$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/u6aCy2e8G_73l_EDLnJsZJe8efI.roa File: u6aCy2e8G_73l_EDLnJsZJe8efI.roa (raw, json) Hash identifier: VHJ5exwMNGcQZcqiWVvKkX1sxgK4CEheKXv+20g7qLo= Subject key identifier: BB:A6:82:CB:67:BC:1B:FE:F7:97:F1:03:2E:72:6C:64:97:BC:79:F2 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0CB6 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/u6aCy2e8G_73l_EDLnJsZJe8efI.roa Signing time: Mon 15 Jan 2024 21:10:49 +0000 ROA not before: Mon 15 Jan 2024 21:10:49 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24154 IP address blocks: 210.202.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 13:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3254 (0xcb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:10:49 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=BBA682CB67BC1BFEF797F1032E726C6497BC79F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:36:65:f9:72:e3:e7:29:75:19:cf:5a:01:59: a1:e5:2b:ca:68:4d:06:01:5d:3c:66:8f:80:f2:7b: 4f:07:e3:b6:29:3e:12:6e:c0:50:af:cb:a0:ae:0f: 93:f8:16:64:2f:b4:c6:18:2e:07:3b:e6:2f:5f:21: 89:01:08:a8:02:21:25:a3:38:8e:5a:65:99:9f:3a: 18:3f:84:36:8c:5a:1e:e5:e6:48:66:b8:4a:80:f5: 11:b3:ad:a5:15:7a:24:e1:e0:4c:ee:95:c2:88:93: 24:e6:31:83:8a:36:6a:bd:5e:52:50:a2:c0:54:b1: e9:43:fa:8a:d4:53:99:b1:59:bf:a8:8d:4a:71:c7: d0:e0:7b:23:56:ed:28:e4:cb:b1:25:13:1b:f1:e9: 64:67:21:a9:7c:3f:e8:59:13:8c:51:f7:1e:98:14: 3a:cc:0e:a5:7b:63:4f:3e:b2:9d:cf:58:fe:94:e4: a2:b6:11:44:88:cd:20:a3:7f:14:49:ef:30:8e:7c: db:bb:a4:5f:cb:ea:6e:c0:35:3b:eb:68:ea:ba:af: 14:4c:c6:55:d4:9c:a7:1f:16:16:62:23:d1:1d:01: bf:fe:53:5d:e0:aa:3b:bd:89:59:af:e3:de:52:1d: ed:f0:eb:8a:2f:cc:28:75:e8:3d:4c:51:35:8b:d9: 22:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:A6:82:CB:67:BC:1B:FE:F7:97:F1:03:2E:72:6C:64:97:BC:79:F2 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/u6aCy2e8G_73l_EDLnJsZJe8efI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.202.48.0/21 Signature Algorithm: sha256WithRSAEncryption 1d:50:aa:9a:b9:d6:c3:5f:ed:90:0c:dc:20:a9:f8:61:f7:e2: b5:82:a4:49:6a:96:88:4d:6e:fe:7d:f2:8d:5d:26:cb:55:d5: 2e:e6:8b:a6:17:d6:14:f2:3d:b1:c3:c0:d6:16:c5:ce:84:42: da:ca:4d:70:28:a3:58:f7:53:d4:d4:70:81:d3:97:0b:9b:03: 7c:f8:0e:9b:4a:15:71:df:2b:07:97:32:0f:f2:bc:37:c4:97: 22:17:56:cf:4b:65:c9:a2:68:e0:d6:ef:8b:ed:f8:f7:c9:1d: 93:0d:a8:9f:b9:ad:ac:d3:5b:f2:6a:61:75:79:87:29:0d:13: b4:b0:a6:07:a6:e3:79:8f:37:64:72:83:85:ec:50:a8:13:8e: d1:15:b6:ff:62:ea:69:48:df:6b:37:39:c4:94:a9:fa:b2:e1: 09:89:5f:7f:67:5d:19:f6:fb:a7:a3:cc:62:d9:a8:e6:6b:ba: a8:62:00:a9:9c:67:da:b0:12:e8:2a:65:ad:9e:c3:59:09:36: 09:15:b6:ab:9b:f6:74:c4:9c:5f:46:67:57:30:2e:33:18:49: 40:48:7f:3c:aa:f3:4d:67:49:ef:93:52:2b:ba:f0:43:a3:19: ab:75:6a:09:ac:bf:e7:9a:0b:8c:85:a7:e8:5f:07:0b:d4:a6: 42:f3:b0:e5 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDLYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTEwNDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEJCQTY4MkNCNjdCQzFC RkVGNzk3RjEwMzJFNzI2QzY0OTdCQzc5RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuNmX5cuPnKXUZz1oBWaHlK8poTQYBXTxmj4Dye08H47YpPhJu wFCvy6CuD5P4FmQvtMYYLgc75i9fIYkBCKgCISWjOI5aZZmfOhg/hDaMWh7l5khm uEqA9RGzraUVeiTh4EzulcKIkyTmMYOKNmq9XlJQosBUselD+orUU5mxWb+ojUpx x9DgeyNW7Sjky7ElExvx6WRnIal8P+hZE4xR9x6YFDrMDqV7Y08+sp3PWP6U5KK2 EUSIzSCjfxRJ7zCOfNu7pF/L6m7ANTvraOq6rxRMxlXUnKcfFhZiI9EdAb/+U13g qju9iVmv495SHe3w64ovzCh16D1MUTWL2SIXAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUu6aCy2e8G/73l/EDLnJsZJe8efIwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3U2YUN5MmU4R183M2xfRURMbkpzWkpl OGVmSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPSyjAwDQYJ KoZIhvcNAQELBQADggEBAB1Qqpq51sNf7ZAM3CCp+GH34rWCpElqlohNbv598o1d JstV1S7mi6YX1hTyPbHDwNYWxc6EQtrKTXAoo1j3U9TUcIHTlwubA3z4DptKFXHf KweXMg/yvDfElyIXVs9LZcmiaODW74vt+PfJHZMNqJ+5razTW/JqYXV5hykNE7Sw pgem43mPN2Ryg4XsUKgTjtEVtv9i6mlI32s3OcSUqfqy4QmJX39nXRn2+6ejzGLZ qOZruqhiAKmcZ9qwEugqZa2ew1kJNgkVtqub9nTEnF9GZ1cwLjMYSUBIfzyq801n Se+TUiu68EOjGat1agmsv+eaC4yFp+hfBwvUpkLzsOU= -----END CERTIFICATE-----Generated at Sun Jun 2 19:20:43 2024 by rpki-client on console-fra.rpki-client.org