$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/VqekTbsIrGnmrp5d__fxUP1-zgM.roa File: VqekTbsIrGnmrp5d__fxUP1-zgM.roa (raw, json) Hash identifier: agVXKt0RNadCFZWAMq2YbHAG4pALOc/XeEI7ck/DEgI= Subject key identifier: 56:A7:A4:4D:BB:08:AC:69:E6:AE:9E:5D:FF:F7:F1:50:FD:7E:CE:03 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0D1C Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/VqekTbsIrGnmrp5d__fxUP1-zgM.roa Signing time: Mon 15 Jan 2024 21:24:46 +0000 ROA not before: Mon 15 Jan 2024 21:24:46 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24155 IP address blocks: 2404:0:6000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3356 (0xd1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:24:46 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=56A7A44DBB08AC69E6AE9E5DFFF7F150FD7ECE03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8f:21:36:d7:48:2e:32:7e:23:f7:0b:c6:15: 6a:fb:ea:0b:cd:bd:c4:2e:44:89:22:f6:68:51:2f: 5d:16:c2:68:15:4b:64:de:89:c1:d0:85:71:d9:01: 61:18:af:14:2b:3f:e3:d0:db:17:5d:55:10:71:0a: 8e:e1:85:bc:40:b6:9e:2d:6f:74:92:eb:84:31:ad: c1:27:a1:da:20:e9:77:27:e8:70:47:65:46:0e:87: 24:c7:ff:c7:8b:76:67:02:eb:43:15:65:cd:98:d4: bf:c8:76:ab:3c:5b:64:0c:3f:33:08:d5:e0:da:5b: 2d:08:b1:a9:09:98:18:a7:fd:f6:e6:4a:3d:36:24: e4:51:f5:1a:bf:c1:18:7f:e2:51:25:e0:16:fa:a8: 0f:dd:25:ac:f7:d1:08:50:13:88:29:79:7a:2f:2f: fc:94:35:a5:ae:f6:43:80:7a:ba:18:5c:5b:b6:bc: 73:cc:e3:2e:03:48:3e:c3:a5:27:6e:63:34:b5:cc: 26:83:7e:49:9d:2a:f2:e5:31:3a:7c:ca:01:a0:cb: 8f:a5:c4:22:fe:97:c1:a3:f6:db:7f:bf:90:4a:af: 85:06:d3:a9:8f:ea:a0:be:68:48:56:3b:f2:e4:81: 93:c9:7c:3f:ce:e3:c5:47:fb:cc:78:78:bc:30:65: 77:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:A7:A4:4D:BB:08:AC:69:E6:AE:9E:5D:FF:F7:F1:50:FD:7E:CE:03 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/VqekTbsIrGnmrp5d__fxUP1-zgM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:0:6000::/36 Signature Algorithm: sha256WithRSAEncryption 69:3f:5e:26:18:c9:61:e0:1b:61:b5:71:9f:ff:7c:0b:2c:8d: e6:e2:ea:f1:8c:f9:39:aa:c9:c4:5c:11:da:18:d7:c7:4a:50: 66:7f:e1:49:bd:8d:00:e7:b7:17:42:95:2c:ed:51:b7:b8:16: 7a:81:cc:f1:b2:55:26:9f:5f:62:80:53:51:73:66:b0:74:7c: 1a:fa:7c:51:08:32:2f:ab:5f:3e:38:f8:f5:13:6d:47:71:c4: 28:30:69:5c:31:f0:f1:c3:c3:0f:04:87:2d:7c:85:4c:b4:03: 09:ca:34:ec:53:5a:cc:e1:8d:54:ae:ef:91:67:5f:8c:ed:2e: 91:42:fc:a8:9d:1a:9f:e8:3a:8b:a1:5b:d4:c1:9f:3f:8e:a5: 08:ce:d1:67:ed:25:cc:d0:fe:a6:9b:d2:0d:83:84:c5:4b:f7: 7a:70:ef:f5:4b:55:69:77:4d:c7:66:a0:f7:9e:55:86:d7:82: e9:23:f9:20:cd:66:73:ec:16:bf:c2:cb:d2:a3:39:99:7e:bb: 9d:c2:f4:07:bf:91:c8:73:5f:3a:32:9d:4a:cc:25:b0:a0:8c: 70:10:06:39:00:b4:b5:5f:32:06:dc:01:f4:54:84:d7:6a:e4: ed:06:05:62:2e:ae:40:76:4d:65:9c:4f:7c:b9:0b:e9:b1:09: 09:26:fa:50 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDRwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI0NDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDU2QTdBNDREQkIwOEFD NjlFNkFFOUU1REZGRjdGMTUwRkQ3RUNFMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUjyE210guMn4j9wvGFWr76gvNvcQuRIki9mhRL10WwmgVS2Te icHQhXHZAWEYrxQrP+PQ2xddVRBxCo7hhbxAtp4tb3SS64QxrcEnodog6Xcn6HBH ZUYOhyTH/8eLdmcC60MVZc2Y1L/Idqs8W2QMPzMI1eDaWy0IsakJmBin/fbmSj02 JORR9Rq/wRh/4lEl4Bb6qA/dJaz30QhQE4gpeXovL/yUNaWu9kOAeroYXFu2vHPM 4y4DSD7DpSduYzS1zCaDfkmdKvLlMTp8ygGgy4+lxCL+l8Gj9tt/v5BKr4UG06mP 6qC+aEhWO/LkgZPJfD/O48VH+8x4eLwwZXdlAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUVqekTbsIrGnmrp5d//fxUP1+zgMwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1ZxZWtUYnNJckdubXJwNWRfX2Z4VVAx LXpnTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQkBAAAYDAN BgkqhkiG9w0BAQsFAAOCAQEAaT9eJhjJYeAbYbVxn/98CyyN5uLq8Yz5OarJxFwR 2hjXx0pQZn/hSb2NAOe3F0KVLO1Rt7gWeoHM8bJVJp9fYoBTUXNmsHR8Gvp8UQgy L6tfPjj49RNtR3HEKDBpXDHw8cPDDwSHLXyFTLQDCco07FNazOGNVK7vkWdfjO0u kUL8qJ0an+g6i6Fb1MGfP46lCM7RZ+0lzND+ppvSDYOExUv3enDv9UtVaXdNx2ag 955VhteC6SP5IM1mc+wWv8LL0qM5mX67ncL0B7+RyHNfOjKdSswlsKCMcBAGOQC0 tV8yBtwB9FSE12rk7QYFYi6uQHZNZZxPfLkL6bEJCSb6UA== -----END CERTIFICATE-----Generated at Mon May 20 08:32:39 2024 by rpki-client on console-fra.rpki-client.org