$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/DTHbSYJ2_4U8_6tRLPPfTO8yDl4.roa File: DTHbSYJ2_4U8_6tRLPPfTO8yDl4.roa (raw, json) Hash identifier: 1p3mjGEP3DL+Y2yWyE2rGeKvsOJ6Ra6Obmaly8jnlq4= Subject key identifier: 0D:31:DB:49:82:76:FF:85:3C:FF:AB:51:2C:F3:DF:4C:EF:32:0E:5E Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1333 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DTHbSYJ2_4U8_6tRLPPfTO8yDl4.roa Signing time: Fri 01 Sep 2023 09:24:36 +0000 ROA not before: Fri 01 Sep 2023 09:24:36 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131586 IP address blocks: 2401:a040::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4915 (0x1333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:36 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0D31DB498276FF853CFFAB512CF3DF4CEF320E5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:40:4e:e2:5d:d0:53:4d:f8:b6:27:48:ca:80: 64:9d:14:bb:1d:b5:72:94:9f:5c:ec:c1:6a:e4:ad: c0:51:b9:2d:4a:57:5f:27:a5:6e:68:3b:ad:51:4c: 5c:ed:00:a5:d9:62:26:82:d7:e2:d2:04:ab:5e:ac: 97:da:2c:e3:fd:c9:97:12:22:f6:f1:f4:44:17:9d: 63:2e:43:7a:87:64:b5:af:0c:67:f0:5a:1b:20:13: d2:0a:cb:ef:45:1e:f3:eb:7d:ca:73:06:ec:a7:0a: e4:dc:c0:7b:6c:92:5c:3c:ae:3a:b3:d1:79:ec:2b: 0d:67:62:99:36:21:f5:c2:8d:68:e7:e5:13:8b:b2: 01:97:6e:7b:bb:59:ef:d1:f8:ce:c3:a3:76:6b:80: 61:67:3b:4b:20:a2:81:20:ce:e3:60:cd:c3:cc:20: b9:dd:de:98:2f:e7:f7:7f:4a:48:25:49:a5:11:25: f7:22:e7:bb:c5:1c:61:b5:ea:fc:53:dc:f1:ed:23: 0f:3d:7f:07:48:29:39:39:3e:27:da:0c:2e:e3:03: 0d:45:cd:70:17:7a:f4:af:f0:21:34:78:b2:0c:e4: 23:1f:2d:22:09:ba:7c:d4:7d:c4:83:76:4a:65:92: aa:12:3b:b5:04:51:7d:52:9d:f3:f4:40:6f:86:b3: 75:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:31:DB:49:82:76:FF:85:3C:FF:AB:51:2C:F3:DF:4C:EF:32:0E:5E X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DTHbSYJ2_4U8_6tRLPPfTO8yDl4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:a040::/32 Signature Algorithm: sha256WithRSAEncryption 77:3b:6f:05:43:07:5c:43:2f:a6:61:94:a0:45:88:b4:e1:73: f9:c3:b3:9e:ef:d0:fe:47:a8:5a:3d:37:55:48:31:18:9d:a9: f8:02:01:3d:92:d5:8b:9f:89:0e:2c:3b:ea:58:16:a8:3e:ac: 1b:57:e7:24:2c:58:81:26:01:ed:3f:52:15:57:06:d1:bd:c0: ec:42:40:2c:2f:6b:dc:6a:b0:34:00:ea:d1:b6:dc:21:0c:c7: e8:d2:22:8d:f3:20:2c:4b:d6:a5:ce:62:2a:75:46:d6:88:e3: e2:78:44:97:dc:4b:28:99:51:8e:41:cd:c9:a0:4c:82:36:8f: 89:86:f9:cd:1f:35:3c:71:3c:a8:0b:a8:be:4f:f0:f4:1c:08: 18:ab:19:52:4f:61:3a:81:e2:1e:a2:f4:a5:04:31:1e:f3:89: 36:68:d2:5b:4d:04:af:3c:e4:26:89:5a:c7:40:47:64:59:c2: 92:85:53:c3:f7:41:75:ab:be:75:79:40:ab:29:c0:2e:30:93: 88:17:6f:26:ab:37:8b:30:11:ab:46:b2:b8:be:15:f3:78:9c: 0f:89:98:8e:b6:97:95:2a:3b:61:cb:69:55:31:db:16:c5:d6: b6:2d:9e:81:3e:ed:a8:0c:08:1d:e5:3c:03:e9:45:49:b5:0f: 62:ba:5c:7c -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEzMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MzZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBEMzFEQjQ5ODI3NkZG ODUzQ0ZGQUI1MTJDRjNERjRDRUYzMjBFNUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTQE7iXdBTTfi2J0jKgGSdFLsdtXKUn1zswWrkrcBRuS1KV18n pW5oO61RTFztAKXZYiaC1+LSBKterJfaLOP9yZcSIvbx9EQXnWMuQ3qHZLWvDGfw WhsgE9IKy+9FHvPrfcpzBuynCuTcwHtsklw8rjqz0XnsKw1nYpk2IfXCjWjn5ROL sgGXbnu7We/R+M7Do3ZrgGFnO0sgooEgzuNgzcPMILnd3pgv5/d/SkglSaURJfci 57vFHGG16vxT3PHtIw89fwdIKTk5PifaDC7jAw1FzXAXevSv8CE0eLIM5CMfLSIJ unzUfcSDdkplkqoSO7UEUX1SnfP0QG+Gs3V9AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUDTHbSYJ2/4U8/6tRLPPfTO8yDl4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRFRIYlNZSjJfNFU4XzZ0UkxQUGZU Tzh5RGw0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBoEAw DQYJKoZIhvcNAQELBQADggEBAHc7bwVDB1xDL6ZhlKBFiLThc/nDs57v0P5HqFo9 N1VIMRidqfgCAT2S1YufiQ4sO+pYFqg+rBtX5yQsWIEmAe0/UhVXBtG9wOxCQCwv a9xqsDQA6tG23CEMx+jSIo3zICxL1qXOYip1RtaI4+J4RJfcSyiZUY5BzcmgTII2 j4mG+c0fNTxxPKgLqL5P8PQcCBirGVJPYTqB4h6i9KUEMR7ziTZo0ltNBK885CaJ WsdAR2RZwpKFU8P3QXWrvnV5QKspwC4wk4gXbyarN4swEatGsri+FfN4nA+JmI62 l5UqO2HLaVUx2xbF1rYtnoE+7agMCB3lPAPpRUm1D2K6XHw= -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org