$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/sxV7pEH1OoqVwvAD7El8FMtfgs0.roa File: sxV7pEH1OoqVwvAD7El8FMtfgs0.roa (raw, json) Hash identifier: etZTs/apPfl93ptZoSTFGMphe1PPTd4OrWNT1P3UX/0= Subject key identifier: B3:15:7B:A4:41:F5:3A:8A:95:C2:F0:03:EC:49:7C:14:CB:5F:82:CD Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0CFC Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/sxV7pEH1OoqVwvAD7El8FMtfgs0.roa Signing time: Mon 15 Jan 2024 21:24:08 +0000 ROA not before: Mon 15 Jan 2024 21:24:08 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7482 IP address blocks: 222.157.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3324 (0xcfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:24:08 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B3157BA441F53A8A95C2F003EC497C14CB5F82CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d1:6f:17:d4:d7:d9:bc:6c:f0:39:8a:23:77: 4f:47:3f:38:fa:15:02:cc:27:4b:7e:95:78:84:d0: a3:5a:b2:1a:df:fb:a4:d6:8c:75:15:b4:f7:49:15: b3:55:b6:9c:48:38:d6:02:e7:01:1e:38:ca:46:91: 58:09:f2:37:1c:aa:89:e1:03:6b:58:db:53:9a:7c: 2f:8b:1a:c6:42:ea:bc:86:4c:36:07:f8:48:b2:24: 2c:20:11:50:d6:f2:6c:73:e9:9e:4f:df:91:9f:37: a5:f3:86:62:57:e3:bf:cd:29:37:89:63:e9:54:e8: f7:63:81:be:9f:77:3c:c7:0a:d0:cf:57:5c:71:34: f1:f8:65:ab:32:c1:8d:85:6a:c9:de:2b:44:fa:b7: e6:5e:94:48:bf:ba:ca:81:85:25:5f:f6:e3:cd:3e: 25:47:cb:dc:6e:b2:cf:9f:22:c8:73:a2:11:1f:cd: 90:e8:ac:40:5c:d7:b2:e7:29:8b:5e:17:27:b0:f7: 37:ae:b6:7d:00:aa:5b:5a:86:c8:ae:6a:73:ad:1e: 1d:11:39:f7:5a:78:f8:61:ff:db:f1:b1:32:af:00: 5e:6a:8d:b0:67:5f:b3:71:ea:87:85:75:1c:2a:60: a6:f9:46:22:14:e5:90:13:15:34:26:14:8d:48:b2: f8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:15:7B:A4:41:F5:3A:8A:95:C2:F0:03:EC:49:7C:14:CB:5F:82:CD X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/sxV7pEH1OoqVwvAD7El8FMtfgs0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 222.157.0.0/16 Signature Algorithm: sha256WithRSAEncryption c8:a1:da:2e:32:1c:55:3b:58:bf:c7:8f:5a:9f:01:21:dd:b1: f6:58:cb:49:e0:e1:00:64:03:41:9d:7f:41:43:e2:85:7e:99: 9c:b2:16:5e:db:59:3a:2d:02:97:43:1a:f9:2f:42:92:80:39: fe:a9:fe:ec:00:7e:c9:75:e9:2c:11:a1:68:95:7c:96:5d:31: eb:a8:8b:33:a5:25:eb:1c:25:79:8f:c8:04:79:97:9e:2a:ff: 2a:82:a1:fe:36:74:71:c7:b6:b6:06:68:fa:ef:cf:1d:85:2b: 98:84:11:ee:1f:2b:d4:45:b8:35:32:6c:e9:89:ef:0d:b4:d2: dc:29:72:59:23:b1:0e:6d:4e:f5:a0:1a:9e:d8:2a:47:b8:ea: c4:fb:91:d1:2f:a6:3c:ab:f0:b7:61:06:3a:f5:9b:df:8f:3d: 59:59:a1:17:e2:8a:bd:15:cf:c3:b5:19:a9:08:e2:33:d5:a5: a3:58:d8:cb:6d:a7:e7:eb:64:3b:80:b4:c3:49:d2:12:d0:78: f2:87:37:20:bc:e1:de:1c:ff:18:72:5d:3d:b6:c5:94:2b:f2: a8:54:c5:35:e2:aa:06:ec:9f:42:b2:27:09:c2:71:71:89:52: 01:ec:5e:16:5c:8d:ab:0e:ef:df:81:43:13:cd:27:51:69:90: b1:e9:37:42 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICDPwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI0MDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEIzMTU3QkE0NDFGNTNB OEE5NUMyRjAwM0VDNDk3QzE0Q0I1RjgyQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDp0W8X1NfZvGzwOYojd09HPzj6FQLMJ0t+lXiE0KNashrf+6TW jHUVtPdJFbNVtpxIONYC5wEeOMpGkVgJ8jccqonhA2tY21OafC+LGsZC6ryGTDYH +EiyJCwgEVDW8mxz6Z5P35GfN6XzhmJX47/NKTeJY+lU6Pdjgb6fdzzHCtDPV1xx NPH4ZasywY2FasneK0T6t+ZelEi/usqBhSVf9uPNPiVHy9xuss+fIshzohEfzZDo rEBc17LnKYteFyew9zeutn0AqltahsiuanOtHh0ROfdaePhh/9vxsTKvAF5qjbBn X7Nx6oeFdRwqYKb5RiIU5ZATFTQmFI1Isvj1AgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUsxV7pEH1OoqVwvAD7El8FMtfgs0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3N4VjdwRUgxT29xVnd2QUQ3RWw4Rk10 ZmdzMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDenTANBgkq hkiG9w0BAQsFAAOCAQEAyKHaLjIcVTtYv8ePWp8BId2x9ljLSeDhAGQDQZ1/QUPi hX6ZnLIWXttZOi0Cl0Ma+S9CkoA5/qn+7AB+yXXpLBGhaJV8ll0x66iLM6Ul6xwl eY/IBHmXnir/KoKh/jZ0cce2tgZo+u/PHYUrmIQR7h8r1EW4NTJs6YnvDbTS3Cly WSOxDm1O9aAantgqR7jqxPuR0S+mPKvwt2EGOvWb3489WVmhF+KKvRXPw7UZqQji M9Wlo1jYy22n5+tkO4C0w0nSEtB48oc3ILzh3hz/GHJdPbbFlCvyqFTFNeKqBuyf QrInCcJxcYlSAexeFlyNqw7v34FDE80nUWmQsek3Qg== -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:39 2024 by rpki-client on console-fra.rpki-client.org