroAr4OXasc1cSUBSJ7JPBnROzVFc/J5bpL49UfQueMNbVsXRsXMJ5ojvEk3+fxX yH99WAJPT9/BW3mptEfpbZn9iwfpuksvhCGsax9y/DyqLjW4Yk25XV3ow8EU/Sgc D4ysHEFB7hbu4+q8uKrxfZlw4lqQevSDuR+V4VErSaU= -----END CERTIFICATE-----Generated at Sun Jun 2 21:48:26 2024 by rpki-client on console-ams.rpki-client.org