$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/NsYfuCMgfYaYTgu9olqf5M2KLp8.roa File: NsYfuCMgfYaYTgu9olqf5M2KLp8.roa (raw, json) Hash identifier: W8mj5ZT5vAWzX2si1GICe4Tu2iDnE580aF5Wikx4FAI= Subject key identifier: 36:C6:1F:B8:23:20:7D:86:98:4E:0B:BD:A2:5A:9F:E4:CD:8A:2E:9F Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0BA7 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/NsYfuCMgfYaYTgu9olqf5M2KLp8.roa Signing time: Fri 01 Sep 2023 08:50:50 +0000 ROA not before: Fri 01 Sep 2023 08:50:50 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18412 IP address blocks: 2401:e180:8800::/44 maxlen: 44 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2983 (0xba7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Sep 1 08:50:50 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=36C61FB823207D86984E0BBDA25A9FE4CD8A2E9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:69:60:74:66:7b:23:8e:43:89:b9:6e:91:d4: 03:cf:59:54:3e:da:1b:40:df:3e:d5:3b:3c:dd:62: 54:5f:97:bc:db:6c:f4:f8:34:a6:fd:1b:de:47:8f: 62:fc:b4:5c:c0:f1:81:9d:03:54:18:64:50:45:e5: bf:35:67:5b:06:27:26:75:7a:9c:98:82:1e:80:30: 57:02:71:e6:e5:6a:ec:37:c4:c0:0f:ee:d6:94:c3: 3e:ec:64:0d:a3:b5:47:86:9e:bd:53:86:e4:0f:8b: da:86:dc:8d:1a:d8:48:93:7b:3e:2d:11:44:08:fc: a9:86:9d:32:c8:12:08:4f:8f:97:74:43:f2:69:dc: 03:3a:53:2f:16:1e:5c:1d:1f:bf:6e:10:8d:27:d1: 21:33:f1:ba:0a:bc:4a:9e:ff:9d:dc:7a:57:84:4d: f9:d6:c9:1d:70:e1:37:06:8f:62:06:02:3c:26:5a: ec:42:b9:f7:92:b0:b8:26:c8:85:e7:4d:53:3c:fd: 21:23:63:28:4f:4a:3e:5f:a3:c8:bb:fb:6d:29:8b: 05:a0:21:40:fc:41:27:cf:83:b3:f9:e3:70:e6:42: 2a:ce:2e:47:52:47:fd:65:26:8a:84:0c:06:d1:86: aa:73:38:3f:07:fe:e6:1a:98:c5:c4:2c:fd:29:c1: 5a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:C6:1F:B8:23:20:7D:86:98:4E:0B:BD:A2:5A:9F:E4:CD:8A:2E:9F X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/NsYfuCMgfYaYTgu9olqf5M2KLp8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:e180:8800::/44 Signature Algorithm: sha256WithRSAEncryption 1e:e7:1c:03:81:1e:f8:e7:e2:ca:cb:de:13:5e:64:f8:42:a4: 32:57:c0:94:e1:8f:4c:38:70:57:cf:78:80:0f:f4:d3:48:30: d8:38:ad:8c:06:b0:5a:b3:0a:0e:72:8e:6f:07:47:0f:00:27: 8f:f2:ce:08:cb:ac:f8:48:12:c6:fc:99:d9:c9:5c:20:59:df: 95:fa:b4:41:07:e2:d5:90:e9:1e:7f:75:b1:41:47:93:44:ed: cd:a8:09:0e:43:09:0c:bf:ee:45:64:47:2a:87:9d:11:e1:8a: aa:9f:c9:78:f2:00:75:bf:3c:9c:9a:49:c9:7e:0e:b0:2e:d1: eb:1a:eb:53:93:7b:68:c1:fb:65:19:8d:e7:68:80:28:16:3b: 76:08:5e:f3:af:05:3c:4a:bc:a5:71:0b:07:bd:79:e2:1d:e8: 1e:74:42:4e:cf:07:eb:1c:4f:20:50:31:4b:aa:22:08:55:31: 3d:55:be:ca:39:53:b1:cd:5d:34:b0:1e:27:ee:ad:cd:c0:d6: 98:00:f3:6f:07:fd:c3:3f:73:d6:09:94:cd:14:b0:42:d0:42: e3:ff:62:5b:16:4d:1b:1c:ed:01:4b:bb:41:19:5d:1c:12:2e: 6d:f0:ba:3e:c3:c1:e0:69:b4:48:1d:10:fc:85:70:12:4e:89: 1c:f2:a4:e7 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICC6cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzA5MDEw ODUwNTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM2QzYxRkI4MjMyMDdE ODY5ODRFMEJCREEyNUE5RkU0Q0Q4QTJFOUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCWaWB0ZnsjjkOJuW6R1APPWVQ+2htA3z7VOzzdYlRfl7zbbPT4 NKb9G95Hj2L8tFzA8YGdA1QYZFBF5b81Z1sGJyZ1epyYgh6AMFcCceblauw3xMAP 7taUwz7sZA2jtUeGnr1ThuQPi9qG3I0a2EiTez4tEUQI/KmGnTLIEghPj5d0Q/Jp 3AM6Uy8WHlwdH79uEI0n0SEz8boKvEqe/53celeETfnWyR1w4TcGj2IGAjwmWuxC ufeSsLgmyIXnTVM8/SEjYyhPSj5fo8i7+20piwWgIUD8QSfPg7P543DmQirOLkdS R/1lJoqEDAbRhqpzOD8H/uYamMXELP0pwVo5AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUNsYfuCMgfYaYTgu9olqf5M2KLp8wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL05zWWZ1Q01nZllhWVRndTlvbHFmNU0y S0xwOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkAeGAiAAw DQYJKoZIhvcNAQELBQADggEBAB7nHAOBHvjn4srL3hNeZPhCpDJXwJThj0w4cFfP eIAP9NNIMNg4rYwGsFqzCg5yjm8HRw8AJ4/yzgjLrPhIEsb8mdnJXCBZ35X6tEEH 4tWQ6R5/dbFBR5NE7c2oCQ5DCQy/7kVkRyqHnRHhiqqfyXjyAHW/PJyaScl+DrAu 0esa61OTe2jB+2UZjedogCgWO3YIXvOvBTxKvKVxCwe9eeId6B50Qk7PB+scTyBQ MUuqIghVMT1Vvso5U7HNXTSwHifurc3A1pgA828H/cM/c9YJlM0UsELQQuP/YlsW TRsc7QFLu0EZXRwSLm3wuj7DweBptEgdEPyFcBJOiRzypOc= -----END CERTIFICATE-----Generated at Mon May 20 08:58:19 2024 by rpki-client on console-ams.rpki-client.org