$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/OvRCG6kg1G7Cct3IxtgisauPp7Y.roa File: OvRCG6kg1G7Cct3IxtgisauPp7Y.roa (raw, json) Hash identifier: N316zmSRD2oODApUNwU3F7beDyXuCO81dKGOhwq9f4U= Subject key identifier: 3A:F4:42:1B:A9:20:D4:6E:C2:72:DD:C8:C6:D8:22:B1:AB:8F:A7:B6 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0BB7 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/OvRCG6kg1G7Cct3IxtgisauPp7Y.roa Signing time: Fri 01 Sep 2023 08:50:54 +0000 ROA not before: Fri 01 Sep 2023 08:50:54 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9674 IP address blocks: 27.240.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2999 (0xbb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Sep 1 08:50:54 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=3AF4421BA920D46EC272DDC8C6D822B1AB8FA7B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7b:c1:2e:78:1a:ec:3f:a5:dd:24:2d:55:ba: cd:a4:18:6b:9e:b3:57:d6:68:ac:32:bb:b3:45:d2: ca:8a:1d:96:17:f4:10:cd:cf:f2:b4:83:41:91:c9: ad:2a:61:3d:0d:fa:a0:7f:5e:f3:c1:6e:72:ff:3e: dd:bc:57:48:6e:c1:14:0e:92:c9:53:86:5a:61:e8: 29:75:dc:5c:26:f2:63:cc:27:ed:0f:a7:68:28:0a: e0:13:f2:4d:8a:bc:28:9a:2e:38:79:d9:f6:c7:e6: 36:38:ef:ff:ea:06:b3:50:0c:80:d3:d6:35:99:31: 80:29:bc:1f:1e:f1:de:92:b3:01:53:09:1e:85:20: e8:a0:3c:a3:54:8e:f8:24:7b:0d:b4:e6:81:08:34: d3:6e:50:53:9b:45:4c:43:8b:33:f8:b9:f3:44:96: 55:6f:ac:ca:bd:56:07:73:2b:de:76:fd:e9:00:a1: c8:a1:fb:04:bf:d8:1e:a2:28:6c:c7:5f:1c:fe:ae: 6a:2b:e9:0e:2d:ac:63:ae:2e:c0:0a:be:03:81:85: 54:73:bb:df:7d:09:94:ea:88:73:c7:57:e3:4a:07: 2d:52:07:fa:83:76:bb:cd:7e:d0:e7:46:ae:c8:1b: 17:8d:b5:50:e4:4c:99:c0:cc:2a:93:77:76:8a:49: 0f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:F4:42:1B:A9:20:D4:6E:C2:72:DD:C8:C6:D8:22:B1:AB:8F:A7:B6 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/OvRCG6kg1G7Cct3IxtgisauPp7Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.240.0.0/13 Signature Algorithm: sha256WithRSAEncryption 29:ba:65:36:1e:82:c8:5a:d3:c2:42:95:96:82:89:46:ac:9c: cd:73:f1:f7:e8:03:6e:18:5b:fc:b7:68:49:4d:db:e9:55:b0: 4a:f5:d0:5d:8f:e1:89:90:f8:7d:3f:4a:99:a6:11:e4:c8:1f: a5:15:e7:1a:a1:a8:55:e0:49:5f:77:58:88:58:a0:ab:c7:13: b6:95:f0:73:c1:bf:0f:54:14:15:5c:22:6c:66:39:a4:a7:2b: ba:69:ad:da:b0:c0:0e:8c:80:3d:00:09:c8:ac:8e:d1:e0:28: c2:b6:a2:69:c0:e4:ff:0a:b2:73:ad:a3:98:d8:53:03:4f:12: 27:3b:4c:d3:82:ab:3a:36:45:63:55:88:a1:ca:4c:7a:51:18: cb:cd:44:48:b5:e5:c8:aa:3e:1f:ec:92:92:18:7a:13:34:42: dc:b1:65:de:86:7e:6c:b2:c9:72:e7:a3:08:12:2f:ad:27:9a: dc:98:ef:36:2f:db:7e:b0:e2:eb:d0:0d:ed:7b:22:ad:3f:e3: cd:bc:47:71:a9:7a:8d:ae:ea:66:81:73:b0:81:23:94:9e:f2: d1:91:81:3a:09:98:55:06:ff:67:e9:e9:2c:88:98:35:17:1a: 13:ed:d3:c8:54:50:f2:bc:3e:e2:0a:5c:0c:c5:f0:89:cc:a1: 6c:6f:33:45 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICC7cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzA5MDEw ODUwNTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDNBRjQ0MjFCQTkyMEQ0 NkVDMjcyRERDOEM2RDgyMkIxQUI4RkE3QjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCte8EueBrsP6XdJC1Vus2kGGues1fWaKwyu7NF0sqKHZYX9BDN z/K0g0GRya0qYT0N+qB/XvPBbnL/Pt28V0huwRQOkslThlph6Cl13Fwm8mPMJ+0P p2goCuAT8k2KvCiaLjh52fbH5jY47//qBrNQDIDT1jWZMYApvB8e8d6SswFTCR6F IOigPKNUjvgkew205oEINNNuUFObRUxDizP4ufNEllVvrMq9VgdzK952/ekAocih +wS/2B6iKGzHXxz+rmor6Q4trGOuLsAKvgOBhVRzu999CZTqiHPHV+NKBy1SB/qD drvNftDnRq7IGxeNtVDkTJnAzCqTd3aKSQ8pAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUOvRCG6kg1G7Cct3IxtgisauPp7YwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL092UkNHNmtnMUc3Q2N0M0l4dGdpc2F1 UHA3WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwMb8DANBgkq hkiG9w0BAQsFAAOCAQEAKbplNh6CyFrTwkKVloKJRqyczXPx9+gDbhhb/LdoSU3b 6VWwSvXQXY/hiZD4fT9KmaYR5MgfpRXnGqGoVeBJX3dYiFigq8cTtpXwc8G/D1QU FVwibGY5pKcrummt2rDADoyAPQAJyKyO0eAowraiacDk/wqyc62jmNhTA08SJztM 04KrOjZFY1WIocpMelEYy81ESLXlyKo+H+ySkhh6EzRC3LFl3oZ+bLLJcuejCBIv rSea3JjvNi/bfrDi69AN7XsirT/jzbxHcal6ja7qZoFzsIEjlJ7y0ZGBOgmYVQb/ Z+npLIiYNRcaE+3TyFRQ8rw+4gpcDMXwicyhbG8zRQ== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:43 2024 by rpki-client on console-ams.rpki-client.org