$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/fu4t5ddBHrgasEC7gWY4MNmZhVM.roa File: fu4t5ddBHrgasEC7gWY4MNmZhVM.roa (raw, json) Hash identifier: rqQYdVRb+yOI+uy7hrS64IXJPN1sl45i75y3cH7nyPQ= Subject key identifier: 7E:EE:2D:E5:D7:41:1E:B8:1A:B0:40:BB:81:66:38:30:D9:99:85:53 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0CE2 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/fu4t5ddBHrgasEC7gWY4MNmZhVM.roa Signing time: Mon 15 Jan 2024 21:23:36 +0000 ROA not before: Mon 15 Jan 2024 21:23:36 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9311 IP address blocks: 210.63.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 13:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3298 (0xce2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:23:36 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=7EEE2DE5D7411EB81AB040BB81663830D9998553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9f:4f:0a:6c:8a:69:e4:3f:0f:c0:b5:bf:e0: 24:16:d3:ad:c8:eb:7d:ab:6f:03:69:9b:e7:6d:a1: 4e:c4:e0:eb:7e:5b:02:af:e1:5e:a3:c4:4d:c8:65: 0d:c4:07:88:60:65:fa:45:52:25:39:ee:57:54:61: 25:06:89:8a:c5:fe:b4:2b:9d:c8:05:50:8f:b2:75: c3:29:67:38:70:50:f3:61:3a:d2:46:d9:5e:0b:bb: 27:fc:e3:c9:da:db:f9:16:b6:cb:c4:7b:15:b6:ea: c2:94:5c:8f:ee:38:e0:00:2a:9b:74:b5:48:31:a7: 63:42:2e:cc:e3:a7:24:a3:ea:8f:46:8b:51:4d:61: d4:c5:25:f6:ef:c4:3c:5d:67:a5:95:8d:ae:08:ed: 40:d0:bb:0d:97:cf:10:6b:2d:5c:ba:23:b7:4c:a4: 09:17:61:54:6f:65:f2:1e:10:a0:c3:23:7d:eb:5e: a1:a7:e6:f3:b0:10:61:97:05:81:8e:e1:23:e9:d7: 97:e3:ad:63:35:a8:5c:b1:2e:89:fc:d2:cb:22:91: b3:ca:df:85:59:1c:7d:d7:f0:21:3b:e5:9e:d7:37: 3c:a6:a2:43:ee:b9:57:f9:b1:52:8a:d0:51:eb:65: 6d:2e:ab:42:a6:4a:85:e4:48:c1:d5:ee:c4:f1:43: 2a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:EE:2D:E5:D7:41:1E:B8:1A:B0:40:BB:81:66:38:30:D9:99:85:53 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/fu4t5ddBHrgasEC7gWY4MNmZhVM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.253.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:c8:26:c8:45:87:02:81:f2:9b:29:ce:e8:e0:8d:80:4d:d9: 67:d8:4e:2d:fb:4d:a1:7e:20:06:f7:b7:38:b8:21:d7:55:4e: f2:b0:45:e9:c7:18:5b:b1:2d:4c:d4:dd:b1:a8:9e:8d:dd:34: f0:ad:38:ce:7a:86:b8:05:06:30:e7:3b:fc:f5:1c:8e:d4:50: 6b:4b:5c:47:ed:e1:12:84:58:c0:8f:f6:13:d5:83:db:84:f9: 65:47:e9:40:4c:8a:94:f0:b7:1e:18:3e:a0:63:40:ca:4a:df: 0d:45:c7:0e:76:e0:f2:ce:02:85:92:31:4f:19:91:9d:e2:d2: 27:88:ec:17:86:08:14:a9:e7:98:7d:9f:5f:e9:e9:ee:d7:c5: 1b:62:a0:de:fb:7e:f5:1f:65:16:02:96:1c:23:e6:f2:77:b7: 5d:60:48:9f:fe:24:39:07:2d:85:b1:8c:a2:b4:ce:d1:e2:d9: fa:ec:b4:12:20:8e:ca:0f:e8:ff:48:d5:4d:85:b3:98:d3:ed: 30:cb:c0:16:c0:cf:d9:1c:ed:14:7b:11:c9:ac:a2:76:6d:fa: 90:b6:86:02:91:4b:cf:ea:0e:a6:4f:b4:a9:55:fe:13:01:8b: ca:49:a3:b3:4f:38:79:2c:55:13:da:f0:08:a9:d9:bd:39:8b: 02:a9:bd:e2 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDOIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTIzMzZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDdFRUUyREU1RDc0MTFF QjgxQUIwNDBCQjgxNjYzODMwRDk5OTg1NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9n08KbIpp5D8PwLW/4CQW063I632rbwNpm+dtoU7E4Ot+WwKv 4V6jxE3IZQ3EB4hgZfpFUiU57ldUYSUGiYrF/rQrncgFUI+ydcMpZzhwUPNhOtJG 2V4Luyf848na2/kWtsvEexW26sKUXI/uOOAAKpt0tUgxp2NCLszjpySj6o9Gi1FN YdTFJfbvxDxdZ6WVja4I7UDQuw2XzxBrLVy6I7dMpAkXYVRvZfIeEKDDI33rXqGn 5vOwEGGXBYGO4SPp15fjrWM1qFyxLon80ssikbPK34VZHH3X8CE75Z7XNzymokPu uVf5sVKK0FHrZW0uq0KmSoXkSMHV7sTxQyopAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUfu4t5ddBHrgasEC7gWY4MNmZhVMwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2Z1NHQ1ZGRCSHJnYXNFQzdnV1k0TU5t WmhWTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSP/0wDQYJ KoZIhvcNAQELBQADggEBAArIJshFhwKB8pspzujgjYBN2WfYTi37TaF+IAb3tzi4 IddVTvKwRenHGFuxLUzU3bGono3dNPCtOM56hrgFBjDnO/z1HI7UUGtLXEft4RKE WMCP9hPVg9uE+WVH6UBMipTwtx4YPqBjQMpK3w1Fxw524PLOAoWSMU8ZkZ3i0ieI 7BeGCBSp55h9n1/p6e7XxRtioN77fvUfZRYClhwj5vJ3t11gSJ/+JDkHLYWxjKK0 ztHi2frstBIgjsoP6P9I1U2Fs5jT7TDLwBbAz9kc7RR7EcmsonZt+pC2hgKRS8/q DqZPtKlV/hMBi8pJo7NPOHksVRPa8Aip2b05iwKpveI= -----END CERTIFICATE-----Generated at Sun Jun 2 19:20:43 2024 by rpki-client on console-fra.rpki-client.org