$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/I32tMCKLTWsBeTdnspR92dT3Gd8.roa File: I32tMCKLTWsBeTdnspR92dT3Gd8.roa (raw, json) Hash identifier: nM7qEhat2tNXzV8D/3nhyhQPr/E36osHhb3v1ZtJsgY= Subject key identifier: 23:7D:AD:30:22:8B:4D:6B:01:79:37:67:B2:94:7D:D9:D4:F7:19:DF Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Certificate serial: 10 Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/I32tMCKLTWsBeTdnspR92dT3Gd8.roa Signing time: Fri 05 Jan 2024 04:08:48 +0000 ROA not before: Fri 05 Jan 2024 04:08:48 +0000 ROA not after: Wed 25 Dec 2024 15:30:21 +0000 asID: 150767 IP address blocks: 2401:5f20::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 08:58:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Validity Not Before: Jan 5 04:08:48 2024 GMT Not After : Dec 25 15:30:21 2024 GMT Subject: CN=237DAD30228B4D6B01793767B2947DD9D4F719DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:33:9a:fe:7c:d6:73:95:08:e6:cf:69:05:f4: 9f:2a:13:f0:a9:6f:77:ec:c8:dd:ba:a8:76:e0:97: 2c:2b:83:aa:71:ba:bc:50:69:13:d1:9b:ac:c1:55: 90:e2:3f:ea:66:0b:9f:f9:ef:75:e7:c7:76:e2:95: c5:f7:fc:dc:7e:96:30:ab:70:6d:65:f1:71:53:94: e7:58:05:6d:72:9f:ef:52:6a:97:c6:4d:44:67:f7: 55:ad:72:ca:6b:88:01:dd:57:64:d4:14:73:97:dd: fb:1e:c9:33:79:43:84:39:d5:ff:ae:93:15:c6:cc: 07:15:d6:53:79:bb:2a:77:f3:88:da:d7:37:f8:d5: bc:30:23:81:b3:5a:d7:2e:9e:d8:5d:04:f7:fc:7e: a0:8c:46:3a:64:1f:e8:76:4d:a8:7a:4a:73:89:82: c5:50:a2:ad:70:7e:c3:e9:13:6c:79:97:af:55:94: 51:79:10:5f:f9:bf:cb:d9:cb:6f:af:97:e2:75:e5: a1:9e:4c:67:62:70:a2:7a:f0:b1:af:26:44:6a:18: 8c:74:8a:3f:2d:51:21:ef:69:83:63:0a:33:c2:7d: 57:8f:24:7e:da:cf:61:9b:5e:bf:d1:9e:ee:d1:2a: f0:87:d6:35:bc:be:88:51:f4:90:41:42:cb:3e:32: ca:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:7D:AD:30:22:8B:4D:6B:01:79:37:67:B2:94:7D:D9:D4:F7:19:DF X509v3 Authority Key Identifier: keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/I32tMCKLTWsBeTdnspR92dT3Gd8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:5f20::/32 Signature Algorithm: sha256WithRSAEncryption 85:e8:e2:03:d0:d1:0c:ff:04:74:5d:a4:59:56:9f:88:f0:73: 02:99:3b:b4:a0:a8:ec:95:06:63:73:d1:df:9e:d7:52:5b:e9: 31:ae:cb:02:7f:79:32:7c:b1:e1:9a:c6:29:37:07:52:f7:18: 2c:5b:4d:d7:e1:ea:c1:bd:f7:8f:a6:f3:4d:dd:8b:0e:c7:96: 94:3b:2b:8a:1f:66:be:1a:1a:c3:ce:c2:ca:05:de:86:99:66: 29:eb:ab:67:64:a4:3a:cd:0f:84:21:36:fb:02:2a:06:c8:08: f8:ff:0f:95:77:c9:d9:55:c6:57:34:df:bf:d6:2e:1c:05:a9: b2:07:21:f4:5a:ce:1c:59:fa:d1:60:d6:86:b1:e5:d2:8c:b5: b3:07:67:c0:75:e1:11:8c:d3:dd:59:80:bc:47:b0:f1:c2:3a: 09:36:16:85:93:a6:35:50:0a:ee:8c:83:23:fa:0f:27:11:86: cf:8a:10:af:a3:e4:00:7e:96:87:67:9e:b5:48:88:cf:77:90: 1a:e9:43:3e:84:c8:00:1c:55:bc:98:0a:bd:ba:ad:49:37:81: 31:42:41:4c:43:af:bd:30:d7:31:c5:d3:5c:eb:bc:95:dc:9a: 4d:fc:79:ea:4d:e7:bb:aa:f7:05:8d:de:6a:8c:3c:f3:51:08: db:08:7d:be -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgIBEDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNUZG OTAzMDZCNDdBN0RFMDMwN0YwRTMzNUI0REM3RjI3REVBNEZCMB4XDTI0MDEwNTA0 MDg0OFoXDTI0MTIyNTE1MzAyMVowMzExMC8GA1UEAxMoMjM3REFEMzAyMjhCNEQ2 QjAxNzkzNzY3QjI5NDdERDlENEY3MTlERjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOkzmv581nOVCObPaQX0nyoT8Klvd+zI3bqoduCXLCuDqnG6vFBp E9GbrMFVkOI/6mYLn/nvdefHduKVxff83H6WMKtwbWXxcVOU51gFbXKf71Jql8ZN RGf3Va1yymuIAd1XZNQUc5fd+x7JM3lDhDnV/66TFcbMBxXWU3m7KnfziNrXN/jV vDAjgbNa1y6e2F0E9/x+oIxGOmQf6HZNqHpKc4mCxVCirXB+w+kTbHmXr1WUUXkQ X/m/y9nLb6+X4nXloZ5MZ2Jwonrwsa8mRGoYjHSKPy1RIe9pg2MKM8J9V48kftrP YZtev9Ge7tEq8IfWNby+iFH0kEFCyz4yynUCAwEAAaOCAfcwggHzMB0GA1UdDgQW BBQjfa0wIotNawF5N2eylH3Z1PcZ3zAfBgNVHSMEGDAWgBQ1/5Awa0en3gMH8OM1 tNx/J96k+zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGAGA1UdHwRZMFcwVaBT oFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSElKSUNP TFREL05mLVFNR3RIcDk0REJfRGpOYlRjZnlmZXBQcy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvTmYtUU1HdEhwOTREQl9Eak5iVGNmeWZlcFBzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgaAGCCsGAQUFBwELBIGTMIGQMFsGCCsGAQUFBzALhk9yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJSklDT0xURC9JMzJ0TUNLTFRX c0JlVGRuc3BSOTJkVDNHZDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAu dHduaWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIA AjAHAwUAJAFfIDANBgkqhkiG9w0BAQsFAAOCAQEAhejiA9DRDP8EdF2kWVafiPBz Apk7tKCo7JUGY3PR357XUlvpMa7LAn95Mnyx4ZrGKTcHUvcYLFtN1+Hqwb33j6bz Td2LDseWlDsrih9mvhoaw87CygXehplmKeurZ2SkOs0PhCE2+wIqBsgI+P8PlXfJ 2VXGVzTfv9YuHAWpsgch9FrOHFn60WDWhrHl0oy1swdnwHXhEYzT3VmAvEew8cI6 CTYWhZOmNVAK7oyDI/oPJxGGz4oQr6PkAH6Wh2eetUiIz3eQGulDPoTIABxVvJgK vbqtSTeBMUJBTEOvvTDXMcXTXOu8ldyaTfx56k3nu6r3BY3eaow881EI2wh9vg== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:03 2024 by rpki-client on console-fra.rpki-client.org