$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/YQI5mLNBVf5zhCcG9DvXOTzxU-Q.roa File: YQI5mLNBVf5zhCcG9DvXOTzxU-Q.roa (raw, json) Hash identifier: dueC5NfE7xUK4YVTlzaopOLkEh3V84luQYO5cIwE3LE= Subject key identifier: 61:02:39:98:B3:41:55:FE:73:84:27:06:F4:3B:D7:39:3C:F1:53:E4 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0D74 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/YQI5mLNBVf5zhCcG9DvXOTzxU-Q.roa Signing time: Mon 15 Jan 2024 21:28:40 +0000 ROA not before: Mon 15 Jan 2024 21:28:40 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 210.58.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 13:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3444 (0xd74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:28:40 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=61023998B34155FE73842706F43BD7393CF153E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:78:e9:45:31:1b:42:8c:ac:48:f9:08:fa:a2: 55:7e:99:27:35:13:79:83:58:88:f8:a1:f6:e6:3b: 6d:83:83:5e:9b:68:05:f3:ae:16:d4:6e:61:4e:df: a8:ef:4e:21:5c:ba:ff:b6:a0:69:8a:67:6a:15:27: ed:3c:e1:ae:b8:0b:6f:53:10:df:b2:2e:dc:00:00: cf:85:7d:9b:98:5a:ab:3c:aa:c8:d5:3e:45:85:97: c7:39:3e:4b:47:7f:f5:6e:f6:e0:ae:60:4a:80:f6: 39:8e:7d:62:f7:9e:f4:7b:c9:f4:03:b0:3e:87:72: d2:ee:3e:00:cf:37:d2:be:a9:45:98:07:31:a8:db: e7:28:a0:24:07:8e:54:f3:ad:be:b8:c2:3f:db:a6: 9e:fd:bf:dd:77:4c:7b:95:76:a7:7c:ad:30:bd:4c: 33:f8:22:5a:77:f8:f2:57:0f:18:6a:60:94:6c:bd: a8:58:cb:57:5f:5c:f9:71:ed:5d:e1:0f:8f:39:43: 34:d6:33:91:73:a0:f4:d0:a6:1d:69:d2:73:ba:da: 34:a1:b0:cd:d4:83:32:8e:b3:c5:58:28:93:71:ed: 5d:a5:7f:4c:8b:39:ec:46:d9:8a:3f:3b:eb:59:96: ac:31:de:e2:40:fc:c4:4d:41:00:43:d6:85:be:a6: 03:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:02:39:98:B3:41:55:FE:73:84:27:06:F4:3B:D7:39:3C:F1:53:E4 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/YQI5mLNBVf5zhCcG9DvXOTzxU-Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.58.112.0/20 Signature Algorithm: sha256WithRSAEncryption 51:ac:fd:74:f5:4b:6f:a2:3b:ad:ad:5f:3c:92:6a:0d:79:fa: 8b:4a:4b:fe:fd:a5:37:a0:e5:16:9f:6c:09:af:6c:56:99:d6: a4:a2:9d:4f:1b:e8:f6:c8:7d:bc:76:c2:32:40:63:16:7b:8f: c0:d7:dd:92:04:9c:c5:2e:17:d8:a1:31:97:77:66:18:c4:6d: 31:bf:5f:89:4e:26:81:d9:f7:a2:44:a7:47:76:89:b0:0b:bd: 67:d0:f8:98:5b:eb:ff:69:ef:14:f1:5b:37:d0:b1:b9:22:1a: 46:8f:68:f6:3e:4e:ef:8e:dc:b0:0e:d0:07:e2:03:42:38:3e: 41:8d:7c:51:a9:91:a4:f6:14:47:84:f4:af:67:27:84:84:37: 46:bf:a6:8e:1c:e1:f1:8e:53:65:c8:29:7f:49:1d:1a:a0:3d: 3e:63:d6:50:65:9d:da:ce:2e:f3:14:92:2a:9f:b2:be:f7:b7: 86:8d:d0:22:27:e5:63:3c:c4:9a:ef:82:d5:ca:6b:04:f0:60: b4:e4:a3:93:be:56:c4:73:2c:e5:42:02:22:81:d1:61:bc:52: 5c:fd:1c:19:17:47:1c:8d:36:e2:eb:b1:72:bc:a9:97:b2:6e: 5e:5a:12:19:4e:0b:1c:1d:11:b8:60:c8:0d:95:67:71:56:89: af:fa:b1:9b -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDXQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI4NDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDYxMDIzOTk4QjM0MTU1 RkU3Mzg0MjcwNkY0M0JENzM5M0NGMTUzRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFeOlFMRtCjKxI+Qj6olV+mSc1E3mDWIj4ofbmO22Dg16baAXz rhbUbmFO36jvTiFcuv+2oGmKZ2oVJ+084a64C29TEN+yLtwAAM+FfZuYWqs8qsjV PkWFl8c5PktHf/Vu9uCuYEqA9jmOfWL3nvR7yfQDsD6HctLuPgDPN9K+qUWYBzGo 2+cooCQHjlTzrb64wj/bpp79v913THuVdqd8rTC9TDP4Ilp3+PJXDxhqYJRsvahY y1dfXPlx7V3hD485QzTWM5FzoPTQph1p0nO62jShsM3UgzKOs8VYKJNx7V2lf0yL OexG2Yo/O+tZlqwx3uJA/MRNQQBD1oW+pgN/AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUYQI5mLNBVf5zhCcG9DvXOTzxU+QwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1lRSTVtTE5CVmY1emhDY0c5RHZYT1R6 eFUtUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATSOnAwDQYJ KoZIhvcNAQELBQADggEBAFGs/XT1S2+iO62tXzySag15+otKS/79pTeg5RafbAmv bFaZ1qSinU8b6PbIfbx2wjJAYxZ7j8DX3ZIEnMUuF9ihMZd3ZhjEbTG/X4lOJoHZ 96JEp0d2ibALvWfQ+Jhb6/9p7xTxWzfQsbkiGkaPaPY+Tu+O3LAO0AfiA0I4PkGN fFGpkaT2FEeE9K9nJ4SEN0a/po4c4fGOU2XIKX9JHRqgPT5j1lBlndrOLvMUkiqf sr73t4aN0CIn5WM8xJrvgtXKawTwYLTko5O+VsRzLOVCAiKB0WG8Ulz9HBkXRxyN NuLrsXK8qZeybl5aEhlOCxwdEbhgyA2VZ3FWia/6sZs= -----END CERTIFICATE-----Generated at Sun Jun 2 21:48:26 2024 by rpki-client on console-ams.rpki-client.org