$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/wJCKRinzRWK-3IsBC8xdcNYejnA.roa File: wJCKRinzRWK-3IsBC8xdcNYejnA.roa (raw, json) Hash identifier: 6WeIYigJMMYRoQCxps+XIVGs8T8x9Hff/rOTEdlZ22o= Subject key identifier: C0:90:8A:46:29:F3:45:62:BE:DC:8B:01:0B:CC:5D:70:D6:1E:8E:70 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0D2E Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/wJCKRinzRWK-3IsBC8xdcNYejnA.roa Signing time: Mon 15 Jan 2024 21:25:09 +0000 ROA not before: Mon 15 Jan 2024 21:25:09 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7482 IP address blocks: 210.200.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3374 (0xd2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:25:09 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C0908A4629F34562BEDC8B010BCC5D70D61E8E70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:79:ab:25:0d:59:be:c4:80:94:44:d2:f0:7e: 98:0d:fa:18:91:bd:d8:d9:78:a2:20:dc:bf:58:d8: db:d6:1b:36:de:ac:13:cc:78:7a:39:5e:fe:62:c7: 5d:96:9a:ca:e8:0a:75:d8:a8:34:68:68:4a:de:30: 5c:d6:be:74:80:07:52:0d:97:36:4a:47:96:04:f3: 53:ef:cd:9d:79:15:ad:82:e4:a0:ae:f7:5b:98:d3: 87:1a:36:4b:c1:d3:8a:4a:b4:d0:4c:b4:ad:89:67: 73:6c:5d:54:db:1a:7c:94:b0:b2:15:5e:3c:4a:0d: f9:81:84:4b:66:ce:da:1c:b7:02:ed:19:8d:9b:13: 43:55:69:87:d2:8b:9d:55:2b:58:e0:55:68:2d:2a: ba:aa:f2:36:7c:50:e8:7f:b2:98:31:aa:f5:8e:fa: fa:ce:97:a8:9d:9f:79:b3:96:f6:db:89:31:27:5d: 53:bc:e1:58:7c:2a:e7:be:58:4a:08:94:43:a7:76: 02:79:01:a3:58:ac:ea:74:32:60:a6:87:f9:f9:18: 5d:f8:38:db:41:3c:82:00:91:14:a6:08:76:9c:ff: 4e:ac:9d:ad:0e:6a:fb:9e:3b:bd:ce:d7:bd:8a:a6: 41:9c:9c:85:63:eb:b1:f5:c6:df:ae:93:8f:f8:6e: 24:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:90:8A:46:29:F3:45:62:BE:DC:8B:01:0B:CC:5D:70:D6:1E:8E:70 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/wJCKRinzRWK-3IsBC8xdcNYejnA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.200.0.0/16 Signature Algorithm: sha256WithRSAEncryption 16:c3:ba:6f:22:a4:a3:cb:87:42:32:24:3c:7d:8e:c2:d6:60: d9:11:a6:98:71:30:35:a3:46:a1:11:4d:bc:f3:15:7f:43:93: 1b:dd:f9:d9:07:be:97:14:5a:62:5f:ec:2f:42:87:cb:b4:fe: 35:dc:53:db:c4:be:18:96:23:04:ab:a2:79:08:3e:34:d2:2e: 44:1f:aa:43:61:b9:e9:31:f3:5b:df:fc:cf:f2:f3:15:a1:57: 43:aa:bf:b7:7e:39:e1:b5:8c:2e:1c:85:60:9a:06:7f:d4:51: 93:ae:0e:d3:75:c8:8b:3e:fe:1b:b9:e5:ae:90:e2:33:d6:79: 71:86:c7:05:3a:f5:fe:1a:bf:7d:8d:1e:7b:ff:a6:79:9a:c8: c9:8b:ca:27:94:59:7d:ee:f2:41:38:40:91:7d:a0:3c:81:a2: 1f:7b:02:57:11:91:c9:63:ba:ea:f9:ee:a1:f8:9c:a4:1f:88: ab:7e:2b:9e:f2:4c:86:31:46:ef:c9:67:cb:4e:e9:4f:55:cd: dc:68:53:e9:0b:32:6b:dc:9f:a6:df:1f:bc:26:f3:97:e2:e0: 8f:10:31:ba:68:30:40:1c:0d:c9:73:fc:5c:27:1a:6e:85:ef: f8:f6:19:40:70:3b:0d:36:ac:65:05:60:c3:f7:7e:36:1d:d8: ac:4b:2f:2d -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICDS4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTI1MDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEMwOTA4QTQ2MjlGMzQ1 NjJCRURDOEIwMTBCQ0M1RDcwRDYxRThFNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9easlDVm+xICURNLwfpgN+hiRvdjZeKIg3L9Y2NvWGzberBPM eHo5Xv5ix12WmsroCnXYqDRoaEreMFzWvnSAB1INlzZKR5YE81PvzZ15Fa2C5KCu 91uY04caNkvB04pKtNBMtK2JZ3NsXVTbGnyUsLIVXjxKDfmBhEtmztoctwLtGY2b E0NVaYfSi51VK1jgVWgtKrqq8jZ8UOh/spgxqvWO+vrOl6idn3mzlvbbiTEnXVO8 4Vh8Kue+WEoIlEOndgJ5AaNYrOp0MmCmh/n5GF34ONtBPIIAkRSmCHac/06sna0O avueO73O172KpkGcnIVj67H1xt+uk4/4biTxAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUwJCKRinzRWK+3IsBC8xdcNYejnAwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3dKQ0tSaW56UldLLTNJc0JDOHhkY05Z ZWpuQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDSyDANBgkq hkiG9w0BAQsFAAOCAQEAFsO6byKko8uHQjIkPH2OwtZg2RGmmHEwNaNGoRFNvPMV f0OTG9352Qe+lxRaYl/sL0KHy7T+NdxT28S+GJYjBKuieQg+NNIuRB+qQ2G56THz W9/8z/LzFaFXQ6q/t3454bWMLhyFYJoGf9RRk64O03XIiz7+G7nlrpDiM9Z5cYbH BTr1/hq/fY0ee/+meZrIyYvKJ5RZfe7yQThAkX2gPIGiH3sCVxGRyWO66vnuofic pB+Iq34rnvJMhjFG78lny07pT1XN3GhT6Qsya9yfpt8fvCbzl+LgjxAxumgwQBwN yXP8XCcaboXv+PYZQHA7DTasZQVgw/d+Nh3YrEsvLQ== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:00 2024 by rpki-client on console-fra.rpki-client.org