$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/bwzra3P8STqh8v63hEVhkl8Z3fo.roa File: bwzra3P8STqh8v63hEVhkl8Z3fo.roa (raw, json) Hash identifier: +1SrBczRDuBLHmvWsMxmD2OmEjc7Sdn74k9c1LEtPhc= Subject key identifier: 6F:0C:EB:6B:73:FC:49:3A:A1:F2:FE:B7:84:45:61:92:5F:19:DD:FA Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0C5B Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/bwzra3P8STqh8v63hEVhkl8Z3fo.roa Signing time: Fri 01 Sep 2023 10:20:36 +0000 ROA not before: Fri 01 Sep 2023 10:20:36 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18424 IP address blocks: 2405:8700:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 11:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3163 (0xc5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Sep 1 10:20:36 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6F0CEB6B73FC493AA1F2FEB7844561925F19DDFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ad:e6:6e:19:76:da:cb:37:0b:bd:14:f1:0c: fe:2f:2d:3e:f3:7d:51:59:8d:b8:fe:05:e4:d2:6d: f6:bb:06:c2:a9:cb:20:2c:44:58:6e:93:b7:2a:db: 6d:8a:b3:91:78:88:d4:33:f7:bd:59:73:b5:2a:f9: d9:79:e4:50:e2:65:7d:25:f1:39:f4:e4:5c:7c:aa: b3:46:6d:9b:60:c0:58:34:4b:2e:14:06:20:af:b2: bd:f2:bb:12:d4:ff:8f:3d:ad:a3:76:d1:78:f4:b6: 06:6b:ca:43:e3:8e:05:a1:10:8f:27:55:07:95:b6: 89:ea:74:23:a5:7c:43:a0:90:5c:a3:63:84:5e:72: d4:f4:00:17:2c:6c:fa:16:72:03:d2:ef:d7:ae:92: 8e:bc:5a:8e:3a:33:81:ad:3f:23:49:90:96:69:b7: 1e:cf:33:71:b9:6c:cd:3c:6c:df:be:6e:b7:85:ac: 98:57:a8:22:c6:39:05:10:28:1b:8f:ba:c8:97:91: aa:4b:14:1e:96:80:da:4a:bd:f2:97:6d:98:20:26: 12:63:d0:55:f7:c2:53:99:65:ca:da:3f:64:f0:36: 29:6c:6d:db:5a:77:00:1b:bf:b0:c8:e3:be:5d:9c: 5b:24:d6:9f:9e:b9:e6:1b:a7:43:d9:a5:d8:7b:7a: 81:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:0C:EB:6B:73:FC:49:3A:A1:F2:FE:B7:84:45:61:92:5F:19:DD:FA X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/bwzra3P8STqh8v63hEVhkl8Z3fo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:8700:3000::/48 Signature Algorithm: sha256WithRSAEncryption bf:92:cd:d0:d7:c6:06:14:76:cd:e7:a4:86:29:0a:8f:54:c0: 94:3b:e4:6d:17:d3:5a:3b:10:f9:5c:86:75:62:30:a4:00:9a: 6a:78:d3:5e:c4:bb:26:0b:ec:70:8e:77:11:63:18:b3:cd:4d: 0f:35:f0:23:ce:75:db:b3:e9:2f:4e:81:c1:34:97:89:1b:f7: ce:03:69:e0:6f:27:fe:74:5c:99:52:5e:49:b0:41:04:fd:0b: 7a:25:73:48:63:18:8f:4b:51:8a:f9:ab:1b:be:db:56:84:21: 6a:fc:85:e4:33:b9:29:c3:99:6a:6e:c5:97:b7:0e:d4:78:26: d7:4f:c3:fa:83:b9:84:4a:2f:63:94:f6:be:86:14:ec:8e:ee: 34:8d:a1:52:36:43:21:11:22:52:de:11:71:d4:d8:aa:25:ca: f7:70:da:39:d9:06:af:a7:27:8b:2b:ee:a2:15:76:d3:52:69: 6a:e1:9f:36:e5:78:d6:67:6c:a2:3c:9b:e2:4e:10:2c:db:f6: 13:3a:af:16:70:2b:ee:46:c2:50:84:60:a4:f7:92:8a:4c:d7: ed:e4:b4:b0:23:3a:39:40:2f:75:b6:99:de:2c:83:45:7e:8f: 42:a0:70:d1:39:2f:42:0b:8b:d8:11:8d:ed:f5:c4:7e:a3:c8: b0:7b:d7:a6 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDFswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yMzA5MDEx MDIwMzZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZGMENFQjZCNzNGQzQ5 M0FBMUYyRkVCNzg0NDU2MTkyNUYxOURERkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHreZuGXbayzcLvRTxDP4vLT7zfVFZjbj+BeTSbfa7BsKpyyAs RFhuk7cq222Ks5F4iNQz971Zc7Uq+dl55FDiZX0l8Tn05Fx8qrNGbZtgwFg0Sy4U BiCvsr3yuxLU/489raN20Xj0tgZrykPjjgWhEI8nVQeVtonqdCOlfEOgkFyjY4Re ctT0ABcsbPoWcgPS79euko68Wo46M4GtPyNJkJZptx7PM3G5bM08bN++breFrJhX qCLGOQUQKBuPusiXkapLFB6WgNpKvfKXbZggJhJj0FX3wlOZZcraP2TwNilsbdta dwAbv7DI475dnFsk1p+eueYbp0PZpdh7eoFlAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUbwzra3P8STqh8v63hEVhkl8Z3fowHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL2J3enJhM1A4U1Rx aDh2NjNoRVZoa2w4WjNmby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkBYcAMAAwDQYJKoZIhvcNAQELBQADggEBAL+SzdDXxgYUds3npIYpCo9U wJQ75G0X01o7EPlchnViMKQAmmp4017EuyYL7HCOdxFjGLPNTQ818CPOdduz6S9O gcE0l4kb984DaeBvJ/50XJlSXkmwQQT9C3olc0hjGI9LUYr5qxu+21aEIWr8heQz uSnDmWpuxZe3DtR4JtdPw/qDuYRKL2OU9r6GFOyO7jSNoVI2QyERIlLeEXHU2Kol yvdw2jnZBq+nJ4sr7qIVdtNSaWrhnzbleNZnbKI8m+JOECzb9hM6rxZwK+5GwlCE YKT3kopM1+3ktLAjOjlAL3W2md4sg0V+j0KgcNE5L0ILi9gRje31xH6jyLB716Y= -----END CERTIFICATE-----Generated at Thu May 2 03:38:41 2024 by rpki-client on console-ams.rpki-client.org