$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/0FhOOqQK54oL8nORSXcnDYepuEc.roa File: 0FhOOqQK54oL8nORSXcnDYepuEc.roa (raw, json) Hash identifier: 8yQmQJlRfwtIZIGV2xG5g5CDx0mbnhpgCM+7oN3nSc8= Subject key identifier: D0:58:4E:3A:A4:0A:E7:8A:0B:F2:73:91:49:77:27:0D:87:A9:B8:47 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0DB8 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0FhOOqQK54oL8nORSXcnDYepuEc.roa Signing time: Fri 01 Sep 2023 09:25:15 +0000 ROA not before: Fri 01 Sep 2023 09:25:15 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 192.72.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 17:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3512 (0xdb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Sep 1 09:25:15 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D0584E3AA40AE78A0BF273914977270D87A9B847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:83:39:45:8d:4f:2f:c6:35:66:54:1a:56:43: 38:58:e1:01:9c:3a:05:db:3b:0f:d9:f3:14:74:d4: 64:8c:47:45:00:be:38:cd:ff:74:f5:ec:23:18:4f: f4:d6:50:ec:61:fe:3c:55:84:0c:ce:71:a6:43:f9: 79:1c:e4:1b:3f:52:da:7e:ca:de:3f:68:96:69:29: eb:8c:03:85:96:a1:f2:34:bb:43:71:a9:10:6f:98: 98:52:f0:98:f4:05:f3:ca:81:3f:b5:bc:74:28:c4: e4:e0:f8:90:f3:33:eb:4d:f7:bf:5d:30:f5:e6:9b: 15:85:72:49:87:4f:7e:71:9e:d6:0d:85:a6:54:4a: 06:2a:34:31:20:51:73:60:1c:dd:69:38:de:ed:bd: 56:22:bc:dd:d9:cb:2c:38:6e:a8:f9:8c:c1:2c:fb: 55:d6:3f:9b:06:fd:c7:7f:55:5f:43:9e:96:af:94: 33:41:56:85:91:8a:d4:be:96:d7:ad:5b:2b:7a:0f: 8d:7c:4c:68:de:e4:79:18:d1:be:fb:65:bb:2d:d1: f4:ad:37:91:e3:f8:9f:b4:9d:7e:10:d2:fb:d4:f4: 5e:79:d0:28:23:32:41:32:c1:3d:81:00:8f:ba:d6: 18:1f:ea:ff:05:77:e7:c5:51:72:65:22:7d:a5:dc: 94:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:58:4E:3A:A4:0A:E7:8A:0B:F2:73:91:49:77:27:0D:87:A9:B8:47 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/0FhOOqQK54oL8nORSXcnDYepuEc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.8.0/21 Signature Algorithm: sha256WithRSAEncryption 11:d2:c0:4d:5e:60:0c:d6:6d:a9:cc:72:bb:48:94:af:df:73: 8c:68:58:36:cf:e6:e5:5c:e6:8d:3d:8c:24:ca:c0:40:b4:8c: ee:35:fd:11:1b:3a:96:1a:c7:3d:8c:ef:91:06:0b:f1:43:0f: 20:08:56:11:a4:ce:28:a1:37:57:6b:8f:3e:de:b2:cb:52:eb: 18:31:2e:e5:02:f9:34:97:3d:6f:d9:51:56:c2:98:40:8f:e0: 56:a9:6b:18:4f:6e:45:45:31:1d:43:3f:20:1a:0d:f4:d0:05: c0:41:0b:21:e0:a5:79:83:bd:53:a5:26:b5:a7:9a:89:e8:55: 92:e1:e1:7f:14:36:c5:86:b3:cf:cd:96:5c:77:e5:f0:f6:cb: c4:69:8c:8f:fb:c7:57:25:80:5d:1f:f8:d3:e7:1e:29:6d:fa: b6:45:1b:87:2c:40:03:0f:d3:15:33:08:81:88:64:dd:60:21: a1:68:b2:5e:1d:9b:88:d0:e2:a8:a2:60:43:e5:4b:06:62:f3: 25:7e:0a:40:d6:cd:c8:12:de:9f:a7:cf:9d:30:dd:20:a2:11: 82:6b:b5:07:30:c5:7d:d9:6f:d5:bc:28:dd:4f:99:42:60:68: 56:b2:8a:ce:d4:e4:28:4b:a7:7d:b9:f3:4f:de:54:01:95:da: b5:19:87:2f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDbgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMzA5MDEw OTI1MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQwNTg0RTNBQTQwQUU3 OEEwQkYyNzM5MTQ5NzcyNzBEODdBOUI4NDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKgzlFjU8vxjVmVBpWQzhY4QGcOgXbOw/Z8xR01GSMR0UAvjjN /3T17CMYT/TWUOxh/jxVhAzOcaZD+Xkc5Bs/Utp+yt4/aJZpKeuMA4WWofI0u0Nx qRBvmJhS8Jj0BfPKgT+1vHQoxOTg+JDzM+tN979dMPXmmxWFckmHT35xntYNhaZU SgYqNDEgUXNgHN1pON7tvVYivN3Zyyw4bqj5jMEs+1XWP5sG/cd/VV9DnpavlDNB VoWRitS+ltetWyt6D418TGje5HkY0b77Zbst0fStN5Hj+J+0nX4Q0vvU9F550Cgj MkEywT2BAI+61hgf6v8Fd+fFUXJlIn2l3JTJAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU0FhOOqQK54oL8nORSXcnDYepuEcwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMEZoT09xUUs1NG9MOG5PUlNYY25E WWVwdUVjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8BICDAN BgkqhkiG9w0BAQsFAAOCAQEAEdLATV5gDNZtqcxyu0iUr99zjGhYNs/m5VzmjT2M JMrAQLSM7jX9ERs6lhrHPYzvkQYL8UMPIAhWEaTOKKE3V2uPPt6yy1LrGDEu5QL5 NJc9b9lRVsKYQI/gVqlrGE9uRUUxHUM/IBoN9NAFwEELIeCleYO9U6UmtaeaiehV kuHhfxQ2xYazz82WXHfl8PbLxGmMj/vHVyWAXR/40+ceKW36tkUbhyxAAw/TFTMI gYhk3WAhoWiyXh2biNDiqKJgQ+VLBmLzJX4KQNbNyBLen6fPnTDdIKIRgmu1BzDF fdlv1bwo3U+ZQmBoVrKKztTkKEunfbnzT95UAZXatRmHLw== -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:37 2024 by rpki-client on console-ams.rpki-client.org