$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/201drGZ3SaZLdZWdNIP6ONlBnus.roa File: 201drGZ3SaZLdZWdNIP6ONlBnus.roa (raw, json) Hash identifier: GCFjYnINoEUiHdcLuFZS+RWdDhTKP53ETHar4fX9gwY= Subject key identifier: DB:4D:5D:AC:66:77:49:A6:4B:75:95:9D:34:83:FA:38:D9:41:9E:EB Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13BA Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/201drGZ3SaZLdZWdNIP6ONlBnus.roa Signing time: Fri 01 Sep 2023 09:25:21 +0000 ROA not before: Fri 01 Sep 2023 09:25:21 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38851 IP address blocks: 122.147.164.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 29 Jun 2024 22:33:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5050 (0x13ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:21 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=DB4D5DAC667749A64B75959D3483FA38D9419EEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:05:73:12:98:c8:f9:94:a9:de:71:d4:be:5e: 21:b6:45:63:72:77:e5:5f:80:51:a5:1b:62:57:53: 33:b2:bf:b2:87:b4:42:e3:9c:87:36:1e:7f:ff:63: 4c:6c:e9:de:d9:9f:54:33:37:53:a7:72:1e:bb:18: fb:11:59:2a:10:51:7f:75:d4:c9:74:6b:1f:4d:f6: 2c:d8:0b:4c:6c:51:a1:59:57:74:07:84:a9:0a:78: ca:08:11:53:de:04:e7:fe:c3:81:11:c0:6f:35:ec: 80:cc:6b:38:1c:63:2b:34:1a:84:e8:b0:bc:38:b8: a4:ef:11:a8:d9:18:58:f1:3b:59:23:23:c0:3b:c8: 88:29:13:93:6c:79:66:99:09:eb:c9:e6:1b:09:b6: ac:ac:b2:a1:72:e4:88:9c:7e:aa:28:3a:c6:20:ed: 8a:ef:ab:e0:d4:64:d0:7c:d2:99:d2:a6:8a:17:73: 3e:98:6a:fd:0b:cf:ba:c6:b3:81:cd:9e:3f:68:3e: 9e:e5:b0:ce:62:20:32:8c:a2:81:d2:63:00:88:8c: 85:63:48:69:2b:3b:0e:4c:ff:39:25:1d:76:67:04: 91:c6:76:d8:26:7a:c5:41:50:be:77:af:d8:43:5d: 56:a9:b1:30:80:9f:3a:07:4e:b8:e0:2b:f6:13:1e: 4a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:4D:5D:AC:66:77:49:A6:4B:75:95:9D:34:83:FA:38:D9:41:9E:EB X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/201drGZ3SaZLdZWdNIP6ONlBnus.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.164.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:9a:ee:1e:a6:e1:34:a3:f7:98:6e:28:35:b8:f2:d4:90:30: 6d:a2:fe:f5:f9:2c:53:1b:ab:a5:c1:ee:16:7f:e9:cc:ee:ab: a8:9e:8a:d2:a9:ef:5d:d3:8c:e8:e7:d5:21:03:30:37:42:ab: a9:ac:9e:a5:a0:15:36:ae:0a:a7:d6:62:80:58:4c:bf:62:04: ad:c5:62:5e:18:9e:3e:da:91:97:9d:ee:b9:ea:04:8c:a5:d5: fc:ee:31:e6:20:a5:f7:d6:f6:36:87:dc:eb:3f:9d:13:18:6b: e0:e6:6e:08:ca:0a:81:7a:f1:4a:0f:56:79:a2:a4:da:5a:73: 1b:19:a6:ba:9f:ea:46:71:fb:bc:b7:12:f9:40:30:4b:59:c1: 5b:13:6b:d6:46:49:cb:d6:76:31:8f:8c:71:db:9d:6c:fd:72: 17:8d:a5:a9:38:09:53:de:64:90:58:97:60:1a:b8:9c:74:bc: d2:e5:36:6e:cd:ff:2e:55:3b:58:0d:09:b5:6f:71:6f:62:9b: ac:24:4d:34:1b:94:2d:d9:95:de:b5:e4:e8:53:83:eb:59:07: d7:b3:99:df:07:9d:cb:10:22:23:64:4b:ef:ff:3b:43:d5:7e: 7c:fe:cb:9b:f1:9a:c0:b6:c8:2b:ac:44:ea:00:8d:7d:98:18: 63:b6:6e:70 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE7owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MjFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKERCNEQ1REFDNjY3NzQ5 QTY0Qjc1OTU5RDM0ODNGQTM4RDk0MTlFRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZBXMSmMj5lKnecdS+XiG2RWNyd+VfgFGlG2JXUzOyv7KHtELj nIc2Hn//Y0xs6d7Zn1QzN1Onch67GPsRWSoQUX911Ml0ax9N9izYC0xsUaFZV3QH hKkKeMoIEVPeBOf+w4ERwG817IDMazgcYys0GoTosLw4uKTvEajZGFjxO1kjI8A7 yIgpE5NseWaZCevJ5hsJtqyssqFy5IicfqooOsYg7Yrvq+DUZNB80pnSpooXcz6Y av0Lz7rGs4HNnj9oPp7lsM5iIDKMooHSYwCIjIVjSGkrOw5M/zklHXZnBJHGdtgm esVBUL53r9hDXVapsTCAnzoHTrjgK/YTHkq7AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU201drGZ3SaZLdZWdNIP6ONlBnuswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMjAxZHJHWjNTYVpMZFpXZE5JUDZP TmxCbnVzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXqTpDAN BgkqhkiG9w0BAQsFAAOCAQEATJruHqbhNKP3mG4oNbjy1JAwbaL+9fksUxurpcHu Fn/pzO6rqJ6K0qnvXdOM6OfVIQMwN0KrqayepaAVNq4Kp9ZigFhMv2IErcViXhie PtqRl53uueoEjKXV/O4x5iCl99b2Nofc6z+dExhr4OZuCMoKgXrxSg9WeaKk2lpz Gxmmup/qRnH7vLcS+UAwS1nBWxNr1kZJy9Z2MY+McdudbP1yF42lqTgJU95kkFiX YBq4nHS80uU2bs3/LlU7WA0JtW9xb2KbrCRNNBuULdmV3rXk6FOD61kH17OZ3wed yxAiI2RL7/87Q9V+fP7Lm/GawLbIK6xE6gCNfZgYY7ZucA== -----END CERTIFICATE-----Generated at Sat Jun 29 02:16:55 2024 by rpki-client on console-fra.rpki-client.org