$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/-V7vMoLvZf7FJXNOz1t6NP1DbvQ.roa File: -V7vMoLvZf7FJXNOz1t6NP1DbvQ.roa (raw, json) Hash identifier: N0AeDI0JWOcTsJTPyenGupMDhXcPx/n8tcKK6RkvdF4= Subject key identifier: F9:5E:EF:32:82:EF:65:FE:C5:25:73:4E:CF:5B:7A:34:FD:43:6E:F4 Certificate issuer: /CN=61E0EE79428B85EDABB5F6EB9578EFB19E63C98F Certificate serial: 0D97 Authority key identifier: 61:E0:EE:79:42:8B:85:ED:AB:B5:F6:EB:95:78:EF:B1:9E:63:C9:8F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YeDueUKLhe2rtfbrlXjvsZ5jyY8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/-V7vMoLvZf7FJXNOz1t6NP1DbvQ.roa Signing time: Fri 01 Sep 2023 09:02:33 +0000 ROA not before: Fri 01 Sep 2023 09:02:33 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 134823 IP address blocks: 2404:a3c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/YeDueUKLhe2rtfbrlXjvsZ5jyY8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/YeDueUKLhe2rtfbrlXjvsZ5jyY8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YeDueUKLhe2rtfbrlXjvsZ5jyY8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:28:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3479 (0xd97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61E0EE79428B85EDABB5F6EB9578EFB19E63C98F Validity Not Before: Sep 1 09:02:33 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F95EEF3282EF65FEC525734ECF5B7A34FD436EF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a5:cc:3b:3c:e5:cc:6f:fc:75:f3:6a:70:79: 87:43:dc:d0:5b:ce:78:b6:0b:c2:e8:00:70:40:37: b0:53:2e:33:51:89:a3:89:a7:e3:de:9d:f0:b7:bf: fc:e8:30:18:2e:58:f1:3d:6f:13:b9:d6:1d:f7:44: 44:13:44:4c:4a:3d:71:42:45:62:71:4b:19:03:c1: 8f:f1:39:f6:6a:26:e8:a7:e6:5a:4d:f4:69:00:47: 69:8a:35:cd:e4:ba:1a:27:0a:d0:dd:aa:3d:44:56: dc:2f:e6:71:06:bc:b9:33:0c:06:7c:64:3c:bf:52: 98:5b:3c:98:cb:64:37:ad:00:00:27:af:8b:3c:ce: 8c:4b:89:1b:85:9c:7e:56:e6:5c:fd:96:2e:56:f2: 94:44:68:b7:9e:96:70:b7:82:13:bd:fd:79:e9:24: 8f:00:22:7f:48:09:c9:3b:58:32:de:c2:ed:39:f8: 3b:22:57:c9:af:7a:21:49:fe:9f:92:76:74:d1:b0: 9f:13:50:23:0b:7a:6a:76:f7:22:3a:50:5b:81:33: 93:a1:77:24:0d:ae:b9:31:30:ec:32:8d:2b:24:e8: 97:64:61:96:6d:77:e6:e6:58:85:fd:9a:75:8b:46: e5:49:6c:d3:25:05:62:ae:a6:14:13:9b:2a:b2:a2: f7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:5E:EF:32:82:EF:65:FE:C5:25:73:4E:CF:5B:7A:34:FD:43:6E:F4 X509v3 Authority Key Identifier: keyid:61:E0:EE:79:42:8B:85:ED:AB:B5:F6:EB:95:78:EF:B1:9E:63:C9:8F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/YeDueUKLhe2rtfbrlXjvsZ5jyY8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YeDueUKLhe2rtfbrlXjvsZ5jyY8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/-V7vMoLvZf7FJXNOz1t6NP1DbvQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:a3c0::/32 