$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/aWuyGJNQpBV0h0GtvmGCGYQ8fm4.roa File: aWuyGJNQpBV0h0GtvmGCGYQ8fm4.roa (raw, json) Hash identifier: K0cBHvD4iX+jyvWTchmKAGwYXUP6iJCul8CXaKVUsGY= Subject key identifier: 69:6B:B2:18:93:50:A4:15:74:87:41:AD:BE:61:82:19:84:3C:7E:6E Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0C56 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aWuyGJNQpBV0h0GtvmGCGYQ8fm4.roa Signing time: Mon 15 Jan 2024 21:09:05 +0000 ROA not before: Mon 15 Jan 2024 21:09:05 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7482 IP address blocks: 203.79.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3158 (0xc56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:09:05 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=696BB2189350A415748741ADBE618219843C7E6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7f:43:37:f9:6b:a7:1a:83:69:09:70:ce:f9: 8a:9c:02:e4:ca:73:b0:8d:89:0f:ac:d2:b7:01:c7: 32:40:48:92:d6:5d:fa:b2:47:57:91:37:73:8c:22: 8c:0a:73:28:10:95:c1:0b:fd:bc:c2:4c:3e:a0:53: d0:0b:a7:bb:d5:ef:2b:bf:01:1d:9e:52:76:a8:a1: 8d:e7:bf:fc:b2:14:ee:7e:9e:8d:95:1d:16:60:5f: 0f:e8:29:83:64:cf:3f:2c:d7:47:77:f8:5c:1d:1a: 00:bd:68:5a:04:0e:b6:76:35:4a:b4:07:c5:77:1c: c0:db:ac:a0:6c:87:c2:5d:7b:aa:1a:41:d5:84:53: d9:e2:04:b4:06:ca:b2:75:1a:0c:64:ec:5e:5b:c8: 30:b6:16:6e:74:03:62:1f:a0:cc:98:56:04:58:31: 03:26:a5:b7:e7:a9:a7:b5:5e:b9:8d:7c:74:8c:d7: a7:38:58:83:18:10:6a:fd:69:59:1d:c6:3f:59:ab: 47:29:66:e4:87:2e:7d:01:03:c2:94:a3:46:a0:b4: f5:a5:ae:be:97:17:f1:61:f8:fa:b5:96:c7:d7:51: 7c:c7:34:9a:d5:f7:6d:5f:82:31:55:58:d4:a3:56: ad:2b:f9:b1:28:b1:ab:44:1d:68:83:3c:e6:51:84: d4:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:6B:B2:18:93:50:A4:15:74:87:41:AD:BE:61:82:19:84:3C:7E:6E X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aWuyGJNQpBV0h0GtvmGCGYQ8fm4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.79.192.0/22 Signature Algorithm: sha256WithRSAEncryption b4:57:17:29:a6:0a:ee:23:a8:27:97:98:da:65:9a:b3:04:0b: 5c:5e:67:35:ee:be:eb:7c:98:f3:a9:c4:01:79:ad:dc:ca:1e: 76:6f:6b:44:27:90:82:da:87:0b:d0:2d:46:f9:96:5f:d7:01: 53:07:5a:45:d6:d6:9c:2a:2d:2d:e5:53:81:ab:62:28:35:ab: 82:44:6a:a6:6b:ff:47:2b:34:8e:bb:94:c9:71:46:4e:17:55: 5e:7f:00:2e:3e:2d:b1:d9:e1:3f:f9:d0:3e:a1:02:82:8a:47: be:fa:89:90:e5:35:11:af:2c:03:bb:1b:38:0d:fe:05:b0:61: ae:20:bb:81:37:8b:5d:ff:b6:02:0e:27:5f:ed:75:86:8e:43: 36:da:8b:4d:9e:98:19:75:18:37:ea:02:ec:b2:d4:9d:5f:63: 86:fd:c1:a1:26:d9:37:ef:2b:ca:53:78:4f:bb:d7:09:93:9f: 7d:ea:23:76:48:9c:a4:77:6a:ce:77:13:b2:f0:6b:e7:d5:9c: d8:89:06:5e:6b:50:99:73:12:05:1f:20:89:c3:13:b4:30:69: c7:d2:84:72:2a:62:a9:b7:78:9b:b3:3d:7b:c0:2a:4a:95:13: 09:e6:62:3b:7b:47:5e:42:1d:4e:48:8e:17:39:90:bd:be:71: d7:5b:bf:df -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDFYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTA5MDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY5NkJCMjE4OTM1MEE0 MTU3NDg3NDFBREJFNjE4MjE5ODQzQzdFNkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJf0M3+WunGoNpCXDO+YqcAuTKc7CNiQ+s0rcBxzJASJLWXfqy R1eRN3OMIowKcygQlcEL/bzCTD6gU9ALp7vV7yu/AR2eUnaooY3nv/yyFO5+no2V HRZgXw/oKYNkzz8s10d3+FwdGgC9aFoEDrZ2NUq0B8V3HMDbrKBsh8Jde6oaQdWE U9niBLQGyrJ1Ggxk7F5byDC2Fm50A2IfoMyYVgRYMQMmpbfnqae1XrmNfHSM16c4 WIMYEGr9aVkdxj9Zq0cpZuSHLn0BA8KUo0agtPWlrr6XF/Fh+Pq1lsfXUXzHNJrV 921fgjFVWNSjVq0r+bEosatEHWiDPOZRhNQxAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUaWuyGJNQpBV0h0GtvmGCGYQ8fm4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2FXdXlHSk5RcEJWMGgwR3R2bUdDR1lR OGZtNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALLT8AwDQYJ KoZIhvcNAQELBQADggEBALRXFymmCu4jqCeXmNplmrMEC1xeZzXuvut8mPOpxAF5 rdzKHnZva0QnkILahwvQLUb5ll/XAVMHWkXW1pwqLS3lU4GrYig1q4JEaqZr/0cr NI67lMlxRk4XVV5/AC4+LbHZ4T/50D6hAoKKR776iZDlNRGvLAO7GzgN/gWwYa4g u4E3i13/tgIOJ1/tdYaOQzbai02emBl1GDfqAuyy1J1fY4b9waEm2TfvK8pTeE+7 1wmTn33qI3ZInKR3as53E7Lwa+fVnNiJBl5rUJlzEgUfIInDE7QwacfShHIqYqm3 eJuzPXvAKkqVEwnmYjt7R15CHU5Ijhc5kL2+cddbv98= -----END CERTIFICATE-----Generated at Mon Jun 3 15:52:33 2024 by rpki-client on console-ams.rpki-client.org