$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/gC0cvW3lgfe4Eeb2ZU-DmG_nCGk.roa File: gC0cvW3lgfe4Eeb2ZU-DmG_nCGk.roa (raw, json) Hash identifier: fzcozRVicc468vuCqcBMublnI3htAJIwo9/1gbxlK1Y= Subject key identifier: 80:2D:1C:BD:6D:E5:81:F7:B8:11:E6:F6:65:4F:83:98:6F:E7:08:69 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0C88 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/gC0cvW3lgfe4Eeb2ZU-DmG_nCGk.roa Signing time: Mon 15 Jan 2024 21:09:57 +0000 ROA not before: Mon 15 Jan 2024 21:09:57 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24154 IP address blocks: 210.200.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3208 (0xc88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:09:57 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=802D1CBD6DE581F7B811E6F6654F83986FE70869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:99:66:ef:dc:60:0b:01:de:8d:7e:a8:10:8a: 64:2b:b9:06:24:63:c2:c9:75:48:7c:9a:71:03:6f: 8e:e1:03:55:75:9f:5c:77:c6:49:63:80:ea:05:13: a1:7d:76:8f:00:cb:56:77:84:28:6d:5c:d6:b9:e9: b4:a9:d9:e7:d1:a5:91:56:08:3d:be:25:72:e4:3b: c6:c7:64:ab:22:94:68:d1:31:75:c4:4e:8d:b8:05: 0a:30:9a:6b:2b:e7:ec:bb:a6:23:95:b7:89:f2:87: b8:55:30:f3:30:55:e8:96:67:6d:7a:8e:5a:f3:e7: 15:93:46:14:3e:c5:4a:50:27:1b:ae:2b:26:80:1d: f0:7e:b3:5d:da:6e:26:ee:3b:a6:e3:ed:ae:ba:8d: b3:d5:d2:ea:c2:c8:a3:25:9e:59:1d:01:a7:7a:1d: 4f:77:a6:01:87:b8:7d:da:7e:56:a4:52:6b:4c:9a: 66:e5:91:08:32:78:79:96:c9:47:b3:5f:d8:d5:4f: ae:fb:36:97:e5:7d:c3:07:23:2f:82:a2:f0:1f:ec: 85:4a:d4:54:7e:68:92:22:16:73:fa:b7:61:42:80: cc:e2:ff:b3:68:c7:ab:94:54:17:40:de:d2:c4:81: a6:76:b2:ae:8e:10:96:77:83:dc:02:3a:fa:29:44: 07:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:2D:1C:BD:6D:E5:81:F7:B8:11:E6:F6:65:4F:83:98:6F:E7:08:69 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/gC0cvW3lgfe4Eeb2ZU-DmG_nCGk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.200.85.0/24 Signature Algorithm: sha256WithRSAEncryption 57:17:37:4c:88:4f:25:6d:8a:e0:02:b3:b1:97:46:fd:70:8e: ac:22:85:60:96:0c:4f:c5:df:d0:71:e5:4b:53:61:0c:89:d7: ad:4a:df:e8:de:32:28:7a:c2:f1:de:f8:d6:a7:a3:3c:40:4e: bd:87:62:64:39:b0:07:ce:cf:59:03:10:1b:14:13:e1:80:85: 77:ce:ab:15:dc:d9:25:e5:ad:4b:6f:1d:08:23:3d:90:71:a4: 96:85:78:18:93:44:8c:4f:e4:4c:94:92:d1:46:e2:e2:c3:15: 94:cd:a9:ce:0c:0f:37:56:ac:cd:a7:5a:b6:7c:81:32:96:5a: 22:72:5f:f6:21:fc:a4:ab:67:02:2d:a2:ee:0b:48:1e:f2:59: 2d:26:3a:3f:53:46:33:47:89:bd:d6:55:10:f0:63:a0:6f:2c: 86:bd:37:60:82:58:40:4f:49:9b:88:78:9d:be:f7:73:5b:d4: 6a:14:1b:50:f1:91:8e:75:79:42:7e:ff:4f:2b:4b:8d:30:86: 37:85:2b:c9:26:79:36:bb:ae:4a:a8:c7:e9:a3:c8:6f:ce:34: 5c:67:c2:eb:ec:f6:e1:da:df:24:eb:c2:cc:81:d5:03:9e:d5: 40:cf:c7:27:e7:77:63:24:d3:fb:06:90:aa:06:16:63:26:f0: 4e:65:a4:df -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDIgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTA5NTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDgwMkQxQ0JENkRFNTgx RjdCODExRTZGNjY1NEY4Mzk4NkZFNzA4NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJmWbv3GALAd6NfqgQimQruQYkY8LJdUh8mnEDb47hA1V1n1x3 xkljgOoFE6F9do8Ay1Z3hChtXNa56bSp2efRpZFWCD2+JXLkO8bHZKsilGjRMXXE To24BQowmmsr5+y7piOVt4nyh7hVMPMwVeiWZ216jlrz5xWTRhQ+xUpQJxuuKyaA HfB+s13abibuO6bj7a66jbPV0urCyKMlnlkdAad6HU93pgGHuH3aflakUmtMmmbl kQgyeHmWyUezX9jVT677NpflfcMHIy+CovAf7IVK1FR+aJIiFnP6t2FCgMzi/7No x6uUVBdA3tLEgaZ2sq6OEJZ3g9wCOvopRAeJAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUgC0cvW3lgfe4Eeb2ZU+DmG/nCGkwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2dDMGN2VzNsZ2ZlNEVlYjJaVS1EbUdf bkNHay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSyFUwDQYJ KoZIhvcNAQELBQADggEBAFcXN0yITyVtiuACs7GXRv1wjqwihWCWDE/F39Bx5UtT YQyJ161K3+jeMih6wvHe+NanozxATr2HYmQ5sAfOz1kDEBsUE+GAhXfOqxXc2SXl rUtvHQgjPZBxpJaFeBiTRIxP5EyUktFG4uLDFZTNqc4MDzdWrM2nWrZ8gTKWWiJy X/Yh/KSrZwItou4LSB7yWS0mOj9TRjNHib3WVRDwY6BvLIa9N2CCWEBPSZuIeJ2+ 93Nb1GoUG1DxkY51eUJ+/08rS40whjeFK8kmeTa7rkqox+mjyG/ONFxnwuvs9uHa 3yTrwsyB1QOe1UDPxyfnd2Mk0/sGkKoGFmMm8E5lpN8= -----END CERTIFICATE-----Generated at Mon May 20 08:58:19 2024 by rpki-client on console-ams.rpki-client.org