$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/RU7NMOPm8qqpgHaqvvXPSqyXDG4.roa File: RU7NMOPm8qqpgHaqvvXPSqyXDG4.roa (raw, json) Hash identifier: 6URPHhv6EU+/fG9jguSK6pUI16L0IrtZPGWHiMB0O30= Subject key identifier: 45:4E:CD:30:E3:E6:F2:AA:A9:80:76:AA:BE:F5:CF:4A:AC:97:0C:6E Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0D70 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/RU7NMOPm8qqpgHaqvvXPSqyXDG4.roa Signing time: Mon 15 Jan 2024 21:28:34 +0000 ROA not before: Mon 15 Jan 2024 21:28:34 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 210.58.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3440 (0xd70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:28:34 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=454ECD30E3E6F2AAA98076AABEF5CF4AAC970C6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:72:8f:c3:f8:5c:80:9c:b7:c4:20:99:55:f8: c0:d3:2f:b8:98:29:09:fd:62:55:34:47:db:e1:ab: ba:08:db:95:cc:48:cc:b5:10:4f:14:65:60:a4:04: cb:00:17:8c:51:61:2d:a3:b4:ba:e3:08:92:fa:a8: 8f:cf:e4:7d:36:88:03:fb:d6:b8:0c:1f:cd:84:2a: c7:0a:5d:5f:d1:b5:48:89:a4:6c:32:dc:7f:e6:7f: d1:e1:c1:59:f7:c9:20:0d:e7:13:c0:db:74:f9:bc: d0:35:98:fc:af:02:60:14:ed:06:2e:93:2b:95:6e: 9e:e9:ac:e7:83:49:72:1d:11:78:8c:a0:8d:cb:6f: 0b:f5:ab:40:97:7e:f0:52:10:3b:55:32:7c:09:35: 0d:a6:1a:61:91:a2:a5:e4:a3:35:98:5b:c6:0d:64: 15:e9:1c:89:cf:13:e9:16:cf:7c:cf:de:4b:03:68: 2c:9d:94:0a:32:09:cc:9e:92:9c:3b:79:8d:8a:ac: 03:5c:8c:8a:e2:f3:77:5f:0d:e0:b1:81:a4:b6:e8: 0f:9f:f2:91:2c:6d:e5:21:94:78:fb:14:3e:2a:ac: 30:1f:ee:74:f1:b6:10:07:22:b2:e2:b2:37:e1:ae: 12:78:9b:cc:e4:ab:39:3e:9b:ee:6f:4e:1b:d6:38: 13:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:4E:CD:30:E3:E6:F2:AA:A9:80:76:AA:BE:F5:CF:4A:AC:97:0C:6E X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/RU7NMOPm8qqpgHaqvvXPSqyXDG4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.58.88.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:73:82:22:52:ec:4b:a1:8e:71:db:cb:6a:9e:a5:d0:d3:41: ae:2a:6e:eb:9b:c1:be:a3:03:2f:cf:93:0d:ed:91:8f:e1:71: 8f:7a:60:78:2b:7e:f3:e4:5e:e5:15:ac:1a:5c:6c:e9:14:d6: b2:65:08:0c:5c:07:ba:1b:38:73:5b:6f:62:b2:69:5d:c0:e6: 0b:fb:78:60:7a:0e:eb:f9:7d:c6:dc:fa:9e:97:bc:84:06:75: 45:3f:d2:bf:7a:48:01:ce:32:50:d0:d5:06:23:a5:3d:3d:cb: 12:46:21:32:d9:6e:ac:67:a7:39:85:1a:6c:e8:bf:ea:be:52: 77:d2:5b:2a:b7:14:d5:b6:87:07:05:79:a7:d1:09:9f:ae:f3: c2:df:47:c7:c5:52:60:0c:88:f7:ef:45:85:62:62:62:c9:9f: a4:4b:28:84:59:2e:a7:b1:ec:bc:1d:9c:ac:04:ec:bf:71:30: 79:a4:bf:d6:57:33:a5:fb:1d:83:e0:96:0b:56:b0:46:39:17: 7d:c5:6b:10:56:36:e5:d6:94:4d:41:62:ef:23:98:50:03:32: ce:2e:42:1e:df:a1:7e:18:7d:9d:4d:46:9e:0c:a6:b3:6c:a1: b1:a8:ca:18:9c:b1:32:80:86:cd:f4:b7:d8:e7:b1:1d:e7:0f: c5:8e:95:2b -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDXAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI4MzRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQ1NEVDRDMwRTNFNkYy QUFBOTgwNzZBQUJFRjVDRjRBQUM5NzBDNkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaco/D+FyAnLfEIJlV+MDTL7iYKQn9YlU0R9vhq7oI25XMSMy1 EE8UZWCkBMsAF4xRYS2jtLrjCJL6qI/P5H02iAP71rgMH82EKscKXV/RtUiJpGwy 3H/mf9HhwVn3ySAN5xPA23T5vNA1mPyvAmAU7QYukyuVbp7prOeDSXIdEXiMoI3L bwv1q0CXfvBSEDtVMnwJNQ2mGmGRoqXkozWYW8YNZBXpHInPE+kWz3zP3ksDaCyd lAoyCcyekpw7eY2KrANcjIri83dfDeCxgaS26A+f8pEsbeUhlHj7FD4qrDAf7nTx thAHIrLisjfhrhJ4m8zkqzk+m+5vThvWOBNhAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQURU7NMOPm8qqpgHaqvvXPSqyXDG4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1JVN05NT1BtOHFxcGdIYXF2dlhQU3F5 WERHNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSOlgwDQYJ KoZIhvcNAQELBQADggEBAGpzgiJS7EuhjnHby2qepdDTQa4qbuubwb6jAy/Pkw3t kY/hcY96YHgrfvPkXuUVrBpcbOkU1rJlCAxcB7obOHNbb2KyaV3A5gv7eGB6Duv5 fcbc+p6XvIQGdUU/0r96SAHOMlDQ1QYjpT09yxJGITLZbqxnpzmFGmzov+q+UnfS Wyq3FNW2hwcFeafRCZ+u88LfR8fFUmAMiPfvRYViYmLJn6RLKIRZLqex7LwdnKwE 7L9xMHmkv9ZXM6X7HYPglgtWsEY5F33FaxBWNuXWlE1BYu8jmFADMs4uQh7foX4Y fZ1NRp4MprNsobGoyhicsTKAhs30t9jnsR3nD8WOlSs= -----END CERTIFICATE-----Generated at Mon May 20 08:32:39 2024 by rpki-client on console-fra.rpki-client.org