$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/WtwSMPNCu9NObrBPBeg1AQ6vUZI.roa File: WtwSMPNCu9NObrBPBeg1AQ6vUZI.roa (raw, json) Hash identifier: RhaUsv6eHYYQ2hhs1VtyizHe9OtgmrLui/o3X6bZt2s= Subject key identifier: 5A:DC:12:30:F3:42:BB:D3:4E:6E:B0:4F:05:E8:35:01:0E:AF:51:92 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0D40 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/WtwSMPNCu9NObrBPBeg1AQ6vUZI.roa Signing time: Mon 15 Jan 2024 21:25:33 +0000 ROA not before: Mon 15 Jan 2024 21:25:33 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 219.91.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3392 (0xd40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:25:33 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5ADC1230F342BBD34E6EB04F05E835010EAF5192 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:93:61:41:4a:c6:e1:ac:b9:15:95:ca:a2:b7: 7b:ec:53:0b:52:27:b7:4b:f2:c6:37:56:ab:a6:97: 76:2f:6e:f1:7e:5e:92:67:43:4c:fe:5c:e3:72:9b: f9:de:58:b2:6f:55:35:91:43:93:1e:e5:c3:a1:a2: fc:21:45:ee:6c:47:29:60:c3:ca:e6:e7:33:83:fa: d9:74:d0:06:64:4d:38:c4:ca:77:3a:92:ee:57:bf: 50:2f:8d:f8:5b:c1:c5:3d:25:3b:a5:d3:41:c2:7b: 86:11:0d:47:06:c2:6f:c6:57:af:33:03:59:0d:04: f4:ec:57:bf:13:7a:5d:a3:72:ae:7f:09:0f:03:87: da:5e:73:d7:40:c3:fa:2b:15:4f:3a:c4:c8:47:cb: 05:03:79:4e:ec:1e:60:af:2e:49:25:8e:dd:b0:d3: 2f:e0:fa:c4:92:08:9b:f0:08:54:9d:7d:35:5a:9a: 3d:c0:18:27:7d:70:9a:18:27:9f:b6:2b:33:c7:6b: f7:9f:26:bf:46:dc:f3:3e:b8:e5:82:69:e6:2a:53: d3:7a:08:98:d9:1f:6c:b5:88:f4:73:d0:ae:68:bd: 28:01:00:77:94:11:d3:e7:0f:df:ee:bb:e5:ed:52: b3:57:61:32:78:28:43:52:89:80:ab:dd:4f:bb:b4: 6a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:DC:12:30:F3:42:BB:D3:4E:6E:B0:4F:05:E8:35:01:0E:AF:51:92 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/WtwSMPNCu9NObrBPBeg1AQ6vUZI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.91.68.0/23 Signature Algorithm: sha256WithRSAEncryption 99:a7:7f:6a:85:9a:d3:42:c4:6b:9e:47:19:bb:98:1b:64:05: e7:79:76:46:bf:73:f3:fc:b8:18:9c:62:1c:59:e1:f7:ea:a8: f3:31:95:92:97:68:93:18:8a:1e:82:0b:c0:82:69:3c:08:62: b5:ae:29:fd:65:ae:14:ea:f3:c7:0f:ce:24:aa:8b:cc:8a:93: a8:4e:70:41:af:dd:35:37:12:d8:7f:07:77:ef:ce:ed:0a:a1: b5:b6:d0:9b:c4:72:9d:39:d9:52:d4:18:49:2f:97:6c:a4:77: 28:da:97:75:6d:03:f2:15:80:2f:34:a0:f7:51:e7:10:2f:e1: fb:e6:75:fd:98:82:10:b2:b4:3e:c6:ec:5f:4e:e2:0a:da:d4: aa:81:7a:c6:ec:af:43:25:95:b1:70:45:11:11:78:3e:06:63: fd:ff:6c:6f:9f:da:60:7a:cf:27:c5:d6:17:88:81:0a:7b:5f: 23:1e:a8:a7:0c:f3:dd:5d:f7:8d:5b:44:8e:4d:e0:7d:16:e0: 9d:a8:fc:eb:2f:48:24:31:49:0b:a2:44:d5:cd:f4:9b:cf:88: fb:db:9d:9a:66:9f:da:dd:e3:95:8a:65:1f:3b:da:9c:1b:2f: 42:cd:7a:75:26:d7:51:9e:96:06:7b:d3:24:13:f4:31:a6:9a: fe:bd:da:f9 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDUAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI1MzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVBREMxMjMwRjM0MkJC RDM0RTZFQjA0RjA1RTgzNTAxMEVBRjUxOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwk2FBSsbhrLkVlcqit3vsUwtSJ7dL8sY3Vquml3YvbvF+XpJn Q0z+XONym/neWLJvVTWRQ5Me5cOhovwhRe5sRylgw8rm5zOD+tl00AZkTTjEync6 ku5Xv1AvjfhbwcU9JTul00HCe4YRDUcGwm/GV68zA1kNBPTsV78Tel2jcq5/CQ8D h9pec9dAw/orFU86xMhHywUDeU7sHmCvLkkljt2w0y/g+sSSCJvwCFSdfTVamj3A GCd9cJoYJ5+2KzPHa/efJr9G3PM+uOWCaeYqU9N6CJjZH2y1iPRz0K5ovSgBAHeU EdPnD9/uu+XtUrNXYTJ4KENSiYCr3U+7tGrtAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUWtwSMPNCu9NObrBPBeg1AQ6vUZIwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1d0d1NNUE5DdTlOT2JyQlBCZWcxQVE2 dlVaSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHbW0QwDQYJ KoZIhvcNAQELBQADggEBAJmnf2qFmtNCxGueRxm7mBtkBed5dka/c/P8uBicYhxZ 4ffqqPMxlZKXaJMYih6CC8CCaTwIYrWuKf1lrhTq88cPziSqi8yKk6hOcEGv3TU3 Eth/B3fvzu0KobW20JvEcp052VLUGEkvl2ykdyjal3VtA/IVgC80oPdR5xAv4fvm df2YghCytD7G7F9O4gra1KqBesbsr0MllbFwRREReD4GY/3/bG+f2mB6zyfF1heI gQp7XyMeqKcM891d941bRI5N4H0W4J2o/OsvSCQxSQuiRNXN9JvPiPvbnZpmn9rd 45WKZR872pwbL0LNenUm11GelgZ70yQT9DGmmv692vk= -----END CERTIFICATE-----Generated at Mon May 20 08:32:39 2024 by rpki-client on console-fra.rpki-client.org