$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/toCLyUUJLWmXGMGfocV2L4qIaUg.roa File: toCLyUUJLWmXGMGfocV2L4qIaUg.roa (raw, json) Hash identifier: AVfH2BaYllTgssX9QFgHc+pOXFCOBhWrP61ejkgF/Xs= Subject key identifier: B6:80:8B:C9:45:09:2D:69:97:18:C1:9F:A1:C5:76:2F:8A:88:69:48 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0D7A Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/toCLyUUJLWmXGMGfocV2L4qIaUg.roa Signing time: Mon 15 Jan 2024 21:28:50 +0000 ROA not before: Mon 15 Jan 2024 21:28:50 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 210.63.208.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3450 (0xd7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:28:50 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B6808BC945092D699718C19FA1C5762F8A886948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d5:1d:83:7c:49:10:42:71:73:32:b6:bb:49: b1:27:62:57:5c:16:c3:38:2e:12:f1:6d:79:74:88: 9c:c5:28:c4:39:fb:16:d9:59:9c:3e:fa:6e:4f:59: d6:d6:0f:d9:79:bf:3b:44:03:6e:dd:fe:ba:16:1e: 8c:d2:6e:e1:a3:43:b7:9a:ab:ce:e5:e7:71:7c:44: 74:ae:df:40:a2:cf:00:98:d0:b1:f3:2d:e8:c0:78: 6e:12:a4:e0:13:60:27:57:0c:11:ab:d4:ac:93:db: 5b:ce:45:08:fa:13:47:1d:af:83:35:cf:70:0c:9c: a5:d4:f7:bd:2c:bd:91:47:72:27:95:b8:86:f9:bd: ac:72:40:e8:32:3f:3f:84:cf:3c:09:4a:78:e2:70: 38:e3:f6:29:06:17:64:78:af:d6:00:69:bd:54:d3: d6:43:ce:2a:a2:1e:83:ab:ff:1c:ad:de:b1:d0:bf: db:04:1d:e4:d6:f7:48:88:ee:52:05:1e:f0:3c:60: 93:d6:2e:67:79:12:4f:f6:11:cd:51:45:14:a1:0d: 48:47:04:4c:f7:b8:94:78:5c:c3:9c:29:95:76:90: bc:21:b3:02:a4:d6:4b:20:93:be:10:11:de:ea:be: e4:98:92:09:ca:cd:03:3c:3c:a7:53:d0:02:91:82: 58:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:80:8B:C9:45:09:2D:69:97:18:C1:9F:A1:C5:76:2F:8A:88:69:48 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/toCLyUUJLWmXGMGfocV2L4qIaUg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.208.0/21 Signature Algorithm: sha256WithRSAEncryption 5b:8d:88:fa:44:73:62:47:3a:41:52:3d:36:bb:11:ff:4d:87: ab:6e:4a:28:cc:d9:9c:02:4c:47:94:dd:1c:d7:ef:dc:03:20: 67:76:b1:f4:a4:88:0c:36:fd:e2:c2:0f:8a:77:31:90:36:5f: 03:ac:8a:bc:f6:42:4f:ea:28:08:5a:df:d5:3d:4b:f7:d5:79: 71:0c:0c:30:69:a8:ec:34:21:83:5b:4c:d0:0e:cd:86:3f:ea: 07:5b:46:b8:27:27:4a:96:2f:96:7f:f5:cd:2d:e6:b0:46:e0: 74:ac:f6:65:c6:80:1d:31:7d:e6:10:66:11:42:d9:86:4f:69: ef:66:f4:f3:c0:b4:5b:50:93:56:5d:8e:14:71:c0:ba:64:ab: b0:74:63:e8:82:47:27:e8:e5:d9:89:86:56:e4:e7:5b:9b:e8: 42:9c:1a:b5:b8:38:2e:10:12:78:f0:97:47:ef:8f:c5:8a:4a: 99:f3:e8:db:15:5c:c6:35:13:4a:9f:8e:37:27:26:fb:38:15: a0:8f:57:5a:50:74:33:8b:d0:cf:a7:c3:ab:b9:8b:78:9e:a5: c8:66:d5:8c:2a:ed:7f:33:17:50:55:84:8f:45:b4:7c:54:7a: 4f:cd:2f:e9:73:fd:80:d2:61:46:eb:97:a0:79:b9:7c:3c:52: 1b:8d:94:cf -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDXowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI4NTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI2ODA4QkM5NDUwOTJE Njk5NzE4QzE5RkExQzU3NjJGOEE4ODY5NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCq1R2DfEkQQnFzMra7SbEnYldcFsM4LhLxbXl0iJzFKMQ5+xbZ WZw++m5PWdbWD9l5vztEA27d/roWHozSbuGjQ7eaq87l53F8RHSu30CizwCY0LHz LejAeG4SpOATYCdXDBGr1KyT21vORQj6E0cdr4M1z3AMnKXU970svZFHcieVuIb5 vaxyQOgyPz+EzzwJSnjicDjj9ikGF2R4r9YAab1U09ZDziqiHoOr/xyt3rHQv9sE HeTW90iI7lIFHvA8YJPWLmd5Ek/2Ec1RRRShDUhHBEz3uJR4XMOcKZV2kLwhswKk 1ksgk74QEd7qvuSYkgnKzQM8PKdT0AKRglhVAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUtoCLyUUJLWmXGMGfocV2L4qIaUgwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3RvQ0x5VVVKTFdtWEdNR2ZvY1YyTDRx SWFVZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPSP9AwDQYJ KoZIhvcNAQELBQADggEBAFuNiPpEc2JHOkFSPTa7Ef9Nh6tuSijM2ZwCTEeU3RzX 79wDIGd2sfSkiAw2/eLCD4p3MZA2XwOsirz2Qk/qKAha39U9S/fVeXEMDDBpqOw0 IYNbTNAOzYY/6gdbRrgnJ0qWL5Z/9c0t5rBG4HSs9mXGgB0xfeYQZhFC2YZPae9m 9PPAtFtQk1ZdjhRxwLpkq7B0Y+iCRyfo5dmJhlbk51ub6EKcGrW4OC4QEnjwl0fv j8WKSpnz6NsVXMY1E0qfjjcnJvs4FaCPV1pQdDOL0M+nw6u5i3iepchm1Ywq7X8z F1BVhI9FtHxUek/NL+lz/YDSYUbrl6B5uXw8UhuNlM8= -----END CERTIFICATE-----Generated at Mon May 20 08:58:20 2024 by rpki-client on console-ams.rpki-client.org