$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/QOsh5ZcJNXfY9hAP3hgCIlFeh64.roa File: QOsh5ZcJNXfY9hAP3hgCIlFeh64.roa (raw, json) Hash identifier: +JDobQfoY1oPraPtmHU1BMsD1kTmKXNpoXFqEsK8SJQ= Subject key identifier: 40:EB:21:E5:97:09:35:77:D8:F6:10:0F:DE:18:02:22:51:5E:87:AE Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0C19 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/QOsh5ZcJNXfY9hAP3hgCIlFeh64.roa Signing time: Fri 05 Jan 2024 11:05:06 +0000 ROA not before: Fri 05 Jan 2024 11:05:06 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 218.184.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 13:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3097 (0xc19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 5 11:05:06 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=40EB21E597093577D8F6100FDE180222515E87AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b4:a1:e5:ff:97:71:38:b5:ec:6c:a6:7c:1a: 48:16:85:09:91:6e:38:89:ac:43:69:bd:d6:5c:30: a9:b9:61:b5:38:ab:c5:2e:b2:0c:ce:c6:2e:93:4f: b2:e8:fe:e9:c0:b6:7c:c6:87:20:69:ae:6d:ea:cc: a7:17:98:2a:91:08:d9:3b:75:1c:66:8d:8a:d0:41: da:00:38:b0:55:3a:e1:62:9d:56:9d:6b:b4:5d:da: ef:d5:d4:0f:ef:41:c2:4e:84:29:b2:f4:91:b2:75: de:73:86:9c:c9:a4:5b:bd:d5:53:3d:6c:93:a5:8d: db:b4:f0:9b:d2:3e:ce:b3:f7:af:b1:a6:b5:5a:7f: c9:66:24:f4:a7:ec:f8:ad:f7:4b:17:d6:bc:c6:7e: 01:02:cf:9a:ee:2e:ec:e8:cc:02:35:9b:de:5a:ed: dc:fa:c1:99:48:6e:17:ac:5f:ce:13:76:54:77:b0: e2:70:bf:e8:d4:a3:ef:3f:98:35:34:94:c2:de:b3: 73:7a:02:d2:80:94:a4:31:b9:12:8b:ee:fa:5e:fc: b9:97:b8:27:58:cf:a4:df:1a:93:b3:f2:5d:ec:db: 1b:46:ce:ac:33:db:a4:b5:42:8d:5f:5a:1c:73:a8: 69:80:83:1c:ec:96:33:5f:a1:51:79:63:47:28:ed: b0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:EB:21:E5:97:09:35:77:D8:F6:10:0F:DE:18:02:22:51:5E:87:AE X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/QOsh5ZcJNXfY9hAP3hgCIlFeh64.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.184.0.0/16 Signature Algorithm: sha256WithRSAEncryption 43:8b:61:51:02:b9:21:ab:0b:b7:8e:6b:85:43:bc:fa:48:c9: f3:f6:2c:7d:ac:d4:1d:39:79:00:4d:5e:eb:1b:c6:e6:fa:3a: 02:50:f6:85:0c:55:86:1d:3e:fe:53:c7:de:74:11:19:85:d0: 17:06:10:20:39:ed:c4:f0:7f:dc:90:58:11:c4:76:8d:3c:96: fb:b9:12:51:08:9e:4a:c5:db:cf:3d:2b:56:63:da:95:88:01: 3a:a1:a0:7c:cc:2d:f1:1b:33:43:33:92:a1:80:f8:44:23:26: a7:98:5c:11:02:64:ed:02:e6:17:5d:12:8a:d4:a1:3e:ff:a3: fc:83:54:91:ab:74:3a:14:dd:1c:eb:51:9e:fa:6d:90:3a:1c: d5:8f:58:5b:fb:f7:29:6e:3a:47:0b:d9:d0:c6:72:94:35:8d: 78:3b:a4:d5:f2:37:fa:7e:5f:61:e7:40:9a:de:cb:c6:d9:6a: 4c:45:f1:a0:71:64:82:25:08:f9:8b:e8:3b:52:fc:bf:d5:ab: d5:7b:4e:e0:d6:88:6b:09:32:a7:53:33:4e:1c:41:da:46:ca: b6:80:84:34:00:9b:d6:13:90:96:5b:22:c5:22:23:fc:03:b0: e0:13:78:84:3c:10:fc:e9:ac:50:4f:8e:8a:2e:75:3f:33:7e: 48:59:bc:58 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICDBkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMDUx MTA1MDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQwRUIyMUU1OTcwOTM1 NzdEOEY2MTAwRkRFMTgwMjIyNTE1RTg3QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhtKHl/5dxOLXsbKZ8GkgWhQmRbjiJrENpvdZcMKm5YbU4q8Uu sgzOxi6TT7Lo/unAtnzGhyBprm3qzKcXmCqRCNk7dRxmjYrQQdoAOLBVOuFinVad a7Rd2u/V1A/vQcJOhCmy9JGydd5zhpzJpFu91VM9bJOljdu08JvSPs6z96+xprVa f8lmJPSn7Pit90sX1rzGfgECz5ruLuzozAI1m95a7dz6wZlIbhesX84TdlR3sOJw v+jUo+8/mDU0lMLes3N6AtKAlKQxuRKL7vpe/LmXuCdYz6TfGpOz8l3s2xtGzqwz 26S1Qo1fWhxzqGmAgxzsljNfoVF5Y0co7bCbAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUQOsh5ZcJNXfY9hAP3hgCIlFeh64wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1FPc2g1WmNKTlhmWTloQVAzaGdDSWxG ZWg2NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDauDANBgkq hkiG9w0BAQsFAAOCAQEAQ4thUQK5IasLt45rhUO8+kjJ8/YsfazUHTl5AE1e6xvG 5vo6AlD2hQxVhh0+/lPH3nQRGYXQFwYQIDntxPB/3JBYEcR2jTyW+7kSUQieSsXb zz0rVmPalYgBOqGgfMwt8RszQzOSoYD4RCMmp5hcEQJk7QLmF10SitShPv+j/INU kat0OhTdHOtRnvptkDoc1Y9YW/v3KW46RwvZ0MZylDWNeDuk1fI3+n5fYedAmt7L xtlqTEXxoHFkgiUI+YvoO1L8v9Wr1XtO4NaIawkyp1MzThxB2kbKtoCENACb1hOQ llsixSIj/AOw4BN4hDwQ/OmsUE+Oii51PzN+SFm8WA== -----END CERTIFICATE-----Generated at Sun Jun 2 19:20:43 2024 by rpki-client on console-fra.rpki-client.org