$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/MuyB-Gbf6v4t53c6fqXj9GDgIM8.roa File: MuyB-Gbf6v4t53c6fqXj9GDgIM8.roa (raw, json) Hash identifier: Btxb9/QpVgtQoWpMlw+bS+ny+AlMJT2djcqzuXwXas4= Subject key identifier: 32:EC:81:F8:66:DF:EA:FE:2D:E7:77:3A:7E:A5:E3:F4:60:E0:20:CF Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0DA8 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/MuyB-Gbf6v4t53c6fqXj9GDgIM8.roa Signing time: Mon 15 Jan 2024 21:29:59 +0000 ROA not before: Mon 15 Jan 2024 21:29:59 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18419 IP address blocks: 124.218.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3496 (0xda8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:29:59 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=32EC81F866DFEAFE2DE7773A7EA5E3F460E020CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0b:e2:d0:a3:1b:8d:28:8d:78:12:5c:8a:0f: b3:98:c0:e8:2b:ad:06:bb:7e:e2:9d:69:30:72:6e: c3:ec:4c:dd:68:f7:a9:da:fe:50:a2:a4:2f:ed:31: da:f0:d8:a0:76:83:bc:21:0d:54:31:a0:ef:0e:19: e8:b0:3d:ed:37:dc:c4:72:f1:5c:7c:ce:2a:8b:da: a7:ff:d9:8e:90:f1:19:b1:47:3b:6d:7f:2d:76:4e: de:12:94:2e:ec:0a:b0:30:db:99:d5:84:3b:60:f7: 5a:86:3c:8e:73:c8:f4:bb:f1:82:1e:6f:f0:ad:a4: fe:33:36:56:41:c9:9e:66:8c:2e:09:aa:42:50:60: 40:c5:4e:47:be:ae:f9:b1:a6:8f:9e:8e:cc:1f:0e: 89:48:d3:5f:38:90:bf:bc:6d:8c:12:64:34:bf:03: 17:99:17:0e:54:2c:ec:a1:18:f1:b0:be:d9:07:6e: b4:e0:0a:51:5a:7f:d5:a8:42:29:bc:e9:50:0e:2d: e5:92:bd:28:7a:11:84:06:3c:69:85:dc:c1:0d:91: 69:d4:aa:97:95:2d:50:6f:39:50:44:d6:a3:a6:61: 08:41:39:2b:e0:f1:81:dd:6f:ee:59:0b:b8:55:eb: 5e:b8:47:04:70:b8:28:4a:19:1f:b4:cf:64:0f:64: b6:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:EC:81:F8:66:DF:EA:FE:2D:E7:77:3A:7E:A5:E3:F4:60:E0:20:CF X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/MuyB-Gbf6v4t53c6fqXj9GDgIM8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.192.0/18 Signature Algorithm: sha256WithRSAEncryption 00:c0:f7:d3:45:eb:f4:53:b2:18:70:1b:34:a9:a8:cf:d7:12: 64:1f:f7:2e:b7:5d:9a:94:ff:03:02:ce:ad:7f:97:08:8e:b3: 16:68:9c:e7:26:d7:27:16:ea:96:71:e0:50:5e:bc:17:18:f4: d7:6b:0c:54:ba:e6:ed:36:8f:7c:04:ac:59:67:bd:69:84:c6: 4e:54:30:c9:f0:1f:f4:86:e1:dd:fc:25:39:6e:14:ea:c7:60: 46:5d:22:40:57:47:d5:92:0e:17:d9:1c:8b:dd:17:47:67:be: 6f:f3:f0:b6:c3:fe:22:7d:95:da:8e:a2:1c:2d:20:b0:27:23: 46:c3:12:63:08:a4:68:1a:5c:5e:1d:81:56:1a:b7:98:b3:d2: 9d:4a:9b:13:58:72:f2:61:dc:dd:fc:31:d0:77:36:15:dc:48: 32:05:66:a4:64:8c:57:46:51:78:4c:f6:4a:a2:08:98:53:ef: 89:63:61:1a:fe:88:4f:e4:db:b1:58:be:cd:de:5c:1b:c6:f1: 72:a7:21:da:a8:ee:9f:57:40:b7:9f:84:24:64:eb:cd:1e:de: ab:2c:93:11:2d:e8:b3:ca:eb:00:52:50:f9:77:89:8c:df:47: 15:54:5c:0f:18:33:e9:85:62:f1:f8:14:a8:4b:63:ca:f0:0a: 4a:ab:1f:9a -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDagwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI5NTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDMyRUM4MUY4NjZERkVB RkUyREU3NzczQTdFQTVFM0Y0NjBFMDIwQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMC+LQoxuNKI14ElyKD7OYwOgrrQa7fuKdaTBybsPsTN1o96na /lCipC/tMdrw2KB2g7whDVQxoO8OGeiwPe033MRy8Vx8ziqL2qf/2Y6Q8RmxRztt fy12Tt4SlC7sCrAw25nVhDtg91qGPI5zyPS78YIeb/CtpP4zNlZByZ5mjC4JqkJQ YEDFTke+rvmxpo+ejswfDolI0184kL+8bYwSZDS/AxeZFw5ULOyhGPGwvtkHbrTg ClFaf9WoQim86VAOLeWSvSh6EYQGPGmF3MENkWnUqpeVLVBvOVBE1qOmYQhBOSvg 8YHdb+5ZC7hV6164RwRwuChKGR+0z2QPZLZpAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUMuyB+Gbf6v4t53c6fqXj9GDgIM8wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL011eUItR2JmNnY0dDUzYzZmcVhqOUdE Z0lNOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ82sAwDQYJ KoZIhvcNAQELBQADggEBAADA99NF6/RTshhwGzSpqM/XEmQf9y63XZqU/wMCzq1/ lwiOsxZonOcm1ycW6pZx4FBevBcY9NdrDFS65u02j3wErFlnvWmExk5UMMnwH/SG 4d38JTluFOrHYEZdIkBXR9WSDhfZHIvdF0dnvm/z8LbD/iJ9ldqOohwtILAnI0bD EmMIpGgaXF4dgVYat5iz0p1KmxNYcvJh3N38MdB3NhXcSDIFZqRkjFdGUXhM9kqi CJhT74ljYRr+iE/k27FYvs3eXBvG8XKnIdqo7p9XQLefhCRk680e3qsskxEt6LPK 6wBSUPl3iYzfRxVUXA8YM+mFYvH4FKhLY8rwCkqrH5o= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:43 2024 by rpki-client on console-ams.rpki-client.org