$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/LQZyowsAZdk2xAFXm9pnZm8gn2A.roa File: LQZyowsAZdk2xAFXm9pnZm8gn2A.roa (raw, json) Hash identifier: 8S2p9NMUQKi02ub8GNGdOp3N2D1zPwAJ0KGL1v03BlM= Subject key identifier: 2D:06:72:A3:0B:00:65:D9:36:C4:01:57:9B:DA:67:66:6F:20:9F:60 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0D8C Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/LQZyowsAZdk2xAFXm9pnZm8gn2A.roa Signing time: Mon 15 Jan 2024 21:29:18 +0000 ROA not before: Mon 15 Jan 2024 21:29:18 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 2404:0:1000::/40 maxlen: 56 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3468 (0xd8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:29:18 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2D0672A30B0065D936C401579BDA67666F209F60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:48:ea:67:86:d5:dc:a8:af:ee:1a:66:1d:9d: 6a:8f:34:5e:d2:6b:3a:3a:9e:d8:58:17:14:e7:3b: 51:83:98:aa:1d:5e:43:dc:b8:e9:7d:5e:c0:24:c3: 20:54:79:5d:20:92:f3:f9:66:7d:21:6d:29:e3:68: 27:74:ed:4d:56:e3:72:86:6b:08:38:74:bb:55:cb: 1f:9f:ba:bc:d0:e0:4a:b5:0a:1b:63:34:6a:10:b2: 97:ea:3e:2b:4b:9b:11:7e:f8:71:c6:2b:e4:fe:4c: a5:67:f8:89:6d:ed:05:c8:bd:24:4d:98:dd:f2:ab: ba:59:4e:91:7c:6d:ac:61:26:e9:ec:5b:b5:12:0a: 4c:1e:a5:b1:1e:84:f3:9a:33:70:eb:80:28:0f:85: 73:b1:bc:04:90:9c:e6:8c:c0:19:a4:9b:ea:92:42: de:bc:fd:cf:44:7a:f5:d3:e7:1e:a9:61:75:47:88: 28:a7:c6:c1:dc:0e:9d:2d:cc:1c:25:ea:b5:60:85: a5:ac:04:34:93:ab:d3:a8:81:dd:d2:42:89:ef:a7: f2:f4:cb:84:f9:f0:a5:e6:39:6b:7d:e4:81:f5:ed: b0:47:18:a6:10:ef:11:e0:45:2f:29:c1:c4:a6:d9: 5b:b1:3f:d3:e2:56:7d:e0:d6:2d:a4:1c:22:47:e0: eb:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:06:72:A3:0B:00:65:D9:36:C4:01:57:9B:DA:67:66:6F:20:9F:60 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/LQZyowsAZdk2xAFXm9pnZm8gn2A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:0:1000::/40 Signature Algorithm: sha256WithRSAEncryption 96:c9:4b:08:cc:ac:f8:2f:84:6e:aa:cf:2f:7e:06:42:4f:02: 84:ad:7a:c7:8e:5b:23:bd:d2:03:57:d8:27:64:60:bc:da:a6: eb:bc:04:ea:42:d2:c9:6e:4d:7c:90:62:42:c0:00:43:4e:62: cf:6e:9a:9a:b7:9d:4a:8a:1b:2c:62:bd:bb:d4:70:a1:c9:86: 2e:b5:1d:e2:cb:17:ef:89:6c:0e:c7:46:58:c3:36:dc:4b:43: eb:20:9a:43:f5:75:fc:2a:e3:40:7f:5a:01:35:a4:3d:6e:db: c9:63:f3:3d:ac:65:7b:8e:5e:81:6b:a6:75:df:1c:49:a5:f5: 78:8a:68:ae:20:ce:4e:09:19:2d:ea:d7:b9:62:7b:3b:ef:59: 5e:36:9c:bb:24:9e:38:38:29:88:12:bc:7e:c8:c5:df:ed:5a: 36:5d:4e:6d:7f:5e:a7:da:d9:55:92:f2:f1:ad:52:0f:ed:d7: 9a:f0:57:03:af:d1:43:bd:97:64:5b:84:66:ca:83:cb:a8:ff: 97:25:27:88:cd:8f:61:3e:46:e1:27:50:55:4f:a8:d3:54:5a: 78:6d:db:ef:4b:02:7f:d1:1e:e7:d2:a1:5b:21:ad:2d:86:b7: 08:24:d5:b4:33:58:07:9c:dd:bd:dd:2e:a1:66:00:8f:9c:e9: e6:40:6f:a8 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDYwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI5MThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJEMDY3MkEzMEIwMDY1 RDkzNkM0MDE1NzlCREE2NzY2NkYyMDlGNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2SOpnhtXcqK/uGmYdnWqPNF7Sazo6nthYFxTnO1GDmKodXkPc uOl9XsAkwyBUeV0gkvP5Zn0hbSnjaCd07U1W43KGawg4dLtVyx+furzQ4Eq1Chtj NGoQspfqPitLmxF++HHGK+T+TKVn+Ilt7QXIvSRNmN3yq7pZTpF8baxhJunsW7US CkwepbEehPOaM3DrgCgPhXOxvASQnOaMwBmkm+qSQt68/c9EevXT5x6pYXVHiCin xsHcDp0tzBwl6rVghaWsBDSTq9Oogd3SQonvp/L0y4T58KXmOWt95IH17bBHGKYQ 7xHgRS8pwcSm2VuxP9PiVn3g1i2kHCJH4OthAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQULQZyowsAZdk2xAFXm9pnZm8gn2AwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0xRWnlvd3NBWmRrMnhBRlhtOXBuWm04 Z24yQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAkBAAAEDAN BgkqhkiG9w0BAQsFAAOCAQEAlslLCMys+C+EbqrPL34GQk8ChK16x45bI73SA1fY J2RgvNqm67wE6kLSyW5NfJBiQsAAQ05iz26amredSoobLGK9u9RwocmGLrUd4ssX 74lsDsdGWMM23EtD6yCaQ/V1/CrjQH9aATWkPW7byWPzPaxle45egWumdd8cSaX1 eIporiDOTgkZLerXuWJ7O+9ZXjacuySeODgpiBK8fsjF3+1aNl1ObX9ep9rZVZLy 8a1SD+3XmvBXA6/RQ72XZFuEZsqDy6j/lyUniM2PYT5G4SdQVU+o01RaeG3b70sC f9Ee59KhWyGtLYa3CCTVtDNYB5zdvd0uoWYAj5zp5kBvqA== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:43 2024 by rpki-client on console-ams.rpki-client.org