$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/q3KXYwlZOTAo3O-cAwSI3FZ1mkc.roa File: q3KXYwlZOTAo3O-cAwSI3FZ1mkc.roa (raw, json) Hash identifier: afDjRnyRqA3TpZuZheEQS7kjLJ2MpZPoqxw+KcgqNek= Subject key identifier: AB:72:97:63:09:59:39:30:28:DC:EF:9C:03:04:88:DC:56:75:9A:47 Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Certificate serial: 07 Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/q3KXYwlZOTAo3O-cAwSI3FZ1mkc.roa Signing time: Thu 04 Jan 2024 08:02:57 +0000 ROA not before: Thu 04 Jan 2024 08:02:57 +0000 ROA not after: Wed 25 Dec 2024 15:30:21 +0000 asID: 205329 IP address blocks: 2401:5f20::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 08:58:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB Validity Not Before: Jan 4 08:02:57 2024 GMT Not After : Dec 25 15:30:21 2024 GMT Subject: CN=AB7297630959393028DCEF9C030488DC56759A47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1f:71:4c:de:54:cb:5f:8f:77:ff:28:8c:74: 4b:35:17:05:00:35:a4:74:b9:87:0e:1d:84:5c:06: 49:d5:45:10:7c:79:6d:ae:3b:7a:39:bc:f1:ae:4a: 35:9e:a1:02:de:1c:5f:c6:e7:e5:7e:90:fc:25:00: f8:2b:9c:83:99:48:c4:41:70:6e:c4:50:ab:a5:42: da:ea:17:28:d0:4b:03:55:80:89:38:e0:a3:0f:de: 90:85:51:f3:1a:0e:78:2a:6b:ef:87:6d:1b:ef:af: 5b:ff:41:df:cb:10:c1:53:96:7c:ef:9e:d8:72:91: a4:ce:40:67:ca:92:5a:ad:9e:a9:d2:ee:07:c2:09: d0:60:fc:81:61:9a:f4:62:a8:ea:ad:40:d0:df:dc: 22:f5:f9:37:a2:64:4e:8f:d7:e7:bc:b5:e0:0b:1e: ee:a3:a1:98:6a:d0:83:fb:d3:77:ab:70:50:66:88: 12:ca:91:fd:6d:0c:2a:ca:a6:18:ca:d1:fb:e4:cf: aa:d8:07:74:6d:b6:91:9d:d7:9a:f8:21:f2:8a:5b: f0:7f:da:7f:61:5d:02:8b:9f:0d:31:67:98:c6:86: c2:53:62:9e:5a:60:7b:0e:94:75:fe:98:1f:5c:c0: 0e:c0:18:7e:f6:ed:88:e5:8d:63:6d:2b:ec:ff:7c: d6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:72:97:63:09:59:39:30:28:DC:EF:9C:03:04:88:DC:56:75:9A:47 X509v3 Authority Key Identifier: keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/q3KXYwlZOTAo3O-cAwSI3FZ1mkc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:5f20::/32 Signature Algorithm: sha256WithRSAEncryption 00:d5:3e:f9:bf:46:2f:c3:6f:ad:03:6c:0c:60:eb:b7:8d:aa: 90:81:ed:4b:29:0c:4e:b4:f9:21:fe:23:f1:d6:3b:38:28:09: 33:8e:9e:64:3b:e9:f0:b5:bf:4e:3e:6d:a4:17:bd:f3:00:1e: 73:ba:56:49:29:18:76:74:ff:80:60:31:a4:bf:eb:7e:8e:7d: a1:51:f0:f1:4b:af:f9:3e:ca:ec:69:e9:c8:c1:9a:b5:5e:40: 38:6a:a5:b9:30:19:fe:5b:c1:f9:57:60:4a:45:b1:ff:0a:8e: