$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/kBCzrjJDw4q_cLmKOsE6AxTXl78.roa File: kBCzrjJDw4q_cLmKOsE6AxTXl78.roa (raw, json) Hash identifier: DkobNReoTln8iEA0dnNkzS/viM88JoHRRITHNZ3urXY= Subject key identifier: 90:10:B3:AE:32:43:C3:8A:BF:70:B9:8A:3A:C1:3A:03:14:D7:97:BF Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0DEC Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/kBCzrjJDw4q_cLmKOsE6AxTXl78.roa Signing time: Mon 15 Jan 2024 21:35:28 +0000 ROA not before: Mon 15 Jan 2024 21:35:28 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9922 IP address blocks: 124.218.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3564 (0xdec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:35:28 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9010B3AE3243C38ABF70B98A3AC13A0314D797BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:65:0f:dc:ba:c4:8a:68:cb:c9:af:f0:f7:67: d2:3c:b5:19:7c:27:d0:fa:d0:74:02:f2:7a:87:0c: 1f:5c:8b:2d:80:b0:09:24:37:8a:20:23:8d:9c:84: 8f:96:6f:07:93:2e:87:20:61:3b:49:05:75:c9:7c: e9:ea:53:4a:9c:01:59:1e:8a:aa:08:1f:98:b7:0e: 1e:62:4d:55:40:1b:e8:5b:06:c2:dc:79:eb:27:8d: 50:2b:14:19:0d:db:7c:0d:aa:ce:23:ac:fc:80:36: de:3a:cc:61:6f:7c:28:ec:54:c1:18:24:da:1b:86: f4:45:31:97:1f:ed:29:27:6c:db:cf:af:1a:45:9b: 98:17:47:69:59:66:55:a2:b0:9a:eb:32:df:e9:58: 82:8e:40:ed:06:2d:cc:cd:22:72:a9:01:3b:47:42: 6d:b9:a0:e8:de:26:ad:bf:55:29:06:c2:43:8f:07: d4:4f:29:ee:1f:33:43:cd:bc:34:e6:c2:1f:7c:84: 53:da:ee:e0:b9:c4:8c:75:e9:ed:71:63:8d:f2:59: 83:6c:c7:83:86:c3:11:b0:1e:05:81:c4:54:e4:29: 8a:0d:43:61:8f:36:9c:a0:f6:cc:c1:e4:ca:3d:07: 25:6e:29:10:5d:07:bb:78:7f:b7:73:6f:c0:da:0d: 89:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:10:B3:AE:32:43:C3:8A:BF:70:B9:8A:3A:C1:3A:03:14:D7:97:BF X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/kBCzrjJDw4q_cLmKOsE6AxTXl78.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.175.0/24 Signature Algorithm: sha256WithRSAEncryption 93:d9:dd:bf:0f:d9:22:43:9f:fa:22:dd:75:05:2c:c0:1b:52: 51:8e:ec:60:21:4e:e6:ab:2e:2e:3b:cc:1d:e8:11:9e:74:19: 5f:3c:1a:ab:04:6b:9f:c8:7e:31:aa:1a:e7:9a:3c:a0:fe:11: c2:a1:17:ab:ae:0e:d5:94:5a:78:ec:6c:81:01:4c:45:ab:be: b3:24:a7:00:f5:95:68:93:70:c0:87:df:f7:46:01:f7:ab:c4: 0d:6a:8c:e8:4e:6f:a9:21:8f:27:21:b1:4f:f1:ec:52:dd:10: 04:24:04:19:fc:17:c4:3e:6e:f9:85:da:c1:2c:2d:da:fa:1c: 4d:1c:ea:70:7a:b1:ec:24:e2:9a:ee:60:19:07:12:62:c1:0b: 80:08:6c:af:48:7f:ae:64:d9:b3:93:c1:fe:29:93:1f:2c:68: a1:4f:59:88:0d:3b:22:cc:68:97:1f:6a:21:50:1a:6d:0c:b9: 0f:35:84:95:4e:97:d9:03:7e:5d:76:29:84:cc:e0:e5:e0:8a: 26:03:9a:c3:c8:47:f6:fc:21:6d:1d:f2:87:c4:32:ed:1f:7e: 15:fc:62:7d:11:87:6b:8a:01:8c:40:9a:38:df:7b:a6:12:13: ad:d7:99:f6:52:b5:20:23:d4:f0:f4:ef:a7:a6:35:88:a2:1e: 01:0e:b2:05 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDewwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTM1MjhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkwMTBCM0FFMzI0M0Mz OEFCRjcwQjk4QTNBQzEzQTAzMTRENzk3QkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRZQ/cusSKaMvJr/D3Z9I8tRl8J9D60HQC8nqHDB9ciy2AsAkk N4ogI42chI+WbweTLocgYTtJBXXJfOnqU0qcAVkeiqoIH5i3Dh5iTVVAG+hbBsLc eesnjVArFBkN23wNqs4jrPyANt46zGFvfCjsVMEYJNobhvRFMZcf7SknbNvPrxpF m5gXR2lZZlWisJrrMt/pWIKOQO0GLczNInKpATtHQm25oOjeJq2/VSkGwkOPB9RP Ke4fM0PNvDTmwh98hFPa7uC5xIx16e1xY43yWYNsx4OGwxGwHgWBxFTkKYoNQ2GP Npyg9szB5Mo9ByVuKRBdB7t4f7dzb8DaDYlvAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUkBCzrjJDw4q/cLmKOsE6AxTXl78wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2tCQ3pyakpEdzRxX2NMbUtPc0U2QXhU WGw3OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB82q8wDQYJ KoZIhvcNAQELBQADggEBAJPZ3b8P2SJDn/oi3XUFLMAbUlGO7GAhTuarLi47zB3o EZ50GV88GqsEa5/IfjGqGueaPKD+EcKhF6uuDtWUWnjsbIEBTEWrvrMkpwD1lWiT cMCH3/dGAferxA1qjOhOb6khjychsU/x7FLdEAQkBBn8F8Q+bvmF2sEsLdr6HE0c 6nB6sewk4pruYBkHEmLBC4AIbK9If65k2bOTwf4pkx8saKFPWYgNOyLMaJcfaiFQ Gm0MuQ81hJVOl9kDfl12KYTM4OXgiiYDmsPIR/b8IW0d8ofEMu0ffhX8Yn0Rh2uK AYxAmjjfe6YSE63XmfZStSAj1PD076emNYiiHgEOsgU= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:43 2024 by rpki-client on console-ams.rpki-client.org