$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/-GO6GlMmuXcJL6bR4QyPvEYfZ3Q.roa File: -GO6GlMmuXcJL6bR4QyPvEYfZ3Q.roa (raw, json) Hash identifier: xmXUAcILBU31qGIFUX8Jkjn7LXEui1LFiYZqEn7WT6w= Subject key identifier: F8:63:BA:1A:53:26:B9:77:09:2F:A6:D1:E1:0C:8F:BC:46:1F:67:74 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0DAB Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-GO6GlMmuXcJL6bR4QyPvEYfZ3Q.roa Signing time: Fri 01 Sep 2023 09:24:30 +0000 ROA not before: Fri 01 Sep 2023 09:24:30 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 192.72.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 17:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3499 (0xdab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Sep 1 09:24:30 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F863BA1A5326B977092FA6D1E10C8FBC461F6774 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:35:dc:f1:f1:54:0c:87:65:e7:02:90:a1:40: b6:d4:64:e3:f7:20:b0:3e:41:0f:fd:a1:c3:e7:3b: 37:d2:eb:50:65:4c:83:f3:53:ee:d7:95:f2:fe:88: e3:e4:1e:f5:22:40:47:42:0a:77:9b:87:cf:00:6b: 09:92:c0:77:5d:04:5f:61:9d:7b:e0:3b:a0:66:74: 6b:a2:59:4e:ed:d6:4c:0c:6d:e4:d0:af:ef:54:a3: a2:0a:8b:ac:39:8d:55:32:e3:ad:78:0e:e3:17:8f: 1b:31:50:41:c3:20:40:4b:6a:be:e3:a9:fb:9d:87: 31:ab:36:e0:4b:d8:2e:38:70:4d:7c:25:b0:61:89: 17:23:7a:13:90:88:f6:71:31:74:39:b0:83:bb:03: 57:f3:84:32:e3:35:f4:5a:95:09:8b:83:d5:e5:a2: 47:1b:c5:53:8c:9d:63:06:9c:b3:04:c1:0d:a4:0f: 8b:08:e7:54:4c:06:2e:62:0b:82:19:b4:a4:f3:e8: 48:fb:84:bd:40:1c:9e:03:d6:c8:11:05:16:ce:9b: 7a:74:47:ae:8c:e4:cf:cf:cf:64:f6:5d:0a:3d:ec: 70:ff:35:06:a6:7b:9c:32:3e:f6:a6:67:b3:b7:42: dc:09:c3:37:b0:c1:3c:4b:a5:ae:59:9a:2c:26:b4: 14:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:63:BA:1A:53:26:B9:77:09:2F:A6:D1:E1:0C:8F:BC:46:1F:67:74 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-GO6GlMmuXcJL6bR4QyPvEYfZ3Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.240.0/21 Signature Algorithm: sha256WithRSAEncryption 0f:b2:82:11:2c:83:7a:5b:78:40:84:65:44:8d:db:cb:74:4e: 3f:94:b9:00:cc:5d:a6:81:c8:82:c9:6c:19:b1:6a:a1:77:57: 8d:d7:0e:94:99:b0:90:51:43:6e:f6:b5:fc:6d:79:ab:33:87: c1:9e:11:c2:96:02:64:09:c9:3c:8a:c2:1a:9f:d8:20:44:a7: b6:56:9c:b8:e9:8d:b2:cd:ac:1d:93:8b:c2:6f:1f:2b:ab:f4: 85:b0:23:68:3b:6e:fb:ae:8f:1c:20:39:91:4a:d9:81:32:41: 8a:a2:62:53:54:b2:29:4f:2d:36:bc:a2:30:03:35:dd:bf:e7: 9f:dc:b9:1f:5f:16:58:7f:75:9f:d9:f7:be:25:d3:7b:28:7d: c5:67:61:09:bd:ae:80:c6:a9:b6:05:6e:f0:20:06:90:62:e5: 82:f5:25:53:27:90:ed:10:0b:b8:92:9e:0f:44:f9:25:10:b7: a9:a9:45:04:36:f0:40:fb:4d:52:8d:f0:04:aa:84:cb:b7:7d: ee:ed:9d:57:4f:28:dc:71:c8:0e:f7:11:95:4f:d3:79:56:ec: 44:d2:e6:52:18:b4:57:91:0a:02:c5:7e:3f:b1:b4:06:04:05: 97:b7:08:10:8f:93:5a:94:e0:00:52:dd:e6:b3:07:85:d7:c5: 72:53:77:7d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDaswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMzA5MDEw OTI0MzBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY4NjNCQTFBNTMyNkI5 NzcwOTJGQTZEMUUxMEM4RkJDNDYxRjY3NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkNdzx8VQMh2XnApChQLbUZOP3ILA+QQ/9ocPnOzfS61BlTIPz U+7XlfL+iOPkHvUiQEdCCnebh88AawmSwHddBF9hnXvgO6BmdGuiWU7t1kwMbeTQ r+9Uo6IKi6w5jVUy4614DuMXjxsxUEHDIEBLar7jqfudhzGrNuBL2C44cE18JbBh iRcjehOQiPZxMXQ5sIO7A1fzhDLjNfRalQmLg9XlokcbxVOMnWMGnLMEwQ2kD4sI 51RMBi5iC4IZtKTz6Ej7hL1AHJ4D1sgRBRbOm3p0R66M5M/Pz2T2XQo97HD/NQam e5wyPvamZ7O3QtwJwzewwTxLpa5ZmiwmtBTJAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU+GO6GlMmuXcJL6bR4QyPvEYfZ3QwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvLUdPNkdsTW11WGNKTDZiUjRReVB2 RVlmWjNRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8BI8DAN BgkqhkiG9w0BAQsFAAOCAQEAD7KCESyDelt4QIRlRI3by3ROP5S5AMxdpoHIgsls GbFqoXdXjdcOlJmwkFFDbva1/G15qzOHwZ4RwpYCZAnJPIrCGp/YIESntlacuOmN ss2sHZOLwm8fK6v0hbAjaDtu+66PHCA5kUrZgTJBiqJiU1SyKU8tNryiMAM13b/n n9y5H18WWH91n9n3viXTeyh9xWdhCb2ugMaptgVu8CAGkGLlgvUlUyeQ7RALuJKe D0T5JRC3qalFBDbwQPtNUo3wBKqEy7d97u2dV08o3HHIDvcRlU/TeVbsRNLmUhi0 V5EKAsV+P7G0BgQFl7cIEI+TWpTgAFLd5rMHhdfFclN3fQ== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org