$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/5gKdaKeVNmlna8UiAbxNI1DvZFo.roa File: 5gKdaKeVNmlna8UiAbxNI1DvZFo.roa (raw, json) Hash identifier: cTTgcLkQ+40uKODgQdttksIuOWaEYwoc9f44zpK9TzM= Subject key identifier: E6:02:9D:68:A7:95:36:69:67:6B:C5:22:01:BC:4D:23:50:EF:64:5A Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0 Certificate serial: 0B3E Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/5gKdaKeVNmlna8UiAbxNI1DvZFo.roa Signing time: Fri 01 Sep 2023 09:21:35 +0000 ROA not before: Fri 01 Sep 2023 09:21:35 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7539 IP address blocks: 2001:4500:1000::/40 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:49:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2878 (0xb3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0 Validity Not Before: Sep 1 09:21:35 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E6029D68A7953669676BC52201BC4D2350EF645A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5e:ee:ca:51:27:5c:e0:9b:91:8d:5a:da:34: a7:7d:be:a3:8b:95:70:25:35:d1:e8:95:b9:ac:81: a2:8d:d8:6b:fd:e4:a1:4d:dc:65:e2:e3:07:0d:c7: ed:92:77:66:e3:fb:16:aa:ef:3c:1f:24:04:74:f4: 9c:cc:3e:09:3b:3d:2a:ac:58:b2:fe:83:13:42:b1: 0b:b0:e9:de:1d:d7:e2:86:ec:db:fb:be:ae:78:74: b3:e4:e9:fe:ea:27:65:4c:9f:2f:14:f7:1f:ec:d1: 91:6d:af:62:a6:65:57:b5:8f:4b:4b:8a:63:38:69: f0:0b:a3:9c:1a:d8:7b:7f:5f:e9:31:ee:24:72:b7: 10:e7:2d:11:d5:9c:40:48:f9:68:b5:37:1c:8d:a2: 9f:a1:e0:df:df:db:fc:2c:b5:03:3e:38:7c:b2:8b: 90:23:7c:01:93:0c:e4:e5:00:62:15:b9:8c:c8:16: b7:ac:ea:30:13:59:71:a9:af:f6:02:02:a3:ae:5e: 1d:c6:4f:57:d1:3f:7b:83:23:fb:14:2d:67:fa:b9: 5b:45:be:4e:5d:fd:68:fd:1e:96:12:a8:4c:56:b6: c1:1e:fb:db:d8:21:d3:14:1f:ed:41:8f:2c:31:87: 5f:7e:44:66:6d:ec:bf:6e:dd:32:b9:db:ea:ec:e3: 5c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:02:9D:68:A7:95:36:69:67:6B:C5:22:01:BC:4D:23:50:EF:64:5A X509v3 Authority Key Identifier: keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/5gKdaKeVNmlna8UiAbxNI1DvZFo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:4500:1000::/40 Signature Algorithm: sha256WithRSAEncryption 14:b6:81:50:89:37:ad:2a:5e:5b:5e:a8:a7:0a:85:bc:2f:cd: f8:3e:bb:f2:7e:00:ee:f7:8d:80:13:87:ee:6a:78:3d:f8:5f: 81:c8:8d:d2:ed:15:3e:25:3b:27:b2:7f:77:aa:d3:24:06:c4: 0d:c7:3c:37:b0:92:b0:4f:8b:59:5f:13:fb:a9:15:34:9a:6e: c6:7a:e4:d2:b9:3d:39:57:2b:ad:a1:17:aa:fb:59:9b:6a:68: 68:90:0c:a0:63:72:73:8a:12:73:4b:0a:86:4a:67:c7:6b:88: fc:d9:a5:82:32:f0:31:94:56:06:55:c0:a7:84:b9:88:28:68: b4:ec:42:cf:43:a3:d7:13:5e:f2:92:cc:e7:1c:26:c3:bf:48: d8:a0:0d:3e:ac:ae:7c:7c:29:a5:ca:69:d5:c6:ec:9e:27:41: 44:20:8c:f3:37:b1:64:59:19:7b:e6:52:75:ed:a5:4e:f8:e5: df:ab:52:5a:86:26:51:f6:71:c7:1a:fb:60:37:bd:43:9b:1e: d5:4e:90:dd:4e:f5:1f:38:3f:82:8e:95:79:10:f8:24:8e:c1: 46:87:e9:7a:a5:9b:69:24:e7:98:40:c6:1f:b2:53:14:d1:48: 22:01:50:2e:b4:45:94:c4:59:a2:82:cd:7e:d1:7e:50:64:46: 85:4c:42:c5 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICCz4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDUx RUY5MzU5QTk4NEY2QTRDRjkxRkU5MDA0RUFFQjA4OUE5ODRDMDAeFw0yMzA5MDEw OTIxMzVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU2MDI5RDY4QTc5NTM2 Njk2NzZCQzUyMjAxQkM0RDIzNTBFRjY0NUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDXu7KUSdc4JuRjVraNKd9vqOLlXAlNdHolbmsgaKN2Gv95KFN 3GXi4wcNx+2Sd2bj+xaq7zwfJAR09JzMPgk7PSqsWLL+gxNCsQuw6d4d1+KG7Nv7 vq54dLPk6f7qJ2VMny8U9x/s0ZFtr2KmZVe1j0tLimM4afALo5wa2Ht/X+kx7iRy txDnLRHVnEBI+Wi1NxyNop+h4N/f2/wstQM+OHyyi5AjfAGTDOTlAGIVuYzIFres 6jATWXGpr/YCAqOuXh3GT1fRP3uDI/sULWf6uVtFvk5d/Wj9HpYSqExWtsEe+9vY IdMUH+1Bjywxh19+RGZt7L9u3TK52+rs41yzAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU5gKdaKeVNmlna8UiAbxNI1DvZFowHwYDVR0jBBgwFoAURR75NZqYT2pM+R/p AE6usImphMAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkFSTC9S Ujc1TlpxWVQycE0tUl9wQUU2dXNJbXBoTUEuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1JSNzVOWnFZVDJwTS1SX3BBRTZ1c0ltcGhNQS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05BUkwvNWdLZGFLZVZObWxuYThVaUFieE5J MUR2WkZvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACABRQAQ MA0GCSqGSIb3DQEBCwUAA4IBAQAUtoFQiTetKl5bXqinCoW8L834PrvyfgDu942A E4fuang9+F+ByI3S7RU+JTsnsn93qtMkBsQNxzw3sJKwT4tZXxP7qRU0mm7GeuTS uT05VyutoReq+1mbamhokAygY3JzihJzSwqGSmfHa4j82aWCMvAxlFYGVcCnhLmI KGi07ELPQ6PXE17yksznHCbDv0jYoA0+rK58fCmlymnVxuyeJ0FEIIzzN7FkWRl7 5lJ17aVO+OXfq1JahiZR9nHHGvtgN71Dmx7VTpDdTvUfOD+CjpV5EPgkjsFGh+l6 pZtpJOeYQMYfslMU0UgiAVAutEWUxFmigs1+0X5QZEaFTELF -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:47 2024 by rpki-client on console-ams.rpki-client.org