$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/K_4K9ukLfugB_4KUFzNWiC7mPq4.roa File: K_4K9ukLfugB_4KUFzNWiC7mPq4.roa (raw, json) Hash identifier: wupGQRPopaQZtvqILo5zQ2vgt3cABIRDbndwlYCljZk= Subject key identifier: 2B:FE:0A:F6:E9:0B:7E:E8:01:FF:82:94:17:33:56:88:2E:E6:3E:AE Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0D0C Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/K_4K9ukLfugB_4KUFzNWiC7mPq4.roa Signing time: Mon 15 Jan 2024 21:24:27 +0000 ROA not before: Mon 15 Jan 2024 21:24:27 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 2001:f10::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 13:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3340 (0xd0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:24:27 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2BFE0AF6E90B7EE801FF8294173356882EE63EAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d5:db:ed:40:65:96:d1:0a:7d:9a:2b:8d:59: 14:e5:e0:a3:a2:6f:7c:52:f5:75:c8:71:f6:83:24: 44:06:bd:3c:4c:0e:44:4f:a9:ff:0e:19:9d:5e:a7: 3a:f8:1c:9b:22:04:5c:b2:a7:0c:f1:0d:26:28:fa: f6:e2:b1:f0:29:4a:82:09:31:ce:cf:22:67:90:9a: 15:cc:22:c5:aa:89:27:4a:48:d0:5e:91:8e:37:e0: 90:ad:86:17:44:a1:f3:6d:60:0c:ce:46:8a:2c:22: 6a:91:94:16:ab:58:4d:8b:77:8e:04:5f:41:be:9b: ce:ea:41:5e:73:93:15:57:bf:c9:1d:32:92:a9:f9: 61:98:b8:02:44:a6:41:7b:4f:d3:13:24:01:68:a9: a8:49:3a:59:3c:71:4d:b5:30:1b:ad:27:5b:bc:43: ca:56:e3:97:ba:db:7f:a3:ce:67:ac:b0:76:bb:53: 6b:bd:b4:8e:bf:f3:69:2a:d0:cb:2e:b3:11:48:61: 90:e6:84:78:b4:bb:c2:c5:d4:bf:fc:d6:ee:d6:db: 44:93:bd:d2:05:48:84:9b:1c:a5:bc:96:b3:9b:b3: 42:64:05:70:78:4c:1d:3f:02:22:eb:53:a0:88:b7: ba:7c:7a:70:d8:7c:0d:35:7b:e7:b2:16:53:e0:bc: 31:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:FE:0A:F6:E9:0B:7E:E8:01:FF:82:94:17:33:56:88:2E:E6:3E:AE X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/K_4K9ukLfugB_4KUFzNWiC7mPq4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:f10::/32 Signature Algorithm: sha256WithRSAEncryption bb:dd:2f:d9:07:2e:08:9f:c1:3f:db:50:c3:c1:57:81:47:7c: f4:43:39:b9:5f:8c:fd:87:be:fb:30:f4:4e:f3:8c:18:07:84: 5f:fe:ae:15:93:6d:f2:6b:6f:00:2c:16:95:85:93:8c:e1:c7: fd:fc:f1:8b:97:a6:8f:39:23:85:5b:39:70:37:cf:54:59:71: 7b:45:c3:af:6b:52:c0:a9:f9:ab:98:f4:8f:21:0d:7f:93:3e: c2:30:7c:24:28:fc:19:97:79:a3:09:0a:80:c8:c3:73:2b:7a: 98:63:15:76:d6:13:10:c8:1c:2f:f9:f9:e8:9a:bf:47:54:88: a5:67:62:d9:f4:a2:ad:55:93:e3:f5:80:ca:47:58:27:7a:fc: 2d:ff:a3:55:84:3f:cc:6c:ea:5f:6f:0f:92:a7:93:50:fc:f6: 9e:73:f0:2e:f5:86:cd:a4:ff:ab:74:9d:0c:72:15:cb:9b:8e: 78:51:bd:55:a8:c8:f5:90:0c:99:96:7b:ab:93:97:33:4b:a2: 8a:2d:f1:d8:0d:77:cf:b7:5d:b9:a0:9b:73:2c:86:49:f5:0c: 91:b1:8e:44:c3:f3:38:45:f9:01:36:8d:a6:48:d6:05:5c:b9: 1f:21:a4:8d:4c:83:11:ca:29:e4:12:61:21:bd:ca:04:2a:9b: e9:bc:2b:61 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICDQwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI0MjdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJCRkUwQUY2RTkwQjdF RTgwMUZGODI5NDE3MzM1Njg4MkVFNjNFQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB1dvtQGWW0Qp9miuNWRTl4KOib3xS9XXIcfaDJEQGvTxMDkRP qf8OGZ1epzr4HJsiBFyypwzxDSYo+vbisfApSoIJMc7PImeQmhXMIsWqiSdKSNBe kY434JCthhdEofNtYAzORoosImqRlBarWE2Ld44EX0G+m87qQV5zkxVXv8kdMpKp +WGYuAJEpkF7T9MTJAFoqahJOlk8cU21MButJ1u8Q8pW45e623+jzmessHa7U2u9 tI6/82kq0MsusxFIYZDmhHi0u8LF1L/81u7W20STvdIFSISbHKW8lrObs0JkBXB4 TB0/AiLrU6CIt7p8enDYfA01e+eyFlPgvDEvAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUK/4K9ukLfugB/4KUFzNWiC7mPq4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0tfNEs5dWtMZnVnQl80S1VGek5XaUM3 bVBxNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAgAQ8QMA0G CSqGSIb3DQEBCwUAA4IBAQC73S/ZBy4In8E/21DDwVeBR3z0Qzm5X4z9h777MPRO 84wYB4Rf/q4Vk23ya28ALBaVhZOM4cf9/PGLl6aPOSOFWzlwN89UWXF7RcOva1LA qfmrmPSPIQ1/kz7CMHwkKPwZl3mjCQqAyMNzK3qYYxV21hMQyBwv+fnomr9HVIil Z2LZ9KKtVZPj9YDKR1gnevwt/6NVhD/MbOpfbw+Sp5NQ/Paec/Au9YbNpP+rdJ0M chXLm454Ub1VqMj1kAyZlnurk5czS6KKLfHYDXfPt125oJtzLIZJ9QyRsY5Ew/M4 RfkBNo2mSNYFXLkfIaSNTIMRyinkEmEhvcoEKpvpvCth -----END CERTIFICATE-----Generated at Sun Jun 2 21:48:26 2024 by rpki-client on console-ams.rpki-client.org