$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/ryIQV4WrFqFZa5v_HgaV-pqwgnM.roa File: ryIQV4WrFqFZa5v_HgaV-pqwgnM.roa (raw, json) Hash identifier: P7UxF086Jkg91kPMcR8J5lQJck1WUciXp94ptd+st9g= Subject key identifier: AF:22:10:57:85:AB:16:A1:59:6B:9B:FF:1E:06:95:FA:9A:B0:82:73 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0BB8 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ryIQV4WrFqFZa5v_HgaV-pqwgnM.roa Signing time: Fri 01 Sep 2023 08:50:55 +0000 ROA not before: Fri 01 Sep 2023 08:50:55 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9674 IP address blocks: 39.8.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3000 (0xbb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Sep 1 08:50:55 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=AF22105785AB16A1596B9BFF1E0695FA9AB08273 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e1:2b:96:79:c8:52:fc:fe:1f:50:db:45:15: ad:86:97:cc:7a:29:e4:33:29:ca:bc:c0:a3:6d:b4: 51:82:dd:3d:e9:eb:87:00:86:0d:91:90:19:80:2d: f3:1e:0d:7a:f0:6a:4b:8a:c5:46:9d:a9:af:7d:33: cd:ff:12:44:68:ff:2d:be:c3:23:02:29:64:c3:15: 7f:74:aa:7a:41:15:74:f7:00:79:b1:be:29:7e:46: cf:9a:86:72:f6:78:4b:34:7a:b2:c6:e2:5e:20:02: ec:79:26:82:95:49:7b:7c:f5:12:44:d3:cf:1c:25: 88:20:16:be:59:a2:ea:9e:36:f6:26:7a:7e:1b:75: 2a:08:ac:1c:da:7e:ab:90:48:ba:56:60:5d:cc:ea: f6:5a:07:4e:53:54:93:7a:bb:e0:79:e7:ed:c9:90: 03:f0:58:2b:77:11:27:3e:d2:98:17:89:91:28:f9: e0:77:28:2c:2a:e1:9c:89:b7:49:89:4b:fd:61:b4: ef:58:82:3a:f0:52:77:76:69:4e:cd:5f:0e:70:66: fb:9a:32:f9:40:ca:8d:da:d7:2e:c1:51:d7:c2:a0: eb:46:44:3d:45:43:31:ae:1c:29:c6:3b:df:c8:2d: 88:d5:5a:4c:2f:91:53:97:2c:61:97:ae:0b:b7:58: 93:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:22:10:57:85:AB:16:A1:59:6B:9B:FF:1E:06:95:FA:9A:B0:82:73 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ryIQV4WrFqFZa5v_HgaV-pqwgnM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.8.0.0/13 Signature Algorithm: sha256WithRSAEncryption 24:31:0b:bd:3c:66:b9:63:e0:a0:37:e1:4f:3c:72:53:59:54: a7:42:e6:ed:ff:cb:66:87:64:2a:d4:b7:2c:9b:4f:aa:eb:78: a1:6b:de:8c:ed:f0:29:e3:0f:5c:90:44:56:fb:df:4d:65:ba: 8b:df:c7:a8:a4:46:b3:3d:27:2a:aa:20:e6:56:03:ac:2b:77: 3c:1c:1f:73:bf:48:27:8b:4a:c2:c4:95:f4:1d:6e:7f:20:70: f5:28:de:10:ae:9a:e0:4d:75:cb:b6:aa:11:d5:6c:ce:96:ab: 23:f1:76:7a:c5:2a:13:04:00:6c:4d:b5:a4:6f:87:1d:9d:e1: 5c:fb:2f:bc:f7:dd:4d:0d:5a:87:aa:0e:9a:b1:eb:d1:f6:0d: 9e:98:b5:0b:36:c9:ab:f4:23:e2:a6:fe:cc:0e:22:b5:cb:e6: 3d:e3:56:28:c9:15:24:d6:56:c4:36:a8:0b:0e:64:fa:c9:ec: a9:40:d4:77:fa:6a:ef:28:2a:65:82:c1:46:91:27:9e:6a:ef: 0f:23:55:19:78:15:78:13:37:25:9e:a7:19:f0:08:d6:dc:c2: 4d:7b:54:74:43:56:1e:80:ae:91:86:3b:02:91:a1:6e:60:6b: 72:ca:7d:de:38:15:5a:ad:6b:e4:53:6b:52:41:9a:8d:4a:4b: 50:2a:96:3a -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICC7gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzA5MDEw ODUwNTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFGMjIxMDU3ODVBQjE2 QTE1OTZCOUJGRjFFMDY5NUZBOUFCMDgyNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDo4SuWechS/P4fUNtFFa2Gl8x6KeQzKcq8wKNttFGC3T3p64cA hg2RkBmALfMeDXrwakuKxUadqa99M83/EkRo/y2+wyMCKWTDFX90qnpBFXT3AHmx vil+Rs+ahnL2eEs0erLG4l4gAux5JoKVSXt89RJE088cJYggFr5ZouqeNvYmen4b dSoIrBzafquQSLpWYF3M6vZaB05TVJN6u+B55+3JkAPwWCt3ESc+0pgXiZEo+eB3 KCwq4ZyJt0mJS/1htO9YgjrwUnd2aU7NXw5wZvuaMvlAyo3a1y7BUdfCoOtGRD1F QzGuHCnGO9/ILYjVWkwvkVOXLGGXrgu3WJPRAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUryIQV4WrFqFZa5v/HgaV+pqwgnMwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3J5SVFWNFdyRnFGWmE1dl9IZ2FWLXBx d2duTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwMnCDANBgkq hkiG9w0BAQsFAAOCAQEAJDELvTxmuWPgoDfhTzxyU1lUp0Lm7f/LZodkKtS3LJtP qut4oWvejO3wKeMPXJBEVvvfTWW6i9/HqKRGsz0nKqog5lYDrCt3PBwfc79IJ4tK wsSV9B1ufyBw9SjeEK6a4E11y7aqEdVszparI/F2esUqEwQAbE21pG+HHZ3hXPsv vPfdTQ1ah6oOmrHr0fYNnpi1CzbJq/Qj4qb+zA4itcvmPeNWKMkVJNZWxDaoCw5k +snsqUDUd/pq7ygqZYLBRpEnnmrvDyNVGXgVeBM3JZ6nGfAI1tzCTXtUdENWHoCu kYY7ApGhbmBrcsp93jgVWq1r5FNrUkGajUpLUCqWOg== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:43 2024 by rpki-client on console-ams.rpki-client.org