$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/AgvqZiYpeBlQ0on6tD0uON-1Qro.roa File: AgvqZiYpeBlQ0on6tD0uON-1Qro.roa (raw, json) Hash identifier: y2f7x1HxS3W1CRs0G4R3/WaIdkTfqvPPAB6QzPnYQtA= Subject key identifier: 02:0B:EA:66:26:29:78:19:50:D2:89:FA:B4:3D:2E:38:DF:B5:42:BA Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0DB4 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/AgvqZiYpeBlQ0on6tD0uON-1Qro.roa Signing time: Fri 01 Sep 2023 09:25:03 +0000 ROA not before: Fri 01 Sep 2023 09:25:03 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 192.72.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 17:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3508 (0xdb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Sep 1 09:25:03 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=020BEA662629781950D289FAB43D2E38DFB542BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7d:b5:ec:3b:20:93:93:aa:90:08:4e:a8:fb: 32:d9:49:58:c8:81:b7:2f:0a:05:65:88:ea:e0:f0: f8:70:81:c0:60:35:8c:f9:f4:68:58:5b:43:3d:7c: 4d:de:b9:e0:a5:c8:83:fe:8a:7e:c0:b2:ab:6a:73: 86:01:37:0b:d6:f8:56:f5:a6:be:b9:2d:08:fd:64: 43:3a:ed:7d:fa:3a:bd:0c:57:ba:93:cc:d0:5b:34: 43:fa:75:a5:60:3f:78:26:dc:0c:ea:5d:c0:bd:07: 41:f6:86:ca:19:21:07:76:ad:2c:cb:b0:2f:50:79: 08:5a:00:be:c8:e0:50:7e:52:6d:01:9c:bc:2b:fd: 86:09:d1:e5:35:17:4d:e8:be:12:f6:2c:64:74:2d: 71:bb:1d:3a:15:50:bd:b9:6e:02:dd:f1:d3:fe:8d: 9f:5f:92:bf:00:0d:2d:b0:69:6b:f1:c2:bd:ef:ae: 89:33:bf:06:28:f2:1a:d5:0c:bf:6c:ad:8b:e1:23: 91:54:8a:03:37:30:10:9e:ad:77:e4:61:13:41:82: 9a:17:71:a5:d1:2b:fd:07:db:b6:0f:f0:fe:34:4a: 09:00:b0:4c:fe:e6:f7:e5:22:69:4b:b9:c0:bc:93: d3:96:f5:20:27:80:e9:b8:2d:ef:94:15:1a:a5:75: e6:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:0B:EA:66:26:29:78:19:50:D2:89:FA:B4:3D:2E:38:DF:B5:42:BA X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/AgvqZiYpeBlQ0on6tD0uON-1Qro.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.224.0/20 Signature Algorithm: sha256WithRSAEncryption 0f:f2:19:40:bc:d0:51:a4:d6:08:f4:22:73:07:96:7d:bd:83: de:27:fb:32:23:71:d7:90:da:6e:12:a3:c1:83:d1:89:24:5e: c7:71:4b:c7:7b:63:01:30:22:34:65:16:c0:09:4c:c9:ec:59: 69:05:27:f1:77:70:9a:d0:4a:34:a0:a7:08:a0:3b:c0:dd:1a: e9:f4:b6:61:e2:a4:e8:4a:73:0b:d5:3c:49:92:e5:56:5d:60: c9:94:cb:41:e6:51:a3:69:13:89:8e:e4:55:63:d7:b1:a2:2c: f8:70:1b:f5:7f:87:b5:82:02:22:ac:7b:61:e1:53:6c:89:92: 43:8b:20:98:74:96:b4:40:cc:fc:9e:3c:ce:26:40:01:43:92: 2f:6c:a4:f0:8d:03:7a:4f:bf:84:b3:88:56:aa:59:3e:26:04: d9:35:fd:e1:ff:fb:87:77:8e:d7:ec:85:ad:31:1c:92:74:2b: 7e:95:30:14:33:bb:f7:1e:20:e7:c6:bf:67:36:77:db:48:de: d0:28:50:0d:d3:73:f2:94:8d:26:c5:9d:13:44:ef:b5:49:67: e6:aa:f1:c8:50:0e:ae:07:d8:c8:28:31:96:e9:21:17:b3:95: 19:e0:39:f8:42:16:0d:a7:0d:c2:c0:c9:c9:e6:42:bb:c7:22: c8:bf:bf:14 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDbQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMzA5MDEw OTI1MDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAyMEJFQTY2MjYyOTc4 MTk1MEQyODlGQUI0M0QyRTM4REZCNTQyQkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLfbXsOyCTk6qQCE6o+zLZSVjIgbcvCgVliOrg8PhwgcBgNYz5 9GhYW0M9fE3eueClyIP+in7Asqtqc4YBNwvW+Fb1pr65LQj9ZEM67X36Or0MV7qT zNBbNEP6daVgP3gm3AzqXcC9B0H2hsoZIQd2rSzLsC9QeQhaAL7I4FB+Um0BnLwr /YYJ0eU1F03ovhL2LGR0LXG7HToVUL25bgLd8dP+jZ9fkr8ADS2waWvxwr3vrokz vwYo8hrVDL9srYvhI5FUigM3MBCerXfkYRNBgpoXcaXRK/0H27YP8P40SgkAsEz+ 5vflImlLucC8k9OW9SAngOm4Le+UFRqldeaPAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUAgvqZiYpeBlQ0on6tD0uON+1QrowHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvQWd2cVppWXBlQmxRMG9uNnREMHVP Ti0xUXJvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMBI4DAN BgkqhkiG9w0BAQsFAAOCAQEAD/IZQLzQUaTWCPQicweWfb2D3if7MiNx15DabhKj wYPRiSRex3FLx3tjATAiNGUWwAlMyexZaQUn8XdwmtBKNKCnCKA7wN0a6fS2YeKk 6EpzC9U8SZLlVl1gyZTLQeZRo2kTiY7kVWPXsaIs+HAb9X+HtYICIqx7YeFTbImS Q4sgmHSWtEDM/J48ziZAAUOSL2yk8I0Dek+/hLOIVqpZPiYE2TX94f/7h3eO1+yF rTEcknQrfpUwFDO79x4g58a/ZzZ320je0ChQDdNz8pSNJsWdE0TvtUln5qrxyFAO rgfYyCgxlukhF7OVGeA5+EIWDacNwsDJyeZCu8ciyL+/FA== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org