$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/1uUjoQCtMg4TFj0pycw2WIvN268.roa File: 1uUjoQCtMg4TFj0pycw2WIvN268.roa (raw, json) Hash identifier: /2L8uF69NUcQxXhjEg652ZMD8cz7XuKpjOGh4BId4ZA= Subject key identifier: D6:E5:23:A1:00:AD:32:0E:13:16:3D:29:C9:CC:36:58:8B:CD:DB:AF Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 134F Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1uUjoQCtMg4TFj0pycw2WIvN268.roa Signing time: Fri 01 Sep 2023 09:24:46 +0000 ROA not before: Fri 01 Sep 2023 09:24:46 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131597 IP address blocks: 106.105.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4943 (0x134f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:46 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D6E523A100AD320E13163D29C9CC36588BCDDBAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7e:ca:f2:b1:e7:e2:c8:f9:3e:ca:89:bc:a7: 64:23:bf:ea:ab:22:d2:9b:8f:3b:61:16:4f:7d:74: ed:a2:e8:c9:95:9c:86:84:8f:52:00:54:41:b9:0f: b8:0d:ae:df:98:4f:3a:91:9a:a9:9f:ec:8a:ab:39: 9e:6c:20:7e:21:3a:f9:47:0a:66:26:ef:9b:a8:d0: 06:aa:1b:53:0d:d3:ad:83:25:5c:f5:bf:ac:fa:b8: f7:33:b7:fa:5e:eb:62:74:c7:a7:f8:f9:34:b6:a0: 73:c0:4a:21:07:4d:00:05:0e:d7:36:ff:27:1b:dc: 98:82:0f:13:4f:14:c5:74:fe:33:d8:e4:00:f2:e8: 74:a6:5e:76:77:33:bf:9b:1b:11:6f:0e:0c:03:52: ae:01:4f:64:b4:af:76:2f:54:9c:f3:da:be:8f:54: 12:9b:5d:5a:48:ad:66:36:d4:82:46:1a:37:ae:e2: 15:86:0f:2a:fc:26:3c:af:2f:3c:4b:17:37:c9:d1: d6:27:5c:09:b5:e3:88:63:63:73:1a:29:47:3a:23: 93:83:78:93:14:0d:bf:e1:c1:58:45:45:51:cd:92: 57:a1:5c:f0:78:e7:6f:31:59:41:53:24:79:39:a4: b4:27:96:76:a3:3f:90:3c:c4:99:5b:eb:16:c6:48: f5:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:E5:23:A1:00:AD:32:0E:13:16:3D:29:C9:CC:36:58:8B:CD:DB:AF X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1uUjoQCtMg4TFj0pycw2WIvN268.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.232.0/21 Signature Algorithm: sha256WithRSAEncryption 9a:94:23:23:5f:7e:a9:56:a1:13:ba:8a:18:fb:0b:fa:87:10: 28:9a:fd:75:99:9f:c4:80:5d:1d:17:91:9d:b4:fc:86:fc:6e: 77:84:24:cc:92:aa:ad:da:38:bd:46:43:92:74:2b:a4:1a:a3: 91:57:93:4d:86:3d:81:b2:d5:36:15:08:8a:03:50:4a:3c:78: 18:33:18:47:75:8a:2e:7e:51:5f:d8:b3:ed:92:59:44:c3:03: 04:47:bb:48:a8:c8:cc:4b:35:56:a7:42:a7:08:d8:e6:02:74: 59:30:b4:fa:27:82:21:14:0b:9c:0d:5e:15:c4:8f:c2:76:31: 35:8e:66:17:03:a1:0f:fc:48:6b:60:84:c0:83:53:94:02:86: 27:0a:28:73:c0:8a:68:08:07:4c:df:97:68:fe:6c:25:aa:37: af:71:d7:40:e0:66:dd:90:55:3b:6f:6a:cc:2d:b1:3e:20:cd: de:d7:7d:33:3e:9b:71:64:62:5a:f5:36:71:a2:58:72:c0:ed: db:bb:34:e0:77:e6:a2:4e:62:7f:54:22:cc:66:e9:d8:95:a9: ce:d9:33:b0:45:4e:74:6f:c4:0a:a1:d9:96:06:aa:d1:af:45: ce:a5:13:81:2d:fb:30:04:6a:c0:11:88:f6:ac:f3:43:0a:4a: 2e:47:ba:16 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE08wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ2RTUyM0ExMDBBRDMy MEUxMzE2M0QyOUM5Q0MzNjU4OEJDRERCQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsfsrysefiyPk+yom8p2Qjv+qrItKbjzthFk99dO2i6MmVnIaE j1IAVEG5D7gNrt+YTzqRmqmf7IqrOZ5sIH4hOvlHCmYm75uo0AaqG1MN062DJVz1 v6z6uPczt/pe62J0x6f4+TS2oHPASiEHTQAFDtc2/ycb3JiCDxNPFMV0/jPY5ADy 6HSmXnZ3M7+bGxFvDgwDUq4BT2S0r3YvVJzz2r6PVBKbXVpIrWY21IJGGjeu4hWG Dyr8JjyvLzxLFzfJ0dYnXAm144hjY3MaKUc6I5ODeJMUDb/hwVhFRVHNklehXPB4 528xWUFTJHk5pLQnlnajP5A8xJlb6xbGSPWXAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU1uUjoQCtMg4TFj0pycw2WIvN268wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMXVVam9RQ3RNZzRURmowcHljdzJX SXZOMjY4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2pp6DAN BgkqhkiG9w0BAQsFAAOCAQEAmpQjI19+qVahE7qKGPsL+ocQKJr9dZmfxIBdHReR nbT8hvxud4QkzJKqrdo4vUZDknQrpBqjkVeTTYY9gbLVNhUIigNQSjx4GDMYR3WK Ln5RX9iz7ZJZRMMDBEe7SKjIzEs1VqdCpwjY5gJ0WTC0+ieCIRQLnA1eFcSPwnYx NY5mFwOhD/xIa2CEwINTlAKGJwooc8CKaAgHTN+XaP5sJao3r3HXQOBm3ZBVO29q zC2xPiDN3td9Mz6bcWRiWvU2caJYcsDt27s04Hfmok5if1QizGbp2JWpztkzsEVO dG/ECqHZlgaq0a9FzqUTgS37MARqwBGI9qzzQwpKLke6Fg== -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:37 2024 by rpki-client on console-ams.rpki-client.org