$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/ePspifakiZmXKPb1OBawh96hrRU.roa File: ePspifakiZmXKPb1OBawh96hrRU.roa (raw, json) Hash identifier: vNDfyNpKmQpQMp7EDpW/VisCnHdwdWIWZ0hMcsqxKMI= Subject key identifier: 78:FB:29:89:F6:A4:89:99:97:28:F6:F5:38:16:B0:87:DE:A1:AD:15 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0E06 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ePspifakiZmXKPb1OBawh96hrRU.roa Signing time: Wed 24 Jan 2024 06:09:03 +0000 ROA not before: Wed 24 Jan 2024 06:09:03 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 219.91.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3590 (0xe06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 24 06:09:03 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=78FB2989F6A489999728F6F53816B087DEA1AD15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c3:d0:2c:b6:39:d5:12:62:3a:51:73:42:15: 75:d2:c6:f4:83:3f:2c:17:9f:6d:ea:10:2e:ad:48: 70:05:8f:6f:af:36:ea:ef:8a:c6:dc:f9:cf:27:5d: 8d:ba:17:40:59:46:58:15:5a:66:60:5d:ef:21:f3: 7e:ad:a6:f4:c4:84:d6:1b:80:df:1c:76:40:4d:6c: 2b:4a:6c:21:e7:70:5b:2c:99:64:0c:6a:48:70:33: 8a:1f:62:8d:5e:2a:c9:d5:bf:c4:d1:33:c3:d9:a4: c8:82:da:00:e1:bc:97:3c:45:c3:1b:8d:e4:b8:b4: db:fc:0c:6d:1e:97:3c:9a:60:cb:92:fa:88:73:f2: 19:3d:71:65:2d:4a:96:b6:27:a7:39:2b:e2:e3:2e: 55:04:e2:81:33:ce:fa:80:36:ae:74:bc:62:1a:57: a4:f5:f2:bf:83:96:99:5d:d2:94:87:bf:e3:c6:dc: 82:7f:1a:80:f7:f9:3a:21:07:8e:4d:c3:76:b6:95: cd:a0:1b:f9:da:81:3f:82:1f:bf:f7:1f:3c:1c:16: 29:ef:06:17:f3:39:f9:17:98:8a:51:1a:a1:ca:4c: b1:65:fd:83:1e:b5:ab:81:ba:f6:5f:6c:f8:0e:eb: 2e:16:d9:64:53:8e:fc:a9:6e:76:c7:7c:52:78:42: ef:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:FB:29:89:F6:A4:89:99:97:28:F6:F5:38:16:B0:87:DE:A1:AD:15 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ePspifakiZmXKPb1OBawh96hrRU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.91.0.0/17 Signature Algorithm: sha256WithRSAEncryption 7c:1e:0b:c7:f5:30:2e:e9:e6:7e:2c:1a:b6:27:b9:c6:1c:9f: 7a:80:85:18:e3:d5:95:39:17:66:5c:da:bd:8a:55:06:64:96: ee:35:f0:89:f6:fc:e9:a3:47:86:0f:c8:2e:f7:48:40:cb:47: 6b:65:9b:cb:9f:1e:73:71:62:4c:38:cd:2d:2e:ea:c6:eb:6b: 06:b8:33:26:ef:c2:a0:01:04:2f:10:97:49:89:dd:68:63:69: 7d:4b:10:48:eb:be:cc:0c:e1:38:ca:ea:0b:df:f1:5b:30:02: 18:a7:9c:42:63:43:ce:56:74:af:35:87:2f:44:85:f3:c7:74: d4:7c:5d:69:8c:92:d2:80:d9:cf:67:42:6b:2b:15:55:86:d7: 26:2e:b4:da:99:ee:e8:d9:7e:e4:a4:e6:c0:41:26:ea:87:91: be:91:e4:25:a6:5d:cb:39:36:77:91:4d:79:c3:24:51:29:14: c7:02:d0:4b:eb:19:d5:82:ec:bd:77:19:54:d7:f2:cc:7e:59: 52:fe:e5:79:e4:13:3a:12:c6:63:d4:0c:d4:fa:66:bb:87:11: 4a:54:13:b1:46:1c:e4:16:99:5b:28:72:e1:ce:78:3e:ff:2d: 68:48:96:03:38:2a:bf:bd:b8:c4:74:28:0b:d3:eb:17:6e:8f: f1:ad:98:99 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDgYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMjQw NjA5MDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc4RkIyOTg5RjZBNDg5 OTk5NzI4RjZGNTM4MTZCMDg3REVBMUFEMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdw9AstjnVEmI6UXNCFXXSxvSDPywXn23qEC6tSHAFj2+vNurv isbc+c8nXY26F0BZRlgVWmZgXe8h836tpvTEhNYbgN8cdkBNbCtKbCHncFssmWQM akhwM4ofYo1eKsnVv8TRM8PZpMiC2gDhvJc8RcMbjeS4tNv8DG0elzyaYMuS+ohz 8hk9cWUtSpa2J6c5K+LjLlUE4oEzzvqANq50vGIaV6T18r+Dlpld0pSHv+PG3IJ/ GoD3+TohB45Nw3a2lc2gG/nagT+CH7/3HzwcFinvBhfzOfkXmIpRGqHKTLFl/YMe tauBuvZfbPgO6y4W2WRTjvypbnbHfFJ4Qu87AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUePspifakiZmXKPb1OBawh96hrRUwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2VQc3BpZmFraVptWEtQYjFPQmF3aDk2 aHJSVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfbWwAwDQYJ KoZIhvcNAQELBQADggEBAHweC8f1MC7p5n4sGrYnucYcn3qAhRjj1ZU5F2Zc2r2K VQZklu418In2/OmjR4YPyC73SEDLR2tlm8ufHnNxYkw4zS0u6sbrawa4MybvwqAB BC8Ql0mJ3WhjaX1LEEjrvswM4TjK6gvf8VswAhinnEJjQ85WdK81hy9EhfPHdNR8 XWmMktKA2c9nQmsrFVWG1yYutNqZ7ujZfuSk5sBBJuqHkb6R5CWmXcs5NneRTXnD JFEpFMcC0EvrGdWC7L13GVTX8sx+WVL+5XnkEzoSxmPUDNT6ZruHEUpUE7FGHOQW mVsocuHOeD7/LWhIlgM4Kr+9uMR0KAvT6xduj/GtmJk= -----END CERTIFICATE-----Generated at Mon May 20 08:32:39 2024 by rpki-client on console-fra.rpki-client.org