$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/3bcJTW6MhhPHTG11XWIJPDkUg5E.roa File: 3bcJTW6MhhPHTG11XWIJPDkUg5E.roa (raw, json) Hash identifier: yZ7mx1UREmcJGofP//4sUnpJLIVU7ixuY1OyeH4HM5M= Subject key identifier: DD:B7:09:4D:6E:8C:86:13:C7:4C:6D:75:5D:62:09:3C:39:14:83:91 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 130E Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3bcJTW6MhhPHTG11XWIJPDkUg5E.roa Signing time: Fri 01 Sep 2023 09:24:26 +0000 ROA not before: Fri 01 Sep 2023 09:24:26 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 106.105.108.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4878 (0x130e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:26 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=DDB7094D6E8C8613C74C6D755D62093C39148391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d3:ed:3a:1b:41:d6:71:75:69:fb:7f:fe:80: df:b7:45:3a:1d:59:33:97:37:84:b6:4e:3d:33:55: 5b:9b:e0:63:30:97:84:4d:1e:55:5b:1a:b1:88:54: c8:9b:3c:7e:4b:c9:4f:78:9f:d4:ad:8f:69:97:2e: f2:41:51:e1:80:59:48:5a:6c:6e:57:af:24:20:2f: ff:59:39:d6:2f:15:94:96:ee:5a:78:e5:b3:bf:16: 18:37:50:1b:16:1e:75:16:64:72:b2:66:60:57:fc: 1f:13:ff:5f:03:2a:ea:65:3e:8a:8d:be:e9:fe:d1: 4f:99:43:80:00:c9:21:35:aa:8b:c9:5f:7e:46:6f: 97:3f:8d:25:49:91:fd:37:5d:1a:e6:47:f9:43:22: e4:51:88:0d:4c:ee:a7:37:89:46:08:57:d5:a1:09: 23:70:46:56:d0:bf:86:90:cf:00:c4:38:61:7b:2c: 32:ac:ca:d3:05:e9:72:cc:44:08:7a:83:27:74:e4: 80:e2:ed:e4:10:78:d0:67:a5:d2:d7:8c:b9:98:8e: c4:21:52:7c:86:a9:bb:67:71:63:eb:a9:8f:f5:4e: 81:b9:c5:95:b0:fa:47:d5:0a:c2:2c:8e:b6:52:12: ac:06:dc:03:6e:f6:8b:38:4f:ed:38:85:28:75:7c: 7c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:B7:09:4D:6E:8C:86:13:C7:4C:6D:75:5D:62:09:3C:39:14:83:91 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/3bcJTW6MhhPHTG11XWIJPDkUg5E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.108.0/23 Signature Algorithm: sha256WithRSAEncryption b7:b9:4d:df:94:75:e8:08:3e:02:ae:da:66:7a:95:e2:39:ea: e6:5f:97:0b:62:e9:2a:92:ee:dc:1a:d0:91:19:22:16:86:54: ae:47:34:72:db:8c:41:57:07:81:65:7c:f7:6a:c1:a4:c6:ec: b3:d1:b4:b0:ca:b4:28:8c:1b:7f:eb:48:9c:30:ad:89:dd:7f: 0b:d6:11:8a:9a:e7:8d:71:3f:12:08:22:69:dd:f3:9a:b8:9d: d1:2f:cd:34:a5:6d:b1:7c:48:69:b3:c2:1e:7c:8a:6c:f0:41: 0e:7c:8e:01:67:d3:c9:34:18:89:1a:d9:ea:0f:76:2c:3d:0b: 17:12:6c:ff:e1:aa:1d:d2:c0:83:7c:7b:99:28:56:22:88:1b: 35:ac:2e:be:6c:43:9b:fa:0a:64:34:db:2c:a7:8a:54:83:c9: 3b:ac:36:51:c3:e6:80:ce:cb:3e:d7:f6:d2:7f:0a:44:c2:30: fa:0d:c1:8b:04:dd:06:7c:99:34:f0:40:90:60:6f:e5:4f:0f: 2f:71:78:77:8a:39:84:01:2f:62:11:70:b3:23:02:1c:9b:50: 68:8b:ed:cb:6b:94:23:4b:63:5a:e0:57:8c:30:9e:03:16:3d: 8b:8d:da:30:3c:b1:84:92:c0:ce:85:33:ba:28:d3:72:35:98: 5f:21:f6:10 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEw4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MjZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEREQjcwOTRENkU4Qzg2 MTNDNzRDNkQ3NTVENjIwOTNDMzkxNDgzOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC70+06G0HWcXVp+3/+gN+3RTodWTOXN4S2Tj0zVVub4GMwl4RN HlVbGrGIVMibPH5LyU94n9Stj2mXLvJBUeGAWUhabG5XryQgL/9ZOdYvFZSW7lp4 5bO/Fhg3UBsWHnUWZHKyZmBX/B8T/18DKuplPoqNvun+0U+ZQ4AAySE1qovJX35G b5c/jSVJkf03XRrmR/lDIuRRiA1M7qc3iUYIV9WhCSNwRlbQv4aQzwDEOGF7LDKs ytMF6XLMRAh6gyd05IDi7eQQeNBnpdLXjLmYjsQhUnyGqbtncWPrqY/1ToG5xZWw +kfVCsIsjrZSEqwG3ANu9os4T+04hSh1fHx7AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU3bcJTW6MhhPHTG11XWIJPDkUg5EwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvM2JjSlRXNk1oaFBIVEcxMVhXSUpQ RGtVZzVFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWppbDAN BgkqhkiG9w0BAQsFAAOCAQEAt7lN35R16Ag+Aq7aZnqV4jnq5l+XC2LpKpLu3BrQ kRkiFoZUrkc0ctuMQVcHgWV892rBpMbss9G0sMq0KIwbf+tInDCtid1/C9YRiprn jXE/Eggiad3zmrid0S/NNKVtsXxIabPCHnyKbPBBDnyOAWfTyTQYiRrZ6g92LD0L FxJs/+GqHdLAg3x7mShWIogbNawuvmxDm/oKZDTbLKeKVIPJO6w2UcPmgM7LPtf2 0n8KRMIw+g3BiwTdBnyZNPBAkGBv5U8PL3F4d4o5hAEvYhFwsyMCHJtQaIvty2uU I0tjWuBXjDCeAxY9i43aMDyxhJLAzoUzuijTcjWYXyH2EA== -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org