$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/GywnPY47bQutnMEbdtJiQDnXD2U.roa File: GywnPY47bQutnMEbdtJiQDnXD2U.roa (raw, json) Hash identifier: sfJVc5STpSzQLmM87ia2367bD98TWnWcs2b9UkLpCWo= Subject key identifier: 1B:2C:27:3D:8E:3B:6D:0B:AD:9C:C1:1B:76:D2:62:40:39:D7:0F:65 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0DB0 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/GywnPY47bQutnMEbdtJiQDnXD2U.roa Signing time: Mon 15 Jan 2024 21:30:10 +0000 ROA not before: Mon 15 Jan 2024 21:30:10 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18419 IP address blocks: 124.218.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3504 (0xdb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:30:10 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=1B2C273D8E3B6D0BAD9CC11B76D2624039D70F65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e9:c1:a0:1d:4f:6c:8d:3d:ed:f8:b6:4e:c9: 40:b2:79:bf:47:62:25:47:c1:c8:6a:92:85:db:2a: ef:ec:27:4f:26:42:fc:85:7a:c0:ef:81:85:f3:f3: 0c:ed:37:e6:60:ef:e2:f6:15:0b:31:55:f6:d5:10: aa:7b:17:34:75:c5:af:ac:6f:b1:97:3c:0b:6c:2c: dc:82:14:05:fb:93:15:f5:e1:dd:8d:9a:0e:9a:2b: d3:57:47:a9:82:22:b4:06:d3:ab:41:9d:d0:11:73: ba:4a:ad:a6:e8:35:8e:36:8c:f0:29:16:7f:fe:7c: 4b:90:81:54:db:47:87:ad:91:6b:fa:c3:31:af:51: 57:ca:7b:dc:18:a4:f6:74:f7:81:16:aa:5e:94:10: 72:a6:a5:86:49:cd:81:97:01:35:2c:4e:17:40:6e: de:94:ba:cc:5d:d4:f8:cc:7f:1d:53:ce:59:61:99: e7:8f:48:3f:8f:0d:27:17:49:8b:a2:d3:b4:8a:30: 01:0b:e2:eb:e3:e2:2d:48:ca:df:c9:4a:6a:05:cb: e0:ea:09:95:cd:a1:b7:0d:0f:2c:19:ba:97:34:23: 5d:a8:1f:dd:2e:d0:36:8a:18:37:2a:ef:89:1c:d5: dc:9e:9c:78:05:92:80:8a:1c:af:c8:17:66:5d:43: 52:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:2C:27:3D:8E:3B:6D:0B:AD:9C:C1:1B:76:D2:62:40:39:D7:0F:65 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/GywnPY47bQutnMEbdtJiQDnXD2U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.96.0/22 Signature Algorithm: sha256WithRSAEncryption ab:3c:0b:52:69:7e:17:31:f2:64:fa:53:e5:5d:67:5e:e6:a2: 75:35:47:08:5e:6d:e9:fe:b0:d0:bf:f7:4b:3c:e4:cd:6b:42: 1b:0a:9c:59:47:3c:61:23:41:4b:21:4e:41:20:16:33:5a:ec: 53:56:3e:6e:87:07:97:23:41:f6:b0:4e:81:15:33:72:48:cf: 24:c9:9e:77:2d:46:c6:d8:2b:23:04:c6:ff:4a:ff:26:a0:98: a0:33:aa:60:dd:da:8c:1d:c3:42:51:a0:95:69:36:b6:8d:e2: db:08:9a:68:95:6b:c8:5a:8d:cf:1e:d4:92:66:c0:b3:ff:6d: a9:1b:29:85:54:37:e4:86:5d:dd:6c:b5:be:e4:ec:8f:4a:e8: ba:e4:df:0b:f1:c5:1e:fa:d3:47:6b:09:bd:f2:c2:09:26:bf: c2:0e:97:78:a4:4c:09:c2:f9:b3:67:f6:5e:2d:be:53:9a:53: ae:54:ec:b6:73:b3:6c:db:9a:ef:32:00:77:e3:ca:23:46:f7: 00:be:22:1e:96:e6:58:9c:ab:92:2f:75:62:16:ba:50:1c:3e: 76:58:44:ce:44:a5:70:99:fc:95:41:d6:d4:17:07:1f:b1:66: c7:4c:7e:2e:d0:d6:94:c3:d6:f4:31:7b:0f:ba:25:7d:61:1d: ec:9f:6e:89 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDbAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTMwMTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFCMkMyNzNEOEUzQjZE MEJBRDlDQzExQjc2RDI2MjQwMzlENzBGNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE6cGgHU9sjT3t+LZOyUCyeb9HYiVHwchqkoXbKu/sJ08mQvyF esDvgYXz8wztN+Zg7+L2FQsxVfbVEKp7FzR1xa+sb7GXPAtsLNyCFAX7kxX14d2N mg6aK9NXR6mCIrQG06tBndARc7pKraboNY42jPApFn/+fEuQgVTbR4etkWv6wzGv UVfKe9wYpPZ094EWql6UEHKmpYZJzYGXATUsThdAbt6Uusxd1PjMfx1TzllhmeeP SD+PDScXSYui07SKMAEL4uvj4i1Iyt/JSmoFy+DqCZXNobcNDywZupc0I12oH90u 0DaKGDcq74kc1dyenHgFkoCKHK/IF2ZdQ1INAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUGywnPY47bQutnMEbdtJiQDnXD2UwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0d5d25QWTQ3YlF1dG5NRWJkdEppUURu WEQyVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ82mAwDQYJ KoZIhvcNAQELBQADggEBAKs8C1Jpfhcx8mT6U+VdZ17monU1Rwheben+sNC/90s8 5M1rQhsKnFlHPGEjQUshTkEgFjNa7FNWPm6HB5cjQfawToEVM3JIzyTJnnctRsbY KyMExv9K/yagmKAzqmDd2owdw0JRoJVpNraN4tsImmiVa8hajc8e1JJmwLP/bakb KYVUN+SGXd1stb7k7I9K6Lrk3wvxxR7600drCb3ywgkmv8IOl3ikTAnC+bNn9l4t vlOaU65U7LZzs2zbmu8yAHfjyiNG9wC+Ih6W5licq5IvdWIWulAcPnZYRM5EpXCZ /JVB1tQXBx+xZsdMfi7Q1pTD1vQxew+6JX1hHeyfbok= -----END CERTIFICATE-----Generated at Mon May 20 22:04:47 2024 by rpki-client on console-fra.rpki-client.org