$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/DEI2Awor9oDBppAjxq0ggB3FDN0.roa File: DEI2Awor9oDBppAjxq0ggB3FDN0.roa (raw, json) Hash identifier: jqObclzcv29AZwaqe81Vjv/b29yPGmlRoxL60pt60+Q= Subject key identifier: 0C:42:36:03:0A:2B:F6:80:C1:A6:90:23:C6:AD:20:80:1D:C5:0C:DD Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 133D Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DEI2Awor9oDBppAjxq0ggB3FDN0.roa Signing time: Fri 01 Sep 2023 09:24:41 +0000 ROA not before: Fri 01 Sep 2023 09:24:41 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18049 IP address blocks: 106.104.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4925 (0x133d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:41 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0C4236030A2BF680C1A69023C6AD20801DC50CDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b8:f6:7a:82:51:25:9d:38:c8:da:c2:51:b5: 66:c4:5c:b8:7f:0c:67:07:cb:00:c6:70:20:fd:63: 9f:57:c8:d6:d0:98:48:b9:ee:84:18:8a:3a:c8:20: d3:6c:b0:e1:14:89:27:d8:60:3a:91:f5:0f:20:80: c4:09:88:1d:1f:0b:dd:b4:4a:7e:12:77:f9:4e:85: b3:31:89:71:98:c6:2d:46:64:5d:83:ee:2b:4e:53: 61:e7:b3:05:9c:8d:d9:50:67:90:09:c1:59:40:ee: 61:13:c8:d3:cd:29:45:4b:55:62:ca:2b:07:c1:8c: d9:ae:79:ec:a0:d8:24:30:a2:02:c9:98:67:3d:6f: 1e:79:d0:f1:c2:d6:a1:32:31:9b:1f:43:6d:3f:cc: 0b:86:1d:51:b7:fe:33:ea:41:97:88:27:75:86:3d: fc:9e:ac:58:1b:e3:87:cf:42:75:37:2e:80:2f:87: 98:bf:e3:75:b6:58:74:a2:c1:e2:be:31:6f:54:ee: 22:73:dd:9c:ef:29:81:1d:f4:76:69:3e:00:3c:54: e8:b1:28:08:4b:52:f5:d0:63:44:64:97:7c:7f:b6: 69:52:d7:27:77:97:7f:2b:2f:55:89:4e:72:46:a3: b8:ea:31:02:2f:37:0e:87:10:2f:70:88:e9:cc:8a: 3d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:42:36:03:0A:2B:F6:80:C1:A6:90:23:C6:AD:20:80:1D:C5:0C:DD X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DEI2Awor9oDBppAjxq0ggB3FDN0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.104.224.0/22 Signature Algorithm: sha256WithRSAEncryption b8:9e:0c:5c:6f:20:d1:35:44:a1:55:a6:7e:38:cc:de:dc:b6: 2c:09:57:0f:d7:23:d1:37:af:bf:2c:ce:f1:49:76:92:d9:9e: 7a:6d:2c:9f:56:5d:7b:fa:2e:5a:14:1e:97:03:07:dc:8c:85: 8a:52:cf:0f:e0:46:c4:93:46:47:22:8e:af:a0:75:4c:fe:40: c7:23:3a:fd:d6:24:f0:66:5b:aa:0b:1f:e9:48:61:3e:b3:9d: fb:2b:49:17:c8:8c:7c:d9:b7:c8:3b:7e:c2:bc:89:35:5b:26: 9a:40:fa:90:83:9d:02:74:27:c6:85:0a:12:df:5d:0e:58:81: 28:45:c5:e1:65:d3:71:0d:b8:ca:9b:c7:96:5c:6a:68:5b:6a: c0:7a:f5:44:d4:2a:08:c9:90:1d:a0:6c:50:fd:b4:ff:9c:5b: 38:c9:b8:b4:76:ef:1b:da:a7:21:4f:ca:91:fd:33:d6:07:e6: d7:3f:9e:95:cb:78:b9:ef:d7:62:64:fb:14:f9:62:b5:eb:07: 0e:e5:25:61:a9:7e:b4:b2:0a:9c:15:63:e7:3f:f5:19:90:f2: b0:a5:17:9a:21:cb:8f:90:d6:67:7d:ea:fc:54:2a:57:27:4b: 81:e4:42:9f:ad:42:90:11:87:3d:61:51:04:ac:d0:59:c3:1a: 20:df:24:33 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEz0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBDNDIzNjAzMEEyQkY2 ODBDMUE2OTAyM0M2QUQyMDgwMURDNTBDREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnuPZ6glElnTjI2sJRtWbEXLh/DGcHywDGcCD9Y59XyNbQmEi5 7oQYijrIINNssOEUiSfYYDqR9Q8ggMQJiB0fC920Sn4Sd/lOhbMxiXGYxi1GZF2D 7itOU2HnswWcjdlQZ5AJwVlA7mETyNPNKUVLVWLKKwfBjNmueeyg2CQwogLJmGc9 bx550PHC1qEyMZsfQ20/zAuGHVG3/jPqQZeIJ3WGPfyerFgb44fPQnU3LoAvh5i/ 43W2WHSiweK+MW9U7iJz3ZzvKYEd9HZpPgA8VOixKAhLUvXQY0Rkl3x/tmlS1yd3 l38rL1WJTnJGo7jqMQIvNw6HEC9wiOnMij0nAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUDEI2Awor9oDBppAjxq0ggB3FDN0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvREVJMkF3b3I5b0RCcHBBanhxMGdn QjNGRE4wLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmpo4DAN BgkqhkiG9w0BAQsFAAOCAQEAuJ4MXG8g0TVEoVWmfjjM3ty2LAlXD9cj0TevvyzO 8Ul2ktmeem0sn1Zde/ouWhQelwMH3IyFilLPD+BGxJNGRyKOr6B1TP5AxyM6/dYk 8GZbqgsf6UhhPrOd+ytJF8iMfNm3yDt+wryJNVsmmkD6kIOdAnQnxoUKEt9dDliB KEXF4WXTcQ24ypvHllxqaFtqwHr1RNQqCMmQHaBsUP20/5xbOMm4tHbvG9qnIU/K kf0z1gfm1z+elct4ue/XYmT7FPlitesHDuUlYal+tLIKnBVj5z/1GZDysKUXmiHL j5DWZ33q/FQqVydLgeRCn61CkBGHPWFRBKzQWcMaIN8kMw== -----END CERTIFICATE-----Generated at Sun Jun 2 07:14:23 2024 by rpki-client on console-fra.rpki-client.org