$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/r3JJPslSfOf3K06_diEeNS5mbG0.roa File: r3JJPslSfOf3K06_diEeNS5mbG0.roa (raw, json) Hash identifier: DqFuL8TU+vMmtf4V+7dQLDEuj/4rck2WYzj8Que59lQ= Subject key identifier: AF:72:49:3E:C9:52:7C:E7:F7:2B:4E:BF:76:21:1E:35:2E:66:6C:6D Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0BBA Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/r3JJPslSfOf3K06_diEeNS5mbG0.roa Signing time: Fri 01 Sep 2023 08:50:55 +0000 ROA not before: Fri 01 Sep 2023 08:50:55 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18412 IP address blocks: 39.12.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3002 (0xbba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Sep 1 08:50:55 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=AF72493EC9527CE7F72B4EBF76211E352E666C6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:67:72:49:c8:7a:48:53:61:fc:e7:a2:7a:a4: 14:c7:fd:90:a2:31:00:46:9a:14:10:7d:5f:45:d9: d3:a7:91:20:ce:37:2c:e8:8b:59:fd:e7:bb:88:ad: ab:4a:a0:77:38:2e:26:b5:f4:f9:35:84:6f:e1:41: c1:c1:42:8d:ec:27:ec:5e:06:fb:35:22:cf:7d:e8: 02:b2:cd:03:ca:5a:f0:6d:02:90:b7:9a:ef:ee:16: 0c:fb:c3:06:10:ed:02:43:94:c9:2b:ce:cb:38:1f: ad:d6:34:0d:9d:c8:4f:7c:19:0e:ec:01:f5:86:c3: 17:ba:7f:de:e0:a4:2a:61:d4:0d:29:fd:fe:7f:4b: e7:f5:6c:90:90:8e:99:3f:99:0c:23:62:55:9c:8f: 8d:54:15:b6:26:20:8a:23:65:3b:9b:4e:c2:ae:ad: 69:eb:a8:e9:9e:24:87:65:8b:40:b2:d4:73:c8:77: c9:4f:a6:48:56:c2:6d:b1:a2:43:13:1f:3c:0b:68: da:a6:aa:50:cc:59:9b:36:5c:4d:c6:e3:52:4d:47: b5:56:4d:01:64:e4:ca:c7:6d:34:e2:58:2a:01:07: 41:d3:e5:b6:84:3e:91:45:cf:d3:46:ff:bd:0b:24: f5:aa:61:9c:9f:5a:01:dc:cf:ea:25:2e:13:65:8c: 66:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:72:49:3E:C9:52:7C:E7:F7:2B:4E:BF:76:21:1E:35:2E:66:6C:6D X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/r3JJPslSfOf3K06_diEeNS5mbG0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.12.64.0/20 Signature Algorithm: sha256WithRSAEncryption 51:5f:19:2f:4a:5f:9e:0a:25:ed:c4:60:cb:ab:75:5a:81:ed: 13:ae:13:58:b6:c9:ef:ad:db:fc:40:c4:eb:25:d8:ed:f5:55: 8e:6b:87:f9:a0:1b:70:b9:cc:45:b4:fe:ff:0f:f9:0d:c3:14: 43:c8:a4:ee:3c:5f:a7:df:a9:fd:cf:64:03:88:c7:3d:d9:aa: 20:c7:98:54:70:4a:b8:bf:34:42:a3:80:66:dd:41:ce:fe:1f: 8f:53:42:c5:4e:6d:46:94:1b:33:0a:bf:b4:47:4e:8e:31:40: 2f:61:f5:35:2d:5d:25:ee:5c:ef:37:03:b5:f3:b6:9e:b5:cb: ee:b3:22:60:1d:a2:3e:9c:01:49:32:74:54:6f:e7:12:0f:0c: 8d:48:65:39:f6:bb:2f:48:60:35:1b:9c:04:51:70:86:1a:7d: 08:ff:b6:97:4e:64:8a:6b:9c:99:d3:80:5a:ba:f8:de:7f:96: 12:a6:84:23:0c:27:4a:b5:21:36:88:bf:85:80:e7:93:4e:db: c7:51:52:69:fa:63:d6:9c:96:6e:88:78:1d:53:85:a7:2a:9f: 6e:92:d8:db:0e:65:f5:fb:ce:43:82:c4:a3:47:28:3c:b0:df: d2:7d:a4:70:a5:2a:be:87:76:32:28:66:f9:55:93:56:8b:ae: f9:8e:66:20 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICC7owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzA5MDEw ODUwNTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFGNzI0OTNFQzk1MjdD RTdGNzJCNEVCRjc2MjExRTM1MkU2NjZDNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjZ3JJyHpIU2H856J6pBTH/ZCiMQBGmhQQfV9F2dOnkSDONyzo i1n957uIratKoHc4Lia19Pk1hG/hQcHBQo3sJ+xeBvs1Is996AKyzQPKWvBtApC3 mu/uFgz7wwYQ7QJDlMkrzss4H63WNA2dyE98GQ7sAfWGwxe6f97gpCph1A0p/f5/ S+f1bJCQjpk/mQwjYlWcj41UFbYmIIojZTubTsKurWnrqOmeJIdli0Cy1HPId8lP pkhWwm2xokMTHzwLaNqmqlDMWZs2XE3G41JNR7VWTQFk5MrHbTTiWCoBB0HT5baE PpFFz9NG/70LJPWqYZyfWgHcz+olLhNljGb1AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUr3JJPslSfOf3K06/diEeNS5mbG0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3IzSkpQc2xTZk9mM0swNl9kaUVlTlM1 bWJHMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQnDEAwDQYJ KoZIhvcNAQELBQADggEBAFFfGS9KX54KJe3EYMurdVqB7ROuE1i2ye+t2/xAxOsl 2O31VY5rh/mgG3C5zEW0/v8P+Q3DFEPIpO48X6ffqf3PZAOIxz3ZqiDHmFRwSri/ NEKjgGbdQc7+H49TQsVObUaUGzMKv7RHTo4xQC9h9TUtXSXuXO83A7Xztp61y+6z ImAdoj6cAUkydFRv5xIPDI1IZTn2uy9IYDUbnARRcIYafQj/tpdOZIprnJnTgFq6 +N5/lhKmhCMMJ0q1ITaIv4WA55NO28dRUmn6Y9aclm6IeB1Thacqn26S2NsOZfX7 zkOCxKNHKDyw39J9pHClKr6HdjIoZvlVk1aLrvmOZiA= -----END CERTIFICATE-----Generated at Mon May 20 08:58:20 2024 by rpki-client on console-ams.rpki-client.org