$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/FcTnEXG3h-uiOXv-vJutI9vlGo4.roa File: FcTnEXG3h-uiOXv-vJutI9vlGo4.roa (raw, json) Hash identifier: E5oKSiG17R2fQ5NElazoMyP9qxmYOjyu5Rc8IhiQA78= Subject key identifier: 15:C4:E7:11:71:B7:87:EB:A2:39:7B:FE:BC:9B:AD:23:DB:E5:1A:8E Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13B4 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/FcTnEXG3h-uiOXv-vJutI9vlGo4.roa Signing time: Fri 01 Sep 2023 09:25:19 +0000 ROA not before: Fri 01 Sep 2023 09:25:19 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9922 IP address blocks: 106.105.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5044 (0x13b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:19 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=15C4E71171B787EBA2397BFEBC9BAD23DBE51A8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c4:29:61:f0:8e:89:96:d9:8a:19:9b:8a:55: 1f:d4:25:c6:19:d9:47:0a:ac:90:79:60:19:5b:7f: 4d:1d:38:f6:c7:dd:7c:3c:d7:c1:ec:0f:91:fe:d2: 1a:b2:fe:52:1f:c0:ee:07:70:4e:25:26:8b:0e:d5: 13:59:d5:d4:96:c1:d1:35:82:92:61:4f:61:25:29: ad:91:d8:46:2a:7e:28:0e:17:1d:68:33:b1:ba:b5: 5e:91:d7:67:f4:e7:80:6c:c7:2f:6b:b5:0b:4e:e1: 74:44:18:dc:63:8f:cd:3e:e5:53:34:36:43:ae:90: 89:bb:f1:3a:7d:9c:36:ee:c9:66:c6:12:0e:88:f6: 40:e1:ef:12:40:b3:61:fc:12:b1:47:52:05:93:df: bf:38:16:62:65:84:fe:12:71:10:2b:0e:de:06:a4: 70:08:9a:12:d0:c4:78:5c:f4:f6:47:39:43:30:ca: cf:df:93:f1:b5:fc:e8:29:6f:55:e5:65:21:99:b7: 7d:de:09:4e:10:74:2f:df:f1:a5:c6:61:2f:50:88: 4f:76:22:20:2d:ab:cb:ba:08:d0:7b:4f:18:37:d2: d4:a8:6d:69:d8:93:ca:7a:57:35:97:17:d5:39:92: 17:2d:91:7b:7c:90:52:44:34:46:2a:96:1b:2d:92: 6a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:C4:E7:11:71:B7:87:EB:A2:39:7B:FE:BC:9B:AD:23:DB:E5:1A:8E X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/FcTnEXG3h-uiOXv-vJutI9vlGo4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.8.0/21 Signature Algorithm: sha256WithRSAEncryption 1f:85:b6:3e:a8:c4:3f:67:f9:87:a9:38:d9:83:da:50:e8:b3: a6:3f:85:34:e9:fb:2f:7e:7c:63:38:19:ab:12:1e:fb:35:bc: 72:02:ee:14:09:16:b4:f3:30:a7:9b:ad:b7:27:d7:1d:35:7a: 3d:c7:87:31:c4:29:13:df:55:ce:75:7f:55:04:6e:fc:24:ed: 32:a1:44:a1:94:95:8a:e8:27:09:a1:33:04:b2:24:11:c5:0d: 10:1c:7e:66:12:8b:0d:f3:36:44:71:c5:29:be:10:eb:d3:d9: 8e:38:a1:2f:ae:c5:cb:05:43:8c:d0:05:d3:68:9e:87:e6:97: 60:36:16:f2:17:23:d0:d8:9b:d1:85:47:6c:b3:75:10:ee:31: 1b:38:33:84:00:a9:9e:6d:ba:14:f5:8e:8e:6a:79:ac:95:1a: 4e:96:a3:e1:62:1a:db:ca:dc:2e:13:4f:9e:f0:45:19:f9:ca: ee:35:61:50:3e:ad:8d:0a:62:3f:54:de:ae:65:2e:ae:39:5f: 3d:2a:67:36:0a:95:29:c0:55:67:ca:0d:31:ad:b7:ba:8a:42: d8:e9:02:47:61:ff:09:89:fa:9d:17:37:09:e1:92:6b:be:89: be:9a:e7:7a:7d:36:39:54:3f:a1:35:e8:5c:98:55:62:7b:8b: a7:f5:ac:27 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE7QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE1QzRFNzExNzFCNzg3 RUJBMjM5N0JGRUJDOUJBRDIzREJFNTFBOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTxClh8I6JltmKGZuKVR/UJcYZ2UcKrJB5YBlbf00dOPbH3Xw8 18HsD5H+0hqy/lIfwO4HcE4lJosO1RNZ1dSWwdE1gpJhT2ElKa2R2EYqfigOFx1o M7G6tV6R12f054Bsxy9rtQtO4XREGNxjj80+5VM0NkOukIm78Tp9nDbuyWbGEg6I 9kDh7xJAs2H8ErFHUgWT3784FmJlhP4ScRArDt4GpHAImhLQxHhc9PZHOUMwys/f k/G1/Ogpb1XlZSGZt33eCU4QdC/f8aXGYS9QiE92IiAtq8u6CNB7Txg30tSobWnY k8p6VzWXF9U5khctkXt8kFJENEYqlhstkmr9AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUFcTnEXG3h+uiOXv+vJutI9vlGo4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRmNUbkVYRzNoLXVpT1h2LXZKdXRJ OXZsR280LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2ppCDAN BgkqhkiG9w0BAQsFAAOCAQEAH4W2PqjEP2f5h6k42YPaUOizpj+FNOn7L358YzgZ qxIe+zW8cgLuFAkWtPMwp5uttyfXHTV6PceHMcQpE99VznV/VQRu/CTtMqFEoZSV iugnCaEzBLIkEcUNEBx+ZhKLDfM2RHHFKb4Q69PZjjihL67FywVDjNAF02ieh+aX YDYW8hcj0Nib0YVHbLN1EO4xGzgzhACpnm26FPWOjmp5rJUaTpaj4WIa28rcLhNP nvBFGfnK7jVhUD6tjQpiP1TermUurjlfPSpnNgqVKcBVZ8oNMa23uopC2OkCR2H/ CYn6nRc3CeGSa76Jvprnen02OVQ/oTXoXJhVYnuLp/WsJw== -----END CERTIFICATE-----Generated at Sat Jun 1 22:20:17 2024 by rpki-client on console-fra.rpki-client.org