$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/cYYgaQDeF48xYsGi9lenUf7Cs5Y.roa File: cYYgaQDeF48xYsGi9lenUf7Cs5Y.roa (raw, json) Hash identifier: uqPEPjuVXjHYOHPXrOjzYvIxZJVbAfEGqSzC8u8sw4g= Subject key identifier: 71:86:20:69:00:DE:17:8F:31:62:C1:A2:F6:57:A7:51:FE:C2:B3:96 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0C50 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/cYYgaQDeF48xYsGi9lenUf7Cs5Y.roa Signing time: Mon 15 Jan 2024 21:08:59 +0000 ROA not before: Mon 15 Jan 2024 21:08:59 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 203.79.128.0/17 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3152 (0xc50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:08:59 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=7186206900DE178F3162C1A2F657A751FEC2B396 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:aa:87:c5:e6:91:bf:34:85:d6:ef:6c:27:22: 7d:0a:d5:3b:dc:95:aa:2a:4a:49:8f:38:9c:1e:02: bb:c2:94:bf:e1:70:ad:cf:8b:9b:fd:fb:73:05:b6: ad:36:06:1e:2c:7c:8a:48:5e:46:5e:e1:f4:60:0a: ca:f2:91:5e:db:e1:73:c3:2b:95:d3:13:b9:85:82: ca:e8:04:c5:44:0a:6c:5c:12:ee:37:3b:fa:62:87: b4:bc:14:2e:a7:c4:80:35:68:45:00:e3:c9:e3:49: 5c:a2:80:a5:a7:d4:df:ae:03:47:bb:61:52:16:5e: 93:fd:2c:8b:f8:0e:19:5e:8b:b6:d4:22:d0:31:b7: a2:52:9f:a8:bd:0d:6d:79:53:c1:7a:bc:ed:44:7f: 21:95:94:c4:40:a2:81:c3:36:24:18:f7:70:9b:00: 0d:91:7d:ff:14:87:64:9b:0e:af:53:f1:39:2f:53: dc:eb:41:54:93:ab:14:67:b3:1f:a8:d0:15:13:e1: ba:11:be:ed:53:dd:e8:41:ae:12:de:1d:83:1a:da: 33:b8:76:b1:13:f8:da:d7:7e:92:ec:9a:4a:5c:da: f4:47:ee:c6:40:8e:bf:a6:b4:ac:97:60:ac:cc:66: aa:3f:b4:54:ed:9d:f8:b7:57:d2:70:fe:9e:48:f8: b3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:86:20:69:00:DE:17:8F:31:62:C1:A2:F6:57:A7:51:FE:C2:B3:96 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/cYYgaQDeF48xYsGi9lenUf7Cs5Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.79.128.0/17 Signature Algorithm: sha256WithRSAEncryption 72:23:4c:94:0e:cc:1f:77:d9:f5:67:4e:b4:0f:9b:f5:99:96: 32:ff:b7:dd:90:38:e5:e4:99:0b:5e:b0:d2:81:93:37:29:29: c4:0d:9b:e4:6c:0f:01:f3:e1:e9:50:d8:84:8f:d0:a6:2a:fe: 13:db:e3:6f:89:33:ba:ab:23:4f:84:47:b0:ec:f5:9e:10:3b: e0:4c:35:bf:5e:34:71:cf:bb:cd:9f:67:48:70:b1:47:05:2d: 9f:30:84:c6:19:f8:9e:2d:5a:89:4b:ff:1f:7d:2a:81:e2:2b: 34:e5:a5:26:de:38:d1:6d:66:73:61:f8:0e:d5:cf:20:27:65: 5f:56:7d:c1:8f:89:55:72:72:bc:c8:91:e4:b2:7d:15:17:ae: 74:80:8e:75:27:21:90:87:c3:7c:4a:39:24:b6:24:0b:99:4d: 14:59:59:e2:f4:1f:24:1a:a2:eb:ec:ac:68:9c:90:35:04:d6: 9f:23:d3:15:93:cc:c1:d1:c8:1a:d5:52:1c:0f:50:fe:87:8d: 7e:69:eb:33:79:6d:c8:c6:f0:e1:cc:e7:e2:be:39:3f:93:81: 17:fa:81:7e:1a:b2:7c:7d:cb:8f:bc:8d:c4:ab:5c:8c:94:56: 44:04:ac:1c:b6:a4:11:ec:d9:05:d7:a0:79:f4:13:4b:6d:b0: 06:4b:0f:13 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDFAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTA4NTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDcxODYyMDY5MDBERTE3 OEYzMTYyQzFBMkY2NTdBNzUxRkVDMkIzOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCXqofF5pG/NIXW72wnIn0K1TvclaoqSkmPOJweArvClL/hcK3P i5v9+3MFtq02Bh4sfIpIXkZe4fRgCsrykV7b4XPDK5XTE7mFgsroBMVECmxcEu43 O/pih7S8FC6nxIA1aEUA48njSVyigKWn1N+uA0e7YVIWXpP9LIv4Dhlei7bUItAx t6JSn6i9DW15U8F6vO1EfyGVlMRAooHDNiQY93CbAA2Rff8Uh2SbDq9T8TkvU9zr QVSTqxRnsx+o0BUT4boRvu1T3ehBrhLeHYMa2jO4drET+NrXfpLsmkpc2vRH7sZA jr+mtKyXYKzMZqo/tFTtnfi3V9Jw/p5I+LOfAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUcYYgaQDeF48xYsGi9lenUf7Cs5YwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2NZWWdhUURlRjQ4eFlzR2k5bGVuVWY3 Q3M1WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfLT4AwDQYJ KoZIhvcNAQELBQADggEBAHIjTJQOzB932fVnTrQPm/WZljL/t92QOOXkmQtesNKB kzcpKcQNm+RsDwHz4elQ2ISP0KYq/hPb42+JM7qrI0+ER7Ds9Z4QO+BMNb9eNHHP u82fZ0hwsUcFLZ8whMYZ+J4tWolL/x99KoHiKzTlpSbeONFtZnNh+A7VzyAnZV9W fcGPiVVycrzIkeSyfRUXrnSAjnUnIZCHw3xKOSS2JAuZTRRZWeL0HyQaouvsrGic kDUE1p8j0xWTzMHRyBrVUhwPUP6HjX5p6zN5bcjG8OHM5+K+OT+TgRf6gX4asnx9 y4+8jcSrXIyUVkQErBy2pBHs2QXXoHn0E0ttsAZLDxM= -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:39 2024 by rpki-client on console-fra.rpki-client.org