$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/mrdDfgEyq0fiqwtIc0f5SaGWbaY.roa File: mrdDfgEyq0fiqwtIc0f5SaGWbaY.roa (raw, json) Hash identifier: DC1Hm0Q1BPjlCmUo97njhBmx1cG/Pj3zds30lE5973k= Subject key identifier: 9A:B7:43:7E:01:32:AB:47:E2:AB:0B:48:73:47:F9:49:A1:96:6D:A6 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0CD2 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/mrdDfgEyq0fiqwtIc0f5SaGWbaY.roa Signing time: Mon 15 Jan 2024 21:11:22 +0000 ROA not before: Mon 15 Jan 2024 21:11:22 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9311 IP address blocks: 210.58.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3282 (0xcd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:11:22 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9AB7437E0132AB47E2AB0B487347F949A1966DA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:08:37:01:f4:69:4d:73:0f:2f:51:15:f7:67: ab:81:36:5e:68:b1:e5:ae:32:e6:d4:f7:7a:9f:12: 79:7e:21:4a:f2:51:94:08:71:8a:4a:d8:ab:af:23: 92:76:08:01:e3:cb:74:97:c5:cd:75:e0:73:12:f2: e5:4e:25:04:d2:73:a5:7a:95:07:88:94:bd:1a:8d: 4d:dd:bd:97:36:a0:55:d5:8c:07:4d:85:df:b4:3d: b7:6d:cb:ce:06:01:97:3e:49:d2:1f:29:1a:d8:17: 75:9f:7d:84:d8:62:6e:17:73:7b:c4:68:0f:43:f3: 50:1d:a1:97:a6:8a:9a:b3:b1:9f:68:47:67:7c:08: 00:07:2f:73:ce:0d:49:f1:8d:f9:dd:e2:0a:b5:b7: d5:f9:db:3f:fa:e8:24:7a:9b:e9:4b:6d:31:e2:db: 1a:46:dd:45:57:5c:ad:b8:62:7f:7c:8e:90:08:19: 8d:ef:01:3c:76:61:ab:89:c1:b2:d3:d8:46:9d:9c: 33:02:19:a9:8a:5d:cd:8d:01:95:84:b8:a2:50:59: 79:fe:35:ab:8d:e4:7d:68:c3:e6:e3:5c:db:f9:e7: 13:64:b6:b2:7e:c7:ef:3d:47:03:1e:02:86:8b:57: be:1e:c5:d6:df:f0:23:67:8b:07:cd:ff:28:25:8e: 24:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B7:43:7E:01:32:AB:47:E2:AB:0B:48:73:47:F9:49:A1:96:6D:A6 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/mrdDfgEyq0fiqwtIc0f5SaGWbaY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.58.96.0/21 Signature Algorithm: sha256WithRSAEncryption 66:56:64:3f:32:e8:ef:6a:ff:41:e3:a0:d4:7e:67:7f:fc:ce: c9:83:9f:f0:ab:d9:cc:b4:8a:00:00:5a:24:d4:37:f1:0c:1f: 9f:dc:03:36:05:54:ad:ed:e2:36:6d:4f:b6:06:bf:a5:8b:5d: 6e:1b:9b:8d:63:97:de:fc:30:25:f5:41:28:03:80:3e:e3:40: 94:80:43:30:bb:ba:79:a2:04:bd:b2:78:47:31:20:bd:14:69: bb:88:30:cc:45:8f:96:ca:5e:de:8b:b1:e9:32:0f:b2:b8:fa: c8:4d:24:4a:c4:66:61:51:de:1c:d3:62:98:6a:6f:73:66:3b: 72:92:ad:d4:1d:7c:01:90:f1:bb:e1:da:35:c8:0a:5c:37:05: 36:7c:c9:20:3d:b5:83:4f:2b:f4:8e:b3:f1:3b:83:ec:6b:0a: 24:29:4c:60:73:87:e6:24:82:d4:4e:7a:71:aa:16:fa:c8:ed: 4f:ea:33:a5:ff:0f:97:44:ee:e7:75:e6:23:37:e7:84:41:42: 68:e0:ca:83:d1:21:56:f4:80:7d:28:b9:36:53:01:13:8f:b7: 13:ee:6a:b8:74:a0:1a:cf:74:e6:7c:ce:4d:fd:7e:1d:52:1b: 13:6b:92:a7:3d:b4:80:1f:5c:73:a4:30:65:03:74:7f:1a:52: e4:06:bf:a4 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDNIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTExMjJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlBQjc0MzdFMDEzMkFC NDdFMkFCMEI0ODczNDdGOTQ5QTE5NjZEQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8CDcB9GlNcw8vURX3Z6uBNl5oseWuMubU93qfEnl+IUryUZQI cYpK2KuvI5J2CAHjy3SXxc114HMS8uVOJQTSc6V6lQeIlL0ajU3dvZc2oFXVjAdN hd+0Pbdty84GAZc+SdIfKRrYF3WffYTYYm4Xc3vEaA9D81AdoZemipqzsZ9oR2d8 CAAHL3PODUnxjfnd4gq1t9X52z/66CR6m+lLbTHi2xpG3UVXXK24Yn98jpAIGY3v ATx2YauJwbLT2EadnDMCGamKXc2NAZWEuKJQWXn+NauN5H1ow+bjXNv55xNktrJ+ x+89RwMeAoaLV74exdbf8CNniwfN/ygljiT/AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUmrdDfgEyq0fiqwtIc0f5SaGWbaYwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL21yZERmZ0V5cTBmaXF3dEljMGY1U2FH V2JhWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPSOmAwDQYJ KoZIhvcNAQELBQADggEBAGZWZD8y6O9q/0HjoNR+Z3/8zsmDn/Cr2cy0igAAWiTU N/EMH5/cAzYFVK3t4jZtT7YGv6WLXW4bm41jl978MCX1QSgDgD7jQJSAQzC7unmi BL2yeEcxIL0UabuIMMxFj5bKXt6LsekyD7K4+shNJErEZmFR3hzTYphqb3NmO3KS rdQdfAGQ8bvh2jXIClw3BTZ8ySA9tYNPK/SOs/E7g+xrCiQpTGBzh+YkgtROenGq FvrI7U/qM6X/D5dE7ud15iM354RBQmjgyoPRIVb0gH0ouTZTAROPtxPuarh0oBrP dOZ8zk39fh1SGxNrkqc9tIAfXHOkMGUDdH8aUuQGv6Q= -----END CERTIFICATE-----Generated at Mon Jun 3 15:52:33 2024 by rpki-client on console-ams.rpki-client.org