$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/vHai-EIeNeIfasFjsbHImSkIr4M.roa File: vHai-EIeNeIfasFjsbHImSkIr4M.roa (raw, json) Hash identifier: YFrEzGBLB41C3B3Tzc8UqROTuFCxSRRhcKScwWy09n0= Subject key identifier: BC:76:A2:F8:42:1E:35:E2:1F:6A:C1:63:B1:B1:C8:99:29:08:AF:83 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0DAC Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/vHai-EIeNeIfasFjsbHImSkIr4M.roa Signing time: Mon 15 Jan 2024 21:30:04 +0000 ROA not before: Mon 15 Jan 2024 21:30:04 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18419 IP address blocks: 218.35.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3500 (0xdac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:30:04 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=BC76A2F8421E35E21F6AC163B1B1C8992908AF83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:0c:64:96:ba:48:4b:88:e7:e0:fe:fe:e5:7f: 39:c0:79:72:b5:eb:a1:30:77:52:b4:00:be:9f:b3: bf:5d:c0:5c:9e:ab:d0:19:07:2f:53:51:79:9f:2a: df:66:72:eb:3d:2d:01:1b:f7:d4:92:62:ab:58:35: e4:4b:d4:7b:f0:e8:db:02:e0:c0:46:57:e4:b0:d4: a5:ff:68:ae:ba:7b:b2:e9:a7:97:71:87:4c:26:eb: 6f:c7:5b:25:b0:f7:8c:30:fc:4b:56:47:23:2d:89: 10:fd:54:f1:ae:93:00:86:a8:c3:37:13:58:c3:0c: bc:b5:e1:b1:17:f0:70:4c:46:c8:ce:fb:54:2f:1b: 22:94:32:51:b9:b6:cc:fd:f4:9b:4f:2f:cd:6c:22: 21:42:dc:ea:cd:ae:85:65:1d:25:f3:9c:7a:83:c1: 00:3a:d1:8e:8a:96:ce:1c:b4:28:f9:3d:7c:4e:17: 93:2a:06:b8:d1:29:3a:c9:ba:94:48:df:3f:67:ef: b7:8a:df:69:e3:8b:4f:a2:f3:e0:f5:5b:73:f9:46: 3a:11:37:e3:49:fc:e8:40:77:8f:9a:aa:f8:ed:fd: 2d:da:64:f4:3b:3a:40:34:9c:26:c0:5e:cb:97:fc: d4:c0:b5:a8:3c:ad:bf:92:86:ea:4e:cd:eb:ee:50: b9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:76:A2:F8:42:1E:35:E2:1F:6A:C1:63:B1:B1:C8:99:29:08:AF:83 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/vHai-EIeNeIfasFjsbHImSkIr4M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.35.8.0/21 Signature Algorithm: sha256WithRSAEncryption 24:e9:22:eb:cc:2c:06:e9:3c:63:37:08:23:dc:67:20:8a:2a: 82:af:9c:aa:5e:ed:17:e4:4c:6c:5d:2b:fe:7e:ee:60:7a:20: 28:fe:3a:30:f7:e3:64:c3:9a:f0:82:f6:59:e1:f2:bc:ad:d1: 51:0d:89:08:66:b5:ca:d4:9e:a0:3d:89:fe:65:da:ef:41:9d: e9:8e:ea:4e:a2:0e:f6:a6:4f:12:1f:cb:22:dc:0e:b6:7c:b8: 1c:b8:7f:18:a7:59:d2:4a:1f:fa:8d:bb:a3:ff:b7:99:11:15: ec:8c:75:ea:e9:57:ec:d9:4b:76:c1:56:5c:16:48:c2:6e:0e: 8c:4c:53:0c:0f:22:14:75:90:64:06:c9:86:f8:9e:cf:a5:5f: 20:df:46:cc:07:e7:3a:12:a5:cd:0e:1f:b3:3b:2f:ed:60:e0: b1:62:68:8c:dc:71:2d:27:a3:32:de:82:a3:17:0c:d1:8c:69: a0:8c:80:bb:42:3e:39:36:f0:85:40:0f:2e:a5:a8:36:cc:b3: 6d:fb:57:7a:d0:8e:74:34:87:d5:3d:ca:83:00:47:7b:5d:35: 8d:a5:f5:80:ed:07:6f:fc:d4:66:75:6c:38:0c:32:e2:0c:b7: 6b:b3:0f:86:4e:5b:b6:42:a8:9f:fb:18:70:ae:6b:ca:8e:29: 8f:2a:b4:03 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDawwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTMwMDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEJDNzZBMkY4NDIxRTM1 RTIxRjZBQzE2M0IxQjFDODk5MjkwOEFGODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkDGSWukhLiOfg/v7lfznAeXK166Ewd1K0AL6fs79dwFyeq9AZ By9TUXmfKt9mcus9LQEb99SSYqtYNeRL1Hvw6NsC4MBGV+Sw1KX/aK66e7Lpp5dx h0wm62/HWyWw94ww/EtWRyMtiRD9VPGukwCGqMM3E1jDDLy14bEX8HBMRsjO+1Qv GyKUMlG5tsz99JtPL81sIiFC3OrNroVlHSXznHqDwQA60Y6Kls4ctCj5PXxOF5Mq BrjRKTrJupRI3z9n77eK32nji0+i8+D1W3P5RjoRN+NJ/OhAd4+aqvjt/S3aZPQ7 OkA0nCbAXsuX/NTAtag8rb+ShupOzevuULmpAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUvHai+EIeNeIfasFjsbHImSkIr4MwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3ZIYWktRUllTmVJZmFzRmpzYkhJbVNr SXI0TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPaIwgwDQYJ KoZIhvcNAQELBQADggEBACTpIuvMLAbpPGM3CCPcZyCKKoKvnKpe7RfkTGxdK/5+ 7mB6ICj+OjD342TDmvCC9lnh8ryt0VENiQhmtcrUnqA9if5l2u9BnemO6k6iDvam TxIfyyLcDrZ8uBy4fxinWdJKH/qNu6P/t5kRFeyMderpV+zZS3bBVlwWSMJuDoxM UwwPIhR1kGQGyYb4ns+lXyDfRswH5zoSpc0OH7M7L+1g4LFiaIzccS0nozLegqMX DNGMaaCMgLtCPjk28IVADy6lqDbMs237V3rQjnQ0h9U9yoMAR3tdNY2l9YDtB2/8 1GZ1bDgMMuIMt2uzD4ZOW7ZCqJ/7GHCua8qOKY8qtAM= -----END CERTIFICATE-----Generated at Mon May 20 08:58:20 2024 by rpki-client on console-ams.rpki-client.org