$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/8-F0if4zJAPPdNrZkJzoitWvOJY.roa File: 8-F0if4zJAPPdNrZkJzoitWvOJY.roa (raw, json) Hash identifier: V9PW6xCnnUKd3aPl15aSO8uN3XXnOJkLajLCaFC/I9Y= Subject key identifier: F3:E1:74:89:FE:33:24:03:CF:74:DA:D9:90:9C:E8:8A:D5:AF:38:96 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0DB3 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8-F0if4zJAPPdNrZkJzoitWvOJY.roa Signing time: Fri 01 Sep 2023 09:25:00 +0000 ROA not before: Fri 01 Sep 2023 09:25:00 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 192.72.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 17:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3507 (0xdb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Sep 1 09:25:00 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F3E17489FE332403CF74DAD9909CE88AD5AF3896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:08:bb:1a:0c:b3:a1:37:d5:06:bf:ae:00:38: 26:52:27:93:cb:a2:cc:3b:6d:ab:51:26:f9:b1:f2: aa:b8:2e:8b:11:d7:10:3d:54:87:26:13:fb:03:e6: f0:ef:89:e9:ac:92:91:42:08:2f:a1:d2:a0:c6:da: 83:91:eb:b7:a2:8d:87:1b:9e:1a:31:fe:bf:12:d5: fb:6c:e4:a3:dd:d0:06:67:99:c8:03:0b:76:fd:17: 5f:fb:71:e4:1a:0a:c9:68:7d:cd:06:e3:85:f7:21: 83:1c:ca:59:57:af:39:1d:ec:10:2d:d8:fd:8c:03: de:7b:88:8d:63:ef:1d:41:76:7b:cf:fc:e1:0b:bf: b3:e0:9e:fd:e9:ed:5c:1d:01:f3:4b:a9:52:9d:31: 55:e3:ae:0e:6b:0b:f7:fa:0e:50:93:db:62:7e:5e: bf:c7:7b:b5:fe:1d:a6:ee:e2:44:93:55:8f:6f:bf: 60:43:ff:a5:e4:29:fe:91:cf:8d:31:d8:24:f8:0c: 11:23:fb:06:b5:f6:ab:d6:24:85:30:03:60:66:61: de:62:7c:85:65:52:1b:a8:85:08:fb:a6:6e:eb:be: 05:fc:6c:0c:ea:29:89:a2:d1:d2:02:77:3b:4c:f1: 56:11:54:34:8d:5b:f7:dd:7c:6f:07:8b:9f:2c:de: ad:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:E1:74:89:FE:33:24:03:CF:74:DA:D9:90:9C:E8:8A:D5:AF:38:96 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8-F0if4zJAPPdNrZkJzoitWvOJY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.252.0/24 Signature Algorithm: sha256WithRSAEncryption 03:6d:43:34:51:f2:b7:a6:68:b8:ff:69:0e:bc:76:c9:8b:0a: 16:d9:c2:d2:3d:62:ff:12:d1:b2:4b:eb:56:26:a1:4c:fb:9f: 13:b3:33:d8:25:62:5d:d4:dd:78:21:5c:7c:df:72:33:86:c6: e4:00:6e:b5:ec:7f:6f:c2:80:e0:82:e6:7b:c6:04:dd:01:e6: d1:87:a0:fc:40:62:f5:f3:00:cd:9c:9c:b5:9b:16:0e:67:ac: dd:d1:bc:20:3e:98:d2:92:6d:65:bf:2e:fb:e7:75:fd:d6:53: f3:62:5e:cc:5a:cc:f6:b6:ba:25:11:eb:c4:47:f2:c1:05:17: 4a:7e:5e:f8:9c:81:2b:22:a2:ba:d7:7b:28:af:d1:c5:f2:ca: 59:f7:60:3c:ef:9f:f0:93:20:3f:a0:8e:61:60:6b:4b:d0:c4: 44:4c:9f:f2:a3:eb:83:0f:ee:fb:e4:64:f0:95:89:45:f9:96: b9:12:3f:0a:7b:7b:c8:87:78:78:c4:9d:2d:32:35:90:bc:58: 35:e6:52:07:5a:a0:fa:07:60:57:cd:11:12:1e:9f:ef:d6:97: 30:4b:5e:c8:ef:ed:85:66:68:aa:26:62:16:b6:17:fe:f5:1a: 4f:9a:69:10:fc:e8:29:e1:aa:9c:98:fe:66:8c:09:14:a3:7c: 7c:fc:e5:0e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDbMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMzA5MDEw OTI1MDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEYzRTE3NDg5RkUzMzI0 MDNDRjc0REFEOTkwOUNFODhBRDVBRjM4OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQCLsaDLOhN9UGv64AOCZSJ5PLosw7batRJvmx8qq4LosR1xA9 VIcmE/sD5vDviemskpFCCC+h0qDG2oOR67eijYcbnhox/r8S1fts5KPd0AZnmcgD C3b9F1/7ceQaCslofc0G44X3IYMcyllXrzkd7BAt2P2MA957iI1j7x1BdnvP/OEL v7Pgnv3p7VwdAfNLqVKdMVXjrg5rC/f6DlCT22J+Xr/He7X+Habu4kSTVY9vv2BD /6XkKf6Rz40x2CT4DBEj+wa19qvWJIUwA2BmYd5ifIVlUhuohQj7pm7rvgX8bAzq KYmi0dICdztM8VYRVDSNW/fdfG8Hi58s3q17AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU8+F0if4zJAPPdNrZkJzoitWvOJYwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvOC1GMGlmNHpKQVBQZE5yWmtKem9p dFd2T0pZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMBI/DAN BgkqhkiG9w0BAQsFAAOCAQEAA21DNFHyt6ZouP9pDrx2yYsKFtnC0j1i/xLRskvr ViahTPufE7Mz2CViXdTdeCFcfN9yM4bG5AButex/b8KA4ILme8YE3QHm0Yeg/EBi 9fMAzZyctZsWDmes3dG8ID6Y0pJtZb8u++d1/dZT82JezFrM9ra6JRHrxEfywQUX Sn5e+JyBKyKiutd7KK/RxfLKWfdgPO+f8JMgP6COYWBrS9DEREyf8qPrgw/u++Rk 8JWJRfmWuRI/Cnt7yId4eMSdLTI1kLxYNeZSB1qg+gdgV80REh6f79aXMEteyO/t hWZoqiZiFrYX/vUaT5ppEPzoKeGqnJj+ZowJFKN8fPzlDg== -----END CERTIFICATE-----Generated at Sat Jun 1 22:20:17 2024 by rpki-client on console-fra.rpki-client.org