$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/FoC5ErmwIPkN-M9yr5TdQp4zXnA.roa File: FoC5ErmwIPkN-M9yr5TdQp4zXnA.roa (raw, json) Hash identifier: JmAKF+azEVTbvQXGFbjNFFYRzGDAnXHvSpWIl/Eea9E= Subject key identifier: 16:80:B9:12:B9:B0:20:F9:0D:F8:CF:72:AF:94:DD:42:9E:33:5E:70 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0DB1 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/FoC5ErmwIPkN-M9yr5TdQp4zXnA.roa Signing time: Fri 01 Sep 2023 09:24:55 +0000 ROA not before: Fri 01 Sep 2023 09:24:55 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 192.72.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 17:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3505 (0xdb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Sep 1 09:24:55 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=1680B912B9B020F90DF8CF72AF94DD429E335E70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ad:0f:35:ab:63:c6:f8:27:1f:02:e3:aa:2c: e4:79:89:38:3e:a8:94:3d:7c:48:03:66:21:2f:c5: f1:cb:79:36:15:b0:a1:94:02:8b:fd:f8:8f:09:9e: 45:95:69:88:4a:07:e2:d2:25:a9:1d:5e:51:18:9f: 00:00:36:38:89:8a:a6:f5:b4:9c:57:4d:47:6b:e3: 2e:8c:90:5d:c9:30:d4:8e:33:50:58:14:f1:5c:f4: 27:18:d5:96:bd:f2:13:c2:97:86:7b:0f:6b:5b:49: 59:80:ee:fd:d2:db:5a:6f:1d:96:a8:95:ca:30:15: d2:90:ec:4a:28:48:4b:85:40:48:02:6e:80:6c:ee: f9:30:f4:6b:e0:a5:03:8a:5c:f0:a3:a7:fc:cb:cb: c9:43:61:68:74:05:8e:c9:9e:7e:fb:9d:9b:e5:80: d4:4c:44:1c:cf:c1:75:a0:7d:7d:b2:11:0a:b0:e7: ef:4c:af:22:59:8e:4b:2e:ae:a6:0d:af:59:19:31: e2:67:37:b9:4f:a4:9d:45:74:08:01:3f:88:1e:2f: 69:a0:40:2b:1d:03:03:fa:0b:eb:ce:fa:65:36:bf: 88:50:d4:6b:cc:a2:a5:91:69:b2:16:ab:d0:ca:be: 4d:38:48:93:be:3e:8f:e0:f6:5d:4b:88:e5:fa:d8: c0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:80:B9:12:B9:B0:20:F9:0D:F8:CF:72:AF:94:DD:42:9E:33:5E:70 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/FoC5ErmwIPkN-M9yr5TdQp4zXnA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.248.0/22 Signature Algorithm: sha256WithRSAEncryption 17:d8:c3:04:e2:7a:04:f5:9e:d9:40:7a:db:57:79:d2:e8:a8: 2d:8e:38:6e:eb:40:b8:1d:77:aa:f4:46:f6:08:d5:e1:f0:fd: c6:27:c0:88:04:6c:61:1f:23:ac:50:b2:1d:65:ac:31:41:fb: ab:74:73:19:67:c2:9b:14:0e:3a:fd:ee:ea:00:79:c8:01:1d: 2a:7e:80:1e:ab:a4:20:b2:78:78:33:57:70:fc:b9:00:a6:a5: 64:99:99:c7:76:bb:a3:17:5a:ff:28:9b:14:79:e0:30:b3:8c: e6:b7:e4:ad:b0:05:25:c8:c6:d9:6b:9b:4d:db:a7:63:12:6a: 5f:50:b7:9e:0b:70:20:17:96:f6:4f:50:28:cf:3e:c5:c2:2d: 3a:ac:f1:65:f1:ee:ed:45:39:ac:9a:cc:ce:56:16:51:9d:4f: ba:bb:e9:84:f2:03:8c:fb:c1:94:71:8d:47:8f:d5:b4:f8:53: d0:a6:aa:ca:10:f8:05:4c:1f:10:1d:37:7b:9a:7d:2c:bb:3b: c4:2e:3a:37:37:0b:dd:db:db:de:fd:ed:36:af:7f:12:d9:71: b7:d8:b4:5d:b7:7a:61:19:d0:85:27:97:42:05:07:f5:db:98: e8:2b:f0:0e:2e:57:e1:6a:c4:4e:6e:e7:f8:ea:89:89:20:38: b6:59:e2:fe -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDbEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMzA5MDEw OTI0NTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE2ODBCOTEyQjlCMDIw RjkwREY4Q0Y3MkFGOTRERDQyOUUzMzVFNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBrQ81q2PG+CcfAuOqLOR5iTg+qJQ9fEgDZiEvxfHLeTYVsKGU Aov9+I8JnkWVaYhKB+LSJakdXlEYnwAANjiJiqb1tJxXTUdr4y6MkF3JMNSOM1BY FPFc9CcY1Za98hPCl4Z7D2tbSVmA7v3S21pvHZaolcowFdKQ7EooSEuFQEgCboBs 7vkw9GvgpQOKXPCjp/zLy8lDYWh0BY7Jnn77nZvlgNRMRBzPwXWgfX2yEQqw5+9M ryJZjksurqYNr1kZMeJnN7lPpJ1FdAgBP4geL2mgQCsdAwP6C+vO+mU2v4hQ1GvM oqWRabIWq9DKvk04SJO+Po/g9l1LiOX62MC7AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUFoC5ErmwIPkN+M9yr5TdQp4zXnAwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRm9DNUVybXdJUGtOLU05eXI1VGRR cDR6WG5BLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsBI+DAN BgkqhkiG9w0BAQsFAAOCAQEAF9jDBOJ6BPWe2UB621d50uioLY44butAuB13qvRG 9gjV4fD9xifAiARsYR8jrFCyHWWsMUH7q3RzGWfCmxQOOv3u6gB5yAEdKn6AHquk ILJ4eDNXcPy5AKalZJmZx3a7oxda/yibFHngMLOM5rfkrbAFJcjG2WubTdunYxJq X1C3ngtwIBeW9k9QKM8+xcItOqzxZfHu7UU5rJrMzlYWUZ1PurvphPIDjPvBlHGN R4/VtPhT0KaqyhD4BUwfEB03e5p9LLs7xC46NzcL3dvb3v3tNq9/Etlxt9i0Xbd6 YRnQhSeXQgUH9duY6CvwDi5X4WrETm7n+OqJiSA4tlni/g== -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org