$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/kO5fxE_fBnddv_EA_hJ-bnYvTmU.roa File: kO5fxE_fBnddv_EA_hJ-bnYvTmU.roa (raw, json) Hash identifier: /1afpBr/eAIQyzN4NSCnMi8NtS4b/VVj+vjCMKkyjsE= Subject key identifier: 90:EE:5F:C4:4F:DF:06:77:5D:BF:F1:00:FE:12:7E:6E:76:2F:4E:65 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0D1E Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/kO5fxE_fBnddv_EA_hJ-bnYvTmU.roa Signing time: Mon 15 Jan 2024 21:24:49 +0000 ROA not before: Mon 15 Jan 2024 21:24:49 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131142 IP address blocks: 2404:0:7000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3358 (0xd1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:24:49 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=90EE5FC44FDF06775DBFF100FE127E6E762F4E65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ad:b7:7f:96:06:47:fc:87:8d:84:c3:ec:ec: ed:d2:e4:0b:21:55:f9:4d:a9:d3:87:39:ea:53:79: 56:30:9a:9a:08:7a:ed:5b:cc:96:1e:8e:4e:8f:08: 25:74:89:a7:12:66:0b:53:33:76:44:0f:92:f1:e2: d9:25:68:9c:ca:d5:2f:23:d9:55:2e:00:a4:b4:4f: e7:cc:7f:bb:d1:60:f8:f5:32:eb:ac:82:62:6a:30: ba:28:73:2b:9a:03:26:8a:34:0f:89:be:94:3d:43: a7:4b:1e:3b:60:76:61:87:c9:3b:39:09:64:f9:bf: 3b:51:b4:08:d7:16:cc:9f:a7:55:07:f0:ea:d9:99: 79:25:0d:c1:75:50:e8:b9:e9:7d:d7:64:d5:e4:9c: 74:e6:ef:4a:39:71:7e:52:10:aa:60:4b:ce:da:ea: fd:7f:d3:86:c4:7a:3f:36:8b:86:e0:7a:2a:b8:d0: 57:54:b8:1b:50:49:8f:a5:e5:c7:59:94:f7:09:0a: 55:ad:43:51:80:17:37:03:af:52:5d:33:a9:2c:eb: e8:65:c8:86:d9:25:a1:97:36:57:ed:d2:18:a3:b9: 29:72:50:7d:5c:45:1a:86:a6:ad:c6:a6:58:ac:7b: e7:0b:9a:1f:b6:37:ca:13:b4:4b:aa:6c:3f:da:ba: 17:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:EE:5F:C4:4F:DF:06:77:5D:BF:F1:00:FE:12:7E:6E:76:2F:4E:65 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/kO5fxE_fBnddv_EA_hJ-bnYvTmU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:0:7000::/36 Signature Algorithm: sha256WithRSAEncryption 4f:06:27:f8:d2:81:d4:fd:48:9a:fa:88:b0:0a:14:d5:a1:d8: f9:23:bf:2c:dc:b5:d9:e1:49:4e:de:a3:df:a1:1f:68:dc:bc: fd:22:ce:c8:b6:34:b2:1c:9b:1b:a8:50:95:98:3b:6f:85:ca: 5e:4f:a0:7a:e8:ac:8e:15:ac:a7:82:38:84:be:00:6b:c3:b7: 9e:54:75:91:9c:1f:66:b7:bb:4a:e5:26:72:59:de:f8:9f:16: 8c:47:b1:8e:f8:1d:df:22:15:a6:71:5e:b3:27:5c:ff:6a:8e: 84:9e:1c:6c:3b:e6:be:6f:b3:f7:09:57:cc:50:43:a6:f3:95: 79:72:72:60:1d:fc:92:16:51:c8:a3:65:94:8d:36:da:a5:b1: 49:10:47:fb:e0:d2:5c:ad:46:e9:56:4f:8f:5f:58:0a:a9:93: 28:77:20:0b:69:1a:cc:0c:c8:ba:f1:0f:6b:a4:af:57:33:80: 1d:83:21:57:01:c5:47:6b:34:fd:46:de:65:32:ac:c0:14:ea: 71:51:9c:44:eb:1d:14:47:48:03:4e:25:91:46:82:ef:ba:80: c3:51:51:79:78:34:2b:ca:a1:ee:3d:78:3b:d5:72:9d:26:b0: 84:04:5f:4f:b2:d9:20:f5:ff:65:53:92:e6:c6:62:df:85:73: 82:39:65:b1 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDR4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI0NDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkwRUU1RkM0NEZERjA2 Nzc1REJGRjEwMEZFMTI3RTZFNzYyRjRFNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwrbd/lgZH/IeNhMPs7O3S5AshVflNqdOHOepTeVYwmpoIeu1b zJYejk6PCCV0iacSZgtTM3ZED5Lx4tklaJzK1S8j2VUuAKS0T+fMf7vRYPj1Muus gmJqMLoocyuaAyaKNA+JvpQ9Q6dLHjtgdmGHyTs5CWT5vztRtAjXFsyfp1UH8OrZ mXklDcF1UOi56X3XZNXknHTm70o5cX5SEKpgS87a6v1/04bEej82i4bgeiq40FdU uBtQSY+l5cdZlPcJClWtQ1GAFzcDr1JdM6ks6+hlyIbZJaGXNlft0hijuSlyUH1c RRqGpq3Gplise+cLmh+2N8oTtEuqbD/auhe9AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUkO5fxE/fBnddv/EA/hJ+bnYvTmUwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2tPNWZ4RV9mQm5kZHZfRUFfaEotYm5Z dlRtVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQkBAAAcDAN BgkqhkiG9w0BAQsFAAOCAQEATwYn+NKB1P1ImvqIsAoU1aHY+SO/LNy12eFJTt6j 36EfaNy8/SLOyLY0shybG6hQlZg7b4XKXk+geuisjhWsp4I4hL4Aa8O3nlR1kZwf Zre7SuUmclne+J8WjEexjvgd3yIVpnFesydc/2qOhJ4cbDvmvm+z9wlXzFBDpvOV eXJyYB38khZRyKNllI022qWxSRBH++DSXK1G6VZPj19YCqmTKHcgC2kazAzIuvEP a6SvVzOAHYMhVwHFR2s0/UbeZTKswBTqcVGcROsdFEdIA04lkUaC77qAw1FReXg0 K8qh7j14O9VynSawhARfT7LZIPX/ZVOS5sZi34VzgjllsQ== -----END CERTIFICATE-----Generated at Mon May 20 08:32:39 2024 by rpki-client on console-fra.rpki-client.org