$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/XNSr4kU2BB_P6RmDJ_kvV0BXVew.roa File: XNSr4kU2BB_P6RmDJ_kvV0BXVew.roa (raw, json) Hash identifier: 0pTCP1q7WVKP7n0VmlL34fhCfvMo1GFPCY3On5aWTFg= Subject key identifier: 5C:D4:AB:E2:45:36:04:1F:CF:E9:19:83:27:F9:2F:57:40:57:55:EC Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0D12 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/XNSr4kU2BB_P6RmDJ_kvV0BXVew.roa Signing time: Mon 15 Jan 2024 21:24:34 +0000 ROA not before: Mon 15 Jan 2024 21:24:34 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 2404:0:1000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3346 (0xd12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:24:34 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5CD4ABE24536041FCFE9198327F92F57405755EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:92:6f:05:bf:af:3e:12:50:c7:7e:3c:96:91: 80:f6:3e:be:04:41:db:f8:7e:5a:df:b5:cb:87:66: f4:fd:9a:d6:f5:1a:88:ae:98:61:65:f2:e0:e6:00: 51:71:89:91:fd:7b:66:d6:e2:34:9f:cb:f5:ee:b4: 44:3b:58:ed:5b:87:09:21:9c:d0:3e:0a:c0:60:09: bf:2c:b0:e6:df:16:83:a6:cf:b1:8c:a3:21:12:05: 39:21:3b:4e:42:a2:d5:fc:6f:de:6e:fc:02:80:9f: b4:c1:b4:4e:ed:2c:2b:86:43:7a:9b:6f:36:6f:22: e2:8a:ae:81:f2:18:6a:16:cf:6d:82:db:66:02:55: 51:53:b9:cf:cb:bf:89:28:36:7a:4f:22:70:fb:d2: 07:20:8f:8b:91:69:c7:9f:c9:b6:b1:71:ae:31:c4: c2:57:7d:c5:32:09:1f:f7:52:75:47:a2:66:87:e6: 3a:01:cb:e8:dd:21:b2:55:94:eb:3b:ea:90:f3:e0: 5d:70:fd:03:02:24:62:10:75:e7:0d:78:7d:36:72: 06:4b:a1:22:b0:f5:72:ef:8a:78:57:f3:f6:cb:11: 9c:1a:f0:37:8d:5b:f3:0a:c5:f1:69:a8:e3:a9:a3: 63:9c:2c:f6:9c:ab:aa:77:70:f7:9a:f1:a6:5c:9a: 77:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D4:AB:E2:45:36:04:1F:CF:E9:19:83:27:F9:2F:57:40:57:55:EC X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/XNSr4kU2BB_P6RmDJ_kvV0BXVew.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:0:1000::/36 Signature Algorithm: sha256WithRSAEncryption a2:ad:05:fd:5b:55:c8:2e:bf:bf:06:71:e2:6c:83:a6:68:10: 16:33:86:6d:64:41:95:47:ca:b5:0e:ec:1c:99:a5:8b:5b:9d: f7:3f:eb:57:47:9e:ab:1c:16:d2:9c:71:2e:8f:2e:71:37:0a: e5:63:e6:50:71:37:de:32:99:d0:03:7b:39:82:e0:7e:de:34: 9c:ae:d6:d5:12:11:2e:fc:cf:77:5f:6f:ba:a3:ac:df:be:74: 91:8e:97:50:45:f5:75:ec:ec:60:ba:d1:c0:1c:96:5b:bf:bc: 94:bb:11:e3:20:77:c7:f8:87:a2:8c:fb:80:34:ca:82:f7:55: ab:38:ee:71:45:27:af:f0:e3:52:dc:37:09:80:58:e2:4c:a7: 49:18:58:6f:88:9b:37:96:7b:b9:e5:2d:ae:02:97:4f:af:20: a8:e7:31:e1:5e:7e:0e:48:71:74:d9:b5:d7:7e:b4:9b:66:ae: 71:5e:48:e9:0d:85:24:d3:e1:33:b1:58:d2:cf:ee:3e:a9:c9: a6:99:ff:24:29:62:65:53:7e:55:92:87:98:6e:bf:a3:13:bd: 18:4b:88:61:17:88:74:c2:b7:29:2c:08:ab:fc:f8:8c:b7:10: 1a:91:be:63:8d:76:fb:3c:0e:63:dc:91:42:42:b7:2f:7d:0d: 76:47:15:04 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDRIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI0MzRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVDRDRBQkUyNDUzNjA0 MUZDRkU5MTk4MzI3RjkyRjU3NDA1NzU1RUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8km8Fv68+ElDHfjyWkYD2Pr4EQdv4flrftcuHZvT9mtb1Goiu mGFl8uDmAFFxiZH9e2bW4jSfy/XutEQ7WO1bhwkhnNA+CsBgCb8ssObfFoOmz7GM oyESBTkhO05CotX8b95u/AKAn7TBtE7tLCuGQ3qbbzZvIuKKroHyGGoWz22C22YC VVFTuc/Lv4koNnpPInD70gcgj4uRacefybaxca4xxMJXfcUyCR/3UnVHomaH5joB y+jdIbJVlOs76pDz4F1w/QMCJGIQdecNeH02cgZLoSKw9XLvinhX8/bLEZwa8DeN W/MKxfFpqOOpo2OcLPacq6p3cPea8aZcmneRAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUXNSr4kU2BB/P6RmDJ/kvV0BXVewwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1hOU3I0a1UyQkJfUDZSbURKX2t2VjBC WFZldy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQkBAAAEDAN BgkqhkiG9w0BAQsFAAOCAQEAoq0F/VtVyC6/vwZx4myDpmgQFjOGbWRBlUfKtQ7s HJmli1ud9z/rV0eeqxwW0pxxLo8ucTcK5WPmUHE33jKZ0AN7OYLgft40nK7W1RIR LvzPd19vuqOs3750kY6XUEX1dezsYLrRwByWW7+8lLsR4yB3x/iHooz7gDTKgvdV qzjucUUnr/DjUtw3CYBY4kynSRhYb4ibN5Z7ueUtrgKXT68gqOcx4V5+DkhxdNm1 1360m2aucV5I6Q2FJNPhM7FY0s/uPqnJppn/JCliZVN+VZKHmG6/oxO9GEuIYReI dMK3KSwIq/z4jLcQGpG+Y412+zwOY9yRQkK3L30NdkcVBA== -----END CERTIFICATE-----Generated at Mon May 20 08:32:39 2024 by rpki-client on console-fra.rpki-client.org