$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/bxP7gcqwvOyeouoQsXDrHJf_ot8.roa File: bxP7gcqwvOyeouoQsXDrHJf_ot8.roa (raw, json) Hash identifier: j0sZps2n2A0o31xDKh3svsOz0c2RznIT7Qk2/wSQn7s= Subject key identifier: 6F:13:FB:81:CA:B0:BC:EC:9E:A2:EA:10:B1:70:EB:1C:97:FF:A2:DF Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0BBB Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/bxP7gcqwvOyeouoQsXDrHJf_ot8.roa Signing time: Fri 01 Sep 2023 08:50:55 +0000 ROA not before: Fri 01 Sep 2023 08:50:55 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9674 IP address blocks: 118.231.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3003 (0xbbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Sep 1 08:50:55 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6F13FB81CAB0BCEC9EA2EA10B170EB1C97FFA2DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f7:08:ad:bb:69:cb:70:91:a1:e4:de:30:53: 5d:c0:33:a6:2c:17:0b:2c:e5:bd:84:ed:e7:eb:09: f7:42:dc:fe:c3:c6:ed:b2:a2:07:7b:bb:8e:4d:91: 33:da:47:69:a3:8a:85:ce:46:36:5d:21:cc:44:af: 47:d2:21:1a:cd:ee:49:1f:7f:f7:22:62:d4:0d:e8: 42:af:b3:f8:c6:d4:15:b3:2a:05:4a:32:7a:f3:8f: 8f:2b:04:10:51:0e:2d:5d:94:5f:ee:a1:10:e5:72: b9:41:39:20:7e:50:a1:6f:05:f5:10:b4:5c:8c:15: f2:09:53:be:5a:0f:f1:bc:9f:e9:9b:3c:b7:90:44: 33:b1:50:74:b6:21:f8:1e:f9:de:95:db:ee:b0:4c: a1:36:b2:b7:58:ba:68:15:27:d0:92:8e:01:db:47: 2b:03:1e:58:e8:d3:55:6b:1e:f0:46:e8:64:b7:18: b1:e9:7f:1b:63:3a:1c:e9:c5:66:69:dc:e8:3a:78: 06:1c:c5:e3:58:15:36:51:b8:10:53:f9:02:52:e1: 85:05:94:78:f1:84:3c:b4:4c:e3:86:4f:bb:34:d7: 3b:e1:d9:c7:8d:25:66:eb:ad:db:15:d2:ff:98:c3: 58:5a:7d:ce:ad:b4:83:7d:8f:a7:85:d3:2d:4c:bf: 2e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:13:FB:81:CA:B0:BC:EC:9E:A2:EA:10:B1:70:EB:1C:97:FF:A2:DF X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/bxP7gcqwvOyeouoQsXDrHJf_ot8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.231.0.0/16 Signature Algorithm: sha256WithRSAEncryption aa:68:d2:29:1d:2c:e4:a2:e5:72:77:fe:ef:45:99:68:5b:31: 1a:83:1e:7b:98:bd:aa:8a:ad:73:4e:04:2c:45:62:c1:20:6e: 16:a5:bb:7a:51:bc:a8:c1:b5:f5:f9:7a:cc:b4:4d:10:4d:0a: d4:2e:25:02:20:f3:d3:45:1c:35:78:09:56:06:55:70:90:2d: f2:8b:30:c5:99:c4:ad:d1:ae:b5:71:9c:98:42:fc:a6:c7:f7: db:aa:c3:b0:cd:7f:86:f1:33:d7:3c:63:c0:33:a6:94:c7:53: 6a:39:68:f7:41:91:9d:b6:1f:3d:c4:d2:87:51:3a:3d:90:59: 3d:0f:bd:d8:6a:b0:c8:4c:ab:b7:ec:1e:5e:fc:56:91:5f:a9: 15:81:88:30:48:25:85:f0:3d:f2:5b:4e:e1:86:30:19:6e:b2: b9:71:54:0d:67:a2:f4:c1:34:cf:6a:8c:e2:da:98:74:3f:bd: 29:d0:61:12:a1:79:b0:41:14:29:c4:ca:fd:e8:c0:6e:d6:a4: dc:93:04:83:37:18:a1:53:0c:b6:12:c1:d9:42:c4:97:7f:d3: d8:5b:63:a4:91:ba:a7:6e:12:04:0c:6f:96:96:a2:c1:32:e2: b2:90:b8:07:f8:89:b6:71:83:e2:47:c9:88:a1:3a:ad:64:1d: 42:ab:14:23 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICC7swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzA5MDEw ODUwNTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZGMTNGQjgxQ0FCMEJD RUM5RUEyRUExMEIxNzBFQjFDOTdGRkEyREYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDS9witu2nLcJGh5N4wU13AM6YsFwss5b2E7efrCfdC3P7Dxu2y ogd7u45NkTPaR2mjioXORjZdIcxEr0fSIRrN7kkff/ciYtQN6EKvs/jG1BWzKgVK Mnrzj48rBBBRDi1dlF/uoRDlcrlBOSB+UKFvBfUQtFyMFfIJU75aD/G8n+mbPLeQ RDOxUHS2Ifge+d6V2+6wTKE2srdYumgVJ9CSjgHbRysDHljo01VrHvBG6GS3GLHp fxtjOhzpxWZp3Og6eAYcxeNYFTZRuBBT+QJS4YUFlHjxhDy0TOOGT7s01zvh2ceN JWbrrdsV0v+Yw1hafc6ttIN9j6eF0y1Mvy6vAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUbxP7gcqwvOyeouoQsXDrHJf/ot8wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2J4UDdnY3F3dk95ZW91b1FzWERySEpm X290OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB25zANBgkq hkiG9w0BAQsFAAOCAQEAqmjSKR0s5KLlcnf+70WZaFsxGoMee5i9qoqtc04ELEVi wSBuFqW7elG8qMG19fl6zLRNEE0K1C4lAiDz00UcNXgJVgZVcJAt8oswxZnErdGu tXGcmEL8psf326rDsM1/hvEz1zxjwDOmlMdTajlo90GRnbYfPcTSh1E6PZBZPQ+9 2GqwyEyrt+weXvxWkV+pFYGIMEglhfA98ltO4YYwGW6yuXFUDWei9ME0z2qM4tqY dD+9KdBhEqF5sEEUKcTK/ejAbtak3JMEgzcYoVMMthLB2ULEl3/T2FtjpJG6p24S BAxvlpaiwTLispC4B/iJtnGD4kfJiKE6rWQdQqsUIw== -----END CERTIFICATE-----Generated at Mon May 20 08:58:19 2024 by rpki-client on console-ams.rpki-client.org