$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/F15HW_iaFu2RjUaqTeaFoZi2pSk.roa File: F15HW_iaFu2RjUaqTeaFoZi2pSk.roa (raw, json) Hash identifier: J6NkwpHfG7gLCdY8uEH3IrwvIfVFdTABSXu6XeE/qXw= Subject key identifier: 17:5E:47:5B:F8:9A:16:ED:91:8D:46:AA:4D:E6:85:A1:98:B6:A5:29 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0BB9 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/F15HW_iaFu2RjUaqTeaFoZi2pSk.roa Signing time: Fri 01 Sep 2023 08:50:55 +0000 ROA not before: Fri 01 Sep 2023 08:50:55 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9674 IP address blocks: 27.52.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3001 (0xbb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Sep 1 08:50:55 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=175E475BF89A16ED918D46AA4DE685A198B6A529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a6:e8:92:1f:69:d8:48:9e:b1:74:46:7d:6d: 76:c3:13:af:05:d2:ab:2b:51:67:46:a0:47:ad:05: 9d:46:9c:13:a9:91:1c:36:73:76:9e:26:43:74:c4: 65:59:b1:36:89:b3:7d:2a:07:c3:3d:fe:0c:cb:75: 87:4f:9f:f5:d6:92:64:75:ed:e6:f3:ec:5e:c4:ee: b0:11:2a:ac:1b:10:dd:0c:1f:c0:0f:55:fc:00:53: 3b:92:d9:03:4f:00:b7:c7:21:92:15:40:b0:2f:49: b4:3b:d2:ab:91:88:aa:4c:00:7c:3d:d7:91:ae:1c: 5b:55:23:e9:16:0b:c1:5b:cd:fb:0b:aa:b7:0a:2b: 3e:ac:99:5b:07:69:0a:54:02:7c:d9:9f:fb:33:3b: 3e:99:1b:aa:e3:18:5f:0f:3e:b0:41:2b:9e:bb:96: 72:05:c4:d3:8d:40:57:07:4c:1e:9d:3f:4d:74:9c: a9:3d:ac:f8:a9:74:dc:77:08:5e:1a:8e:ae:e0:06: f2:2e:f4:ae:1f:df:12:71:d3:bb:3a:ac:0d:1f:97: 34:bb:f5:a9:41:5d:6d:8b:8c:63:b5:ca:64:a2:90: 94:9d:5e:24:bc:1c:88:5e:bc:5d:18:37:c3:a3:96: e3:7b:e9:8f:70:fe:3a:72:ab:15:93:cc:c1:e9:4b: 04:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:5E:47:5B:F8:9A:16:ED:91:8D:46:AA:4D:E6:85:A1:98:B6:A5:29 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/F15HW_iaFu2RjUaqTeaFoZi2pSk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.52.0.0/15 Signature Algorithm: sha256WithRSAEncryption 2b:d4:c5:df:c2:ff:76:1c:0c:04:37:94:26:59:08:60:72:ea: 31:d3:0d:b9:ed:41:43:5e:1c:e6:da:36:1f:b0:dc:22:be:ba: b8:8d:c8:d4:78:85:dd:a1:a8:cf:3a:75:0d:bc:f7:90:2d:2e: bc:eb:b2:8d:7c:bd:12:92:21:dd:ce:8f:ee:f3:43:9c:e4:b1: a3:f0:f8:51:9f:d3:37:3d:fe:31:ed:3a:56:8e:80:d0:8b:41: fe:88:59:4e:02:c1:c1:7b:4a:db:55:c7:97:f2:56:87:55:9e: 72:f5:c6:aa:22:e0:a8:41:9a:41:3c:aa:96:2e:38:7e:78:e2: 6d:ff:ba:31:b3:bf:dd:a5:80:51:9e:72:88:b8:a2:36:f6:d4: 92:25:0d:6d:cb:28:f5:a1:85:25:fc:af:95:f8:aa:21:84:cb: 2b:e7:3e:7d:2a:19:82:40:28:42:9f:31:1b:59:55:d8:71:ae: 25:3d:5f:19:52:87:38:d7:1b:bd:a7:db:af:2b:6f:a8:df:ee: d2:bf:f0:f0:c6:94:87:aa:78:69:67:cf:2b:6f:2b:07:5d:be: ef:37:f4:45:b8:3a:3e:4e:9e:06:cc:d4:61:20:4b:c7:23:7e: 63:e9:f7:58:b3:8e:90:96:1a:83:43:bd:ef:e8:89:b5:55:29: a6:79:c6:ea -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICC7kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzA5MDEw ODUwNTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE3NUU0NzVCRjg5QTE2 RUQ5MThENDZBQTRERTY4NUExOThCNkE1MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJpuiSH2nYSJ6xdEZ9bXbDE68F0qsrUWdGoEetBZ1GnBOpkRw2 c3aeJkN0xGVZsTaJs30qB8M9/gzLdYdPn/XWkmR17ebz7F7E7rARKqwbEN0MH8AP VfwAUzuS2QNPALfHIZIVQLAvSbQ70quRiKpMAHw915GuHFtVI+kWC8FbzfsLqrcK Kz6smVsHaQpUAnzZn/szOz6ZG6rjGF8PPrBBK567lnIFxNONQFcHTB6dP010nKk9 rPipdNx3CF4ajq7gBvIu9K4f3xJx07s6rA0flzS79alBXW2LjGO1ymSikJSdXiS8 HIhevF0YN8OjluN76Y9w/jpyqxWTzMHpSwS1AgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUF15HW/iaFu2RjUaqTeaFoZi2pSkwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0YxNUhXX2lhRnUyUmpVYXFUZWFGb1pp MnBTay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwEbNDANBgkq hkiG9w0BAQsFAAOCAQEAK9TF38L/dhwMBDeUJlkIYHLqMdMNue1BQ14c5to2H7Dc Ir66uI3I1HiF3aGozzp1Dbz3kC0uvOuyjXy9EpIh3c6P7vNDnOSxo/D4UZ/TNz3+ Me06Vo6A0ItB/ohZTgLBwXtK21XHl/JWh1WecvXGqiLgqEGaQTyqli44fnjibf+6 MbO/3aWAUZ5yiLiiNvbUkiUNbcso9aGFJfyvlfiqIYTLK+c+fSoZgkAoQp8xG1lV 2HGuJT1fGVKHONcbvafbrytvqN/u0r/w8MaUh6p4aWfPK28rB12+7zf0Rbg6Pk6e BszUYSBLxyN+Y+n3WLOOkJYag0O97+iJtVUppnnG6g== -----END CERTIFICATE-----Generated at Mon May 20 08:32:39 2024 by rpki-client on console-fra.rpki-client.org