$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/sJvXLfGo6ZQUZfmRK5LLJx5PewQ.roa File: sJvXLfGo6ZQUZfmRK5LLJx5PewQ.roa (raw, json) Hash identifier: 433RI8GYX8EV1efMyWbb9tNxBoFODmf5z6CzQh+q8Fg= Subject key identifier: B0:9B:D7:2D:F1:A8:E9:94:14:65:F9:91:2B:92:CB:27:1E:4F:7B:04 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0C72 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/sJvXLfGo6ZQUZfmRK5LLJx5PewQ.roa Signing time: Mon 15 Jan 2024 21:09:34 +0000 ROA not before: Mon 15 Jan 2024 21:09:34 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7482 IP address blocks: 210.200.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3186 (0xc72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:09:34 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B09BD72DF1A8E9941465F9912B92CB271E4F7B04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6b:0a:dc:b5:e8:dd:b7:0a:a5:56:92:50:1e: 68:37:b9:00:9e:b4:c3:35:3f:df:1f:1b:53:8e:1a: 49:a6:2b:e7:5b:8b:6f:7e:9d:b2:f1:1b:b8:86:cb: cc:a0:9c:64:c4:1f:81:4f:d9:d5:b7:d3:4c:9d:33: 25:62:d3:12:03:44:c7:d8:e5:8b:e5:1d:7a:1d:f6: db:46:de:e5:e3:bc:ff:19:16:df:41:6e:20:e6:ea: ba:0f:37:4a:c8:8a:36:69:69:ae:1e:fd:58:a0:5f: 1f:2e:c4:2a:5f:df:77:00:d6:5e:2c:c4:d8:6e:1d: 66:61:5c:7a:c1:5a:9e:46:56:09:fe:6a:60:48:93: ab:20:66:35:ee:ad:8a:15:76:6c:57:e6:7e:e6:ea: 7b:d3:79:b1:5d:11:7e:91:7a:7b:ac:05:0b:ff:07: ac:9d:04:5d:2e:de:25:e9:9f:1d:a5:44:16:36:32: e9:5c:20:34:b7:b9:c4:d3:bb:e6:82:bd:a1:64:29: 1d:0d:c1:2f:e3:b2:56:6a:f5:6c:9e:e0:b2:84:55: d8:7c:4a:a5:30:17:95:de:ff:7a:2f:af:80:ba:f2: 94:06:36:35:55:a8:74:35:92:90:17:57:e4:be:a8: 6f:a1:f2:ee:41:2c:3e:5b:d9:1e:ec:0f:e8:8c:56: 40:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:9B:D7:2D:F1:A8:E9:94:14:65:F9:91:2B:92:CB:27:1E:4F:7B:04 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/sJvXLfGo6ZQUZfmRK5LLJx5PewQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.200.0.0/18 Signature Algorithm: sha256WithRSAEncryption 73:a6:33:10:eb:e8:35:73:cd:b0:c8:29:b3:37:9e:4e:d4:f4: 36:94:8c:64:b3:75:e6:1e:ef:4d:75:fc:cd:49:a6:35:a9:34: 09:05:79:f7:9b:27:03:39:c9:2f:90:88:56:51:ba:3f:9e:26: df:2e:d4:7d:2a:bb:65:4a:60:b8:38:52:1c:8a:0a:4f:b3:ff: 4c:14:7f:d9:01:57:2a:65:d9:64:44:0b:36:e9:1a:1d:a3:f7: 01:04:62:db:db:d1:2c:41:ff:bd:01:ee:da:10:31:d3:8d:a1: cd:41:b2:67:e8:89:d7:0d:d2:46:3a:fa:45:9a:91:a6:dc:cf: c5:ad:6e:b9:31:95:60:ef:d7:2b:bc:4d:2e:0a:21:41:db:ee: bf:59:e5:cc:b1:e1:28:3d:1e:40:0a:53:d9:ff:19:0c:eb:f9: b6:17:fd:a2:8a:c4:74:98:02:e3:78:25:ec:79:86:9c:75:71: ec:9f:dd:68:32:a0:e0:d6:6b:71:c7:3c:79:79:67:8f:50:e5: af:21:e9:56:84:44:70:12:05:f6:2e:8c:f1:b3:2c:6f:95:a2: 6e:0e:c0:e0:3f:f9:a9:9f:e2:a9:50:bf:18:e1:b2:5c:29:43: 6a:9c:d8:2f:5c:4c:c7:b3:67:92:26:c5:4f:d1:a6:08:98:f8: 44:69:1e:b2 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDHIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTA5MzRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEIwOUJENzJERjFBOEU5 OTQxNDY1Rjk5MTJCOTJDQjI3MUU0RjdCMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAawrctejdtwqlVpJQHmg3uQCetMM1P98fG1OOGkmmK+dbi29+ nbLxG7iGy8ygnGTEH4FP2dW300ydMyVi0xIDRMfY5YvlHXod9ttG3uXjvP8ZFt9B biDm6roPN0rIijZpaa4e/VigXx8uxCpf33cA1l4sxNhuHWZhXHrBWp5GVgn+amBI k6sgZjXurYoVdmxX5n7m6nvTebFdEX6RenusBQv/B6ydBF0u3iXpnx2lRBY2Mulc IDS3ucTTu+aCvaFkKR0NwS/jslZq9Wye4LKEVdh8SqUwF5Xe/3ovr4C68pQGNjVV qHQ1kpAXV+S+qG+h8u5BLD5b2R7sD+iMVkBjAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUsJvXLfGo6ZQUZfmRK5LLJx5PewQwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3NKdlhMZkdvNlpRVVpmbVJLNUxMSng1 UGV3US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSyAAwDQYJ KoZIhvcNAQELBQADggEBAHOmMxDr6DVzzbDIKbM3nk7U9DaUjGSzdeYe7011/M1J pjWpNAkFefebJwM5yS+QiFZRuj+eJt8u1H0qu2VKYLg4UhyKCk+z/0wUf9kBVypl 2WRECzbpGh2j9wEEYtvb0SxB/70B7toQMdONoc1BsmfoidcN0kY6+kWakabcz8Wt brkxlWDv1yu8TS4KIUHb7r9Z5cyx4Sg9HkAKU9n/GQzr+bYX/aKKxHSYAuN4Jex5 hpx1ceyf3WgyoODWa3HHPHl5Z49Q5a8h6VaERHASBfYujPGzLG+Vom4OwOA/+amf 4qlQvxjhslwpQ2qc2C9cTMezZ5ImxU/RpgiY+ERpHrI= -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:39 2024 by rpki-client on console-fra.rpki-client.org