$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/TBfkffPF_r9Vwvh--sIFqEFTld4.roa File: TBfkffPF_r9Vwvh--sIFqEFTld4.roa (raw, json) Hash identifier: dv/wGr+tuGAEyM5RS3TnT6cGO6rSV/6fKbc11HGbhuk= Subject key identifier: 4C:17:E4:7D:F3:C5:FE:BF:55:C2:F8:7E:FA:C2:05:A8:41:53:95:DE Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0BA9 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/TBfkffPF_r9Vwvh--sIFqEFTld4.roa Signing time: Fri 01 Sep 2023 08:50:51 +0000 ROA not before: Fri 01 Sep 2023 08:50:51 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18412 IP address blocks: 2401:e180:8960::/44 maxlen: 44 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2985 (0xba9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Sep 1 08:50:51 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=4C17E47DF3C5FEBF55C2F87EFAC205A8415395DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0a:ba:49:d8:19:b0:06:18:00:3f:a2:33:5b: 96:e9:af:6f:ff:87:9e:bb:0f:a8:69:da:4b:15:aa: ae:35:6a:e8:02:45:31:3d:f5:fc:27:10:a5:a7:08: e1:54:af:1a:19:b0:3b:73:99:c3:05:f3:0c:af:db: 4a:34:53:06:80:08:0e:97:36:51:c9:24:fc:75:4a: 01:f2:52:e7:27:99:7c:c0:04:00:97:ba:44:75:6a: 8a:50:51:81:a8:56:4f:b5:fa:df:10:2f:77:46:fd: 85:ec:b9:89:98:e0:c6:0b:a1:60:70:18:dc:fc:eb: 09:4b:5d:0b:f8:9f:3e:a1:e3:37:63:6f:df:d1:d6: 3e:f4:c2:d8:38:be:99:d0:b6:57:32:79:38:c5:f9: 00:eb:9e:90:11:f6:02:49:a1:46:ca:ff:3f:93:ae: 31:84:4e:d0:b5:cb:3d:7c:3a:6c:3f:60:da:d4:a2: 1f:40:f9:51:ef:ce:1b:e6:b4:53:7c:55:48:ed:31: 8c:ec:4b:76:5a:d2:80:91:2c:ec:48:89:16:35:63: 51:fa:9a:69:5d:9d:a7:e4:52:c3:7d:79:93:52:05: a2:64:ff:cb:a5:dc:7f:1a:58:7b:ee:2f:12:35:dd: fc:61:5b:47:9c:e1:0a:2a:f7:f9:f4:ea:7e:c4:49: 25:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:17:E4:7D:F3:C5:FE:BF:55:C2:F8:7E:FA:C2:05:A8:41:53:95:DE X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/TBfkffPF_r9Vwvh--sIFqEFTld4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:e180:8960::/44 Signature Algorithm: sha256WithRSAEncryption 16:40:4d:b7:d3:9c:b6:da:4e:78:f2:77:e8:ff:81:cd:38:ea: aa:8a:df:60:ee:df:05:6b:94:31:d1:80:e8:f8:4a:d7:19:b6: 71:db:33:27:8e:40:9e:3d:5d:bb:4c:cb:52:80:b0:40:19:a1: d0:eb:d3:6e:fc:8c:5d:1b:75:9d:7e:03:ac:52:68:a7:52:65: 5d:bf:b9:f8:59:00:88:79:67:b9:65:80:af:d7:74:d3:d5:7b: ef:7d:74:ae:cd:fb:70:4f:cd:8d:64:fe:37:f4:2b:af:2f:2a: 16:23:94:f9:37:b2:85:90:3e:a4:8a:87:b0:47:c2:bf:85:f6: 37:b4:9f:76:d2:b1:ff:e5:93:13:2e:18:20:a0:7d:be:01:2e: de:3b:46:8d:38:10:10:ee:63:b7:37:bb:67:8c:1e:39:ce:38: 58:6e:38:cf:f8:1b:26:70:72:42:d5:b3:64:1d:bc:1b:b3:9b: 19:43:e3:20:22:1a:fd:fe:86:40:f0:73:28:30:77:a8:e1:ab: 93:04:0b:17:53:c1:2b:23:66:89:77:56:65:ec:30:a8:ba:ac: ea:f3:4b:3a:1d:04:30:77:51:71:fc:1c:bb:c9:35:7c:4a:c2: 77:ff:c7:af:ca:3d:cc:98:15:c6:61:e6:bc:c9:cf:e0:6f:02: c9:ce:21:8f -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICC6kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzA5MDEw ODUwNTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDRDMTdFNDdERjNDNUZF QkY1NUMyRjg3RUZBQzIwNUE4NDE1Mzk1REUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMCrpJ2BmwBhgAP6IzW5bpr2//h567D6hp2ksVqq41augCRTE9 9fwnEKWnCOFUrxoZsDtzmcMF8wyv20o0UwaACA6XNlHJJPx1SgHyUucnmXzABACX ukR1aopQUYGoVk+1+t8QL3dG/YXsuYmY4MYLoWBwGNz86wlLXQv4nz6h4zdjb9/R 1j70wtg4vpnQtlcyeTjF+QDrnpAR9gJJoUbK/z+TrjGETtC1yz18Omw/YNrUoh9A +VHvzhvmtFN8VUjtMYzsS3Za0oCRLOxIiRY1Y1H6mmldnafkUsN9eZNSBaJk/8ul 3H8aWHvuLxI13fxhW0ec4Qoq9/n06n7ESSWDAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUTBfkffPF/r9Vwvh++sIFqEFTld4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1RCZmtmZlBGX3I5Vnd2aC0tc0lGcUVG VGxkNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkAeGAiWAw DQYJKoZIhvcNAQELBQADggEBABZATbfTnLbaTnjyd+j/gc046qqK32Du3wVrlDHR gOj4StcZtnHbMyeOQJ49XbtMy1KAsEAZodDr0278jF0bdZ1+A6xSaKdSZV2/ufhZ AIh5Z7llgK/XdNPVe+99dK7N+3BPzY1k/jf0K68vKhYjlPk3soWQPqSKh7BHwr+F 9je0n3bSsf/lkxMuGCCgfb4BLt47Ro04EBDuY7c3u2eMHjnOOFhuOM/4GyZwckLV s2QdvBuzmxlD4yAiGv3+hkDwcygwd6jhq5MECxdTwSsjZol3VmXsMKi6rOrzSzod BDB3UXH8HLvJNXxKwnf/x6/KPcyYFcZh5rzJz+BvAsnOIY8= -----END CERTIFICATE-----Generated at Mon May 20 22:04:47 2024 by rpki-client on console-fra.rpki-client.org