$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/42YJYuYW6eE2ApjtpQEPcLH6NI8.roa File: 42YJYuYW6eE2ApjtpQEPcLH6NI8.roa (raw, json) Hash identifier: co3tZMFqWqaJP152a3h2FhRCvt0fejrGjl4wSfENkZg= Subject key identifier: E3:66:09:62:E6:16:E9:E1:36:02:98:ED:A5:01:0F:70:B1:FA:34:8F Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1385 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/42YJYuYW6eE2ApjtpQEPcLH6NI8.roa Signing time: Fri 01 Sep 2023 09:25:05 +0000 ROA not before: Fri 01 Sep 2023 09:25:05 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 220.229.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4997 (0x1385) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:05 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E3660962E616E9E1360298EDA5010F70B1FA348F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9f:f4:a6:67:0b:2e:20:f4:78:0a:6e:ad:17: ac:d2:00:ca:53:1c:81:d0:55:10:e0:5f:91:12:e2: c3:09:d5:9f:b8:de:f9:66:ed:3b:27:1f:77:74:29: b6:cd:9b:52:d6:a4:0f:7a:c5:bb:44:18:42:a7:9c: 26:58:0e:bd:07:e1:dd:98:68:1a:90:c2:83:6c:f7: 83:c3:2b:ef:9f:1c:8c:73:db:7e:4b:2e:0f:c1:dd: 2d:18:36:18:4e:ca:c2:51:58:75:c9:de:9b:11:c8: 9e:4f:72:0f:08:ab:3c:26:83:36:a0:74:62:59:be: 0a:48:c0:5e:6b:06:e4:96:96:9e:83:f7:eb:4b:1e: 2b:6d:ee:53:fe:59:d0:29:a0:84:bc:20:d4:82:92: c4:03:9d:3e:af:33:e8:e4:f4:ce:d3:85:c1:3a:3c: a0:4a:ea:4f:77:dc:c7:4a:29:2f:02:f6:cb:6b:7a: 93:bf:c4:25:88:33:ee:cd:48:8a:0d:56:06:e1:c3: 25:9f:50:96:53:c0:ed:7c:0d:f0:7a:ce:5b:d0:41: 9c:e0:6e:da:07:22:41:10:1f:12:b3:a2:b4:f7:12: 36:78:8d:19:18:8f:80:28:b1:65:de:97:93:24:4e: f2:23:49:e5:a5:2d:15:c5:4e:55:e5:3e:2b:5c:cd: 52:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:66:09:62:E6:16:E9:E1:36:02:98:ED:A5:01:0F:70:B1:FA:34:8F X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/42YJYuYW6eE2ApjtpQEPcLH6NI8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.229.72.0/21 Signature Algorithm: sha256WithRSAEncryption a0:bc:66:81:28:7e:8c:24:e1:6c:c5:de:83:16:73:f1:aa:4c: df:08:ab:9b:b7:60:30:46:2e:7d:c3:06:84:26:a8:29:3e:58: 21:aa:d1:1a:56:43:ac:cc:37:5b:06:cd:14:b4:df:6e:78:2e: b3:e1:6b:a2:86:b2:97:58:3a:e2:ae:64:28:76:69:42:dd:6a: 71:48:11:7f:a9:63:22:89:08:bd:8b:85:6c:c4:b8:9a:46:a9: d3:1b:42:a7:29:0e:97:1d:83:72:c5:7b:0e:61:97:64:e6:59: f1:ba:1f:9b:72:9d:2b:56:a4:0e:5c:bf:33:56:23:45:ee:4f: 35:ec:8a:71:3e:4a:31:53:d0:22:25:02:f3:3b:0a:08:3b:41: 54:90:c7:5e:c4:13:bd:9f:f4:a7:a0:bb:78:b1:64:54:6c:aa: 81:80:da:95:cb:bd:7a:6d:02:b5:ea:ee:c3:47:0f:dc:68:bb: 6d:66:f1:18:d1:c7:6e:bc:8e:0f:42:58:27:5b:72:44:3b:91: 28:f0:a4:7b:62:33:a2:88:4f:6e:a3:d1:6b:42:03:ad:a6:a0: cc:4e:43:46:74:9a:d6:a4:05:9c:79:54:27:27:f5:45:f2:34: 8e:c6:11:41:ed:b9:12:a3:b8:17:27:54:60:fd:7a:c7:a0:75: 85:c5:91:e0 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE4UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEUzNjYwOTYyRTYxNkU5 RTEzNjAyOThFREE1MDEwRjcwQjFGQTM0OEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKn/SmZwsuIPR4Cm6tF6zSAMpTHIHQVRDgX5ES4sMJ1Z+43vlm 7TsnH3d0KbbNm1LWpA96xbtEGEKnnCZYDr0H4d2YaBqQwoNs94PDK++fHIxz235L Lg/B3S0YNhhOysJRWHXJ3psRyJ5Pcg8IqzwmgzagdGJZvgpIwF5rBuSWlp6D9+tL Hitt7lP+WdApoIS8INSCksQDnT6vM+jk9M7ThcE6PKBK6k933MdKKS8C9strepO/ xCWIM+7NSIoNVgbhwyWfUJZTwO18DfB6zlvQQZzgbtoHIkEQHxKzorT3EjZ4jRkY j4AosWXel5MkTvIjSeWlLRXFTlXlPitczVIdAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU42YJYuYW6eE2ApjtpQEPcLH6NI8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNDJZSll1WVc2ZUUyQXBqdHBRRVBj TEg2Tkk4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9zlSDAN BgkqhkiG9w0BAQsFAAOCAQEAoLxmgSh+jCThbMXegxZz8apM3wirm7dgMEYufcMG hCaoKT5YIarRGlZDrMw3WwbNFLTfbngus+Frooayl1g64q5kKHZpQt1qcUgRf6lj IokIvYuFbMS4mkap0xtCpykOlx2DcsV7DmGXZOZZ8bofm3KdK1akDly/M1YjRe5P NeyKcT5KMVPQIiUC8zsKCDtBVJDHXsQTvZ/0p6C7eLFkVGyqgYDalcu9em0Cteru w0cP3Gi7bWbxGNHHbryOD0JYJ1tyRDuRKPCke2IzoohPbqPRa0IDraagzE5DRnSa 1qQFnHlUJyf1RfI0jsYRQe25EqO4FydUYP16x6B1hcWR4A== -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org