$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/LUI7dLN-axRaZSYmjlzQvmYc1XI.roa File: LUI7dLN-axRaZSYmjlzQvmYc1XI.roa (raw, json) Hash identifier: Yd5eZmlI9uYNXLQn7fl3st1F4RBCiDKyJLSiqy7BRgs= Subject key identifier: 2D:42:3B:74:B3:7E:6B:14:5A:65:26:26:8E:5C:D0:BE:66:1C:D5:72 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0C6A Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/LUI7dLN-axRaZSYmjlzQvmYc1XI.roa Signing time: Mon 15 Jan 2024 21:09:26 +0000 ROA not before: Mon 15 Jan 2024 21:09:26 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9311 IP address blocks: 203.79.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3178 (0xc6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:09:26 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2D423B74B37E6B145A6526268E5CD0BE661CD572 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f5:5a:58:f7:f2:18:db:36:bd:1a:4e:f8:80: 14:36:16:99:e7:ca:bb:df:61:b4:a1:41:94:86:85: f3:aa:f8:c7:74:ab:5e:33:75:f6:ce:a3:32:f8:1c: 60:51:ef:8f:3d:5e:ab:20:f5:e2:8e:4c:89:bd:21: 55:e2:6e:1e:22:4f:fb:b1:f8:ba:fd:ac:71:5e:00: b4:14:65:5c:ab:f6:6f:da:e7:28:c3:df:89:90:03: bb:0e:93:74:62:7a:ec:b9:00:fd:5e:3d:cf:ca:a8: 62:8d:e5:cf:75:f1:78:f8:c0:3c:49:ff:69:ab:1a: 54:08:3e:04:43:3d:44:9a:1f:3a:d2:6e:ef:86:a4: b0:7e:64:15:10:be:90:0b:c4:a1:46:87:a9:08:16: 2e:a3:3b:5f:72:e4:51:88:ab:79:f1:f8:37:01:cf: 19:ea:d0:9c:74:33:57:c0:67:cd:3d:5e:41:8f:af: e4:32:ee:de:de:23:02:6d:6b:40:62:c1:72:d2:39: 59:5d:6a:b1:6b:e1:b6:fa:6a:5c:e5:df:94:03:0a: f9:30:e1:8d:e6:2a:d4:35:c3:4e:ea:f5:84:4c:8b: 68:c8:10:83:36:47:78:72:7f:68:55:f0:88:19:12: 38:18:3e:a7:e5:df:bc:f0:eb:ab:ec:fe:d5:6d:d0: 9b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:42:3B:74:B3:7E:6B:14:5A:65:26:26:8E:5C:D0:BE:66:1C:D5:72 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/LUI7dLN-axRaZSYmjlzQvmYc1XI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.79.235.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:ee:f1:88:4b:53:97:dd:9e:f5:5d:56:74:ba:b6:40:e9:1c: ec:b0:d5:67:88:dd:5d:d0:a0:cc:4f:80:95:e0:79:e6:a4:19: 6e:a4:91:76:a2:4e:0e:23:6b:83:32:60:57:2b:34:e1:69:04: 60:2c:5f:df:d3:95:8b:34:d9:57:d9:44:90:17:c8:66:3a:c9: 12:b8:43:44:14:3d:23:31:51:33:78:90:57:85:cc:27:52:c5: b6:c2:f2:ca:c7:92:17:39:64:3c:71:14:47:2e:cb:e7:6d:85: 11:4c:34:fc:0f:dd:25:97:ff:9a:26:ab:68:f6:79:55:c7:20: a9:7f:96:02:0a:2f:79:d0:ff:c6:65:bd:0b:9e:48:49:ca:07: f1:e5:2b:c1:e3:4e:8f:97:69:a6:54:53:2d:63:7d:18:dc:8b: a1:63:83:b2:d0:69:a0:0a:20:11:03:70:ab:91:81:5a:72:17: 4f:18:f0:02:3a:88:f5:ef:88:f1:ad:df:be:a9:17:a8:b0:5d: a2:4e:c0:2c:41:b1:39:f2:12:d2:43:89:f8:2c:aa:c4:0e:87: 52:26:c3:6f:21:13:9e:41:db:66:3f:8b:94:68:ce:6e:5a:3c: b5:22:b2:37:8a:2b:17:59:69:32:70:5d:b9:a2:3f:11:55:02: f9:4d:57:88 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDGowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTA5MjZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJENDIzQjc0QjM3RTZC MTQ1QTY1MjYyNjhFNUNEMEJFNjYxQ0Q1NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC69VpY9/IY2za9Gk74gBQ2FpnnyrvfYbShQZSGhfOq+Md0q14z dfbOozL4HGBR7489Xqsg9eKOTIm9IVXibh4iT/ux+Lr9rHFeALQUZVyr9m/a5yjD 34mQA7sOk3Rieuy5AP1ePc/KqGKN5c918Xj4wDxJ/2mrGlQIPgRDPUSaHzrSbu+G pLB+ZBUQvpALxKFGh6kIFi6jO19y5FGIq3nx+DcBzxnq0Jx0M1fAZ809XkGPr+Qy 7t7eIwJta0BiwXLSOVldarFr4bb6alzl35QDCvkw4Y3mKtQ1w07q9YRMi2jIEIM2 R3hyf2hV8IgZEjgYPqfl37zw66vs/tVt0JuzAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQULUI7dLN+axRaZSYmjlzQvmYc1XIwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0xVSTdkTE4tYXhSYVpTWW1qbHpRdm1Z YzFYSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLT+swDQYJ KoZIhvcNAQELBQADggEBAG7u8YhLU5fdnvVdVnS6tkDpHOyw1WeI3V3QoMxPgJXg eeakGW6kkXaiTg4ja4MyYFcrNOFpBGAsX9/TlYs02VfZRJAXyGY6yRK4Q0QUPSMx UTN4kFeFzCdSxbbC8srHkhc5ZDxxFEcuy+dthRFMNPwP3SWX/5omq2j2eVXHIKl/ lgIKL3nQ/8ZlvQueSEnKB/HlK8HjTo+XaaZUUy1jfRjci6Fjg7LQaaAKIBEDcKuR gVpyF08Y8AI6iPXviPGt376pF6iwXaJOwCxBsTnyEtJDifgsqsQOh1Imw28hE55B 22Y/i5Rozm5aPLUisjeKKxdZaTJwXbmiPxFVAvlNV4g= -----END CERTIFICATE-----Generated at Mon May 20 08:32:39 2024 by rpki-client on console-fra.rpki-client.org