$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/YckWY8X5UP9nXepmNmn4MZXZNoo.roa File: YckWY8X5UP9nXepmNmn4MZXZNoo.roa (raw, json) Hash identifier: bMPgwav1mb7z2xYeU6eu2QayLmCmKQCfMwqqGK/WlZg= Subject key identifier: 61:C9:16:63:C5:F9:50:FF:67:5D:EA:66:36:69:F8:31:95:D9:36:8A Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Certificate serial: 39 Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/YckWY8X5UP9nXepmNmn4MZXZNoo.roa Signing time: Fri 01 Mar 2024 06:43:17 +0000 ROA not before: Fri 01 Mar 2024 06:43:17 +0000 ROA not after: Wed 25 Dec 2024 15:30:21 +0000 asID: 32595 IP address blocks: 36.50.249.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Validity Not Before: Mar 1 06:43:17 2024 GMT Not After : Dec 25 15:30:21 2024 GMT Subject: CN=61C91663C5F950FF675DEA663669F83195D9368A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:16:9e:a4:79:2d:09:e9:94:6e:a6:c3:6d:3f: 2e:e7:51:e7:0a:ec:1c:20:78:69:53:a2:20:de:f4: 5e:3d:4d:f2:36:e4:19:46:04:db:1c:a7:10:5e:2e: 77:a0:06:a2:00:02:eb:07:63:e8:92:53:e0:de:fe: 64:61:de:e0:fa:8f:44:cb:6d:e3:6b:94:7d:9b:ed: d2:af:f2:fe:16:9f:93:d5:80:11:21:05:76:4b:df: 87:15:60:9c:3b:2a:c0:3a:9c:48:9c:c6:f6:77:26: 27:92:7b:3d:af:d8:c1:a0:99:e0:93:3d:8e:2a:5e: 03:46:28:3a:08:72:5b:d4:b9:72:5e:03:d1:67:f6: a9:0a:33:4a:41:97:a5:f2:4d:b5:8e:96:69:4c:51: c8:b8:2a:33:64:17:e4:29:61:53:de:74:35:a8:2c: 60:12:1e:36:f8:c5:f5:02:33:75:35:07:a4:45:af: 6b:7c:96:b9:0c:16:44:98:51:7e:18:fd:f6:23:ae: 4f:dd:91:73:de:0b:14:2c:4e:bb:27:d0:a8:41:27: 94:c4:2a:b9:ad:23:2b:ba:21:50:1c:82:6b:07:6c: a7:ff:36:65:7c:7a:db:90:49:12:7d:a7:95:91:e3: 1e:c4:62:5d:27:ce:c4:61:89:c3:06:63:da:44:4d: a8:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:C9:16:63:C5:F9:50:FF:67:5D:EA:66:36:69:F8:31:95:D9:36:8A X509v3 Authority Key Identifier: keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/YckWY8X5UP9nXepmNmn4MZXZNoo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 36.50.249.0/24 Signature Algorithm: sha256WithRSAEncryption 03:ac:8f:7f:41:3a:03:52:4c:06:bb:59:a0:2b:a2:9b:dc:eb: b6:61:56:c4:ef:17:04:af:67:23:37:95:4c:99:3a:34:6b:86: a5:98:7d:48:ec:b9:2e:cb:a0:e9:b8:4f:0d:7e:69:92:42:6b: c8:ac:0b:e9:0b:6e:de:68:11:53:7f:d2:29:89:fe:b1:cb:4a: cf:c5:a3:06:df:4c:6e:c6:b2:32:bd:13:42:d7:e8:5d:2d:68: c7:d7:e6:73:fe:3b:86:4f:2b:6a:7d:33:6d:29:f8:4d:03:43: ac:a3:5b:2d:08:6b:1c:d4:84:b6:50:88:7c:30:84:ae:c6:4a: ca:75:80:0e:23:8d:d4:32:41:7b:4c:32:7e:b8:a5:11:b2:2c: d6:ef:ff:ef:24:6c:fd:79:3c:1b:ce:8c:fc:d8:87:c3:8a:9d: ff:54:b2:8a:54:ff:1e:03:f6:7f:ac:7a:c6:6e:63:f4:2e:39: 99:62:81:39:42:2a:e8:75:df:de:29:b4:d3:dc:34:45:93:c8: eb:08:c4:44:5c:c7:18:7c:0f:5c:23:d6:a6:2b:f2:9e:5d:b1: 73:fd:e2:b4:21:58:f7:1b:17:50:48:10:14:19:6b:4d:1b:a4: 77:9c:c0:8a:36:91:32:fd:76:7c:54:61:e0:79:b7:e0:f2:63: e2:e6:54:e3 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIBOTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNUZG OTAzMDZCNDdBN0RFMDMwN0YwRTMzNUI0REM3RjI3REVBNEZCMB4XDTI0MDMwMTA2 NDMxN1oXDTI0MTIyNTE1MzAyMVowMzExMC8GA1UEAxMoNjFDOTE2NjNDNUY5NTBG RjY3NURFQTY2MzY2OUY4MzE5NUQ5MzY4QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPsWnqR5LQnplG6mw20/LudR5wrsHCB4aVOiIN70Xj1N8jbkGUYE 2xynEF4ud6AGogAC6wdj6JJT4N7+ZGHe4PqPRMtt42uUfZvt0q/y/hafk9WAESEF dkvfhxVgnDsqwDqcSJzG9ncmJ5J7Pa/YwaCZ4JM9jipeA0YoOghyW9S5cl4D0Wf2 qQozSkGXpfJNtY6WaUxRyLgqM2QX5ClhU950NagsYBIeNvjF9QIzdTUHpEWva3yW uQwWRJhRfhj99iOuT92Rc94LFCxOuyfQqEEnlMQqua0jK7ohUByCawdsp/82ZXx6 25BJEn2nlZHjHsRiXSfOxGGJwwZj2kRNqG0CAwEAAaOCAfYwggHyMB0GA1UdDgQW BBRhyRZjxflQ/2dd6mY2afgxldk2ijAfBgNVHSMEGDAWgBQ1/5Awa0en3gMH8OM1 tNx/J96k+zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGAGA1UdHwRZMFcwVaBT oFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSElKSUNP TFREL05mLVFNR3RIcDk0REJfRGpOYlRjZnlmZXBQcy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvTmYtUU1HdEhwOTREQl9Eak5iVGNmeWZlcFBzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgaAGCCsGAQUFBwELBIGTMIGQMFsGCCsGAQUFBzALhk9yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJSklDT0xURC9ZY2tXWThYNVVQ OW5YZXBtTm1uNE1aWFpOb28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAu dHduaWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA ATAGAwQAJDL5MA0GCSqGSIb3DQEBCwUAA4IBAQADrI9/QToDUkwGu1mgK6Kb3Ou2 YVbE7xcEr2cjN5VMmTo0a4almH1I7Lkuy6DpuE8NfmmSQmvIrAvpC27eaBFTf9Ip if6xy0rPxaMG30xuxrIyvRNC1+hdLWjH1+Zz/juGTytqfTNtKfhNA0Oso1stCGsc 1IS2UIh8MISuxkrKdYAOI43UMkF7TDJ+uKURsizW7//vJGz9eTwbzoz82IfDip3/ VLKKVP8eA/Z/rHrGbmP0LjmZYoE5Qirodd/eKbTT3DRFk8jrCMREXMcYfA9cI9am K/KeXbFz/eK0IVj3GxdQSBAUGWtNG6R3nMCKNpEy/XZ8VGHgebfg8mPi5lTj -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org