$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/0YP2k5NBiMIPR4E5lAdMca7qscE.roa File: 0YP2k5NBiMIPR4E5lAdMca7qscE.roa (raw, json) Hash identifier: d5QWOlDG4LBkysKROmPQ+ivUY5pPxkxDPJmmRLvMk4U= Subject key identifier: D1:83:F6:93:93:41:88:C2:0F:47:81:39:94:07:4C:71:AE:EA:B1:C1 Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Certificate serial: 0B40 Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/0YP2k5NBiMIPR4E5lAdMca7qscE.roa Signing time: Fri 01 Sep 2023 10:17:06 +0000 ROA not before: Fri 01 Sep 2023 10:17:06 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131600 IP address blocks: 2403:a3c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 13:13:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2880 (0xb40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Validity Not Before: Sep 1 10:17:06 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D183F693934188C20F47813994074C71AEEAB1C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0f:e2:c6:77:64:68:08:0a:51:a1:81:cd:b5: f1:fa:ee:80:b9:d8:12:4f:da:0a:be:3d:49:35:df: 7e:c0:bd:f2:47:27:fb:ed:b1:53:e1:3e:cd:af:a4: 94:d3:71:b8:b1:d7:c6:32:09:8d:65:fd:ce:a1:2c: b3:d9:f6:9f:1e:6a:aa:87:1e:50:68:fe:7f:e7:c8: 4f:21:56:ef:dc:9a:cb:fc:f9:53:82:11:26:4e:94: f5:1f:d8:df:d1:f1:2b:87:73:fe:d3:37:2d:18:51: a5:86:11:26:68:90:5e:42:e4:40:58:5a:7c:c0:ae: fb:65:98:c5:d4:e0:d3:2a:de:5b:82:dd:0d:84:c0: 6e:b4:c1:42:29:2c:a7:01:81:dc:57:1e:c9:28:d7: c3:48:11:09:d2:10:b1:87:26:e2:25:f7:af:5c:df: 8e:e2:7f:09:0e:61:9d:b3:9b:e8:83:43:93:11:ec: 01:6f:03:de:e4:dd:d6:48:84:58:cb:44:39:77:61: aa:9e:69:91:4e:2a:af:3a:49:7c:f9:36:01:19:4c: 71:d2:7f:67:7c:3b:87:02:d2:5b:a4:c3:88:c2:e9: 0c:a7:c1:a4:1d:19:1e:bc:19:ce:c0:9e:fb:e4:6d: 6f:ee:cd:3b:01:25:a9:32:27:5b:e2:a5:82:c0:0c: a8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:83:F6:93:93:41:88:C2:0F:47:81:39:94:07:4C:71:AE:EA:B1:C1 X509v3 Authority Key Identifier: keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/0YP2k5NBiMIPR4E5lAdMca7qscE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:a3c0::/32 Signature Algorithm: sha256WithRSAEncryption 9f:26:ec:05:5f:c5:41:60:5c:c2:0f:3c:be:34:31:1a:08:01: 1e:ae:07:dc:63:e0:09:06:bc:5a:27:5f:22:fe:b7:eb:ae:bf: bf:80:0a:7c:c0:aa:ac:d9:db:03:76:3f:62:c4:f3:f6:81:a4: 50:25:32:85:23:89:53:84:5b:77:48:41:61:98:94:d8:35:40: 38:33:88:bb:b3:43:ab:f1:bf:04:0f:07:8c:c6:e7:e2:f5:78: 75:04:d2:99:d4:d4:53:90:98:8c:6c:f9:07:72:e6:6a:c8:12: 6c:22:35:8c:7a:ca:c4:71:2f:3b:0a:b1:ef:dd:f9:72:ab:ce: 1e:5f:35:cd:7a:64:a6:4e:fb:98:39:bc:46:5b:83:06:06:ad: 7b:c7:1c:29:ed:2f:75:da:dd:04:e5:c3:64:d0:73:c6:ec:cc: 37:32:c1:ab:0b:af:a6:04:11:74:2a:43:5d:cf:52:0a:cb:15: fc:de:3d:1c:9f:e6:4c:e3:92:a6:5e:4d:e3:c6:66:c5:00:7e: 26:73:b2:b1:a0:c4:75:59:f4:3a:99:7d:5a:47:14:8a:0b:ad: 20:35:e8:56:e4:39:8e:cd:64:1e:ea:8a:be:a7:98:ec:dc:66: be:05:9e:53:fb:7a:f4:d1:05:6d:eb:4a:42:6a:ca:51:a1:cd: 01:df:e6:65 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICC0AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzkw QTA0MTJGOEI1RUM0RjNGOUZEQkIzQTYxMjcwREJEMEVBOUU2QjAeFw0yMzA5MDEx MDE3MDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQxODNGNjkzOTM0MTg4 QzIwRjQ3ODEzOTk0MDc0QzcxQUVFQUIxQzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaD+LGd2RoCApRoYHNtfH67oC52BJP2gq+PUk1337AvfJHJ/vt sVPhPs2vpJTTcbix18YyCY1l/c6hLLPZ9p8eaqqHHlBo/n/nyE8hVu/cmsv8+VOC ESZOlPUf2N/R8SuHc/7TNy0YUaWGESZokF5C5EBYWnzArvtlmMXU4NMq3luC3Q2E wG60wUIpLKcBgdxXHsko18NIEQnSELGHJuIl969c347ifwkOYZ2zm+iDQ5MR7AFv A97k3dZIhFjLRDl3YaqeaZFOKq86SXz5NgEZTHHSf2d8O4cC0lukw4jC6QynwaQd GR68Gc7AnvvkbW/uzTsBJakyJ1vipYLADKjNAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU0YP2k5NBiMIPR4E5lAdMca7qscEwHwYDVR0jBBgwFoAUOQoEEvi17E8/n9uz phJw29DqnmswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JR0FU RS9PUW9FRXZpMTdFOF9uOXV6cGhKdzI5RHFubXMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL09Rb0VFdmkxN0U4X245dXpwaEp3MjlEcW5tcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1VOSUdBVEUvMFlQMms1TkJpTUlQUjRF NWxBZE1jYTdxc2NFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQDo8AwDQYJKoZIhvcNAQELBQADggEBAJ8m7AVfxUFgXMIPPL40MRoIAR6uB9xj 4AkGvFonXyL+t+uuv7+ACnzAqqzZ2wN2P2LE8/aBpFAlMoUjiVOEW3dIQWGYlNg1 QDgziLuzQ6vxvwQPB4zG5+L1eHUE0pnU1FOQmIxs+Qdy5mrIEmwiNYx6ysRxLzsK se/d+XKrzh5fNc16ZKZO+5g5vEZbgwYGrXvHHCntL3Xa3QTlw2TQc8bszDcywasL r6YEEXQqQ13PUgrLFfzePRyf5kzjkqZeTePGZsUAfiZzsrGgxHVZ9DqZfVpHFIoL rSA16FbkOY7NZB7qir6nmOzcZr4FnlP7evTRBW3rSkJqylGhzQHf5mU= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:08 2024 by rpki-client on console-fra.rpki-client.org