$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/_RKOGOA9ETX1UDg-BlpRi1xPtts.roa File: _RKOGOA9ETX1UDg-BlpRi1xPtts.roa (raw, json) Hash identifier: 9RHvMe2x/5dvi29WKOv+tdnith5jHw/J+ymLZN5nzhs= Subject key identifier: FD:12:8E:18:E0:3D:11:35:F5:50:38:3E:06:5A:51:8B:5C:4F:B6:DB Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0C3C Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_RKOGOA9ETX1UDg-BlpRi1xPtts.roa Signing time: Mon 15 Jan 2024 21:08:38 +0000 ROA not before: Mon 15 Jan 2024 21:08:38 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 124.218.0.0/16 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 13:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3132 (0xc3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:08:38 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=FD128E18E03D1135F550383E065A518B5C4FB6DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:98:88:f0:5e:c6:bf:0c:2c:c7:78:29:e8:2d: 9c:6d:f8:a8:de:6f:6c:67:92:ad:12:81:36:b1:fc: 3a:b8:7a:ab:3d:16:03:1e:37:cb:63:3c:6a:37:54: 30:a9:f6:9b:35:77:8e:b3:8f:b8:9a:cf:99:54:fd: 23:c5:ae:61:b2:04:d2:6d:34:fb:1e:06:91:f1:4b: d4:b7:7c:8f:3d:93:58:68:44:03:8a:f1:9d:79:15: 2b:be:4a:09:49:f6:3e:2a:90:5c:9a:a0:0c:25:3b: 81:94:3d:89:44:a5:46:ea:4b:70:ca:f3:91:6b:37: 49:5a:42:fd:aa:26:ac:9b:f9:04:61:56:d3:1d:71: 34:2f:05:73:90:31:29:b1:b0:c9:5a:dd:14:2e:d6: 97:c9:4c:83:9c:bd:bb:bc:ac:91:68:48:89:b7:b4: 3f:97:15:7b:c8:38:1c:7a:55:32:fd:d2:3a:5d:7d: 47:4c:28:69:f3:d8:13:41:bf:ae:eb:db:16:ce:ea: 0e:b8:fd:63:c7:d4:5e:16:ce:26:3e:80:cd:18:ec: 28:9f:1c:e3:a2:8a:76:c4:f6:f5:0e:e9:89:6d:fb: c0:01:74:81:1c:28:67:ec:8a:c0:d4:09:a2:7b:4e: 05:bc:5f:5a:6c:ba:5b:74:8d:6b:04:7c:ef:33:2a: f4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:12:8E:18:E0:3D:11:35:F5:50:38:3E:06:5A:51:8B:5C:4F:B6:DB X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_RKOGOA9ETX1UDg-BlpRi1xPtts.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.0.0/16 Signature Algorithm: sha256WithRSAEncryption 89:72:29:77:07:ce:97:06:01:3a:f8:57:51:be:69:f6:e3:9a: 7e:d4:9f:f3:05:8a:8e:8e:b7:f2:15:97:59:63:b9:3f:d7:fe: db:14:2f:30:2e:0c:15:9f:62:ac:1d:e2:38:f7:88:ce:a0:ac: 06:84:90:93:f8:1e:ae:bb:75:99:32:eb:04:c4:74:28:c4:67: de:5c:32:1d:2d:56:4f:c8:64:93:db:2b:aa:92:79:67:51:c8: b2:dc:e3:f4:8f:96:23:24:be:07:be:1d:5d:16:ba:d0:bb:2a: 14:68:23:ef:f3:31:db:b3:21:b6:7a:7a:ff:a7:18:80:2b:5b: f9:dd:99:98:cc:33:16:98:f6:ac:e9:68:5a:c1:b2:07:b1:15: 7a:1f:b8:eb:73:d6:1d:4a:dc:f2:6f:14:68:93:c6:be:b1:17: f8:37:75:6c:19:90:a6:71:59:cc:5e:b7:db:82:18:8c:0b:45: b1:65:f3:3f:5b:1f:9a:3c:f0:9e:e9:aa:bd:e9:b5:d9:b9:71: 26:2d:8c:fe:11:10:03:83:3b:6f:c6:2c:98:45:48:a2:8c:66: aa:c5:83:d3:bf:6e:f8:81:5b:92:23:2a:ea:58:1d:70:0b:85: 41:0d:dc:6f:d8:5b:f1:e1:b9:0c:7a:6f:1c:40:63:88:17:69: 4f:22:ae:b8 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICDDwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTA4MzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZEMTI4RTE4RTAzRDEx MzVGNTUwMzgzRTA2NUE1MThCNUM0RkI2REIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD1mIjwXsa/DCzHeCnoLZxt+Kjeb2xnkq0SgTax/Dq4eqs9FgMe N8tjPGo3VDCp9ps1d46zj7iaz5lU/SPFrmGyBNJtNPseBpHxS9S3fI89k1hoRAOK 8Z15FSu+SglJ9j4qkFyaoAwlO4GUPYlEpUbqS3DK85FrN0laQv2qJqyb+QRhVtMd cTQvBXOQMSmxsMla3RQu1pfJTIOcvbu8rJFoSIm3tD+XFXvIOBx6VTL90jpdfUdM KGnz2BNBv67r2xbO6g64/WPH1F4WziY+gM0Y7CifHOOiinbE9vUO6Ylt+8ABdIEc KGfsisDUCaJ7TgW8X1psult0jWsEfO8zKvSBAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQU/RKOGOA9ETX1UDg+BlpRi1xPttswHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL19SS09HT0E5RVRYMVVEZy1CbHBSaTF4 UHR0cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB82jANBgkq hkiG9w0BAQsFAAOCAQEAiXIpdwfOlwYBOvhXUb5p9uOaftSf8wWKjo638hWXWWO5 P9f+2xQvMC4MFZ9irB3iOPeIzqCsBoSQk/gerrt1mTLrBMR0KMRn3lwyHS1WT8hk k9srqpJ5Z1HIstzj9I+WIyS+B74dXRa60LsqFGgj7/Mx27Mhtnp6/6cYgCtb+d2Z mMwzFpj2rOloWsGyB7EVeh+463PWHUrc8m8UaJPGvrEX+Dd1bBmQpnFZzF6324IY jAtFsWXzP1sfmjzwnumqvem12blxJi2M/hEQA4M7b8YsmEVIooxmqsWD079u+IFb kiMq6lgdcAuFQQ3cb9hb8eG5DHpvHEBjiBdpTyKuuA== -----END CERTIFICATE-----Generated at Sun Jun 2 19:20:43 2024 by rpki-client on console-fra.rpki-client.org