$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/yd65-Q8qM9TazUx4g07V6MN2Bfo.roa File: yd65-Q8qM9TazUx4g07V6MN2Bfo.roa (raw, json) Hash identifier: 4Bxx87bBa2i+45oquLG2zDVOZ3V3HqpjNJBrEVXPqOo= Subject key identifier: C9:DE:B9:F9:0F:2A:33:D4:DA:CD:4C:78:83:4E:D5:E8:C3:76:05:FA Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0C96 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/yd65-Q8qM9TazUx4g07V6MN2Bfo.roa Signing time: Mon 15 Jan 2024 21:10:13 +0000 ROA not before: Mon 15 Jan 2024 21:10:13 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17709 IP address blocks: 210.201.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3222 (0xc96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Jan 15 21:10:13 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C9DEB9F90F2A33D4DACD4C78834ED5E8C37605FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a8:59:4c:bc:73:55:fa:60:ec:09:62:b2:ca: 24:2f:7b:37:c8:11:2e:98:5e:90:3a:2e:30:bd:4d: 80:69:d2:26:56:36:7e:e5:11:a6:97:f1:ed:8e:e8: 22:60:c0:71:52:53:7a:14:e1:94:d5:66:8c:84:19: 59:c0:5e:41:ef:70:6f:05:c9:74:24:e0:d4:db:2f: 3a:55:f8:b0:56:9c:36:8b:0a:96:38:7b:a6:18:70: f8:d6:45:41:39:38:3a:20:14:a9:09:2a:68:2b:8b: c5:4b:fa:1c:64:d4:67:04:ba:d5:d0:a5:e8:6c:fd: b5:55:7b:40:9d:7b:f8:38:20:8c:87:75:7c:02:f6: fb:25:af:e9:7a:0c:39:e6:df:ce:a8:b6:ea:83:e2: e9:8f:df:cf:2f:f9:b0:6d:06:f6:04:84:29:3c:ae: e7:ab:56:19:be:9d:91:ad:7d:0e:ab:e0:3a:1e:7a: 8b:30:58:84:df:65:78:07:77:1a:61:7b:2b:d5:b2: 90:f8:bf:48:19:ef:01:c4:3f:54:39:b3:55:1f:f0: 16:9d:bc:82:eb:41:13:8e:1b:c4:73:14:c5:62:cf: 4b:71:5c:62:8a:17:6c:4e:20:4f:39:a0:a4:0b:19: 0b:49:9d:7d:58:17:d3:7e:e1:91:3a:02:55:80:c7: a3:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:DE:B9:F9:0F:2A:33:D4:DA:CD:4C:78:83:4E:D5:E8:C3:76:05:FA X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/yd65-Q8qM9TazUx4g07V6MN2Bfo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.201.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5e:fe:d0:84:f7:ae:46:b9:17:e9:40:3e:e5:37:d3:13:2f:32: 18:bc:20:2e:ea:4e:3c:01:fb:c1:bb:29:a4:dd:a2:36:94:f8: 8c:35:c4:ae:2c:8f:f5:56:60:73:16:5a:fd:4d:9d:72:5c:1b: 1e:6c:ee:eb:83:fc:94:b2:34:98:7e:87:58:b5:21:de:7f:25: 5a:ab:00:19:f4:87:f8:7c:c8:8e:ce:7f:99:72:b2:a7:0d:e6: 5e:ab:09:55:b0:c7:0f:e9:f9:ce:b0:0d:b5:83:a3:a8:64:ed: 79:0b:83:86:99:92:49:dd:ba:1d:80:23:b0:ad:42:34:d7:33: c0:76:d8:ee:d5:8b:4c:ee:56:ea:ac:92:c0:89:54:1b:cd:a4: 01:14:04:6d:b3:41:e1:c0:b5:c6:96:17:8b:3a:8e:69:9b:72: da:06:25:c2:61:a3:5f:c2:60:fd:7d:6e:8d:14:fe:42:07:2e: 19:01:2e:12:b1:56:63:81:40:aa:6e:a5:42:0c:54:1e:15:60: 3c:3d:05:ca:81:f8:80:50:43:75:44:92:1c:a3:42:43:c1:a2: f5:77:4a:40:b3:9f:0b:71:2f:78:3e:02:36:5a:cf:1c:7e:59: d7:76:24:c9:25:44:1e:8a:d2:e2:6d:c2:db:04:6c:ab:15:2f: cf:f7:31:2d -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICDJYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDAxMTUy MTEwMTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM5REVCOUY5MEYyQTMz RDREQUNENEM3ODgzNEVENUU4QzM3NjA1RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCqFlMvHNV+mDsCWKyyiQvezfIES6YXpA6LjC9TYBp0iZWNn7l EaaX8e2O6CJgwHFSU3oU4ZTVZoyEGVnAXkHvcG8FyXQk4NTbLzpV+LBWnDaLCpY4 e6YYcPjWRUE5ODogFKkJKmgri8VL+hxk1GcEutXQpehs/bVVe0Cde/g4IIyHdXwC 9vslr+l6DDnm386otuqD4umP388v+bBtBvYEhCk8ruerVhm+nZGtfQ6r4Doeeosw WITfZXgHdxpheyvVspD4v0gZ7wHEP1Q5s1Uf8BadvILrQROOG8RzFMViz0txXGKK F2xOIE85oKQLGQtJnX1YF9N+4ZE6AlWAx6NlAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUyd65+Q8qM9TazUx4g07V6MN2BfowHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3lkNjUtUThxTTlUYXpVeDRnMDdWNk1O MkJmby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDSyTANBgkq hkiG9w0BAQsFAAOCAQEAXv7QhPeuRrkX6UA+5TfTEy8yGLwgLupOPAH7wbsppN2i NpT4jDXEriyP9VZgcxZa/U2dclwbHmzu64P8lLI0mH6HWLUh3n8lWqsAGfSH+HzI js5/mXKypw3mXqsJVbDHD+n5zrANtYOjqGTteQuDhpmSSd26HYAjsK1CNNczwHbY 7tWLTO5W6qySwIlUG82kARQEbbNB4cC1xpYXizqOaZty2gYlwmGjX8Jg/X1ujRT+ QgcuGQEuErFWY4FAqm6lQgxUHhVgPD0FyoH4gFBDdUSSHKNCQ8Gi9XdKQLOfC3Ev eD4CNlrPHH5Z13YkySVEHorS4m3C2wRsqxUvz/cxLQ== -----END CERTIFICATE-----Generated at Mon May 20 08:58:20 2024 by rpki-client on console-ams.rpki-client.org