$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/3CoaS5x9C8n8jnAdhq4XefmMkKw.roa File: 3CoaS5x9C8n8jnAdhq4XefmMkKw.roa (raw, json) Hash identifier: //4Yw+42bmj84kH/UgFzkphXLPGQZjCOJALt9/iCyKo= Subject key identifier: DC:2A:1A:4B:9C:7D:0B:C9:FC:8E:70:1D:86:AE:17:79:F9:8C:90:AC Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13B3 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3CoaS5x9C8n8jnAdhq4XefmMkKw.roa Signing time: Fri 01 Sep 2023 09:25:19 +0000 ROA not before: Fri 01 Sep 2023 09:25:19 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 198949 IP address blocks: 113.196.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 11:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5043 (0x13b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:19 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=DC2A1A4B9C7D0BC9FC8E701D86AE1779F98C90AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:87:80:6f:a3:f9:3e:4e:ce:e1:b8:b7:5e:68: 14:07:0f:5c:63:28:1d:4b:6e:8c:86:0b:40:13:44: b5:9f:8b:ec:3a:70:e0:4a:48:c3:a6:5a:5c:93:b7: d1:fb:31:05:11:85:b1:6b:3a:ab:64:fc:7f:b5:cd: fe:42:31:ed:6c:db:0d:06:a1:82:3f:05:a0:54:81: 99:77:d9:67:15:cb:84:41:9e:b5:ba:f9:73:59:05: 3a:00:60:6f:ab:ee:17:24:ee:6a:09:3c:41:9a:2a: b3:39:03:4e:db:eb:64:c0:47:89:c2:e1:84:6a:0c: fc:88:ab:f8:c7:1d:47:b8:48:c2:47:c3:3b:88:5e: c5:6d:c4:fb:fb:98:82:e3:3f:c5:f7:a1:85:4c:98: cf:69:76:5b:25:46:f3:b3:be:7e:29:f3:bd:ee:e9: 59:2c:0f:ca:03:61:67:48:9f:bc:86:e3:6e:0c:b2: 15:f0:79:65:ad:1e:ad:8e:4b:13:c5:a4:76:2a:af: 2e:41:c5:7a:f0:bd:13:35:f4:f3:4b:eb:3d:9c:24: f6:25:d3:6f:01:fe:17:7b:89:37:9c:1d:cb:74:3e: 5c:3a:a5:ed:a3:62:a1:13:e1:e8:27:45:29:f0:eb: 1c:f7:7a:cf:58:e1:b6:8e:56:27:56:21:71:63:f5: 27:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:2A:1A:4B:9C:7D:0B:C9:FC:8E:70:1D:86:AE:17:79:F9:8C:90:AC X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3CoaS5x9C8n8jnAdhq4XefmMkKw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.196.39.0/24 Signature Algorithm: sha256WithRSAEncryption ab:6a:8d:37:e5:82:49:f9:91:b8:71:de:04:3d:9e:3b:c3:c0: e1:3f:fc:9e:5d:cf:a0:13:c8:e5:17:7c:23:80:ab:c2:64:f4: 10:99:1c:16:8f:76:41:a6:d0:dd:b5:20:2e:ee:bc:06:34:6d: 15:14:c2:07:ba:4c:fd:df:d2:78:08:7b:27:67:b5:af:17:a2: c9:25:5e:e4:13:a2:7b:af:a7:aa:8c:3b:89:d6:47:50:39:28: 3d:64:b2:0f:30:d5:ab:00:08:b1:1f:e9:41:6c:6e:5e:2d:e2: 22:1c:8d:67:3d:46:66:bd:2a:22:21:2d:79:5a:d4:95:2e:9b: b2:fa:59:47:01:88:ef:d9:64:e9:69:03:7b:e1:d8:1b:da:94: a6:fc:9f:90:48:dd:34:39:18:b0:6c:dd:83:69:f8:e1:c0:96: e9:15:a6:bc:e5:59:53:04:25:67:59:37:4f:9f:8b:f1:9a:7c: d7:18:82:8b:82:d2:25:20:26:db:ca:cf:43:26:74:3e:19:aa: 0f:1d:2e:c3:1f:54:b2:b5:a6:9b:87:71:a6:ab:df:21:68:4c: 13:18:01:74:ba:03:89:ec:f3:15:72:00:ef:2d:d3:3a:21:0c: db:77:23:39:f0:21:59:6b:e5:02:88:f9:d0:36:0b:a2:f3:e7: a8:ce:e2:b4 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE7MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKERDMkExQTRCOUM3RDBC QzlGQzhFNzAxRDg2QUUxNzc5Rjk4QzkwQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7h4Bvo/k+Ts7huLdeaBQHD1xjKB1LboyGC0ATRLWfi+w6cOBK SMOmWlyTt9H7MQURhbFrOqtk/H+1zf5CMe1s2w0GoYI/BaBUgZl32WcVy4RBnrW6 +XNZBToAYG+r7hck7moJPEGaKrM5A07b62TAR4nC4YRqDPyIq/jHHUe4SMJHwzuI XsVtxPv7mILjP8X3oYVMmM9pdlslRvOzvn4p873u6VksD8oDYWdIn7yG424MshXw eWWtHq2OSxPFpHYqry5BxXrwvRM19PNL6z2cJPYl028B/hd7iTecHct0Plw6pe2j YqET4egnRSnw6xz3es9Y4baOVidWIXFj9SfDAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU3CoaS5x9C8n8jnAdhq4XefmMkKwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvM0NvYVM1eDlDOG44am5BZGhxNFhl Zm1Na0t3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHHEJzAN BgkqhkiG9w0BAQsFAAOCAQEAq2qNN+WCSfmRuHHeBD2eO8PA4T/8nl3PoBPI5Rd8 I4CrwmT0EJkcFo92QabQ3bUgLu68BjRtFRTCB7pM/d/SeAh7J2e1rxeiySVe5BOi e6+nqow7idZHUDkoPWSyDzDVqwAIsR/pQWxuXi3iIhyNZz1GZr0qIiEteVrUlS6b svpZRwGI79lk6WkDe+HYG9qUpvyfkEjdNDkYsGzdg2n44cCW6RWmvOVZUwQlZ1k3 T5+L8Zp81xiCi4LSJSAm28rPQyZ0PhmqDx0uwx9UsrWmm4dxpqvfIWhMExgBdLoD iezzFXIA7y3TOiEM23cjOfAhWWvlAoj50DYLovPnqM7itA== -----END CERTIFICATE-----Generated at Sun May 5 22:13:01 2024 by rpki-client on console-fra.rpki-client.org