f7:9d:f2:fc:1e:31:4d:6f:00:0e:da:16:d9:18:41:33:25:0d: 9d:06:73:0c:fb:b1:5a:8d:c4:12:58:cb:e4:81:3a:38:d2:a8: bb:c0:74:a8:1c:cf:ef:3d:00:3d:b0:4e:7d:a9:12:b2:ee:0c: bb:bf:c4:68:33:84:18:5e:a9:63:a1:88:5d:da:11:a5:ac:d1: 52:90:b3:d9:29:f4:81:be:31:bb:63:cd:11:d0:31:50:7f:cd: 00:6f:d4:f5:f1:49:ad:bf:f7:ba:c1:1b:54:c2:e6:49:7c:3f: 00:85:9b:8d:be:80:1a:9b:59:69:7e:44:2c:da:e7:2a:6b:81: ea:7f:65:15:9f:95:28:9b:48:a1:9a:79:22:42:63:e3:eb:e8: da:85:ab:c1 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgIBBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzNUZG OTAzMDZCNDdBN0RFMDMwN0YwRTMzNUI0REM3RjI3REVBNEZCMB4XDTI0MDEwNDA4 MDI1N1oXDTI0MTIyNTE1MzAyMVowMzExMC8GA1UEAxMoQUI3Mjk3NjMwOTU5Mzkz MDI4RENFRjlDMDMwNDg4REM1Njc1OUE0NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANEfcUzeVMtfj3f/KIx0SzUXBQA1pHS5hw4dhFwGSdVFEHx5ba47 ejm88a5KNZ6hAt4cX8bn5X6Q/CUA+Cucg5lIxEFwbsRQq6VC2uoXKNBLA1WAiTjg ow/ekIVR8xoOeCpr74dtG++vW/9B38sQwVOWfO+e2HKRpM5AZ8qSWq2eqdLuB8IJ 0GD8gWGa9GKo6q1A0N/cIvX5N6JkTo/X57y14Ase7qOhmGrQg/vTd6twUGaIEsqR /W0MKsqmGMrR++TPqtgHdG22kZ3Xmvgh8opb8H/af2FdAoufDTFnmMaGwlNinlpg ew6Udf6YH1zADsAYfvbtiOWNY20r7P981ksCAwEAAaOCAfcwggHzMB0GA1UdDgQW BBSrcpdjCVk5MCjc75wDBIjcVnWaRzAfBgNVHSMEGDAWgBQ1/5Awa0en3gMH8OM1 tNx/J96k+zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGAGA1UdHwRZMFcwVaBT oFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSElKSUNP TFREL05mLVFNR3RIcDk0REJfRGpOYlRjZnlmZXBQcy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvTmYtUU1HdEhwOTREQl9Eak5iVGNmeWZlcFBzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgaAGCCsGAQUFBwELBIGTMIGQMFsGCCsGAQUFBzALhk9yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJSklDT0xURC9xM0tYWXdsWk9U QW8zTy1jQXdTSTNGWjFta2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAu dHduaWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIA AjAHAwUAJAFfIDANBgkqhkiG9w0BAQsFAAOCAQEAANU++b9GL8NvrQNsDGDrt42q kIHtSykMTrT5If4j8dY7OCgJM46eZDvp8LW/Tj5tpBe98wAec7pWSSkYdnT/gGAx pL/rfo59oVHw8Uuv+T7K7GnpyMGatV5AOGqluTAZ/lvB+VdgSkWx/wqO953y/B4x TW8ADtoW2RhBMyUNnQZzDPuxWo3EEljL5IE6ONKou8B0qBzP7z0APbBOfakSsu4M u7/EaDOEGF6pY6GIXdoRpazRUpCz2Sn0gb4xu2PNEdAxUH/NAG/U9fFJrb/3usEb VMLmSXw/AIWbjb6AGptZaX5ELNrnKmuB6n9lFZ+VKJtIoZp5IkJj4+vo2oWrwQ== -----END CERTIFICATE-----Generated at Mon Jun 3 15:52:36 2024 by rpki-client on console-ams.rpki-client.org