$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/AklsSXe8nxHbMM1858A5FEYMLTA.roa File: AklsSXe8nxHbMM1858A5FEYMLTA.roa (raw, json) Hash identifier: uNztjUwDHnhrvtT636Dn8GFAj9IWR/Wy0u3sNw31vJ8= Subject key identifier: 02:49:6C:49:77:BC:9F:11:DB:30:CD:7C:E7:C0:39:14:46:0C:2D:30 Certificate issuer: /CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4 Certificate serial: 0215 Authority key identifier: D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/AklsSXe8nxHbMM1858A5FEYMLTA.roa Signing time: Fri 01 Sep 2023 09:19:32 +0000 ROA not before: Fri 01 Sep 2023 09:19:32 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18428 IP address blocks: 2407:d240::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/0qCc5CgJ9NqdexxEc93y9DalmcQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/0qCc5CgJ9NqdexxEc93y9DalmcQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 21:30:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 533 (0x215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4 Validity Not Before: Sep 1 09:19:32 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=02496C4977BC9F11DB30CD7CE7C03914460C2D30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8c:e5:5c:62:e5:3a:17:8d:4d:99:7f:5d:c3: ad:e6:9d:eb:16:29:49:4d:89:37:d2:6f:92:0e:c2: 5d:48:48:e8:4d:87:d2:a7:53:6a:78:90:c0:57:8b: d0:90:33:85:65:0f:a7:ae:6a:fc:1b:00:13:63:60: 14:a7:46:63:90:89:0c:ee:89:ec:bb:37:5c:94:c0: 66:11:2c:a1:5f:cf:a3:98:6c:de:9e:c3:df:d4:c3: 3e:75:64:95:a5:08:4e:ce:7d:f4:66:f3:11:17:59: a7:fe:43:42:3e:92:96:9d:2d:3e:31:c6:ed:9a:98: 5c:d3:6e:06:6d:a9:b0:84:31:22:7a:fb:11:83:c3: c9:45:30:f7:c8:2b:89:d8:24:a5:47:55:c3:0c:c6: 12:7b:e1:73:cf:e9:3c:29:30:87:99:9a:94:de:12: 1e:94:da:21:d1:11:d5:82:07:9e:15:04:a5:fa:f3: 0a:ad:52:54:2a:b2:74:8f:0d:1a:58:46:f9:b4:ba: bc:ba:f5:6e:78:c8:d1:f1:52:6d:36:dd:95:05:2e: c1:23:d3:cb:88:2b:f6:75:96:68:91:b9:13:2f:b5: b7:49:33:6e:d3:a8:b5:1d:91:b4:15:3e:49:ac:79: 72:b0:59:06:45:b2:85:23:72:88:92:dc:a9:5a:4a: 74:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:49:6C:49:77:BC:9F:11:DB:30:CD:7C:E7:C0:39:14:46:0C:2D:30 X509v3 Authority Key Identifier: keyid:D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/0qCc5CgJ9NqdexxEc93y9DalmcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/AklsSXe8nxHbMM1858A5FEYMLTA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:d240::/32 Signature Algorithm: sha256WithRSAEncryption 7d:1f:6e:d1:26:7c:e3:93:86:ba:b3:b5:27:38:fd:1e:3d:85: d6:22:8b:1c:bb:17:f0:7f:3b:16:2c:53:50:94:f4:1f:cc:79: 1c:29:6d:82:fd:be:b7:7b:67:cd:ad:ed:50:50:d5:0a:f5:03: ac:d5:1d:fb:7c:c8:16:bb:88:63:49:97:6d:44:23:f7:7a:33: 78:e6:0f:a2:47:16:75:1d:ff:f5:72:8b:4c:7a:f2:2c:88:2d: b2:35:02:64:cd:1f:bb:f0:f3:47:57:de:0d:73:d9:e9:a0:34: 97:6d:a0:40:df:9f:ea:ca:cd:37:c1:eb:ee:b8:97:11:ab:37: 7c:2e:e5:bd:e9:92:94:fd:0f:85:40:ed:ac:b9:be:46:4e:e9: 31:45:ae:66:9d:58:4f:22:ba:c6:21:39:ee:57:79:45:d7:2d: e9:5f:96:cf:1a:18:82:eb:be:60:e0:a2:f5:2b:3d:e6:dc:90: c8:88:6e:d6:a4:9c:d0:b1:2d:81:5f:49:37:55:2e:1c:86:b5: 33:20:18:59:b7:ec:de:a5:7d:e5:29:13:c0:17:69:94:33:c5: 43:70:25:ed:87:d6:8a:33:c3:6d:51:7e:56:8b:ce:fb:bb:5d: d1:a5:ad:86:d2:78:bd:86:7c:de:14:c3:db:6f:6c:7a:75:96: 8e:00:29:59 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAhUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDJB MDlDRTQyODA5RjREQTlEN0IxQzQ0NzNEREYyRjQzNkE1OTlDNDAeFw0yMzA5MDEw OTE5MzJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAyNDk2QzQ5NzdCQzlG MTFEQjMwQ0Q3Q0U3QzAzOTE0NDYwQzJEMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqjOVcYuU6F41NmX9dw63mnesWKUlNiTfSb5IOwl1ISOhNh9Kn U2p4kMBXi9CQM4VlD6euavwbABNjYBSnRmOQiQzuiey7N1yUwGYRLKFfz6OYbN6e w9/Uwz51ZJWlCE7OffRm8xEXWaf+Q0I+kpadLT4xxu2amFzTbgZtqbCEMSJ6+xGD w8lFMPfIK4nYJKVHVcMMxhJ74XPP6TwpMIeZmpTeEh6U2iHREdWCB54VBKX68wqt UlQqsnSPDRpYRvm0ury69W54yNHxUm023ZUFLsEj08uIK/Z1lmiRuRMvtbdJM27T qLUdkbQVPkmseXKwWQZFsoUjcoiS3KlaSnQzAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUAklsSXe8nxHbMM1858A5FEYMLTAwHwYDVR0jBBgwFoAU0qCc5CgJ9NqdexxE c93y9DalmcQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUVSQ1lD QVQvMHFDYzVDZ0o5TnFkZXh4RWM5M3k5RGFsbWNRLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS8wcUNjNUNnSjlOcWRleHhFYzkzeTlEYWxtY1EuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NRVJDWUNBVC9Ba2xzU1hlOG54SGJN TTE4NThBNUZFWU1MVEEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAfSQDANBgkqhkiG9w0BAQsFAAOCAQEAfR9u0SZ845OGurO1Jzj9Hj2F1iKL HLsX8H87FixTUJT0H8x5HCltgv2+t3tnza3tUFDVCvUDrNUd+3zIFruIY0mXbUQj 93ozeOYPokcWdR3/9XKLTHryLIgtsjUCZM0fu/DzR1feDXPZ6aA0l22gQN+f6srN N8Hr7riXEas3fC7lvemSlP0PhUDtrLm+Rk7pMUWuZp1YTyK6xiE57ld5Rdct6V+W zxoYguu+YOCi9Ss95tyQyIhu1qSc0LEtgV9JN1UuHIa1MyAYWbfs3qV95SkTwBdp lDPFQ3Al7YfWijPDbVF+VovO+7td0aWthtJ4vYZ83hTD229senWWjgApWQ== -----END CERTIFICATE-----Generated at Fri May 31 23:15:51 2024 by rpki-client on console-ams.rpki-client.org