$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/WTBhkMPSaO9zdLUrDjxIv9ZOdWA.roa File: WTBhkMPSaO9zdLUrDjxIv9ZOdWA.roa (raw, json) Hash identifier: vXwEFHJroeCreANHZstnb3LIJwOzH6cOIS/TQnLUCeA= Subject key identifier: 59:30:61:90:C3:D2:68:EF:73:74:B5:2B:0E:3C:48:BF:D6:4E:75:60 Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 1224 Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/WTBhkMPSaO9zdLUrDjxIv9ZOdWA.roa Signing time: Tue 05 Sep 2023 16:39:55 +0000 ROA not before: Tue 05 Sep 2023 16:39:55 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 202525 IP address blocks: 2403:aac0::/64 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 01:41:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4644 (0x1224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Sep 5 16:39:55 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=59306190C3D268EF7374B52B0E3C48BFD64E7560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:88:77:77:ac:66:8c:6a:a4:64:4a:8b:c3:f3: 19:b9:df:01:6b:0c:77:49:b1:c9:00:1f:8d:1e:6d: e2:7d:c6:2c:44:07:e5:08:a9:9e:7c:eb:94:fc:e3: a9:55:10:4d:42:42:52:64:45:bd:5f:83:65:3b:0e: 56:b7:e7:5e:5d:65:e6:43:cf:43:1a:44:9c:d7:d4: 0e:0d:00:b0:a4:2e:7c:08:32:6a:00:30:49:0c:8c: 24:3b:f2:c5:0c:8d:f0:ac:65:d7:05:0b:5f:e1:51: 76:fc:5a:0f:e2:9e:b9:88:e4:ab:5a:04:38:2e:00: ee:f1:64:56:74:3f:b0:06:a5:3e:e3:ca:51:3d:92: 45:e7:12:e7:47:2d:4d:66:ac:76:20:19:cc:0a:a5: 76:48:11:52:86:51:2d:80:fe:b6:42:2c:77:da:90: 4a:12:c8:2f:3e:0f:c0:cb:ee:76:0a:12:4b:46:de: d4:de:c9:da:70:a1:49:74:d9:50:c5:fe:71:c1:0d: e9:6e:26:21:ec:37:5b:fb:e4:e1:90:9a:99:ab:81: 4e:60:b1:d7:ad:bf:05:b8:78:2c:ad:62:02:e2:51: 49:46:6b:de:d4:9a:92:d7:6b:ba:52:20:6b:c3:3b: 57:25:92:7b:7c:c7:c5:ab:38:9f:7a:e0:11:c1:d0: 31:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:30:61:90:C3:D2:68:EF:73:74:B5:2B:0E:3C:48:BF:D6:4E:75:60 X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/WTBhkMPSaO9zdLUrDjxIv9ZOdWA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:aac0::/64 Signature Algorithm: sha256WithRSAEncryption 43:31:c2:a1:87:ec:64:08:65:bc:48:f9:69:cf:49:cf:88:df: 53:87:4b:ca:e3:9d:31:9e:08:82:68:0e:20:df:e0:52:7e:8f: 77:29:16:27:7f:38:91:d3:dd:c2:4d:ea:7b:3d:bc:0e:e1:fa: 76:94:26:f5:49:e6:cc:41:2a:b2:2f:ac:fb:f5:81:5a:9b:42: d6:09:8d:da:fc:de:0d:f8:a1:a6:35:f7:97:2d:80:d0:69:26: 46:92:e1:96:f1:ec:79:d5:5f:22:2b:b9:17:8e:5e:3d:13:9a: de:9a:f0:25:67:f4:9b:51:eb:56:4f:7b:7d:dd:f7:a8:66:ee: 63:b2:d7:e9:b1:08:c4:82:0c:5c:8d:cc:44:1c:e6:d5:4a:5b: 4e:6e:2d:98:1d:6d:35:11:3d:ed:c0:80:2a:b5:d9:75:35:d6: 0e:46:81:f3:77:a8:29:8a:cf:16:01:f7:20:6e:c7:14:d8:e1: e9:65:5f:71:db:07:07:4b:1f:44:e2:cc:07:d8:ad:16:18:bb: 8d:e8:d5:dd:5c:6c:af:09:8a:12:da:e3:0e:ad:85:ec:8d:2d: b6:46:5f:99:0b:35:ad:5d:7c:eb:89:c3:8b:d4:56:27:9a:76: 3a:1d:c9:47:ed:84:dc:3c:ef:43:9e:0c:88:e5:93:08:38:5d: 2e:fe:2e:ff -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICEiQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yMzA5MDUx NjM5NTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDU5MzA2MTkwQzNEMjY4 RUY3Mzc0QjUyQjBFM0M0OEJGRDY0RTc1NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/iHd3rGaMaqRkSovD8xm53wFrDHdJsckAH40ebeJ9xixEB+UI qZ5865T846lVEE1CQlJkRb1fg2U7Dla3515dZeZDz0MaRJzX1A4NALCkLnwIMmoA MEkMjCQ78sUMjfCsZdcFC1/hUXb8Wg/inrmI5KtaBDguAO7xZFZ0P7AGpT7jylE9 kkXnEudHLU1mrHYgGcwKpXZIEVKGUS2A/rZCLHfakEoSyC8+D8DL7nYKEktG3tTe ydpwoUl02VDF/nHBDeluJiHsN1v75OGQmpmrgU5gsdetvwW4eCytYgLiUUlGa97U mpLXa7pSIGvDO1clknt8x8WrOJ964BHB0DErAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUWTBhkMPSaO9zdLUrDjxIv9ZOdWAwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9XVEJoa01QU2FPOXpkTFVyRGp4 SXY5Wk9kV0Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAJAOq wAAAAAAwDQYJKoZIhvcNAQELBQADggEBAEMxwqGH7GQIZbxI+WnPSc+I31OHS8rj nTGeCIJoDiDf4FJ+j3cpFid/OJHT3cJN6ns9vA7h+naUJvVJ5sxBKrIvrPv1gVqb QtYJjdr83g34oaY195ctgNBpJkaS4Zbx7HnVXyIruReOXj0Tmt6a8CVn9JtR61ZP e33d96hm7mOy1+mxCMSCDFyNzEQc5tVKW05uLZgdbTURPe3AgCq12XU11g5GgfN3 qCmKzxYB9yBuxxTY4ellX3HbBwdLH0TizAfYrRYYu43o1d1cbK8JihLa4w6theyN LbZGX5kLNa1dfOuJw4vUVieadjodyUfthNw870OeDIjlkwg4XS7+Lv8= -----END CERTIFICATE-----Generated at Sat Jun 8 07:13:32 2024 by rpki-client on console-fra.rpki-client.org