$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/EFkZlvyGCYiRcCVCT5Trs3lgjhg.roa File: EFkZlvyGCYiRcCVCT5Trs3lgjhg.roa (raw, json) Hash identifier: zfQXUa5SMvwoefNn+rEULvYLr79UdY2Dyf0b80/8GLE= Subject key identifier: 10:59:19:96:FC:86:09:88:91:70:25:42:4F:94:EB:B3:79:60:8E:18 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13D3 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/EFkZlvyGCYiRcCVCT5Trs3lgjhg.roa Signing time: Fri 01 Sep 2023 09:25:29 +0000 ROA not before: Fri 01 Sep 2023 09:25:29 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18419 IP address blocks: 106.105.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5075 (0x13d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:29 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=10591996FC860988917025424F94EBB379608E18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:63:60:b9:c3:b0:8e:23:5d:4f:75:ce:2e:57: b0:c9:f7:ec:95:c5:b2:4f:5d:1a:71:7b:33:ff:64: ff:b0:4e:be:96:6d:94:22:6e:83:01:17:5b:1f:13: 7c:89:64:9a:da:d0:6a:02:ab:62:82:17:82:48:f1: 42:5c:b7:0b:22:30:d9:2e:14:e4:62:9b:41:11:36: f9:ec:a3:3a:50:24:8d:5d:09:09:84:c0:60:42:17: 55:bc:61:35:0c:ea:c0:f3:45:6e:c5:ce:f6:5b:8f: 58:a7:7b:74:e2:22:a7:38:4a:06:07:7d:32:3f:be: f5:40:8d:75:6c:f8:c4:e0:d2:0c:d9:94:96:f5:52: 38:86:a8:2e:b7:c2:a4:2f:fd:f7:32:60:33:62:88: e2:ce:db:1e:d9:4e:e9:ce:2a:b2:c5:59:7a:4a:7b: 1c:b1:27:ca:77:21:d7:de:bb:1d:19:31:06:9f:18: 5e:16:70:49:1e:49:42:e9:b5:1c:64:f1:46:f9:23: 99:f6:46:8a:ba:de:fa:b6:38:bb:5d:f6:fa:fa:b6: 83:d1:36:f3:9b:9a:62:60:28:3e:b4:a1:bd:89:85: 7a:bf:61:36:4f:91:15:52:a5:e7:72:c9:7f:ce:30: 4b:b0:78:64:ed:22:63:42:5e:93:cc:1b:43:ad:d6: 34:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:59:19:96:FC:86:09:88:91:70:25:42:4F:94:EB:B3:79:60:8E:18 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/EFkZlvyGCYiRcCVCT5Trs3lgjhg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.24.0/21 Signature Algorithm: sha256WithRSAEncryption b1:5d:aa:e5:69:96:06:90:cd:19:80:fc:ee:06:32:e4:58:eb: bd:eb:1a:95:88:fe:b6:c0:80:de:0b:05:07:2c:e3:ff:eb:bf: d6:63:fd:7f:a6:ac:d0:0b:a9:2c:8f:9a:06:db:ef:61:e9:c4: 20:78:20:64:7e:e9:44:3d:2a:c3:8b:0c:f0:9f:60:4f:4c:d4: d5:58:60:98:5d:bf:01:ee:b8:b2:74:24:c3:6f:86:43:f0:6f: eb:d6:dd:3b:43:07:02:48:70:40:a0:c2:14:ce:2e:1b:55:7e: 78:5b:1c:d3:e4:0a:9e:b7:37:3e:99:15:ed:ee:0e:15:7d:0c: 0a:d0:c6:39:45:19:22:47:89:ce:f2:d2:10:57:2a:f0:e2:01: 21:a8:c5:65:46:72:56:25:e4:64:60:87:d1:7d:d5:65:46:52: 74:4b:fb:ca:74:9f:ab:7a:72:35:a7:bf:82:37:35:49:5e:d8: 1a:c1:f2:16:08:4b:67:60:0d:be:c0:57:52:d4:c8:7b:f2:62: 00:7e:5c:e9:f7:00:80:70:1e:f3:8f:eb:d1:45:73:60:66:44: 1c:29:33:a6:89:da:57:9c:9b:65:43:db:1e:c7:b7:b7:d5:93: d7:20:fd:99:bc:7d:8e:25:78:d5:75:68:8c:e4:6d:18:f7:5c: 48:85:0c:54 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE9MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MjlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDEwNTkxOTk2RkM4NjA5 ODg5MTcwMjU0MjRGOTRFQkIzNzk2MDhFMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQY2C5w7COI11Pdc4uV7DJ9+yVxbJPXRpxezP/ZP+wTr6WbZQi boMBF1sfE3yJZJra0GoCq2KCF4JI8UJctwsiMNkuFORim0ERNvnsozpQJI1dCQmE wGBCF1W8YTUM6sDzRW7FzvZbj1ine3TiIqc4SgYHfTI/vvVAjXVs+MTg0gzZlJb1 UjiGqC63wqQv/fcyYDNiiOLO2x7ZTunOKrLFWXpKexyxJ8p3Idfeux0ZMQafGF4W cEkeSULptRxk8Ub5I5n2Roq63vq2OLtd9vr6toPRNvObmmJgKD60ob2JhXq/YTZP kRVSpedyyX/OMEuweGTtImNCXpPMG0Ot1jR5AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUEFkZlvyGCYiRcCVCT5Trs3lgjhgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRUZrWmx2eUdDWWlSY0NWQ1Q1VHJz M2xnamhnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2ppGDAN BgkqhkiG9w0BAQsFAAOCAQEAsV2q5WmWBpDNGYD87gYy5FjrvesalYj+tsCA3gsF Byzj/+u/1mP9f6as0AupLI+aBtvvYenEIHggZH7pRD0qw4sM8J9gT0zU1VhgmF2/ Ae64snQkw2+GQ/Bv69bdO0MHAkhwQKDCFM4uG1V+eFsc0+QKnrc3PpkV7e4OFX0M CtDGOUUZIkeJzvLSEFcq8OIBIajFZUZyViXkZGCH0X3VZUZSdEv7ynSfq3pyNae/ gjc1SV7YGsHyFghLZ2ANvsBXUtTIe/JiAH5c6fcAgHAe84/r0UVzYGZEHCkzpona V5ybZUPbHse3t9WT1yD9mbx9jiV41XVojORtGPdcSIUMVA== -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org