$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/WhVa--n7-Iy5acF0fvm-DO0wxWE.roa File: WhVa--n7-Iy5acF0fvm-DO0wxWE.roa (raw, json) Hash identifier: Y7+P/m3aJyvpMMkWEUUPGt/TyxNWE98dcLOqwdRM2NE= Subject key identifier: 5A:15:5A:FB:E9:FB:F8:8C:B9:69:C1:74:7E:F9:BE:0C:ED:30:C5:61 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0C36 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/WhVa--n7-Iy5acF0fvm-DO0wxWE.roa Signing time: Mon 15 Jan 2024 21:08:33 +0000 ROA not before: Mon 15 Jan 2024 21:08:33 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 103.36.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3126 (0xc36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:08:33 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5A155AFBE9FBF88CB969C1747EF9BE0CED30C561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f6:43:46:1b:98:64:fa:17:81:01:7d:e7:1f: a1:83:fc:ef:69:92:be:4b:79:79:50:37:d1:74:b3: b1:84:99:3f:1e:1d:d5:24:1a:4c:d0:00:f7:08:78: f8:ef:bd:49:40:e1:21:2d:11:92:d1:d6:d2:f6:0e: 8a:df:d7:e5:88:7e:ed:d6:12:e9:47:5c:16:7a:5f: 6d:b1:79:a3:f5:c9:9a:ab:84:f3:a8:9f:90:86:62: 69:bb:b1:57:9a:65:09:02:6a:11:3b:5c:1b:ab:a1: c1:c1:9f:c8:39:42:2d:1a:e3:48:25:d6:4e:45:98: 63:0a:88:11:6d:53:41:da:01:81:d5:ae:f5:00:68: 9f:77:4f:9e:85:d3:d9:0a:01:75:99:d8:73:74:5e: 3e:72:19:8b:e3:bb:ce:63:fb:54:ca:9b:5d:85:ff: 80:0a:69:f3:78:ab:5e:b0:d1:9e:b5:36:b7:44:4c: 1f:f0:38:5a:ff:a3:99:08:32:ca:0a:1f:c5:f4:37: fe:13:fc:39:6d:f6:26:9b:0f:ee:89:fd:7c:0b:b4: 6a:03:19:c8:fb:88:a0:79:f3:cb:28:cd:d3:25:5a: a5:3c:d2:ec:24:a2:23:25:75:a1:4b:c6:d8:da:0e: 86:ac:29:75:32:03:86:f0:e7:76:90:39:c3:d2:d5: c3:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:15:5A:FB:E9:FB:F8:8C:B9:69:C1:74:7E:F9:BE:0C:ED:30:C5:61 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/WhVa--n7-Iy5acF0fvm-DO0wxWE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.36.116.0/22 Signature Algorithm: sha256WithRSAEncryption 72:a3:b0:de:11:e6:ef:01:81:41:2a:0a:3a:ab:cb:c9:2e:77: 2e:c8:1d:d5:cd:b9:be:22:a2:86:5d:5d:93:e8:c0:30:3d:25: 56:b5:bc:8e:9f:e4:7c:e6:4a:e9:31:30:a4:bb:be:70:bd:5a: 38:e7:dc:80:17:25:a2:49:19:61:be:a5:a2:23:83:fc:40:e4: 42:99:f2:c8:f2:48:c2:9e:b5:b7:62:d5:89:44:5f:a4:37:30: 30:6b:ac:7d:5a:d3:08:f7:e4:9f:e9:30:b7:49:6b:14:c0:79: dd:28:b0:a1:c9:97:8a:5c:ae:8d:ee:2d:90:ca:cf:0b:b8:a1: e8:34:5a:0c:e4:6c:ad:33:37:f7:41:ea:26:da:a8:1b:a9:e1: 30:1d:b3:cb:9b:cd:a6:84:16:7c:07:1f:0a:5c:8d:e7:65:bd: 48:28:d3:cc:ea:6b:e7:96:65:f3:af:c5:d4:a4:78:4c:32:2c: 7f:7d:95:8a:65:70:d7:2e:a3:73:41:f4:40:91:d3:7d:d0:c6: 47:35:93:26:13:16:d0:4f:9a:54:01:24:1c:41:ea:e2:f9:29: 79:ab:bd:3c:eb:3d:2e:e8:ae:21:af:fd:90:1f:89:1b:39:09: 7b:00:bd:b5:23:79:90:92:f5:a2:86:43:b2:3c:4f:ef:75:8d: 38:1d:16:ef -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDDYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTA4MzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVBMTU1QUZCRTlGQkY4 OENCOTY5QzE3NDdFRjlCRTBDRUQzMEM1NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDS9kNGG5hk+heBAX3nH6GD/O9pkr5LeXlQN9F0s7GEmT8eHdUk GkzQAPcIePjvvUlA4SEtEZLR1tL2Dorf1+WIfu3WEulHXBZ6X22xeaP1yZqrhPOo n5CGYmm7sVeaZQkCahE7XBurocHBn8g5Qi0a40gl1k5FmGMKiBFtU0HaAYHVrvUA aJ93T56F09kKAXWZ2HN0Xj5yGYvju85j+1TKm12F/4AKafN4q16w0Z61NrdETB/w OFr/o5kIMsoKH8X0N/4T/Dlt9iabD+6J/XwLtGoDGcj7iKB588sozdMlWqU80uwk oiMldaFLxtjaDoasKXUyA4bw53aQOcPS1cNFAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUWhVa++n7+Iy5acF0fvm+DO0wxWEwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1doVmEtLW43LUl5NWFjRjBmdm0tRE8w d3hXRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnJHQwDQYJ KoZIhvcNAQELBQADggEBAHKjsN4R5u8BgUEqCjqry8kudy7IHdXNub4iooZdXZPo wDA9JVa1vI6f5HzmSukxMKS7vnC9Wjjn3IAXJaJJGWG+paIjg/xA5EKZ8sjySMKe tbdi1YlEX6Q3MDBrrH1a0wj35J/pMLdJaxTAed0osKHJl4pcro3uLZDKzwu4oeg0 WgzkbK0zN/dB6ibaqBup4TAds8ubzaaEFnwHHwpcjedlvUgo08zqa+eWZfOvxdSk eEwyLH99lYplcNcuo3NB9ECR033Qxkc1kyYTFtBPmlQBJBxB6uL5KXmrvTzrPS7o riGv/ZAfiRs5CXsAvbUjeZCS9aKGQ7I8T+91jTgdFu8= -----END CERTIFICATE-----Generated at Mon May 20 08:58:19 2024 by rpki-client on console-ams.rpki-client.org