$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/qkOMA-H3LlKiVGq1pwJG_UHUEgE.roa File: qkOMA-H3LlKiVGq1pwJG_UHUEgE.roa (raw, json) Hash identifier: LwNDcoQtyTK/izkCvxFFi18XjZtdgf9qB25DJUBqQiE= Subject key identifier: AA:43:8C:03:E1:F7:2E:52:A2:54:6A:B5:A7:02:46:FD:41:D4:12:01 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0DC6 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/qkOMA-H3LlKiVGq1pwJG_UHUEgE.roa Signing time: Mon 15 Jan 2024 21:30:43 +0000 ROA not before: Mon 15 Jan 2024 21:30:43 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24154 IP address blocks: 60.244.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3526 (0xdc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:30:43 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=AA438C03E1F72E52A2546AB5A70246FD41D41201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:04:63:2a:f8:54:7a:c9:97:86:a4:7d:17:53: 8c:fc:55:c4:7f:61:4f:c0:35:f0:59:04:aa:16:2c: d9:1e:60:60:0b:e2:09:97:83:72:27:25:60:05:5f: 56:6d:85:36:10:b3:fb:4a:b7:6c:80:96:46:e1:c0: 90:78:62:38:af:ac:f8:bb:5f:3b:2b:8b:bd:a6:cb: f7:ee:6e:bc:6d:e3:a7:b6:f7:af:d9:d8:a4:7c:b2: 12:a0:15:f1:17:5f:f7:f3:d4:92:2e:0b:31:28:5a: 2d:37:ce:74:13:69:06:6e:44:58:4f:c4:31:52:cd: 13:60:74:47:c5:44:6f:d7:d8:7b:e3:ec:08:20:33: 32:82:ac:b6:ba:4e:a5:55:d3:0e:81:26:44:13:fb: 67:54:1c:23:62:0a:a7:f3:4a:91:1d:68:b6:8d:d1: 6f:b1:04:80:0c:f4:38:eb:c1:ca:37:6c:c0:dd:f2: 7b:be:9f:67:77:c0:01:ce:63:e6:86:5a:4c:cf:fa: 56:cb:4d:65:9c:b9:95:aa:a4:6f:14:f7:02:c4:f6: 12:51:ed:d1:23:49:ff:67:57:cf:29:b1:e2:c3:2e: 84:a1:8a:7e:3e:20:ff:b5:e3:2e:14:69:8e:3e:d2: 1c:56:6a:ce:27:12:79:e3:db:c6:c3:d9:db:dd:89: 37:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:43:8C:03:E1:F7:2E:52:A2:54:6A:B5:A7:02:46:FD:41:D4:12:01 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/qkOMA-H3LlKiVGq1pwJG_UHUEgE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.244.2.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:53:6b:db:f5:5d:f4:29:f6:28:b8:88:1e:0c:e0:08:ec:8e: 92:bf:8d:80:a7:3e:8e:0b:74:4a:34:f6:67:21:ff:9d:1b:01: 12:26:18:28:84:c5:33:1e:8c:30:9f:69:d9:eb:41:1c:2c:0e: f7:b0:7b:1b:9d:e7:df:65:23:a0:e1:45:e3:4b:1f:47:8c:a5: 54:2d:0c:b6:c8:b9:04:35:b0:19:6c:ae:9a:96:99:24:df:b2: 13:68:f0:22:f2:9f:6b:ab:a3:cd:ef:d1:14:5d:81:4b:f7:c1: fe:bd:81:3e:d7:6e:3b:f0:e8:e2:f2:66:c5:e3:dc:12:b7:fb: b3:f3:71:eb:f5:d4:37:4b:88:33:3d:36:0d:da:ba:cf:ba:f8: 12:b5:e6:f8:cb:06:a0:ad:de:c7:d5:b8:9b:e2:8f:5a:81:1a: a0:69:1b:f3:9d:74:5a:0f:c3:65:32:fe:15:53:2b:25:30:5f: d3:79:12:10:f8:e6:49:7f:6f:47:ae:b3:80:59:b1:42:6e:02: a1:0b:97:87:06:62:7d:6e:ac:d9:88:62:34:28:7e:2b:3b:c6: 86:5c:64:8c:ea:b2:9f:84:db:0b:c5:9e:40:c8:c4:9b:6d:2b: c6:f9:fb:81:3b:7f:ac:2d:ce:ce:08:61:00:f0:68:e2:e1:d5: 45:00:41:2b -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDcYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTMwNDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFBNDM4QzAzRTFGNzJF NTJBMjU0NkFCNUE3MDI0NkZENDFENDEyMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClBGMq+FR6yZeGpH0XU4z8VcR/YU/ANfBZBKoWLNkeYGAL4gmX g3InJWAFX1ZthTYQs/tKt2yAlkbhwJB4YjivrPi7Xzsri72my/fubrxt46e296/Z 2KR8shKgFfEXX/fz1JIuCzEoWi03znQTaQZuRFhPxDFSzRNgdEfFRG/X2Hvj7Agg MzKCrLa6TqVV0w6BJkQT+2dUHCNiCqfzSpEdaLaN0W+xBIAM9Djrwco3bMDd8nu+ n2d3wAHOY+aGWkzP+lbLTWWcuZWqpG8U9wLE9hJR7dEjSf9nV88pseLDLoShin4+ IP+14y4UaY4+0hxWas4nEnnj28bD2dvdiTeTAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUqkOMA+H3LlKiVGq1pwJG/UHUEgEwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3FrT01BLUgzTGxLaVZHcTFwd0pHX1VI VUVnRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA89AIwDQYJ KoZIhvcNAQELBQADggEBADtTa9v1XfQp9ii4iB4M4AjsjpK/jYCnPo4LdEo09mch /50bARImGCiExTMejDCfadnrQRwsDvewexud599lI6DhReNLH0eMpVQtDLbIuQQ1 sBlsrpqWmSTfshNo8CLyn2uro83v0RRdgUv3wf69gT7Xbjvw6OLyZsXj3BK3+7Pz cev11DdLiDM9Ng3aus+6+BK15vjLBqCt3sfVuJvij1qBGqBpG/OddFoPw2Uy/hVT KyUwX9N5EhD45kl/b0eus4BZsUJuAqELl4cGYn1urNmIYjQofis7xoZcZIzqsp+E 2wvFnkDIxJttK8b5+4E7f6wtzs4IYQDwaOLh1UUAQSs= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:00 2024 by rpki-client on console-fra.rpki-client.org