$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/aWU4prZJ7_CPfVS73T1rVPXbnL0.roa File: aWU4prZJ7_CPfVS73T1rVPXbnL0.roa (raw, json) Hash identifier: 7k5iEZ3h4iczP8pk7GwrK682yoa2zdSwzJC/VJmEbEM= Subject key identifier: 69:65:38:A6:B6:49:EF:F0:8F:7D:54:BB:DD:3D:6B:54:F5:DB:9C:BD Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0CEE Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aWU4prZJ7_CPfVS73T1rVPXbnL0.roa Signing time: Mon 15 Jan 2024 21:23:50 +0000 ROA not before: Mon 15 Jan 2024 21:23:50 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 219.91.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3310 (0xcee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:23:50 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=696538A6B649EFF08F7D54BBDD3D6B54F5DB9CBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:8b:64:b3:4e:f7:77:40:86:18:73:64:e1:54: 85:69:d2:10:3a:5d:da:a8:ec:1f:6a:1c:fa:fd:ab: 4e:9f:5b:3e:33:f0:54:e8:59:12:bb:c6:27:c5:54: 79:d3:a8:da:50:d0:2b:1d:70:a5:a2:d4:33:af:b3: e5:f9:2f:32:2e:e5:b4:e1:4f:6b:bc:9e:38:29:15: cb:c5:bc:a0:e0:e5:b3:be:bb:2c:dc:70:4a:06:1b: be:06:22:63:f5:c6:7a:62:51:11:de:f2:e9:00:63: cf:92:64:e0:87:d2:37:32:c0:56:99:32:d7:b4:50: 84:db:7b:ca:db:ad:af:89:05:41:65:d8:3e:2a:da: 4e:c1:93:fa:64:7f:39:6c:f5:2e:51:0a:66:b6:84: 46:6d:11:5f:3a:0d:e0:db:70:9a:8a:8e:47:ee:8d: 7d:3b:ff:1d:d2:c4:27:cd:c6:09:9d:3a:c3:02:3d: a8:1f:f6:88:fa:5a:c9:c7:f2:39:4a:a6:01:dd:7a: 7e:42:fe:3d:01:08:d1:fe:bd:0b:45:41:b1:f8:a8: 81:e8:24:43:e0:f0:40:d4:39:45:dd:92:38:35:15: b3:6e:2a:73:de:59:1d:83:7d:74:1a:05:ed:7d:bb: 4a:1e:44:b9:fc:f4:eb:db:7d:7c:24:85:3e:6d:29: c1:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:65:38:A6:B6:49:EF:F0:8F:7D:54:BB:DD:3D:6B:54:F5:DB:9C:BD X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aWU4prZJ7_CPfVS73T1rVPXbnL0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.91.0.0/17 Signature Algorithm: sha256WithRSAEncryption a7:85:40:f4:08:04:70:b5:e9:58:18:a7:36:9e:4c:d8:e2:41: 72:77:25:09:f0:59:d1:e4:a6:ef:5e:d8:48:27:7f:41:b2:05: 0d:23:1c:8d:be:cf:e6:ca:36:c5:cd:d8:77:91:68:21:71:42: 78:ff:bc:22:ab:ad:10:a2:dd:2e:5d:ce:fd:c2:91:1b:d2:d2: 15:de:7f:67:f0:39:8b:00:4a:37:a7:ca:30:d8:e1:67:43:74: 0f:8c:ab:e2:ff:0f:4a:e9:62:ff:9c:1f:52:c8:92:c6:fe:a3: eb:57:84:4d:be:db:86:5c:7a:16:ad:40:5c:a9:27:94:24:f8: 38:d8:3f:bd:4e:18:0e:4f:7f:99:ef:ff:f9:70:5e:8c:db:20: 1a:e3:27:8d:c7:9b:8c:af:12:e1:0b:b0:61:9f:37:b6:b2:57: 90:82:1a:62:98:27:3c:09:16:b6:8f:a8:a4:f5:04:fd:e6:6a: b1:78:81:48:2c:12:83:ac:49:4f:01:3c:41:82:83:88:9e:20: 78:1f:6e:59:1b:fb:25:86:7c:40:0c:5e:48:bd:b1:90:ba:76: a8:b3:de:50:d1:64:55:b8:48:a8:17:d9:df:c0:1a:c2:4c:f1: 33:c5:cc:02:af:92:7c:c2:dc:c8:2c:7a:c0:82:93:40:f2:03: 9f:64:cb:d9 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDO4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTIzNTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY5NjUzOEE2QjY0OUVG RjA4RjdENTRCQkREM0Q2QjU0RjVEQjlDQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDji2SzTvd3QIYYc2ThVIVp0hA6Xdqo7B9qHPr9q06fWz4z8FTo WRK7xifFVHnTqNpQ0CsdcKWi1DOvs+X5LzIu5bThT2u8njgpFcvFvKDg5bO+uyzc cEoGG74GImP1xnpiURHe8ukAY8+SZOCH0jcywFaZMte0UITbe8rbra+JBUFl2D4q 2k7Bk/pkfzls9S5RCma2hEZtEV86DeDbcJqKjkfujX07/x3SxCfNxgmdOsMCPagf 9oj6WsnH8jlKpgHden5C/j0BCNH+vQtFQbH4qIHoJEPg8EDUOUXdkjg1FbNuKnPe WR2DfXQaBe19u0oeRLn89OvbfXwkhT5tKcEbAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUaWU4prZJ7/CPfVS73T1rVPXbnL0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2FXVTRwclpKN19DUGZWUzczVDFyVlBY Ym5MMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfbWwAwDQYJ KoZIhvcNAQELBQADggEBAKeFQPQIBHC16VgYpzaeTNjiQXJ3JQnwWdHkpu9e2Egn f0GyBQ0jHI2+z+bKNsXN2HeRaCFxQnj/vCKrrRCi3S5dzv3CkRvS0hXef2fwOYsA SjenyjDY4WdDdA+Mq+L/D0rpYv+cH1LIksb+o+tXhE2+24ZcehatQFypJ5Qk+DjY P71OGA5Pf5nv//lwXozbIBrjJ43Hm4yvEuELsGGfN7ayV5CCGmKYJzwJFraPqKT1 BP3marF4gUgsEoOsSU8BPEGCg4ieIHgfblkb+yWGfEAMXki9sZC6dqiz3lDRZFW4 SKgX2d/AGsJM8TPFzAKvknzC3MgsesCCk0DyA59ky9k= -----END CERTIFICATE-----Generated at Mon May 20 08:58:19 2024 by rpki-client on console-ams.rpki-client.org