$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/HygB2VnyW6pBHsS7AF8TAU5MVv8.roa File: HygB2VnyW6pBHsS7AF8TAU5MVv8.roa (raw, json) Hash identifier: ZkUsWtsnlyN3l8C2vmWwUvW1jx6s9bVa+XlkLTniNks= Subject key identifier: 1F:28:01:D9:59:F2:5B:AA:41:1E:C4:BB:00:5F:13:01:4E:4C:56:FF Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0D90 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/HygB2VnyW6pBHsS7AF8TAU5MVv8.roa Signing time: Mon 15 Jan 2024 21:29:24 +0000 ROA not before: Mon 15 Jan 2024 21:29:24 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 22787 IP address blocks: 210.58.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3472 (0xd90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:29:24 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=1F2801D959F25BAA411EC4BB005F13014E4C56FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9a:77:92:ed:30:69:56:bd:fc:e6:cf:1a:56: 5d:41:45:67:87:64:d4:0e:b5:e7:4d:f7:ab:b1:e4: 89:99:dd:c8:21:35:1e:7d:12:fa:33:97:47:da:24: b4:f0:05:b0:da:2a:7f:53:7e:41:bb:ba:a0:9e:f6: 63:09:96:ca:2c:47:87:35:5d:1b:78:89:f3:65:79: 8b:d0:5b:37:46:8d:6f:a8:8d:fa:04:a1:32:5d:b3: be:cc:90:56:3b:62:15:00:0f:99:65:72:93:77:00: df:f8:ca:32:d0:07:38:e4:03:c7:b4:b8:78:62:a3: a2:59:c1:4b:0e:95:d8:c8:6a:84:b2:bf:96:5e:6c: c7:25:fe:64:55:63:6d:50:a8:2a:43:cd:7b:4c:cc: d6:48:1b:9f:6b:3e:3f:43:12:0f:b6:f8:92:72:a9: ec:05:bf:f0:e1:5e:25:61:db:93:6b:aa:47:93:af: 32:7b:56:2e:58:69:ae:9e:58:c7:18:c3:54:fc:74: b3:b5:4e:4b:88:d4:52:1a:78:18:c2:0a:b2:b9:5f: 1c:4d:a7:ac:5c:d0:a3:e8:97:70:66:d5:01:e2:48: a0:6f:f7:07:94:ce:ae:90:c5:3c:72:1f:ec:55:27: 1a:92:34:6b:ca:c1:37:1f:92:b9:f3:e5:5d:33:97: 5c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:28:01:D9:59:F2:5B:AA:41:1E:C4:BB:00:5F:13:01:4E:4C:56:FF X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/HygB2VnyW6pBHsS7AF8TAU5MVv8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.58.89.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:bc:06:2f:03:e7:31:13:ee:a1:72:05:f0:ad:04:66:8a:cf: a6:2d:f6:f6:3d:6f:48:a3:88:9e:fe:75:61:04:01:06:38:0b: 10:27:8a:0a:7b:5c:39:e9:eb:03:d0:9b:ac:8a:fc:c0:d4:1a: 4b:f1:77:a8:82:bf:7e:27:80:cc:d8:53:3f:d5:5f:5a:a4:5d: b2:7e:69:aa:d7:6d:fb:8b:09:f4:7e:f6:77:79:92:af:bd:48: 6c:6a:b9:3a:93:01:d9:c9:7a:e5:9a:95:75:dc:25:55:de:84: df:ab:6a:66:74:d8:e6:a1:37:e9:72:ea:c9:12:de:e6:0c:61: 31:0f:32:94:eb:81:2c:d5:0d:5c:dd:3b:98:cd:0c:90:63:55: 5d:1f:89:2f:32:2c:33:bc:17:af:1a:56:74:4a:41:db:f3:f5: ee:61:3d:45:f6:0d:67:39:2e:09:eb:21:5a:6c:ac:70:c7:e1: a5:00:82:1f:3e:be:c8:0b:e6:d8:04:b7:42:db:3b:5a:8c:0e: b3:4c:7a:4c:f8:c7:69:0b:ec:66:00:37:79:30:fd:ee:35:de: f4:5a:5a:65:57:28:1b:d0:31:d0:a3:4c:d1:58:50:70:ec:ce: 15:83:e1:7d:8f:3a:73:fb:51:36:35:77:e1:de:52:9d:87:ec: 5d:8c:6f:ca -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDZAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI5MjRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFGMjgwMUQ5NTlGMjVC QUE0MTFFQzRCQjAwNUYxMzAxNEU0QzU2RkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAmneS7TBpVr385s8aVl1BRWeHZNQOtedN96ux5ImZ3cghNR59 Evozl0faJLTwBbDaKn9TfkG7uqCe9mMJlsosR4c1XRt4ifNleYvQWzdGjW+ojfoE oTJds77MkFY7YhUAD5llcpN3AN/4yjLQBzjkA8e0uHhio6JZwUsOldjIaoSyv5Ze bMcl/mRVY21QqCpDzXtMzNZIG59rPj9DEg+2+JJyqewFv/DhXiVh25NrqkeTrzJ7 Vi5Yaa6eWMcYw1T8dLO1TkuI1FIaeBjCCrK5XxxNp6xc0KPol3Bm1QHiSKBv9weU zq6QxTxyH+xVJxqSNGvKwTcfkrnz5V0zl1xVAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUHygB2VnyW6pBHsS7AF8TAU5MVv8wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0h5Z0IyVm55VzZwQkhzUzdBRjhUQVU1 TVZ2OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSOlkwDQYJ KoZIhvcNAQELBQADggEBAE+8Bi8D5zET7qFyBfCtBGaKz6Yt9vY9b0ijiJ7+dWEE AQY4CxAnigp7XDnp6wPQm6yK/MDUGkvxd6iCv34ngMzYUz/VX1qkXbJ+aarXbfuL CfR+9nd5kq+9SGxquTqTAdnJeuWalXXcJVXehN+ramZ02OahN+ly6skS3uYMYTEP MpTrgSzVDVzdO5jNDJBjVV0fiS8yLDO8F68aVnRKQdvz9e5hPUX2DWc5LgnrIVps rHDH4aUAgh8+vsgL5tgEt0LbO1qMDrNMekz4x2kL7GYAN3kw/e413vRaWmVXKBvQ MdCjTNFYUHDszhWD4X2POnP7UTY1d+HeUp2H7F2Mb8o= -----END CERTIFICATE-----Generated at Mon May 20 08:32:39 2024 by rpki-client on console-fra.rpki-client.org