$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/xSnwsKCrY1P1hoZ1nEixvP5zWCo.roa File: xSnwsKCrY1P1hoZ1nEixvP5zWCo.roa (raw, json) Hash identifier: sGd5PW8wuAQkAeVstO5fv3iaVsIRGwfrNN6ptOwLDWw= Subject key identifier: C5:29:F0:B0:A0:AB:63:53:F5:86:86:75:9C:48:B1:BC:FE:73:58:2A Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0CA6 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/xSnwsKCrY1P1hoZ1nEixvP5zWCo.roa Signing time: Mon 15 Jan 2024 21:10:30 +0000 ROA not before: Mon 15 Jan 2024 21:10:30 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 210.201.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3238 (0xca6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:10:30 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C529F0B0A0AB6353F58686759C48B1BCFE73582A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:7a:75:3a:50:e2:46:72:e9:5a:bc:48:a8:fe: 80:05:a4:30:18:d2:f1:e5:e3:bc:82:c6:fe:12:82: d9:3d:20:68:fa:97:c0:b2:f8:27:55:e0:f4:97:0f: 55:a3:bb:57:6a:3e:72:22:12:60:df:69:0b:6b:20: c0:a3:94:6b:4c:38:2d:74:0b:aa:5a:09:6b:e4:ea: e1:1d:9d:55:31:17:c4:54:19:ef:9a:cb:cb:34:63: 7a:a7:98:e9:33:29:9c:84:64:a3:6e:b4:5e:1b:37: b7:2c:69:14:94:51:78:65:0d:5a:ea:de:4f:88:28: 6a:c4:f0:eb:cf:cb:fb:a0:5a:14:ce:e1:c7:44:18: 42:cd:13:5b:b3:2c:43:68:fd:81:77:bf:c2:b6:4e: 87:13:72:98:24:53:08:4e:d7:14:ea:d0:61:73:b7: d0:5d:17:45:13:86:80:6b:33:ce:ef:19:c2:a8:4b: 4c:57:a6:da:a8:c7:04:f2:3e:87:69:be:80:36:d8: 1f:71:93:33:82:49:bc:fa:fc:7a:d6:42:e5:2a:24: b3:c2:74:4d:76:ad:7e:df:07:bb:ba:5c:dd:d4:dc: dd:58:84:59:a1:89:3f:a0:30:4b:ca:27:6c:93:7e: bf:61:a8:76:c5:1c:bd:69:e0:05:7b:da:f9:33:2f: 33:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:29:F0:B0:A0:AB:63:53:F5:86:86:75:9C:48:B1:BC:FE:73:58:2A X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/xSnwsKCrY1P1hoZ1nEixvP5zWCo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.201.78.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:7e:df:87:86:1f:f8:69:c9:68:c0:a6:ba:ab:f1:7f:2b:77: 5a:32:f9:85:f1:a7:71:bc:a9:83:a3:8a:bd:38:06:9f:10:ba: 9b:04:92:bc:3b:28:3e:58:5b:e0:fc:70:eb:b5:3c:6a:df:cc: c1:13:b8:ac:18:b8:cf:b4:82:ec:a8:41:0f:3a:ac:66:72:47: e3:d5:e8:ac:56:08:15:05:c7:6e:36:62:fc:42:2a:f3:24:40: 70:d0:76:21:6f:b3:43:02:25:5e:ff:df:64:8d:33:94:fa:b8: 67:b9:ef:5d:2b:7b:5c:2b:ea:b6:36:9f:4a:e0:b2:ac:77:d9: 69:6b:fc:93:2c:fc:44:92:82:16:16:44:45:99:90:07:7a:ea: f2:8c:9f:0b:eb:5f:c5:62:c6:34:73:01:a9:26:2d:fc:e2:2a: 9d:34:da:72:e4:c2:a9:30:5e:4c:5d:83:cc:e2:2c:5c:75:bc: fb:14:e8:7d:39:41:4c:57:d4:17:c3:1d:38:0d:e8:b8:3b:dd: 77:ba:2e:3e:7d:18:83:1e:bf:8e:a2:4e:24:59:29:41:7e:b7: 46:65:68:51:88:10:37:16:64:2d:60:9a:72:87:73:4a:3b:a1: 34:69:da:19:00:89:76:f4:1c:d9:71:c1:9a:59:34:f5:c7:1c: e5:39:33:5b -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDKYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTEwMzBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM1MjlGMEIwQTBBQjYz NTNGNTg2ODY3NTlDNDhCMUJDRkU3MzU4MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnenU6UOJGculavEio/oAFpDAY0vHl47yCxv4Sgtk9IGj6l8Cy +CdV4PSXD1Wju1dqPnIiEmDfaQtrIMCjlGtMOC10C6paCWvk6uEdnVUxF8RUGe+a y8s0Y3qnmOkzKZyEZKNutF4bN7csaRSUUXhlDVrq3k+IKGrE8OvPy/ugWhTO4cdE GELNE1uzLENo/YF3v8K2TocTcpgkUwhO1xTq0GFzt9BdF0UThoBrM87vGcKoS0xX ptqoxwTyPodpvoA22B9xkzOCSbz6/HrWQuUqJLPCdE12rX7fB7u6XN3U3N1YhFmh iT+gMEvKJ2yTfr9hqHbFHL1p4AV72vkzLzP3AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUxSnwsKCrY1P1hoZ1nEixvP5zWCowHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3hTbndzS0NyWTFQMWhvWjFuRWl4dlA1 eldDby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSyU4wDQYJ KoZIhvcNAQELBQADggEBAG1+34eGH/hpyWjAprqr8X8rd1oy+YXxp3G8qYOjir04 Bp8QupsEkrw7KD5YW+D8cOu1PGrfzMETuKwYuM+0guyoQQ86rGZyR+PV6KxWCBUF x242YvxCKvMkQHDQdiFvs0MCJV7/32SNM5T6uGe5710re1wr6rY2n0rgsqx32Wlr /JMs/ESSghYWREWZkAd66vKMnwvrX8VixjRzAakmLfziKp002nLkwqkwXkxdg8zi LFx1vPsU6H05QUxX1BfDHTgN6Lg73Xe6Lj59GIMev46iTiRZKUF+t0ZlaFGIEDcW ZC1gmnKHc0o7oTRp2hkAiXb0HNlxwZpZNPXHHOU5M1s= -----END CERTIFICATE-----Generated at Mon May 20 08:58:20 2024 by rpki-client on console-ams.rpki-client.org