$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/aNBuzagcsyaEmSMgjOpZMTOvG4M.roa File: aNBuzagcsyaEmSMgjOpZMTOvG4M.roa (raw, json) Hash identifier: iiyT+F/03DyF+DFWiEnhYzAB9Z9lykvxovWHc9eOR2o= Subject key identifier: 68:D0:6E:CD:A8:1C:B3:26:84:99:23:20:8C:EA:59:31:33:AF:1B:83 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0C44 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aNBuzagcsyaEmSMgjOpZMTOvG4M.roa Signing time: Mon 15 Jan 2024 21:08:47 +0000 ROA not before: Mon 15 Jan 2024 21:08:47 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 101.136.0.0/14 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3140 (0xc44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:08:47 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=68D06ECDA81CB326849923208CEA593133AF1B83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:21:74:61:98:e3:88:27:f9:eb:e4:1d:32:6d: c9:80:ee:b0:2c:a3:7f:9b:74:5a:8b:b1:a0:a3:19: ac:b5:52:ab:2a:ff:61:c4:ef:76:be:c0:61:0d:80: 57:ab:10:54:67:06:49:6a:b4:68:54:2b:5c:9b:ba: fa:e9:6b:17:e7:c4:b9:0a:74:6b:28:c5:00:e9:88: 9f:18:25:3a:e4:c2:5d:2a:e6:63:d2:24:e6:0b:7f: c5:8f:94:45:e9:de:27:de:af:5f:4b:09:c4:03:9e: f7:12:e7:a9:08:e4:39:7b:5b:84:52:20:83:f5:43: a2:ae:88:80:f8:c5:6e:67:6e:6c:bb:ff:3a:25:1f: 49:53:87:05:dc:99:d2:dd:46:5c:cb:6e:e1:60:39: 96:a6:55:48:d7:89:6f:26:eb:ec:18:6e:c0:22:ca: d8:76:aa:90:ac:a4:a6:7a:e1:92:ec:cc:92:d9:6e: ff:f5:e2:9b:3c:09:54:4e:ed:93:17:dd:2f:6c:d1: 05:e2:8a:80:28:08:8d:33:24:d6:82:99:c2:9f:85: f7:f1:00:58:05:91:50:c8:3a:1c:bb:d9:1b:c6:49: ba:ab:01:0e:68:4c:51:80:7d:63:fd:99:05:9e:26: 15:b3:ab:7b:94:94:b2:b3:77:76:8e:55:eb:94:28: 11:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:D0:6E:CD:A8:1C:B3:26:84:99:23:20:8C:EA:59:31:33:AF:1B:83 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aNBuzagcsyaEmSMgjOpZMTOvG4M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.136.0.0/14 Signature Algorithm: sha256WithRSAEncryption 3b:49:1c:34:04:e7:39:cb:2c:a9:c9:46:dc:f9:19:7c:9a:84: 78:20:89:8f:80:e8:cb:e6:34:9c:38:9e:56:00:33:61:58:5b: 0c:47:25:9b:c6:5e:97:77:5d:fd:93:a0:99:80:1d:40:3c:8e: 40:c0:c0:94:93:19:ab:49:64:c8:0c:82:f0:d9:88:ac:e9:c8: 8a:10:ae:01:e0:a1:dd:12:9d:b2:b4:95:22:ce:0a:ec:e5:16: 0a:6c:30:0b:6b:ed:ef:52:8e:dc:8a:e8:d3:08:6e:26:cd:77: 4f:6b:c0:56:f8:af:36:0a:45:24:3c:4b:1a:60:60:c4:16:e3: 8a:76:3c:91:d8:74:5c:22:7f:b3:61:13:9e:94:33:4c:02:78: 54:65:57:a2:05:0a:e2:35:bd:9f:25:31:87:1d:2e:f9:0a:a8: ec:73:d6:2c:4e:09:59:d5:1b:e5:b4:02:6b:48:d8:ea:b5:5b: 19:58:d1:9d:1c:f4:ed:20:a8:3f:a7:5f:41:89:f4:3c:74:1b: 0b:76:5e:0a:24:e8:8d:1b:6a:20:5b:76:f3:61:db:3f:55:b0: 0b:41:05:ad:7e:68:b1:32:9a:4f:c8:80:f2:cd:3c:54:a4:55: 88:76:cf:4b:61:e3:f8:df:4c:31:f3:ab:55:4a:18:09:65:d3: 67:f8:d3:ac -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICDEQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTA4NDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY4RDA2RUNEQTgxQ0Iz MjY4NDk5MjMyMDhDRUE1OTMxMzNBRjFCODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTIXRhmOOIJ/nr5B0ybcmA7rAso3+bdFqLsaCjGay1Uqsq/2HE 73a+wGENgFerEFRnBklqtGhUK1ybuvrpaxfnxLkKdGsoxQDpiJ8YJTrkwl0q5mPS JOYLf8WPlEXp3ifer19LCcQDnvcS56kI5Dl7W4RSIIP1Q6KuiID4xW5nbmy7/zol H0lThwXcmdLdRlzLbuFgOZamVUjXiW8m6+wYbsAiyth2qpCspKZ64ZLszJLZbv/1 4ps8CVRO7ZMX3S9s0QXiioAoCI0zJNaCmcKfhffxAFgFkVDIOhy72RvGSbqrAQ5o TFGAfWP9mQWeJhWzq3uUlLKzd3aOVeuUKBEnAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUaNBuzagcsyaEmSMgjOpZMTOvG4MwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2FOQnV6YWdjc3lhRW1TTWdqT3BaTVRP dkc0TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwJliDANBgkq hkiG9w0BAQsFAAOCAQEAO0kcNATnOcssqclG3PkZfJqEeCCJj4Doy+Y0nDieVgAz YVhbDEclm8Zel3dd/ZOgmYAdQDyOQMDAlJMZq0lkyAyC8NmIrOnIihCuAeCh3RKd srSVIs4K7OUWCmwwC2vt71KO3Iro0whuJs13T2vAVvivNgpFJDxLGmBgxBbjinY8 kdh0XCJ/s2ETnpQzTAJ4VGVXogUK4jW9nyUxhx0u+Qqo7HPWLE4JWdUb5bQCa0jY 6rVbGVjRnRz07SCoP6dfQYn0PHQbC3ZeCiTojRtqIFt282HbP1WwC0EFrX5osTKa T8iA8s08VKRViHbPS2Hj+N9MMfOrVUoYCWXTZ/jTrA== -----END CERTIFICATE-----Generated at Mon May 20 08:58:19 2024 by rpki-client on console-ams.rpki-client.org