$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/UPHMl9-uaY4FKp25KjeflD0Ed18.roa File: UPHMl9-uaY4FKp25KjeflD0Ed18.roa (raw, json) Hash identifier: /Df6jXXeS3sGTtvdf/W4MhWo4x8hHdMu8YB96O5O+2w= Subject key identifier: 50:F1:CC:97:DF:AE:69:8E:05:2A:9D:B9:2A:37:9F:94:3D:04:77:5F Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0E5D Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/UPHMl9-uaY4FKp25KjeflD0Ed18.roa Signing time: Tue 07 May 2024 09:00:38 +0000 ROA not before: Tue 07 May 2024 09:00:38 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131591 IP address blocks: 222.250.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3677 (0xe5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: May 7 09:00:38 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=50F1CC97DFAE698E052A9DB92A379F943D04775F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3b:1a:07:ae:c5:13:59:90:34:55:7f:62:82: c4:af:6e:bc:68:ee:a2:74:b1:9b:bf:5d:4f:d1:4d: 96:92:b1:06:3c:6d:f3:57:6b:86:b4:4a:4c:ed:5f: fb:32:3c:95:89:67:c6:ce:1d:4e:80:64:9b:e2:47: 2d:5b:14:12:02:19:bf:fb:fb:19:e0:a6:55:04:74: 42:10:84:31:1e:4b:a0:be:8b:df:31:55:11:d7:0a: 5b:40:0d:c5:b6:f7:a2:be:99:f1:de:cc:67:b2:17: 39:43:58:76:e4:76:4b:69:2d:d1:f9:c0:bb:0f:f5: 7d:28:c4:fa:73:55:97:32:c1:54:59:cc:3a:6f:1c: 71:68:c3:44:df:c2:19:f6:36:a0:ae:99:fd:cf:59: b8:33:fd:09:a3:be:95:81:aa:a9:63:a7:df:b1:ff: ca:8a:b3:bb:77:2a:bd:38:62:b4:72:b7:2d:9f:17: e3:21:fc:6a:fd:9e:0e:09:fd:71:39:01:20:d2:2e: 7a:c2:7b:d2:54:78:5a:99:33:4a:34:02:25:df:6d: 72:b8:83:31:b1:ea:55:74:c5:af:c5:25:34:be:25: 52:65:67:11:b0:e6:9a:83:d0:c3:30:6e:d0:ac:a9: fe:d9:b0:95:f6:4f:c9:99:2b:41:ca:d1:5e:d2:4a: a2:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:F1:CC:97:DF:AE:69:8E:05:2A:9D:B9:2A:37:9F:94:3D:04:77:5F X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/UPHMl9-uaY4FKp25KjeflD0Ed18.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 222.250.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8c:da:54:04:e7:d0:55:8b:2a:30:9f:0e:dc:81:ca:35:8d:69: 4b:f2:74:bf:1f:22:7f:c8:38:10:c4:d5:09:18:1e:1b:9f:bd: 5e:96:ca:f8:03:c8:1b:0b:fb:ad:50:a0:fd:96:50:e5:68:50: 4c:9d:d7:ce:8b:5c:11:0f:2f:4c:8b:68:f2:94:a7:e6:76:16: 9d:56:7f:d5:06:b0:f6:59:a1:f4:67:8f:ac:e8:8b:af:92:c1: 6a:8e:d1:8a:9a:bd:5e:f0:36:f7:f6:70:de:88:75:4d:a7:3b: 7e:2e:c5:43:cd:c6:1b:a0:4e:ec:a1:1b:b2:5c:aa:ff:1d:9c: 6e:5e:56:14:42:a6:19:63:a0:36:ad:7f:db:74:0b:f0:32:55: 05:47:c9:66:f9:08:ac:de:b0:66:a0:54:d3:11:40:5f:fc:34: 3e:dc:80:88:59:e0:ec:a5:f5:47:68:eb:f3:e9:3b:02:2a:6b: bd:78:2e:ff:83:57:a5:52:e7:4e:9c:11:69:47:9b:1c:0e:ca: e4:17:3a:34:9c:c7:e4:04:e8:db:87:f2:11:26:51:a8:66:95: 0a:15:22:de:46:d4:44:ff:cc:5e:eb:6b:eb:a7:3d:a5:05:3c: 1c:4b:be:de:a8:e6:3a:ef:62:4b:6a:aa:30:88:59:02:c5:b8: 33:70:d0:38 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICDl0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA1MDcw OTAwMzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDUwRjFDQzk3REZBRTY5 OEUwNTJBOURCOTJBMzc5Rjk0M0QwNDc3NUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiOxoHrsUTWZA0VX9igsSvbrxo7qJ0sZu/XU/RTZaSsQY8bfNX a4a0SkztX/syPJWJZ8bOHU6AZJviRy1bFBICGb/7+xngplUEdEIQhDEeS6C+i98x VRHXCltADcW296K+mfHezGeyFzlDWHbkdktpLdH5wLsP9X0oxPpzVZcywVRZzDpv HHFow0Tfwhn2NqCumf3PWbgz/QmjvpWBqqljp9+x/8qKs7t3Kr04YrRyty2fF+Mh /Gr9ng4J/XE5ASDSLnrCe9JUeFqZM0o0AiXfbXK4gzGx6lV0xa/FJTS+JVJlZxGw 5pqD0MMwbtCsqf7ZsJX2T8mZK0HK0V7SSqIRAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUUPHMl9+uaY4FKp25KjeflD0Ed18wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1VQSE1sOS11YVk0RktwMjVLamVmbEQw RWQxOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDe+jANBgkq hkiG9w0BAQsFAAOCAQEAjNpUBOfQVYsqMJ8O3IHKNY1pS/J0vx8if8g4EMTVCRge G5+9XpbK+APIGwv7rVCg/ZZQ5WhQTJ3XzotcEQ8vTIto8pSn5nYWnVZ/1Qaw9lmh 9GePrOiLr5LBao7Ripq9XvA29/Zw3oh1Tac7fi7FQ83GG6BO7KEbslyq/x2cbl5W FEKmGWOgNq1/23QL8DJVBUfJZvkIrN6wZqBU0xFAX/w0PtyAiFng7KX1R2jr8+k7 AiprvXgu/4NXpVLnTpwRaUebHA7K5Bc6NJzH5ATo24fyESZRqGaVChUi3kbURP/M Xutr66c9pQU8HEu+3qjmOu9iS2qqMIhZAsW4M3DQOA== -----END CERTIFICATE-----Generated at Mon May 20 08:58:19 2024 by rpki-client on console-ams.rpki-client.org