$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/PQe3wBkSGflIzuS8pvtKC6Ruak8.roa File: PQe3wBkSGflIzuS8pvtKC6Ruak8.roa (raw, json) Hash identifier: 3NzU7vNO8gP6A3g2R12PgxtM2zLQGVIBPs5nUF5Fu6Y= Subject key identifier: 3D:07:B7:C0:19:12:19:F9:48:CE:E4:BC:A6:FB:4A:0B:A4:6E:6A:4F Certificate issuer: /CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Certificate serial: F1 Authority key identifier: F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/PQe3wBkSGflIzuS8pvtKC6Ruak8.roa Signing time: Wed 27 Mar 2024 15:28:57 +0000 ROA not before: Wed 27 Mar 2024 15:28:57 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 8075 IP address blocks: 103.131.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 04:43:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Validity Not Before: Mar 27 15:28:57 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=3D07B7C0191219F948CEE4BCA6FB4A0BA46E6A4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:62:d1:c4:a3:53:2c:d3:51:9d:97:c5:e7:6a: 0b:b1:eb:ed:56:d8:ff:9e:c2:60:f7:59:86:38:96: 6c:0c:86:ad:11:71:9c:16:9a:f2:ff:43:75:ce:fd: 94:72:a0:05:f9:91:6a:81:26:8a:fd:a6:55:41:03: 9c:b3:1e:6d:af:de:99:c2:98:2a:09:6e:cd:79:73: dd:9f:1f:c1:d5:79:1e:cb:cb:6c:8e:71:bf:25:a0: 74:f3:a2:98:c2:36:37:bf:9f:93:1a:16:83:71:15: 55:17:36:55:c2:96:06:0f:c1:ca:51:e1:3f:e7:c7: ac:8d:39:b8:6a:95:ad:e7:74:9c:6a:aa:2d:22:dc: 94:ef:5e:ec:d5:cb:7b:3e:73:e5:8c:a6:75:3a:a0: e9:a6:de:c2:dd:39:0c:7e:44:96:ee:a6:4e:4f:cb: 1b:9b:2c:f5:fa:c0:be:e0:8e:11:d1:9b:db:fc:e6: f8:5b:b0:a5:4d:cb:bc:08:87:32:9c:0b:b9:cb:4e: 6a:70:03:97:10:76:b3:f6:05:f3:03:65:28:b2:a8: 5c:3a:c6:ba:7a:f6:94:08:f2:23:2d:7d:8b:2c:e2: 12:f6:0a:ce:0f:f4:3c:a8:1c:52:fb:c8:f2:ae:8a: 3c:82:11:87:1e:c3:5b:0a:e7:07:4d:7b:30:a9:f0: 4e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:07:B7:C0:19:12:19:F9:48:CE:E4:BC:A6:FB:4A:0B:A4:6E:6A:4F X509v3 Authority Key Identifier: keyid:F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/PQe3wBkSGflIzuS8pvtKC6Ruak8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.131.148.0/24 Signature Algorithm: sha256WithRSAEncryption 15:6a:fe:f2:81:de:14:47:5b:f4:57:d5:db:77:53:0f:af:8b: 5f:da:10:60:3e:58:b7:1b:a8:f9:9a:cd:b3:7c:94:8c:ae:7b: b1:c9:98:3c:f8:5b:4a:8d:ed:29:b4:a0:0b:5b:f2:54:b8:90: 99:a4:26:0a:8f:b5:9c:c2:6e:71:ad:55:c7:9d:16:f8:60:e4: f0:fc:ba:b7:9f:a4:d0:bf:8f:76:0f:4c:7a:9f:b1:0a:7f:2c: 09:35:09:57:4c:05:cb:b3:d4:a7:1f:d3:2f:b1:5e:80:be:94: 03:bc:3f:52:73:a6:45:2b:ac:46:73:2f:99:90:c7:55:1a:74: 97:4f:0c:9b:b1:8c:11:bb:62:76:1d:29:8a:55:55:02:16:22: 64:7c:db:b2:b4:ce:aa:17:20:3c:4c:02:79:1b:87:34:2b:b5: 1f:23:2d:f3:d0:eb:ff:6f:62:1c:34:79:33:79:2b:6d:7a:db: ea:00:2b:95:99:df:20:db:9e:e9:a9:0e:81:4f:9c:e9:9f:0f: 87:bc:97:f8:dc:61:c8:af:58:c0:7e:c2:7a:28:c7:b1:72:72: fb:c2:1a:9c:dd:c6:d3:cb:36:c6:30:68:76:21:a8:80:cb:d3: ba:d9:7e:08:66:c4:6d:03:2e:17:ab:4d:41:e1:a4:4f:ab:59: e1:0a:8f:d3 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjVB NDRCNUUwNzg4NjVCQUVGOTM1MTM2OUQ5NjFENkJBMjU1NkQ0NzAeFw0yNDAzMjcx NTI4NTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDNEMDdCN0MwMTkxMjE5 Rjk0OENFRTRCQ0E2RkI0QTBCQTQ2RTZBNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEYtHEo1Ms01Gdl8Xnagux6+1W2P+ewmD3WYY4lmwMhq0RcZwW mvL/Q3XO/ZRyoAX5kWqBJor9plVBA5yzHm2v3pnCmCoJbs15c92fH8HVeR7Ly2yO cb8loHTzopjCNje/n5MaFoNxFVUXNlXClgYPwcpR4T/nx6yNObhqla3ndJxqqi0i 3JTvXuzVy3s+c+WMpnU6oOmm3sLdOQx+RJbupk5PyxubLPX6wL7gjhHRm9v85vhb sKVNy7wIhzKcC7nLTmpwA5cQdrP2BfMDZSiyqFw6xrp69pQI8iMtfYss4hL2Cs4P 9DyoHFL7yPKuijyCEYcew1sK5wdNezCp8E4/AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUPQe3wBkSGflIzuS8pvtKC6Ruak8wHwYDVR0jBBgwFoAU9aRLXgeIZbrvk1E2 nZYda6JVbUcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVH UkVFLzlhUkxYZ2VJWmJydmsxRTJuWllkYTZKVmJVYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvOWFSTFhnZUlaYnJ2azFFMm5aWWRhNkpWYlVjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVHUkVFL1BRZTN3QmtTR2Zs SXp1UzhwdnRLQzZSdWFrOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABng5QwDQYJKoZIhvcNAQELBQADggEBABVq/vKB3hRHW/RX1dt3Uw+vi1/a EGA+WLcbqPmazbN8lIyue7HJmDz4W0qN7Sm0oAtb8lS4kJmkJgqPtZzCbnGtVced Fvhg5PD8urefpNC/j3YPTHqfsQp/LAk1CVdMBcuz1Kcf0y+xXoC+lAO8P1JzpkUr rEZzL5mQx1UadJdPDJuxjBG7YnYdKYpVVQIWImR827K0zqoXIDxMAnkbhzQrtR8j LfPQ6/9vYhw0eTN5K2162+oAK5WZ3yDbnumpDoFPnOmfD4e8l/jcYcivWMB+wnoo x7FycvvCGpzdxtPLNsYwaHYhqIDL07rZfghmxG0DLherTUHhpE+rWeEKj9M= -----END CERTIFICATE-----Generated at Mon May 20 08:58:25 2024 by rpki-client on console-ams.rpki-client.org