$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/aQs_p0hCqzKefqeAem_i3fAV7v4.roa File: aQs_p0hCqzKefqeAem_i3fAV7v4.roa (raw, json) Hash identifier: P5ahuEZBAOYCDuKISBoVl4erBpqzrqTBA98hqIkSsRc= Subject key identifier: 69:0B:3F:A7:48:42:AB:32:9E:7E:A7:80:7A:6F:E2:DD:F0:15:EE:FE Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0CC0 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aQs_p0hCqzKefqeAem_i3fAV7v4.roa Signing time: Mon 15 Jan 2024 21:11:00 +0000 ROA not before: Mon 15 Jan 2024 21:11:00 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7482 IP address blocks: 210.202.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3264 (0xcc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:11:00 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=690B3FA74842AB329E7EA7807A6FE2DDF015EEFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2b:9e:48:1c:30:9b:b8:21:a1:25:cf:c5:78: 0d:33:f7:12:82:f5:bb:36:c0:fb:1d:6b:89:96:93: b5:e9:68:e7:36:e8:26:b8:59:e5:43:b4:62:cc:57: 2c:c6:07:88:6a:50:f0:ee:7a:af:40:cc:18:18:79: 2f:d2:0d:40:e7:8e:ee:fd:90:33:ad:f2:2a:b5:f7: 0e:5e:f6:94:ec:12:03:31:4c:5c:bc:b5:74:bc:13: 87:68:ee:41:2a:81:b1:7b:cf:6b:b0:1e:5c:25:aa: 94:f1:8a:c5:02:09:71:75:7b:76:88:ce:39:15:12: 1e:21:4c:e5:0a:fe:88:99:71:89:d1:30:a2:0a:00: 34:13:d0:56:b0:93:d5:5e:62:6a:a8:8c:86:d3:26: 12:56:a7:f0:25:1b:1a:18:9b:c7:35:26:82:74:4c: 23:94:4d:8e:81:ac:64:d4:47:06:28:a3:eb:7e:7a: 69:9f:1b:3b:32:99:f0:d7:f9:6d:8f:e2:e3:c0:e6: f4:78:ab:cf:1b:62:58:ab:26:83:82:63:5a:b8:91: 37:9d:d9:e5:2f:74:66:2a:c8:69:b7:4a:03:75:fc: 4e:96:20:91:36:0b:f3:65:ac:35:86:7d:76:f0:e2: 2a:b6:46:0c:73:b4:ac:25:e0:fa:23:b4:4d:07:b4: 63:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:0B:3F:A7:48:42:AB:32:9E:7E:A7:80:7A:6F:E2:DD:F0:15:EE:FE X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aQs_p0hCqzKefqeAem_i3fAV7v4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.202.128.0/18 Signature Algorithm: sha256WithRSAEncryption 05:01:b8:bc:55:90:43:b3:b0:59:0e:30:b8:65:9a:18:ff:bf: b4:6b:26:04:8f:76:58:fd:c5:18:de:fe:97:98:6a:d6:5e:7b: 6e:8c:e0:6f:42:65:c5:ba:c5:a7:3d:19:8a:90:56:9a:e9:c2: 1e:d1:d8:24:e8:e0:48:3f:3b:ed:3a:7c:db:4d:7a:45:e3:7f: b5:ac:a8:3a:b9:d1:9b:13:9f:9e:64:d6:ae:cf:0a:24:03:8a: 0f:c2:fe:83:b3:53:4f:f8:30:0d:c4:73:c4:3d:fd:b1:aa:89: b5:68:ab:42:70:3d:3e:c7:87:da:97:69:68:81:c9:db:4b:d9: ea:4c:5b:41:01:4f:2b:ea:5e:ad:c3:e6:ee:41:67:8e:55:2e: c3:5b:5e:c5:3e:ec:7c:e4:c0:c8:38:6b:6e:4c:93:57:c3:15: d4:8b:a2:a4:d1:3d:d3:cf:d9:f9:9d:77:e1:e4:44:51:d7:93: 32:8f:ee:d7:8c:35:31:d5:22:b9:f6:79:46:90:92:35:28:dd: f0:19:45:cd:b1:d9:b5:96:42:2e:60:b2:ef:39:80:59:b9:90: 28:b1:5c:b1:0b:71:32:18:98:88:46:de:9c:f0:bb:1d:47:ad: df:8f:0b:66:f2:d3:92:43:27:b3:29:39:e8:91:15:0a:85:bf: b4:3f:65:17 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDMAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTExMDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY5MEIzRkE3NDg0MkFC MzI5RTdFQTc4MDdBNkZFMkRERjAxNUVFRkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1K55IHDCbuCGhJc/FeA0z9xKC9bs2wPsda4mWk7XpaOc26Ca4 WeVDtGLMVyzGB4hqUPDueq9AzBgYeS/SDUDnju79kDOt8iq19w5e9pTsEgMxTFy8 tXS8E4do7kEqgbF7z2uwHlwlqpTxisUCCXF1e3aIzjkVEh4hTOUK/oiZcYnRMKIK ADQT0Fawk9VeYmqojIbTJhJWp/AlGxoYm8c1JoJ0TCOUTY6BrGTURwYoo+t+emmf GzsymfDX+W2P4uPA5vR4q88bYlirJoOCY1q4kTed2eUvdGYqyGm3SgN1/E6WIJE2 C/NlrDWGfXbw4iq2RgxztKwl4PojtE0HtGMFAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUaQs/p0hCqzKefqeAem/i3fAV7v4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2FRc19wMGhDcXpLZWZxZUFlbV9pM2ZB Vjd2NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSyoAwDQYJ KoZIhvcNAQELBQADggEBAAUBuLxVkEOzsFkOMLhlmhj/v7RrJgSPdlj9xRje/peY atZee26M4G9CZcW6xac9GYqQVprpwh7R2CTo4Eg/O+06fNtNekXjf7WsqDq50ZsT n55k1q7PCiQDig/C/oOzU0/4MA3Ec8Q9/bGqibVoq0JwPT7Hh9qXaWiBydtL2epM W0EBTyvqXq3D5u5BZ45VLsNbXsU+7HzkwMg4a25Mk1fDFdSLoqTRPdPP2fmdd+Hk RFHXkzKP7teMNTHVIrn2eUaQkjUo3fAZRc2x2bWWQi5gsu85gFm5kCixXLELcTIY mIhG3pzwux1Hrd+PC2by05JDJ7MpOeiRFQqFv7Q/ZRc= -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:39 2024 by rpki-client on console-fra.rpki-client.org