$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/hVY51UktIGnrIndlfkYbAhQ03Sk.roa File: hVY51UktIGnrIndlfkYbAhQ03Sk.roa (raw, json) Hash identifier: oo9imktpqYNo4sjnSwAg/fzFtTunV/FK08pTa14XA3E= Subject key identifier: 85:56:39:D5:49:2D:20:69:EB:22:77:65:7E:46:1B:02:14:34:DD:29 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0D5E Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/hVY51UktIGnrIndlfkYbAhQ03Sk.roa Signing time: Mon 15 Jan 2024 21:26:13 +0000 ROA not before: Mon 15 Jan 2024 21:26:13 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 22787 IP address blocks: 210.58.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3422 (0xd5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:26:13 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=855639D5492D2069EB2277657E461B021434DD29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5f:12:39:3d:6a:d6:ff:27:a1:29:88:16:47: 2b:a0:41:37:6d:32:dd:70:1f:69:d0:9c:40:77:14: 5c:7c:b0:95:ca:e9:5b:b1:a0:fd:78:6e:3f:75:06: c1:8e:69:e2:11:12:ba:d4:4d:41:fb:b9:d6:b3:c2: 16:e4:fe:7f:9a:09:7b:8e:e5:2b:4c:cf:dd:97:c9: 70:4e:72:64:fb:47:7c:14:84:8d:47:28:54:be:61: 2b:70:69:73:40:9b:05:0e:70:37:2f:20:e7:88:14: 50:6f:c5:b8:47:0b:e1:2a:92:d0:b3:aa:98:de:1b: 14:df:cb:d9:2e:fc:ea:a5:2e:f7:7e:1c:e4:a2:32: 15:a0:ea:7e:7f:56:99:02:65:14:a7:aa:a7:a8:4e: 1b:1a:f3:74:40:d2:3c:8e:6e:b6:da:50:3f:52:b2: a2:ba:bf:4d:bd:10:b7:10:d0:72:1b:b7:e5:91:18: d2:07:12:ec:2c:7d:37:dd:49:9e:16:cb:9c:3b:a9: c1:73:e7:a2:80:12:f1:98:ea:0b:28:18:ec:ed:60: ac:e1:8b:cd:b1:22:12:b3:30:e1:77:dc:4f:59:fb: c1:b7:eb:2c:65:d1:b8:9e:7f:0e:05:6e:63:d9:ed: 5f:d1:e9:90:7f:fc:ab:9e:db:fe:dc:28:fb:be:1a: 6e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:56:39:D5:49:2D:20:69:EB:22:77:65:7E:46:1B:02:14:34:DD:29 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/hVY51UktIGnrIndlfkYbAhQ03Sk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.58.90.0/24 Signature Algorithm: sha256WithRSAEncryption 51:0d:b4:8d:e2:33:1e:98:62:29:54:19:ab:74:94:69:1e:c1: 73:05:84:1c:a3:ae:09:57:fd:c4:a7:41:ac:59:03:7c:c6:73: 0c:51:a1:a6:d0:19:2d:3f:f8:ae:75:25:2f:59:09:65:47:d3: 90:9b:b7:74:65:7f:ae:79:00:8d:65:e6:27:6c:a7:1b:b6:c3: e0:c7:28:b5:7a:90:a9:95:8b:fe:56:94:34:ac:f8:5c:52:38: ef:29:3f:08:87:7e:3a:6a:e1:d3:f9:9a:fe:16:97:07:77:49: 10:95:a9:e1:f6:23:e5:37:c1:dc:c1:05:fe:e6:55:79:0d:71: c3:36:f6:1e:50:4d:b6:56:61:59:1e:2a:59:29:26:dd:e8:60: 66:7b:3f:3e:67:70:40:b2:52:3c:6e:bd:ac:43:be:0b:09:ad: 1e:8d:23:34:52:1a:95:ea:b5:0d:d3:9e:77:a4:2a:09:ec:15: 19:43:2b:26:ac:7b:b5:71:84:29:5b:1a:41:0b:0c:14:53:84: e2:e3:04:0e:6e:b4:bd:be:66:0b:7a:e2:ce:ca:26:d0:62:9c: 03:79:ce:ef:17:2f:22:d6:e6:ec:e6:1d:0d:12:94:24:a5:32: d2:68:89:7a:14:da:c4:e7:3f:e6:15:ac:4c:79:53:33:57:c3: 82:d5:2c:88 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDV4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI2MTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg1NTYzOUQ1NDkyRDIw NjlFQjIyNzc2NTdFNDYxQjAyMTQzNEREMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYXxI5PWrW/yehKYgWRyugQTdtMt1wH2nQnEB3FFx8sJXK6Vux oP14bj91BsGOaeIRErrUTUH7udazwhbk/n+aCXuO5StMz92XyXBOcmT7R3wUhI1H KFS+YStwaXNAmwUOcDcvIOeIFFBvxbhHC+EqktCzqpjeGxTfy9ku/OqlLvd+HOSi MhWg6n5/VpkCZRSnqqeoThsa83RA0jyObrbaUD9SsqK6v029ELcQ0HIbt+WRGNIH EuwsfTfdSZ4Wy5w7qcFz56KAEvGY6gsoGOztYKzhi82xIhKzMOF33E9Z+8G36yxl 0biefw4FbmPZ7V/R6ZB//Kue2/7cKPu+Gm5NAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUhVY51UktIGnrIndlfkYbAhQ03SkwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2hWWTUxVWt0SUduckluZGxma1liQWhR MDNTay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSOlowDQYJ KoZIhvcNAQELBQADggEBAFENtI3iMx6YYilUGat0lGkewXMFhByjrglX/cSnQaxZ A3zGcwxRoabQGS0/+K51JS9ZCWVH05Cbt3Rlf655AI1l5idspxu2w+DHKLV6kKmV i/5WlDSs+FxSOO8pPwiHfjpq4dP5mv4Wlwd3SRCVqeH2I+U3wdzBBf7mVXkNccM2 9h5QTbZWYVkeKlkpJt3oYGZ7Pz5ncECyUjxuvaxDvgsJrR6NIzRSGpXqtQ3Tnnek KgnsFRlDKyase7VxhClbGkELDBRThOLjBA5utL2+Zgt64s7KJtBinAN5zu8XLyLW 5uzmHQ0SlCSlMtJoiXoU2sTnP+YVrEx5UzNXw4LVLIg= -----END CERTIFICATE-----Generated at Mon May 20 08:58:19 2024 by rpki-client on console-ams.rpki-client.org