$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/OZqHbvj0e7nK_tnkkL4bUglmOP4.roa File: OZqHbvj0e7nK_tnkkL4bUglmOP4.roa (raw, json) Hash identifier: TXepoLvWowim15A2wrlqDv4pSEoV0YIO3eQT2APYHfU= Subject key identifier: 39:9A:87:6E:F8:F4:7B:B9:CA:FE:D9:E4:90:BE:1B:52:09:66:38:FE Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0BBC Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/OZqHbvj0e7nK_tnkkL4bUglmOP4.roa Signing time: Fri 01 Sep 2023 08:50:56 +0000 ROA not before: Fri 01 Sep 2023 08:50:56 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9674 IP address blocks: 2401:e180::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3004 (0xbbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Sep 1 08:50:56 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=399A876EF8F47BB9CAFED9E490BE1B52096638FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:dd:4f:57:73:6a:dc:f9:44:d8:71:1f:7f:0a: d7:f4:87:c3:79:7d:ad:f9:1f:d0:44:e4:63:ed:a9: 7c:5d:fd:cf:c9:d8:57:6c:1b:56:56:ae:66:6e:05: 48:81:8d:48:61:57:83:c2:6d:0e:e2:2c:1f:75:21: ec:a4:bd:e2:46:87:5a:15:36:e5:42:db:43:21:be: 94:8d:c4:2b:ec:dc:8b:ec:13:e9:e0:9c:70:33:72: 40:63:64:80:38:a1:c7:80:51:02:12:b2:34:e2:74: b7:e6:10:83:62:17:82:f3:e2:44:13:9c:4c:8b:41: 88:13:2a:5e:86:9c:a1:66:19:db:c6:39:b8:0d:d4: fe:ac:70:2e:83:7a:ff:df:82:ab:3d:ac:f7:a6:5f: 61:14:44:6d:a5:5b:91:1b:09:c4:6f:1e:5f:7b:b7: 72:02:cb:19:a1:bc:97:86:53:12:20:19:5b:d0:53: 85:5a:8d:b8:51:d2:a8:9a:17:0b:d8:3a:35:18:4d: 83:48:53:3b:23:03:60:73:f0:31:e9:7d:0e:44:7b: 66:5b:8f:15:36:7b:56:ba:bf:a1:fd:ba:1c:39:04: d5:e2:52:34:66:d3:e0:b4:73:18:aa:2f:02:85:f8: 8a:03:33:a3:45:3e:af:1e:59:5c:f4:22:a9:00:d6: 5d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:9A:87:6E:F8:F4:7B:B9:CA:FE:D9:E4:90:BE:1B:52:09:66:38:FE X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/OZqHbvj0e7nK_tnkkL4bUglmOP4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:e180::/32 Signature Algorithm: sha256WithRSAEncryption 77:51:3b:5d:f2:27:f6:cc:ef:6b:61:84:16:44:28:4e:3e:d2: df:d5:ab:54:b5:40:73:61:5f:ca:6f:66:d3:4b:ca:28:8a:5b: ee:29:6c:d7:a1:44:fb:83:66:66:8d:37:11:bb:60:1c:07:c9: d4:6a:b5:4a:2d:69:22:58:a1:6a:04:18:42:09:f7:f0:10:d1: 20:34:56:6b:30:a6:49:ed:c8:d8:c1:9b:80:59:d3:01:e9:95: ec:63:90:33:ab:72:5e:51:39:f8:02:50:d1:fb:5e:98:5a:4e: db:80:b2:18:9f:69:0e:57:bc:29:f3:83:68:55:ad:d6:b9:41: a2:fd:0d:47:c3:01:28:b3:fb:c7:77:f4:61:f3:f7:8b:04:48: 55:a0:ad:e6:20:51:5b:17:d4:ef:e2:b1:a8:a8:6d:d2:0d:de: 5b:24:2b:dc:65:5a:96:33:8f:5b:b9:80:fd:6e:37:3a:b6:5e: ec:e2:57:64:e0:a3:8f:88:80:93:e0:59:aa:20:88:2a:af:0c: c5:66:56:cb:ea:cb:39:b4:1e:91:33:49:5c:a5:11:c1:21:c6: 62:3d:96:58:df:53:3e:23:a8:1a:66:79:cc:4b:87:18:48:07: dd:62:d9:38:a8:6e:c5:62:3f:22:b6:42:18:64:33:50:1b:1b: 59:35:cf:6b -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICC7wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzA5MDEw ODUwNTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM5OUE4NzZFRjhGNDdC QjlDQUZFRDlFNDkwQkUxQjUyMDk2NjM4RkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC53U9Xc2rc+UTYcR9/Ctf0h8N5fa35H9BE5GPtqXxd/c/J2Fds G1ZWrmZuBUiBjUhhV4PCbQ7iLB91IeykveJGh1oVNuVC20MhvpSNxCvs3IvsE+ng nHAzckBjZIA4oceAUQISsjTidLfmEINiF4Lz4kQTnEyLQYgTKl6GnKFmGdvGObgN 1P6scC6Dev/fgqs9rPemX2EURG2lW5EbCcRvHl97t3ICyxmhvJeGUxIgGVvQU4Va jbhR0qiaFwvYOjUYTYNIUzsjA2Bz8DHpfQ5Ee2ZbjxU2e1a6v6H9uhw5BNXiUjRm 0+C0cxiqLwKF+IoDM6NFPq8eWVz0IqkA1l3PAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUOZqHbvj0e7nK/tnkkL4bUglmOP4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL09acUhidmowZTduS190bmtrTDRiVWds bU9QNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAeGAMA0G CSqGSIb3DQEBCwUAA4IBAQB3UTtd8if2zO9rYYQWRChOPtLf1atUtUBzYV/Kb2bT S8ooilvuKWzXoUT7g2ZmjTcRu2AcB8nUarVKLWkiWKFqBBhCCffwENEgNFZrMKZJ 7cjYwZuAWdMB6ZXsY5Azq3JeUTn4AlDR+16YWk7bgLIYn2kOV7wp84NoVa3WuUGi /Q1HwwEos/vHd/Rh8/eLBEhVoK3mIFFbF9Tv4rGoqG3SDd5bJCvcZVqWM49buYD9 bjc6tl7s4ldk4KOPiICT4FmqIIgqrwzFZlbL6ss5tB6RM0lcpRHBIcZiPZZY31M+ I6gaZnnMS4cYSAfdYtk4qG7FYj8itkIYZDNQGxtZNc9r -----END CERTIFICATE-----Generated at Mon May 20 08:58:19 2024 by rpki-client on console-ams.rpki-client.org