$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/15RdURD6QQMw7HWThS8ibtY0bV0.roa File: 15RdURD6QQMw7HWThS8ibtY0bV0.roa (raw, json) Hash identifier: Qg4GTiHGET7OXMBJ846Zmri9Vkc/Kh9dmyF3PQvqDns= Subject key identifier: D7:94:5D:51:10:FA:41:03:30:EC:75:93:85:2F:22:6E:D6:34:6D:5D Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0CC8 Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/15RdURD6QQMw7HWThS8ibtY0bV0.roa Signing time: Fri 01 Sep 2023 09:39:45 +0000 ROA not before: Fri 01 Sep 2023 09:39:45 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38843 IP address blocks: 223.27.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:08:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3272 (0xcc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Sep 1 09:39:45 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D7945D5110FA410330EC7593852F226ED6346D5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a6:cd:1c:b9:fb:98:28:0f:96:83:ff:c6:54: 6c:c9:49:7f:5f:1b:04:a2:90:fd:d7:e1:e2:b5:1b: bf:6b:ca:a2:5c:7b:63:c7:d7:44:27:d5:ee:7c:d6: da:f1:f8:2c:c5:69:34:e2:8e:fd:1b:f9:06:d6:da: 3c:58:61:ea:7f:39:4d:83:8c:67:06:a9:3d:83:03: b3:35:86:3d:4e:e0:c5:1a:ff:56:78:10:db:4d:4c: 68:ce:64:28:e9:b6:15:eb:e4:9c:87:b3:8a:4e:ee: ee:06:d6:0b:dd:a7:e9:61:77:67:36:a1:a1:12:ed: bd:92:69:d4:d6:53:97:25:ae:97:86:ac:6c:df:42: 28:05:00:29:35:34:69:cf:98:3c:2d:a7:6c:74:e0: 57:ec:3c:93:68:5e:cf:2d:53:e0:b1:70:28:69:66: e3:88:d7:4d:12:d1:5b:91:ea:ae:16:61:ed:72:91: 4f:ae:03:5b:1e:ff:ca:45:77:21:e6:66:7a:e0:93: d8:96:2a:b3:01:7c:f7:0a:4f:de:f0:43:85:8c:cb: 1f:e8:57:e4:08:4e:78:ea:4f:1e:bc:ee:71:d7:39: 55:c4:81:0f:c7:45:fa:df:1d:66:4f:dc:22:7d:67: 84:95:3f:0d:42:c0:34:6f:85:61:c3:94:a0:8b:bb: 01:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:94:5D:51:10:FA:41:03:30:EC:75:93:85:2F:22:6E:D6:34:6D:5D X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/15RdURD6QQMw7HWThS8ibtY0bV0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.27.37.0/24 Signature Algorithm: sha256WithRSAEncryption bc:3b:27:8c:01:19:da:7d:1c:4f:b3:4d:72:96:7c:02:43:b8: a0:0e:b0:88:ad:f3:3d:86:1d:1a:b2:70:4d:e4:9e:9d:b9:f5: 0e:de:56:6a:a3:c8:27:c4:43:a9:87:7d:d2:b0:7c:e1:26:ff: 8c:35:c4:20:b2:b8:20:a6:23:c1:4f:1c:b6:fb:e4:6b:08:ce: 23:71:a6:4b:ee:14:79:8e:84:ad:58:db:ca:9e:5a:d2:74:6e: 46:e9:a6:98:69:22:eb:91:ed:f0:85:e5:14:75:70:e8:66:a1: 9b:8b:47:9d:79:03:fa:58:a7:64:23:7f:cf:82:2d:e2:b0:16: 31:c1:7e:83:93:53:5d:cf:fe:f3:8f:d3:6d:02:0d:ab:12:27: 08:b7:16:76:3d:bd:26:5f:6a:f0:6b:d8:cd:7d:49:df:05:26: 18:19:59:2f:01:19:19:3c:89:5d:f1:c3:3a:84:5a:44:28:c7: b1:65:c5:03:1b:58:49:38:5e:1c:49:d1:a6:07:71:8f:98:c3: 37:99:9d:b8:a8:06:f2:66:1e:4d:00:e3:5c:dd:57:72:dc:f8: 71:0d:2d:13:4d:0f:29:b6:6f:7c:87:cc:f7:4b:77:b0:35:f4: 72:e8:1e:71:78:e8:c6:9e:18:f0:92:ba:f4:29:b5:1f:5d:5d: c2:7d:b2:bd -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDMgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMzA5MDEw OTM5NDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ3OTQ1RDUxMTBGQTQx MDMzMEVDNzU5Mzg1MkYyMjZFRDYzNDZENUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5ps0cufuYKA+Wg//GVGzJSX9fGwSikP3X4eK1G79ryqJce2PH 10Qn1e581trx+CzFaTTijv0b+QbW2jxYYep/OU2DjGcGqT2DA7M1hj1O4MUa/1Z4 ENtNTGjOZCjpthXr5JyHs4pO7u4G1gvdp+lhd2c2oaES7b2SadTWU5clrpeGrGzf QigFACk1NGnPmDwtp2x04FfsPJNoXs8tU+CxcChpZuOI100S0VuR6q4WYe1ykU+u A1se/8pFdyHmZnrgk9iWKrMBfPcKT97wQ4WMyx/oV+QITnjqTx687nHXOVXEgQ/H RfrfHWZP3CJ9Z4SVPw1CwDRvhWHDlKCLuwGBAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU15RdURD6QQMw7HWThS8ibtY0bV0wHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vMTVSZFVSRDZRUU13N0hXVGhTOGli dFkwYlYwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bJTAN BgkqhkiG9w0BAQsFAAOCAQEAvDsnjAEZ2n0cT7NNcpZ8AkO4oA6wiK3zPYYdGrJw TeSenbn1Dt5WaqPIJ8RDqYd90rB84Sb/jDXEILK4IKYjwU8ctvvkawjOI3GmS+4U eY6ErVjbyp5a0nRuRummmGki65Ht8IXlFHVw6Gahm4tHnXkD+linZCN/z4It4rAW McF+g5NTXc/+84/TbQINqxInCLcWdj29Jl9q8GvYzX1J3wUmGBlZLwEZGTyJXfHD OoRaRCjHsWXFAxtYSTheHEnRpgdxj5jDN5mduKgG8mYeTQDjXN1Xctz4cQ0tE00P KbZvfIfM90t3sDX0cugecXjoxp4Y8JK69Cm1H11dwn2yvQ== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:02 2024 by rpki-client on console-fra.rpki-client.org