$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/D4oVY5hT1juGDb8z8VlcOGnez7I.roa File: D4oVY5hT1juGDb8z8VlcOGnez7I.roa (raw, json) Hash identifier: f6mSSJWKaULyPdulAKDZ7Lk0z64Rt1BTAxQQ1BlVNTA= Subject key identifier: 0F:8A:15:63:98:53:D6:3B:86:0D:BF:33:F1:59:5C:38:69:DE:CF:B2 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 12E8 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/D4oVY5hT1juGDb8z8VlcOGnez7I.roa Signing time: Fri 01 Sep 2023 09:24:15 +0000 ROA not before: Fri 01 Sep 2023 09:24:15 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 123.205.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4840 (0x12e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:15 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0F8A15639853D63B860DBF33F1595C3869DECFB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:cd:d9:82:4d:f8:be:1a:d7:32:83:55:cb:bc: dc:e1:61:d6:24:75:2f:44:7a:b7:43:6e:6d:71:90: ee:f3:15:8f:bf:75:e7:a2:32:23:3f:8f:4d:83:ee: 12:b6:61:5a:c9:70:d1:fd:84:70:cf:60:b8:a3:4d: b9:b1:3e:8e:69:b4:53:36:a2:22:9b:36:d5:0c:12: 5c:60:57:c7:3e:56:e4:50:12:db:12:c7:cb:2c:c0: 64:59:56:7b:48:d7:f6:a2:b0:ae:56:2c:a3:f5:7e: fa:12:dc:35:99:73:1d:5f:72:4b:aa:91:41:71:53: 05:16:f9:df:a1:8a:4e:ee:08:cc:ed:39:37:23:9a: 84:92:f6:87:a9:d3:1a:5a:84:eb:43:9b:e8:06:a7: 62:a9:40:21:cd:e5:c8:ea:77:34:f7:08:26:7e:37: 1e:42:fc:e0:2a:08:d9:46:b4:a1:27:fe:17:60:51: af:03:29:9b:b0:b2:b7:b6:dd:b2:e2:57:34:46:64: 3c:cc:a4:9b:67:eb:c3:70:9d:d6:0d:dd:1a:83:09: fb:66:ce:10:56:0f:51:37:3a:fa:30:0f:3e:62:67: 7f:bd:88:a6:e0:5c:a4:31:43:97:f9:f2:d3:bb:7c: 7f:68:d7:eb:72:9e:f9:f0:3b:80:ee:1c:84:9b:55: 75:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:8A:15:63:98:53:D6:3B:86:0D:BF:33:F1:59:5C:38:69:DE:CF:B2 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/D4oVY5hT1juGDb8z8VlcOGnez7I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.205.76.0/24 Signature Algorithm: sha256WithRSAEncryption cb:9c:02:bd:47:1a:c8:44:14:8d:53:c5:ce:87:0f:30:cd:3d: ea:bd:89:94:70:5d:15:36:85:af:22:f2:0f:51:6e:ec:3a:cd: 80:1d:de:21:a1:e5:7a:85:af:71:a2:59:13:6d:2d:37:01:12: ff:86:9e:0f:73:68:93:5c:9b:bd:09:35:49:49:01:ca:47:22: b7:6a:48:22:f8:13:88:c2:d4:12:0b:75:6c:90:49:b4:53:71: 5d:2d:71:07:a5:d7:e0:b6:fe:ef:bd:e3:b8:08:e0:a8:b1:1e: a6:f3:6b:3f:2f:2e:3a:de:f2:df:fe:83:d3:dc:4d:46:80:17: 3a:3f:eb:28:3b:13:98:a3:06:2c:b3:f0:7e:8c:c9:87:eb:a7: 47:fb:fd:57:3d:a3:53:b3:25:6b:ce:ab:68:9c:00:65:a2:d1: b9:33:02:59:98:92:af:c0:4c:b2:0d:cb:0f:81:7e:d2:c7:14: b0:94:29:60:6f:ea:42:13:c3:98:0f:3e:cb:70:69:7f:12:3e: 55:04:9b:22:ce:c4:30:2d:9b:0e:b5:74:a6:4e:43:d8:cd:92: 37:4e:b5:35:1a:ed:19:81:ce:dd:f4:dc:18:7e:fe:c3:b3:7c: 52:8c:8c:0c:ed:20:ee:78:d9:03:66:bf:df:1f:cb:6d:80:4a: 38:90:64:d0 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEugwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBGOEExNTYzOTg1M0Q2 M0I4NjBEQkYzM0YxNTk1QzM4NjlERUNGQjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMzdmCTfi+Gtcyg1XLvNzhYdYkdS9EerdDbm1xkO7zFY+/deei MiM/j02D7hK2YVrJcNH9hHDPYLijTbmxPo5ptFM2oiKbNtUMElxgV8c+VuRQEtsS x8sswGRZVntI1/aisK5WLKP1fvoS3DWZcx1fckuqkUFxUwUW+d+hik7uCMztOTcj moSS9oep0xpahOtDm+gGp2KpQCHN5cjqdzT3CCZ+Nx5C/OAqCNlGtKEn/hdgUa8D KZuwsre23bLiVzRGZDzMpJtn68NwndYN3RqDCftmzhBWD1E3OvowDz5iZ3+9iKbg XKQxQ5f58tO7fH9o1+tynvnwO4DuHISbVXU/AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUD4oVY5hT1juGDb8z8VlcOGnez7IwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRDRvVlk1aFQxanVHRGI4ejhWbGNP R25lejdJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHvNTDAN BgkqhkiG9w0BAQsFAAOCAQEAy5wCvUcayEQUjVPFzocPMM096r2JlHBdFTaFryLy D1Fu7DrNgB3eIaHleoWvcaJZE20tNwES/4aeD3Nok1ybvQk1SUkBykcit2pIIvgT iMLUEgt1bJBJtFNxXS1xB6XX4Lb+773juAjgqLEepvNrPy8uOt7y3/6D09xNRoAX Oj/rKDsTmKMGLLPwfozJh+unR/v9Vz2jU7Mla86raJwAZaLRuTMCWZiSr8BMsg3L D4F+0scUsJQpYG/qQhPDmA8+y3BpfxI+VQSbIs7EMC2bDrV0pk5D2M2SN061NRrt GYHO3fTcGH7+w7N8UoyMDO0g7njZA2a/3x/LbYBKOJBk0A== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org