$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/9hFG5WzCkxeheuYLwLCVc-n3AY0.roa File: 9hFG5WzCkxeheuYLwLCVc-n3AY0.roa (raw, json) Hash identifier: A9NpX71tjWVaM6j1seyIuzrTAjToaDVma5pbknhH0cc= Subject key identifier: F6:11:46:E5:6C:C2:93:17:A1:7A:E6:0B:C0:B0:95:73:E9:F7:01:8D Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1346 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9hFG5WzCkxeheuYLwLCVc-n3AY0.roa Signing time: Fri 01 Sep 2023 09:24:43 +0000 ROA not before: Fri 01 Sep 2023 09:24:43 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131584 IP address blocks: 106.105.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4934 (0x1346) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:43 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F61146E56CC29317A17AE60BC0B09573E9F7018D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:83:0f:71:98:0b:55:24:16:9e:2d:b9:20:cf: b1:57:48:6b:26:8c:01:e3:9c:b0:70:74:7a:50:ec: a6:a1:c6:aa:c2:77:04:06:d1:5c:22:40:c4:e6:f9: ae:b0:f2:1c:87:8c:df:16:e3:93:05:7a:97:cf:97: db:ad:4f:5a:f0:81:1f:e3:b1:89:bd:c7:42:99:a3: c7:46:50:e0:0f:e7:59:57:02:dc:88:c2:08:e7:70: 1a:fa:8e:19:3f:b0:dd:2d:63:47:39:f0:a7:81:87: 66:9f:a4:bc:64:4b:c0:76:b5:06:c2:d4:cf:a1:db: 7c:b4:c0:0a:22:a9:72:38:22:39:18:9e:2e:7d:79: ad:b5:a7:c2:c3:9c:64:a8:b8:a2:c7:21:b1:f9:d8: fc:9a:59:8c:5a:9b:b9:66:2b:04:5a:b0:70:9a:7f: 3b:19:fc:f6:70:d1:f4:34:d0:a0:f3:db:84:fa:2b: af:7b:36:d4:a1:14:6f:5d:09:6e:bc:29:ac:4c:5d: 5e:55:5c:01:77:6d:23:77:00:94:e3:f8:2b:01:a6: 8b:21:39:57:7d:53:c9:a4:fe:3f:00:c7:2f:e3:05: 2a:22:cb:ae:c7:30:94:34:60:f5:7a:a2:d2:67:fc: 39:70:ab:5d:7e:f5:d6:4c:c6:94:1c:92:00:dc:70: 4f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:11:46:E5:6C:C2:93:17:A1:7A:E6:0B:C0:B0:95:73:E9:F7:01:8D X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9hFG5WzCkxeheuYLwLCVc-n3AY0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.181.0/24 Signature Algorithm: sha256WithRSAEncryption 08:34:e7:93:7b:68:77:1c:62:7f:88:de:26:a5:9f:35:70:78: b1:12:58:ef:2e:79:f0:dd:46:48:6a:34:7e:0a:0c:49:a6:43: e5:89:e6:69:05:6c:2d:d8:fc:14:2b:a7:e3:1a:d4:2a:cd:22: 44:32:2a:cb:0d:06:4d:0c:49:b9:53:60:5b:87:89:eb:c3:05: 44:c2:3b:e0:79:0a:be:12:cc:6b:22:33:ab:d1:fc:45:e4:6a: e2:04:c6:58:3a:36:d4:74:21:6f:32:c1:85:4e:7e:db:0d:d1: a9:24:36:08:c9:c4:a6:f7:0e:af:47:f7:c6:e2:15:34:39:14: 34:21:44:af:27:42:d6:1c:a2:2e:62:04:04:c0:c2:6e:d8:b5: a7:18:a8:4b:84:4f:31:70:8d:8e:ef:91:5f:47:29:8f:93:b0: 33:05:e5:ac:6c:0f:cb:5f:dc:50:a5:b6:27:c4:58:8a:ef:63: 4c:9e:27:94:77:30:8d:a8:30:9a:e7:fa:d0:a0:84:43:d3:77: 08:fd:f6:5f:58:bf:8e:ba:25:42:bb:84:cb:ee:8e:e5:1e:92: 62:d9:ce:a2:89:0e:2b:b0:9d:5f:55:38:40:b2:60:25:a4:25: 0b:ce:76:cd:6a:25:ee:f8:3a:04:29:bd:e0:94:4d:0f:7b:8c: 4e:a0:2d:05 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE0YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY2MTE0NkU1NkNDMjkz MTdBMTdBRTYwQkMwQjA5NTczRTlGNzAxOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMgw9xmAtVJBaeLbkgz7FXSGsmjAHjnLBwdHpQ7KahxqrCdwQG 0VwiQMTm+a6w8hyHjN8W45MFepfPl9utT1rwgR/jsYm9x0KZo8dGUOAP51lXAtyI wgjncBr6jhk/sN0tY0c58KeBh2afpLxkS8B2tQbC1M+h23y0wAoiqXI4IjkYni59 ea21p8LDnGSouKLHIbH52PyaWYxam7lmKwRasHCafzsZ/PZw0fQ00KDz24T6K697 NtShFG9dCW68KaxMXV5VXAF3bSN3AJTj+CsBposhOVd9U8mk/j8Axy/jBSoiy67H MJQ0YPV6otJn/Dlwq11+9dZMxpQckgDccE8zAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU9hFG5WzCkxeheuYLwLCVc+n3AY0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvOWhGRzVXekNreGVoZXVZTHdMQ1Zj LW4zQVkwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGpptTAN BgkqhkiG9w0BAQsFAAOCAQEACDTnk3todxxif4jeJqWfNXB4sRJY7y558N1GSGo0 fgoMSaZD5YnmaQVsLdj8FCun4xrUKs0iRDIqyw0GTQxJuVNgW4eJ68MFRMI74HkK vhLMayIzq9H8ReRq4gTGWDo21HQhbzLBhU5+2w3RqSQ2CMnEpvcOr0f3xuIVNDkU NCFErydC1hyiLmIEBMDCbti1pxioS4RPMXCNju+RX0cpj5OwMwXlrGwPy1/cUKW2 J8RYiu9jTJ4nlHcwjagwmuf60KCEQ9N3CP32X1i/jrolQruEy+6O5R6SYtnOookO K7CdX1U4QLJgJaQlC852zWol7vg6BCm94JRND3uMTqAtBQ== -----END CERTIFICATE-----Generated at Sat Jun 1 22:20:17 2024 by rpki-client on console-fra.rpki-client.org