$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/1vBQL5ckS35RvmZj3TgMHf2TDKo.roa File: 1vBQL5ckS35RvmZj3TgMHf2TDKo.roa (raw, json) Hash identifier: 4ohaSJiy3wKmTn2yag08wTqZKpAg7uAXnRuoLMXkM8c= Subject key identifier: D6:F0:50:2F:97:24:4B:7E:51:BE:66:63:DD:38:0C:1D:FD:93:0C:AA Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0DAC Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1vBQL5ckS35RvmZj3TgMHf2TDKo.roa Signing time: Fri 01 Sep 2023 09:24:31 +0000 ROA not before: Fri 01 Sep 2023 09:24:31 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 139.175.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 17:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3500 (0xdac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Sep 1 09:24:31 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D6F0502F97244B7E51BE6663DD380C1DFD930CAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:16:12:b3:aa:96:c6:bd:58:9c:1d:a7:55:f7: b5:4b:b0:6c:d5:e4:f5:33:2e:5d:f0:0a:15:5b:f1: b1:c4:84:0c:02:d1:8c:94:61:f1:2a:ab:86:fe:9d: b2:9f:56:9d:61:d9:a1:14:a8:b0:13:6e:a3:91:44: 45:bc:bc:99:d9:11:dd:eb:bf:df:1d:dc:9b:cc:e8: d3:d5:e7:74:b6:1a:f8:6a:27:8c:06:dd:9f:3e:fe: e2:58:d3:a2:66:95:a1:53:3e:be:c7:3d:00:60:ac: ca:dd:a9:8f:f9:70:77:5a:5c:80:2f:e6:c3:70:ce: 4c:dc:af:b6:6d:95:01:55:62:d7:1d:ef:06:e7:ac: 6a:8c:51:6e:68:71:ca:da:56:8c:47:74:cc:3f:c0: 32:27:8d:18:9d:33:0f:11:22:eb:70:f1:a5:53:7b: 03:a7:b0:3c:d1:ad:c4:7a:3e:85:fe:d3:28:52:7e: 2c:6f:3c:48:14:ab:86:39:53:75:13:31:c9:e5:f2: ba:64:b7:af:74:bd:c2:c3:5e:26:41:87:d4:02:68: f1:8d:a7:52:bd:11:60:6f:e1:aa:49:c0:20:91:b7: 0c:cb:4e:8d:97:ab:ff:01:f8:88:8b:12:1d:15:46: 08:91:1f:36:73:83:08:96:6d:88:fa:4e:69:fd:9f: bc:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:F0:50:2F:97:24:4B:7E:51:BE:66:63:DD:38:0C:1D:FD:93:0C:AA X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/1vBQL5ckS35RvmZj3TgMHf2TDKo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 139.175.0.0/16 Signature Algorithm: sha256WithRSAEncryption 92:84:3e:44:93:35:c4:7b:45:6f:3d:12:13:65:0c:a9:92:d9: 74:7b:88:7e:9d:94:b6:3d:c4:5f:84:c8:b9:c8:0a:c7:e1:0d: 7f:ec:f0:58:a0:f2:9b:5e:f5:5c:f5:50:0c:df:93:36:f8:69: f2:38:e5:90:ca:a4:ca:57:71:d1:a1:db:23:a7:95:9d:e0:5f: f2:23:42:8b:f7:47:c9:b9:c5:8b:78:e2:f4:5a:b0:af:0c:25: dd:68:8c:5c:65:22:49:02:74:32:70:4e:0b:41:ef:88:ea:4c: 07:86:dd:ce:03:da:72:17:fd:0e:b2:5b:9d:bc:d2:31:f2:95: 31:f4:83:39:02:36:19:65:80:77:18:43:2f:bf:11:ba:ce:f0: e2:64:21:9f:c9:e1:79:da:9a:16:f5:d4:11:e2:5e:f5:25:46: bd:91:fd:c2:b7:e8:3d:7c:c0:36:ba:d0:4e:e9:07:49:54:57: 53:c0:26:2e:e4:5c:95:48:fd:a8:c1:7f:89:8d:a9:d3:12:d0: a6:70:40:e5:34:b9:85:19:68:8f:0d:c6:51:1e:d5:45:42:6e: 47:a4:2f:45:12:ef:08:9f:32:02:0f:c7:8a:68:15:c5:15:09: aa:06:27:56:63:c0:22:d9:b1:4c:6f:80:36:3a:6f:c7:35:88: e6:da:96:35 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICDawwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMzA5MDEw OTI0MzFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ2RjA1MDJGOTcyNDRC N0U1MUJFNjY2M0REMzgwQzFERkQ5MzBDQUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtFhKzqpbGvVicHadV97VLsGzV5PUzLl3wChVb8bHEhAwC0YyU YfEqq4b+nbKfVp1h2aEUqLATbqORREW8vJnZEd3rv98d3JvM6NPV53S2GvhqJ4wG 3Z8+/uJY06JmlaFTPr7HPQBgrMrdqY/5cHdaXIAv5sNwzkzcr7ZtlQFVYtcd7wbn rGqMUW5occraVoxHdMw/wDInjRidMw8RIutw8aVTewOnsDzRrcR6PoX+0yhSfixv PEgUq4Y5U3UTMcnl8rpkt690vcLDXiZBh9QCaPGNp1K9EWBv4apJwCCRtwzLTo2X q/8B+IiLEh0VRgiRHzZzgwiWbYj6Tmn9n7w7AgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQU1vBQL5ckS35RvmZj3TgMHf2TDKowHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMXZCUUw1Y2tTMzVSdm1aajNUZ01I ZjJUREtvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAIuvMA0G CSqGSIb3DQEBCwUAA4IBAQCShD5EkzXEe0VvPRITZQypktl0e4h+nZS2PcRfhMi5 yArH4Q1/7PBYoPKbXvVc9VAM35M2+GnyOOWQyqTKV3HRodsjp5Wd4F/yI0KL90fJ ucWLeOL0WrCvDCXdaIxcZSJJAnQycE4LQe+I6kwHht3OA9pyF/0OsludvNIx8pUx 9IM5AjYZZYB3GEMvvxG6zvDiZCGfyeF52poW9dQR4l71JUa9kf3Ct+g9fMA2utBO 6QdJVFdTwCYu5FyVSP2owX+JjanTEtCmcEDlNLmFGWiPDcZRHtVFQm5HpC9FEu8I nzICD8eKaBXFFQmqBidWY8Ai2bFMb4A2Om/HNYjm2pY1 -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org