$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/DPdUTkPqCDW5c6Yg389EuXi2hhQ.roa File: DPdUTkPqCDW5c6Yg389EuXi2hhQ.roa (raw, json) Hash identifier: IZOZ1vz/Cz+XVW8F5uHwBo47AuEoyoVKhusFAZ3lf1U= Subject key identifier: 0C:F7:54:4E:43:EA:08:35:B9:73:A6:20:DF:CF:44:B9:78:B6:86:14 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1366 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DPdUTkPqCDW5c6Yg389EuXi2hhQ.roa Signing time: Fri 01 Sep 2023 09:24:52 +0000 ROA not before: Fri 01 Sep 2023 09:24:52 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131602 IP address blocks: 60.245.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4966 (0x1366) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:52 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0CF7544E43EA0835B973A620DFCF44B978B68614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fd:49:a7:64:e3:93:03:e0:6f:11:b2:f8:cb: 78:e9:ad:50:7c:1e:a6:d8:ae:c9:5a:8d:7c:c5:2c: 01:31:8d:a3:74:76:00:70:8b:3d:39:cb:c2:24:92: c5:f5:6e:67:6e:d8:c1:de:fa:a6:1b:0e:a7:f8:3d: 73:c3:f2:77:3e:7c:44:53:44:f3:d8:23:a3:d4:52: 82:31:21:2b:67:cd:16:cd:31:e0:8f:8a:2a:be:c2: 4b:1f:31:51:87:49:ae:77:1e:c1:6f:4b:c9:34:7c: 3c:93:2d:58:aa:1d:0e:89:e5:d6:8a:30:21:ee:7b: d4:5c:b5:a5:00:79:66:89:92:60:f9:86:95:61:3f: 14:21:9f:22:ee:50:b4:fd:c9:57:29:38:d3:58:d2: 16:64:86:8f:f9:81:b4:6c:74:35:32:2b:46:a1:88: 8d:68:16:36:53:94:00:2e:11:db:9b:9d:31:32:54: 4f:89:24:4c:62:f2:c3:6c:c2:07:72:05:d9:f4:e9: ca:77:ac:d1:23:c1:4e:a8:ce:b3:fb:aa:34:bc:7a: 24:b4:a5:23:44:ac:0a:82:14:ec:90:db:b2:a8:c5: d9:c5:21:5d:c2:29:ee:5e:a9:c2:6d:4e:89:44:13: d8:3d:6e:c7:1d:af:c0:3a:71:1c:06:ff:51:7b:3f: 3d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F7:54:4E:43:EA:08:35:B9:73:A6:20:DF:CF:44:B9:78:B6:86:14 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DPdUTkPqCDW5c6Yg389EuXi2hhQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.245.96.0/20 Signature Algorithm: sha256WithRSAEncryption 69:a0:1b:e3:eb:4f:73:89:d5:bc:5b:b8:ce:f8:26:28:9d:16: b2:d4:87:a5:82:11:27:ed:6b:75:d9:3b:0c:ee:8e:a4:bf:b7: 52:cf:41:44:cf:48:51:94:51:a9:f0:71:be:84:01:71:a1:3b: f4:32:22:33:c3:2d:b6:12:a5:56:91:1c:f3:f9:29:ff:19:6f: 9d:54:b9:0e:30:b3:81:48:0b:91:fa:e8:30:ce:61:15:35:57: 1d:c5:fd:b0:b1:82:42:ed:f9:92:aa:d0:25:b1:86:b7:46:4e: 1d:a3:07:96:9e:00:cb:52:ee:bc:3e:3d:00:ed:58:72:9c:1b: fe:8d:31:75:78:84:95:ed:df:e2:03:df:86:62:71:23:4f:b3: d3:f1:17:a7:4f:84:7b:28:e0:4a:66:c8:ea:85:39:05:ec:f8: 49:b3:b3:02:47:5f:a2:75:11:fa:30:12:f7:53:78:47:54:0e: 9d:ee:9f:3c:73:58:b9:76:c0:7e:c6:9a:8c:ef:88:53:dc:35: ab:0c:ff:4f:be:f4:90:63:be:6b:46:3d:cb:93:d6:a3:40:43: c3:fb:13:c1:1f:ca:15:cb:2b:71:68:a3:ea:bb:c0:e5:c3:10: ed:63:0f:a3:99:4c:96:f8:eb:cd:b3:75:e2:d7:f4:4e:8c:a5: 4d:72:3a:89 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE2YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBDRjc1NDRFNDNFQTA4 MzVCOTczQTYyMERGQ0Y0NEI5NzhCNjg2MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCt/UmnZOOTA+BvEbL4y3jprVB8HqbYrslajXzFLAExjaN0dgBw iz05y8IkksX1bmdu2MHe+qYbDqf4PXPD8nc+fERTRPPYI6PUUoIxIStnzRbNMeCP iiq+wksfMVGHSa53HsFvS8k0fDyTLViqHQ6J5daKMCHue9RctaUAeWaJkmD5hpVh PxQhnyLuULT9yVcpONNY0hZkho/5gbRsdDUyK0ahiI1oFjZTlAAuEdubnTEyVE+J JExi8sNswgdyBdn06cp3rNEjwU6ozrP7qjS8eiS0pSNErAqCFOyQ27KoxdnFIV3C Ke5eqcJtTolEE9g9bscdr8A6cRwG/1F7Pz0FAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUDPdUTkPqCDW5c6Yg389EuXi2hhQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRFBkVVRrUHFDRFc1YzZZZzM4OUV1 WGkyaGhRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBDz1YDAN BgkqhkiG9w0BAQsFAAOCAQEAaaAb4+tPc4nVvFu4zvgmKJ0WstSHpYIRJ+1rddk7 DO6OpL+3Us9BRM9IUZRRqfBxvoQBcaE79DIiM8MtthKlVpEc8/kp/xlvnVS5DjCz gUgLkfroMM5hFTVXHcX9sLGCQu35kqrQJbGGt0ZOHaMHlp4Ay1LuvD49AO1Ycpwb /o0xdXiEle3f4gPfhmJxI0+z0/EXp0+EeyjgSmbI6oU5Bez4SbOzAkdfonUR+jAS 91N4R1QOne6fPHNYuXbAfsaajO+IU9w1qwz/T770kGO+a0Y9y5PWo0BDw/sTwR/K FcsrcWij6rvA5cMQ7WMPo5lMlvjrzbN14tf0ToylTXI6iQ== -----END CERTIFICATE-----Generated at Sun Jun 2 07:14:23 2024 by rpki-client on console-fra.rpki-client.org