$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/3YC1ZnDfoFILF3izDCmmCMjkAH4.roa File: 3YC1ZnDfoFILF3izDCmmCMjkAH4.roa (raw, json) Hash identifier: NF0xaE5Sa+64RNEvJRXb7ZsVjmYHb8cwyR1x3A4lKaA= Subject key identifier: DD:80:B5:66:70:DF:A0:52:0B:17:78:B3:0C:29:A6:08:C8:E4:00:7E Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 130C Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3YC1ZnDfoFILF3izDCmmCMjkAH4.roa Signing time: Fri 01 Sep 2023 09:24:25 +0000 ROA not before: Fri 01 Sep 2023 09:24:25 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18049 IP address blocks: 112.105.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4876 (0x130c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:25 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=DD80B56670DFA0520B1778B30C29A608C8E4007E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c8:f6:86:84:bf:37:e0:34:79:39:8a:75:45: a4:9f:e6:a0:ed:42:c8:d7:7e:79:bf:b7:67:dc:fc: e1:9f:88:79:b6:50:b5:f6:e7:06:74:11:87:53:ee: 87:e1:4b:88:4b:d7:85:23:90:dc:17:4d:3a:44:cc: 5a:5a:b0:f6:9e:b1:0d:2c:4b:3f:76:16:fd:b3:fe: 70:d8:ea:6e:6c:53:02:f2:04:c2:4f:b7:f2:a0:b8: ce:1f:06:f8:42:ec:68:fb:81:73:5e:96:cb:e1:c3: 89:71:ed:0c:19:65:18:f4:36:0a:df:36:5f:82:31: 4b:9c:2c:5e:ec:1d:57:3c:3a:f2:18:8f:2d:09:22: d0:4f:be:b9:ed:b2:e5:15:47:ed:62:97:d0:59:cc: 71:34:f0:3f:18:42:41:4b:69:6b:57:bb:ea:a2:3b: 8f:12:c7:ea:63:0f:8c:42:19:a3:49:a4:8f:a6:3e: c2:f7:0e:6f:4c:ad:48:44:50:33:c2:8c:7a:72:93: a1:8a:83:16:13:39:a7:46:56:d9:0f:0d:ab:08:50: 01:d4:1c:8b:23:94:91:9b:7b:a4:39:26:14:75:3d: 53:9f:97:18:d5:7f:4d:b4:3a:69:4a:df:5a:0c:c5: 30:0c:a7:eb:89:b3:57:37:ee:c5:22:87:8b:e5:ca: 99:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:80:B5:66:70:DF:A0:52:0B:17:78:B3:0C:29:A6:08:C8:E4:00:7E X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3YC1ZnDfoFILF3izDCmmCMjkAH4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.105.0.0/18 Signature Algorithm: sha256WithRSAEncryption 2b:13:61:3d:2f:e1:84:ae:db:01:0a:da:4a:97:5d:f2:92:d1: f9:05:19:28:c5:25:dc:27:82:c4:0b:90:96:f5:ca:f4:b2:5c: 2e:1a:eb:55:ab:73:30:7b:85:3e:97:9c:cb:85:f2:ac:c7:59: c7:0e:04:1c:59:7e:1d:ad:7b:77:12:f7:ce:35:e2:cb:e7:0c: bb:f8:4e:b4:83:27:02:98:51:66:68:c8:85:32:b7:bb:a2:61: 12:90:04:40:97:e4:e0:ed:c9:ba:0f:a3:a1:79:59:74:a5:cc: 56:4c:ab:60:f0:04:d0:ca:a9:92:95:72:d8:18:b5:1e:ab:a1: 98:2a:ab:f4:b9:20:e1:e5:f9:10:93:a3:a5:12:bf:d3:5c:85: 22:b3:41:6c:e2:fc:8b:f0:4b:a5:90:b4:7c:35:0b:2a:72:47: df:04:6d:9d:17:d3:96:a1:76:dd:e8:f6:48:ee:06:5a:0f:20: 32:18:d4:9b:38:b1:43:d8:41:ec:32:64:68:6d:ce:7b:4f:e7: c9:83:5e:d0:92:d7:b3:59:80:0a:c7:c7:a8:3c:0c:9d:c7:e6: 4b:93:20:2c:fa:f1:ec:09:82:c2:15:b7:e4:bf:1b:0b:8c:5b: 74:de:d7:21:6d:e7:06:88:fb:1e:4c:d3:24:2e:90:45:d4:b9: 57:82:a0:43 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEwwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MjVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEREODBCNTY2NzBERkEw NTIwQjE3NzhCMzBDMjlBNjA4QzhFNDAwN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbyPaGhL834DR5OYp1RaSf5qDtQsjXfnm/t2fc/OGfiHm2ULX2 5wZ0EYdT7ofhS4hL14UjkNwXTTpEzFpasPaesQ0sSz92Fv2z/nDY6m5sUwLyBMJP t/KguM4fBvhC7Gj7gXNelsvhw4lx7QwZZRj0NgrfNl+CMUucLF7sHVc8OvIYjy0J ItBPvrntsuUVR+1il9BZzHE08D8YQkFLaWtXu+qiO48Sx+pjD4xCGaNJpI+mPsL3 Dm9MrUhEUDPCjHpyk6GKgxYTOadGVtkPDasIUAHUHIsjlJGbe6Q5JhR1PVOflxjV f020OmlK31oMxTAMp+uJs1c37sUih4vlypk1AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU3YC1ZnDfoFILF3izDCmmCMjkAH4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvM1lDMVpuRGZvRklMRjNpekRDbW1D TWprQUg0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnBpADAN BgkqhkiG9w0BAQsFAAOCAQEAKxNhPS/hhK7bAQraSpdd8pLR+QUZKMUl3CeCxAuQ lvXK9LJcLhrrVatzMHuFPpecy4XyrMdZxw4EHFl+Ha17dxL3zjXiy+cMu/hOtIMn AphRZmjIhTK3u6JhEpAEQJfk4O3Jug+joXlZdKXMVkyrYPAE0MqpkpVy2Bi1Hquh mCqr9Lkg4eX5EJOjpRK/01yFIrNBbOL8i/BLpZC0fDULKnJH3wRtnRfTlqF23ej2 SO4GWg8gMhjUmzixQ9hB7DJkaG3Oe0/nyYNe0JLXs1mACsfHqDwMncfmS5MgLPrx 7AmCwhW35L8bC4xbdN7XIW3nBoj7HkzTJC6QRdS5V4KgQw== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org