Signature Algorithm: sha256WithRSAEncryption 21:c5:8a:f3:58:2c:7c:48:e4:04:32:f3:58:3b:36:50:ea:2e: 3a:bf:e1:68:e0:a3:89:00:9e:97:85:c0:55:75:92:61:83:b4: 4d:db:cb:36:4f:3e:c9:d2:37:f0:09:03:e0:d0:6a:95:e8:88: fa:71:b9:25:cb:d9:e2:89:08:ab:7e:cf:35:f5:0d:83:e3:15: 61:0c:a1:da:f0:75:fd:ae:01:88:0b:aa:c2:42:02:ee:58:f1: d2:63:56:5d:2e:30:5f:7b:c5:47:af:31:43:de:36:78:31:c6: c7:8f:09:ba:90:2b:b4:cd:6f:d8:86:1a:ca:49:26:70:03:86: d3:38:c5:5d:b8:86:4a:45:0e:91:54:99:86:af:1e:ff:99:1c: de:9a:13:e5:97:b5:33:3a:c4:77:1d:10:c9:3b:ee:df:19:7c: c2:c6:09:2d:ad:99:70:2f:62:89:33:23:fd:6a:0f:1d:7f:0d: 34:6c:11:bd:03:8e:39:85:2a:3b:9e:fd:08:d0:e1:af:fa:20: c1:6a:fe:98:8a:03:33:31:56:fc:f8:d8:0a:9d:22:f8:1f:e7: 57:00:36:ac:ab:7d:6d:8a:d1:77:04:ca:d5:6a:6e:59:f4:67: 66:ac:8d:ef:b1:2f:16:c0:07:1b:31:d9:5d:46:2f:33:3c:cd: 58:c2:44:83 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDZcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjFF MEVFNzk0MjhCODVFREFCQjVGNkVCOTU3OEVGQjE5RTYzQzk4RjAeFw0yMzA5MDEw OTAyMzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY5NUVFRjMyODJFRjY1 RkVDNTI1NzM0RUNGNUI3QTM0RkQ0MzZFRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNpcw7POXMb/x182pweYdD3NBbzni2C8LoAHBAN7BTLjNRiaOJ p+PenfC3v/zoMBguWPE9bxO51h33REQTRExKPXFCRWJxSxkDwY/xOfZqJuin5lpN 9GkAR2mKNc3kuhonCtDdqj1EVtwv5nEGvLkzDAZ8ZDy/UphbPJjLZDetAAAnr4s8 zoxLiRuFnH5W5lz9li5W8pREaLeelnC3ghO9/XnpJI8AIn9ICck7WDLewu05+Dsi V8mveiFJ/p+SdnTRsJ8TUCMLemp29yI6UFuBM5OhdyQNrrkxMOwyjSsk6JdkYZZt d+bmWIX9mnWLRuVJbNMlBWKuphQTmyqyovelAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU+V7vMoLvZf7FJXNOz1t6NP1DbvQwHwYDVR0jBBgwFoAUYeDueUKLhe2rtfbr lXjvsZ5jyY8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DTE9V RC9ZZUR1ZVVLTGhlMnJ0ZmJybFhqdnNaNWp5WTguY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1llRHVlVUtMaGUycnRmYnJsWGp2c1o1anlZOC5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0lNQ0xPVUQvLVY3dk1vTHZaZjdGSlhO T3oxdDZOUDFEYnZRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQEo8AwDQYJKoZIhvcNAQELBQADggEBACHFivNYLHxI5AQy81g7NlDqLjq/4Wjg o4kAnpeFwFV1kmGDtE3byzZPPsnSN/AJA+DQapXoiPpxuSXL2eKJCKt+zzX1DYPj FWEModrwdf2uAYgLqsJCAu5Y8dJjVl0uMF97xUevMUPeNngxxsePCbqQK7TNb9iG GspJJnADhtM4xV24hkpFDpFUmYavHv+ZHN6aE+WXtTM6xHcdEMk77t8ZfMLGCS2t mXAvYokzI/1qDx1/DTRsEb0DjjmFKjue/QjQ4a/6IMFq/piKAzMxVvz42AqdIvgf 51cANqyrfW2K0XcEytVqbln0Z2asje+xLxbABxsx2V1GLzM8zVjCRIM= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:46 2024 by rpki-client on console-ams.rpki-client.org