$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/UqQoVddes9WfYKG_JBY7jvm2M1M.roa File: UqQoVddes9WfYKG_JBY7jvm2M1M.roa (raw, json) Hash identifier: ga5gvGpuKvHa9egCfOmAe3ug1Ct69C2UaguEVFsnTOE= Subject key identifier: 52:A4:28:55:D7:5E:B3:D5:9F:60:A1:BF:24:16:3B:8E:F9:B6:33:53 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0D54 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/UqQoVddes9WfYKG_JBY7jvm2M1M.roa Signing time: Mon 15 Jan 2024 21:25:59 +0000 ROA not before: Mon 15 Jan 2024 21:25:59 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 202.178.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3412 (0xd54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:25:59 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=52A42855D75EB3D59F60A1BF24163B8EF9B63353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b1:5d:34:40:27:c0:2e:d1:9d:a2:0a:74:02: 54:c9:e9:3f:b6:6f:82:79:48:37:92:3e:73:4e:1c: 16:8f:79:5d:35:7f:36:df:52:e3:71:3d:4d:d9:bd: b2:66:cf:02:81:bb:40:1b:78:9d:ea:7e:b9:f1:5e: 54:8a:ef:86:06:16:67:11:5f:dd:ec:f5:e9:c9:ac: 34:40:91:d0:b0:09:fb:8b:12:a4:a3:83:3a:14:c0: ed:c6:7f:a3:af:9a:24:67:0c:16:92:19:3b:f5:ed: f8:7e:bf:da:60:c1:bb:b6:40:dd:47:33:5f:f5:8e: ca:dc:10:19:26:70:42:e5:ad:97:47:3e:4d:e2:75: 97:e8:38:28:42:e3:ba:a8:c3:65:11:15:b4:13:a1: ab:b1:36:a9:62:4b:5d:c0:be:de:d5:23:ea:cc:67: df:f1:f5:1f:ea:c6:1e:6b:79:85:4e:6d:44:18:5f: ec:ab:f0:11:b3:4a:28:89:f7:e4:b4:66:eb:2b:9d: be:1d:ff:28:e6:ca:41:b2:24:d6:39:56:ab:2d:40: 81:67:d8:8a:b8:20:03:10:9b:b7:c7:9f:41:3a:88: ab:fa:06:72:0a:80:9a:bd:c8:da:fd:d6:24:87:57: 30:d1:af:0e:d3:b5:b5:d8:ce:ca:21:d5:15:7e:25: 2d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A4:28:55:D7:5E:B3:D5:9F:60:A1:BF:24:16:3B:8E:F9:B6:33:53 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/UqQoVddes9WfYKG_JBY7jvm2M1M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.178.128.0/17 Signature Algorithm: sha256WithRSAEncryption b0:e5:bf:50:9f:2e:90:7f:d4:e1:63:43:69:27:0c:72:ee:bb: 00:a5:4b:84:e4:d0:0e:6b:6c:f1:3c:63:c6:d2:da:c4:cc:f4: dc:62:8e:79:41:14:ec:3c:54:72:93:dc:09:e5:31:06:0f:9b: 64:d3:f9:88:ad:89:94:14:b0:bb:3e:6d:7c:f3:8d:72:5d:52: 95:c1:b0:ed:2d:ae:d3:a4:41:94:08:60:23:20:1f:22:f4:51: f8:a4:61:69:ff:1b:eb:b8:86:75:4a:6d:a6:7e:b5:83:b2:64: 2d:2e:e1:20:34:07:81:94:92:89:d8:63:91:d5:54:d1:cb:c5: 94:57:4a:48:42:d2:d4:c0:a9:0d:46:0b:9f:9c:dc:5a:43:e3: 0f:3c:0c:74:d5:fc:a7:e7:94:55:fd:87:7e:a7:55:27:21:ee: 5e:89:4b:be:15:7f:7e:47:89:c1:3f:0f:4b:78:c5:7a:b7:7c: 7d:ba:b0:fe:40:36:07:ef:8c:be:b5:48:7e:8b:02:71:64:f9: f2:71:93:bf:c4:9c:ba:0d:00:f8:20:16:37:fe:2b:33:15:7b: 23:f1:50:8b:e8:b3:87:b2:fe:d8:48:9e:4e:a5:e6:6c:6d:e7: b1:02:41:b0:6c:b6:e4:12:31:99:38:9c:4a:a9:dc:2d:e1:0a: b0:c1:b6:fe -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDVQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI1NTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDUyQTQyODU1RDc1RUIz RDU5RjYwQTFCRjI0MTYzQjhFRjlCNjMzNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/sV00QCfALtGdogp0AlTJ6T+2b4J5SDeSPnNOHBaPeV01fzbf UuNxPU3ZvbJmzwKBu0AbeJ3qfrnxXlSK74YGFmcRX93s9enJrDRAkdCwCfuLEqSj gzoUwO3Gf6OvmiRnDBaSGTv17fh+v9pgwbu2QN1HM1/1jsrcEBkmcELlrZdHPk3i dZfoOChC47qow2URFbQToauxNqliS13Avt7VI+rMZ9/x9R/qxh5reYVObUQYX+yr 8BGzSiiJ9+S0Zusrnb4d/yjmykGyJNY5VqstQIFn2Iq4IAMQm7fHn0E6iKv6BnIK gJq9yNr91iSHVzDRrw7TtbXYzsoh1RV+JS2DAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUUqQoVddes9WfYKG/JBY7jvm2M1MwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1VxUW9WZGRlczlXZllLR19KQlk3anZt Mk0xTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfKsoAwDQYJ KoZIhvcNAQELBQADggEBALDlv1CfLpB/1OFjQ2knDHLuuwClS4Tk0A5rbPE8Y8bS 2sTM9NxijnlBFOw8VHKT3AnlMQYPm2TT+YitiZQUsLs+bXzzjXJdUpXBsO0trtOk QZQIYCMgHyL0UfikYWn/G+u4hnVKbaZ+tYOyZC0u4SA0B4GUkonYY5HVVNHLxZRX SkhC0tTAqQ1GC5+c3FpD4w88DHTV/KfnlFX9h36nVSch7l6JS74Vf35HicE/D0t4 xXq3fH26sP5ANgfvjL61SH6LAnFk+fJxk7/EnLoNAPggFjf+KzMVeyPxUIvos4ey /thInk6l5mxt57ECQbBstuQSMZk4nEqp3C3hCrDBtv4= -----END CERTIFICATE-----Generated at Mon May 20 08:32:39 2024 by rpki-client on console-fra.rpki-client.org