$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/tazuvLuI2RIEyUhlSYWnJBKN6ZY.roa File: tazuvLuI2RIEyUhlSYWnJBKN6ZY.roa (raw, json) Hash identifier: kiFcspsQlutDrdHCv2bczuHbPdb9T/yoy96B1fZndbk= Subject key identifier: B5:AC:EE:BC:BB:88:D9:12:04:C9:48:65:49:85:A7:24:12:8D:E9:96 Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 1218 Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/tazuvLuI2RIEyUhlSYWnJBKN6ZY.roa Signing time: Fri 01 Sep 2023 09:41:07 +0000 ROA not before: Fri 01 Sep 2023 09:41:07 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131631 IP address blocks: 2403:aac0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 01:33:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4632 (0x1218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Sep 1 09:41:07 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B5ACEEBCBB88D91204C948654985A724128DE996 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:70:fc:70:57:91:bd:ef:28:2e:11:ab:ee:22: ae:88:60:7b:86:82:02:7d:00:64:7a:07:ae:21:7a: 1b:67:b2:b9:54:7f:9e:40:c2:75:a8:60:76:11:3e: a6:7d:e0:c1:5f:14:68:f7:d4:6a:5c:03:c1:be:f2: 14:92:c0:22:2f:f8:4e:44:12:c7:7d:c4:87:25:49: 9b:9c:15:9c:0e:a4:4d:4b:91:5a:bc:b3:4b:08:1d: 5d:67:22:53:fe:23:9a:cc:26:74:18:8b:9b:b7:09: 97:9c:c3:34:1b:bc:27:f9:cb:d9:66:3a:36:66:15: 0a:03:90:30:8f:66:15:aa:b6:c1:0d:ce:f3:8e:5e: 77:71:36:98:83:48:ee:7c:5c:b8:d9:da:4a:2a:d2: c2:c6:e2:0b:9a:e4:b9:f4:ce:b3:9e:c4:bb:e5:04: c0:68:0f:8e:5e:38:1f:22:f5:73:21:ff:12:ff:a1: 0f:d0:e5:6f:bb:c6:d1:50:c7:38:bc:4e:81:78:2a: 36:24:51:41:48:34:75:1d:3d:88:02:03:0c:a4:2a: 8d:47:cb:a3:42:37:1a:fe:5e:fa:c3:2d:8e:32:d5: 26:61:4b:e8:83:67:5e:d9:6d:65:16:03:f3:32:19: b3:a5:12:c2:49:09:f7:62:c8:40:b7:2c:7c:d8:35: 42:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:AC:EE:BC:BB:88:D9:12:04:C9:48:65:49:85:A7:24:12:8D:E9:96 X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/tazuvLuI2RIEyUhlSYWnJBKN6ZY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:aac0::/32 Signature Algorithm: sha256WithRSAEncryption 90:7c:0c:e7:58:3d:b7:e3:87:ae:66:45:4f:76:b8:57:ca:e4: fa:9f:6e:47:7f:37:43:c9:92:76:87:46:cf:2d:b8:42:12:aa: b5:30:24:a7:4d:9c:cf:c3:ed:68:22:d6:2e:a5:e5:fb:fc:bc: 85:59:5a:77:03:f5:17:53:32:94:b1:71:63:c5:74:11:34:74: 07:68:6a:b3:25:9c:fc:d4:04:3d:9b:0f:ba:34:ac:b9:6b:b1: 52:c4:ba:54:37:c2:dc:cc:09:b8:39:85:e2:ee:e8:44:74:8f: 36:c8:3e:30:65:d3:8f:23:ed:26:e3:bf:1d:3b:7b:12:a1:35: 77:be:bf:0b:07:d5:7e:e2:2c:72:51:4b:3a:0d:b1:20:79:80: de:7a:f4:65:0a:2c:e0:d9:9c:b4:38:82:d2:ac:79:60:5d:3b: fa:c8:78:f9:ad:0f:9f:aa:0d:f1:69:80:07:d8:9d:38:95:99: e0:1d:c6:e3:49:0f:56:f5:54:22:24:ee:ec:e4:73:af:72:ec: bc:42:e1:a9:55:14:6d:a8:f3:55:f8:34:6b:0a:36:46:62:de: 31:94:bc:b9:7c:58:8c:6c:d9:18:22:f7:b5:6b:1f:c4:52:18: bc:a0:83:b2:09:42:9f:8d:65:9c:6d:6c:3c:4b:d3:c5:fe:7d: 42:ce:06:6b -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICEhgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yMzA5MDEw OTQxMDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI1QUNFRUJDQkI4OEQ5 MTIwNEM5NDg2NTQ5ODVBNzI0MTI4REU5OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+cPxwV5G97yguEavuIq6IYHuGggJ9AGR6B64hehtnsrlUf55A wnWoYHYRPqZ94MFfFGj31GpcA8G+8hSSwCIv+E5EEsd9xIclSZucFZwOpE1LkVq8 s0sIHV1nIlP+I5rMJnQYi5u3CZecwzQbvCf5y9lmOjZmFQoDkDCPZhWqtsENzvOO XndxNpiDSO58XLjZ2koq0sLG4gua5Ln0zrOexLvlBMBoD45eOB8i9XMh/xL/oQ/Q 5W+7xtFQxzi8ToF4KjYkUUFINHUdPYgCAwykKo1Hy6NCNxr+XvrDLY4y1SZhS+iD Z17ZbWUWA/MyGbOlEsJJCfdiyEC3LHzYNULLAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUtazuvLuI2RIEyUhlSYWnJBKN6ZYwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC90YXp1dkx1STJSSUV5VWhsU1lX bkpCS042Wlkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAOq wDANBgkqhkiG9w0BAQsFAAOCAQEAkHwM51g9t+OHrmZFT3a4V8rk+p9uR383Q8mS dodGzy24QhKqtTAkp02cz8PtaCLWLqXl+/y8hVladwP1F1MylLFxY8V0ETR0B2hq syWc/NQEPZsPujSsuWuxUsS6VDfC3MwJuDmF4u7oRHSPNsg+MGXTjyPtJuO/HTt7 EqE1d76/CwfVfuIsclFLOg2xIHmA3nr0ZQos4NmctDiC0qx5YF07+sh4+a0Pn6oN 8WmAB9idOJWZ4B3G40kPVvVUIiTu7ORzr3LsvELhqVUUbajzVfg0awo2RmLeMZS8 uXxYjGzZGCL3tWsfxFIYvKCDsglCn41lnG1sPEvTxf59Qs4Gaw== -----END CERTIFICATE-----Generated at Sat Jun 1 15:05:03 2024 by rpki-client on console-fra.rpki-client.org