$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/UGwiUtsxMD98w7VaxyefXJw-uxw.roa File: UGwiUtsxMD98w7VaxyefXJw-uxw.roa (raw, json) Hash identifier: 0PYqmnIdHOJ5yJYLkZ7PWOaB5gSvS5+bZudC28tKlLs= Subject key identifier: 50:6C:22:52:DB:31:30:3F:7C:C3:B5:5A:C7:27:9F:5C:9C:3E:BB:1C Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1176 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/UGwiUtsxMD98w7VaxyefXJw-uxw.roa Signing time: Fri 01 Sep 2023 03:14:23 +0000 ROA not before: Fri 01 Sep 2023 03:14:23 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131621 IP address blocks: 2001:de4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 21:31:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4470 (0x1176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Sep 1 03:14:23 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=506C2252DB31303F7CC3B55AC7279F5C9C3EBB1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:22:89:d1:0a:64:b0:0d:ae:aa:24:93:19:8b: e9:25:7c:18:7d:60:e0:ba:13:c4:fa:a0:6e:2e:13: 11:b1:cc:b4:aa:96:1e:44:f5:76:d7:a2:e7:00:bf: 80:db:85:39:7b:1d:ad:df:55:d3:70:44:17:49:4e: 64:bf:d0:9c:6e:5c:6c:d4:31:35:af:d7:27:76:bb: c8:5e:ca:c9:eb:2f:fe:2e:ee:5f:bb:5b:0f:3a:79: 0f:c8:14:42:ee:98:1a:84:2c:7b:fa:69:30:69:27: d8:02:cd:40:44:a9:97:3c:40:e2:3a:82:6b:0f:f6: be:eb:08:0b:3f:f9:b6:26:a1:b6:b9:a2:de:3a:db: fb:4a:43:a1:40:62:1c:05:8b:8a:f2:a6:62:69:d2: 3c:aa:a9:ee:33:ab:50:2d:8b:1e:8e:61:ec:be:b3: 35:f0:ff:67:36:4b:1a:68:01:13:66:39:7c:a0:3f: 73:35:63:9e:a5:28:69:78:3d:97:93:f5:be:c9:a6: 8e:4b:e6:64:c7:45:5c:78:63:0e:b8:e6:a0:ae:81: 4f:f0:87:ef:da:d5:b8:08:b4:0d:44:e5:c2:a3:e6: ea:26:9d:d0:52:ab:92:31:d2:8e:5c:07:7c:e8:7c: 08:39:d9:43:e4:e9:27:07:77:3c:71:b0:0b:fb:76: 99:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:6C:22:52:DB:31:30:3F:7C:C3:B5:5A:C7:27:9F:5C:9C:3E:BB:1C X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/UGwiUtsxMD98w7VaxyefXJw-uxw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:de4::/48 Signature Algorithm: sha256WithRSAEncryption 02:97:d1:20:07:9f:13:e4:41:c6:b5:16:ef:f7:a8:3a:ed:36: 39:72:63:78:ca:33:82:bf:8a:b4:c9:74:ec:54:63:ce:4b:1d: a0:d0:f3:31:10:1d:03:a6:06:33:3c:bd:75:22:31:3c:f9:1a: f0:da:39:af:09:98:72:b5:22:88:86:77:cc:83:27:e8:25:39: 5f:5d:fe:39:7d:2f:73:cb:5a:a0:b6:29:b5:67:79:ec:e5:41: 93:b7:ed:1c:10:5c:05:2a:d0:ce:85:db:6e:a5:ab:1e:00:05: 4c:c2:94:94:8d:19:74:ba:b2:49:2a:25:5f:77:ac:df:5b:77: 4f:3a:b6:19:2e:17:1f:a3:28:ab:c6:2c:b0:3e:f9:3f:6f:40: b3:50:98:72:1a:ab:d5:2a:09:1d:76:7f:e4:81:5d:8b:5b:bf: 2c:95:b9:80:f7:c1:fc:e6:70:1d:c4:2c:ff:e6:01:b0:c6:de: 8a:d1:6f:de:ae:70:0a:1c:a5:23:a8:73:a9:7f:d6:62:72:d3: bc:e5:e0:96:a8:61:31:38:ff:a8:d2:ca:4b:56:84:f8:ab:71: a9:94:0b:7a:a5:02:81:11:fa:12:67:d9:89:fe:b9:2d:b9:89: 6d:17:ce:90:34:57:c5:bb:ed:2c:e1:bb:16:6a:52:71:f2:69: e2:e1:8c:2f -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICEXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yMzA5MDEw MzE0MjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDUwNkMyMjUyREIzMTMw M0Y3Q0MzQjU1QUM3Mjc5RjVDOUMzRUJCMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDIonRCmSwDa6qJJMZi+klfBh9YOC6E8T6oG4uExGxzLSqlh5E 9XbXoucAv4DbhTl7Ha3fVdNwRBdJTmS/0JxuXGzUMTWv1yd2u8heysnrL/4u7l+7 Ww86eQ/IFELumBqELHv6aTBpJ9gCzUBEqZc8QOI6gmsP9r7rCAs/+bYmoba5ot46 2/tKQ6FAYhwFi4rypmJp0jyqqe4zq1Atix6OYey+szXw/2c2SxpoARNmOXygP3M1 Y56lKGl4PZeT9b7Jpo5L5mTHRVx4Yw645qCugU/wh+/a1bgItA1E5cKj5uomndBS q5Ix0o5cB3zofAg52UPk6ScHdzxxsAv7dpnJAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUUGwiUtsxMD98w7VaxyefXJw+uxwwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9VR3dpVXRzeE1EOTh3N1ZheHll ZlhKdy11eHcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 5AAAMA0GCSqGSIb3DQEBCwUAA4IBAQACl9EgB58T5EHGtRbv96g67TY5cmN4yjOC v4q0yXTsVGPOSx2g0PMxEB0DpgYzPL11IjE8+Rrw2jmvCZhytSKIhnfMgyfoJTlf Xf45fS9zy1qgtim1Z3ns5UGTt+0cEFwFKtDOhdtupaseAAVMwpSUjRl0urJJKiVf d6zfW3dPOrYZLhcfoyirxiywPvk/b0CzUJhyGqvVKgkddn/kgV2LW78slbmA98H8 5nAdxCz/5gGwxt6K0W/ernAKHKUjqHOpf9ZictO85eCWqGExOP+o0spLVoT4q3Gp lAt6pQKBEfoSZ9mJ/rktuYltF86QNFfFu+0s4bsWalJx8mni4Ywv -----END CERTIFICATE-----Generated at Sun Jun 23 13:19:23 2024 by rpki-client on console-fra.rpki-client.org