$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/GKDUrgSVaYDpxVI3Kaav21wQQ6g.roa File: GKDUrgSVaYDpxVI3Kaav21wQQ6g.roa (raw, json) Hash identifier: 4T4c+j2yLfDw+s5Jj4n5HLrSv2IbEeCApjL7kB6psW8= Subject key identifier: 18:A0:D4:AE:04:95:69:80:E9:C5:52:37:29:A6:AF:DB:5C:10:43:A8 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1396 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GKDUrgSVaYDpxVI3Kaav21wQQ6g.roa Signing time: Fri 01 Sep 2023 09:25:10 +0000 ROA not before: Fri 01 Sep 2023 09:25:10 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131586 IP address blocks: 175.183.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5014 (0x1396) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:10 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=18A0D4AE04956980E9C5523729A6AFDB5C1043A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:da:84:78:97:4f:13:8f:d9:25:3f:94:0c:16: 7f:6b:8e:21:f5:36:9a:cc:dc:25:d4:e3:6a:3f:6b: 65:47:ab:72:90:d9:df:51:2c:0f:ba:e4:c2:0f:39: 44:26:a3:e6:4e:33:26:8e:dd:7a:8c:78:10:60:ad: 12:ef:e3:3f:e1:4f:7f:78:84:61:8a:8e:26:ec:11: 0c:c1:6e:8a:4a:3f:47:d5:b7:d1:fc:1d:6e:a1:54: b8:18:d8:c5:0f:b1:72:c0:3a:e9:32:f9:a4:72:74: 4e:ed:4a:29:30:72:2f:b2:32:fc:72:a9:4d:9e:3b: be:7e:03:c6:ea:58:01:03:ea:6c:ae:07:87:f3:23: f2:83:ee:91:34:7c:84:59:18:6f:9e:e2:96:0f:5e: 27:25:70:98:3d:91:32:f4:a3:ec:ac:a5:e3:8f:99: 56:da:b8:9f:d1:a8:7b:b5:d1:fd:b3:a4:0b:00:79: c2:7a:d7:c8:6c:15:ed:54:0c:da:e7:fe:a6:33:5e: b1:e1:68:98:26:ca:9a:c4:37:10:d3:7d:c3:a9:a0: b1:8e:91:75:09:75:c5:dc:98:6f:3b:7a:78:a7:48: b2:c9:96:67:fd:dc:01:1e:f2:21:36:a9:3f:eb:0d: 44:80:d6:4d:9a:96:1c:9f:24:86:58:55:f5:d6:70: b3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:A0:D4:AE:04:95:69:80:E9:C5:52:37:29:A6:AF:DB:5C:10:43:A8 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GKDUrgSVaYDpxVI3Kaav21wQQ6g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.183.136.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:80:37:85:e8:15:79:0c:51:a0:52:60:ef:c4:73:34:9e:0f: 0f:0f:1d:64:fa:68:c5:dc:00:ca:72:a4:ab:f2:80:80:ed:52: 44:92:f5:c6:70:57:1a:4c:cc:97:71:53:e9:d5:c6:8c:70:c1: d0:9f:96:ca:8c:d1:72:61:d9:35:73:ab:97:26:a1:f3:2b:18: 7d:11:76:b0:0b:fa:82:8e:8b:6a:39:4f:f7:ea:8c:12:af:7f: 3a:1d:0d:45:d8:82:21:55:9c:9c:0e:88:d4:ef:76:b6:d1:64: b4:63:00:07:ac:c0:29:dd:02:d1:88:e9:79:22:2b:ae:86:3d: a5:82:bb:f2:81:af:7c:5c:b1:3a:7e:a8:8c:05:44:a1:75:03: d1:36:da:f4:77:01:34:02:47:ad:d3:53:22:ab:c5:ed:96:8b: c4:c8:af:3e:0b:ae:93:f3:fd:03:36:4c:a5:d5:40:46:e0:88: 5c:4e:fb:66:75:22:72:37:f2:f4:7d:04:94:31:82:4e:2f:fb: a8:fc:0d:59:ef:77:13:00:e5:9a:7e:5b:c6:c5:3a:91:fa:41: 0a:73:7a:48:a7:e9:73:c5:08:51:f3:c8:b9:a1:41:fe:16:53: b3:85:d0:2e:2c:74:01:ec:c2:b8:9d:ad:cc:4d:02:84:60:56: d0:74:90:5e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE5YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE4QTBENEFFMDQ5NTY5 ODBFOUM1NTIzNzI5QTZBRkRCNUMxMDQzQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCv2oR4l08Tj9klP5QMFn9rjiH1NprM3CXU42o/a2VHq3KQ2d9R LA+65MIPOUQmo+ZOMyaO3XqMeBBgrRLv4z/hT394hGGKjibsEQzBbopKP0fVt9H8 HW6hVLgY2MUPsXLAOuky+aRydE7tSikwci+yMvxyqU2eO75+A8bqWAED6myuB4fz I/KD7pE0fIRZGG+e4pYPXiclcJg9kTL0o+yspeOPmVbauJ/RqHu10f2zpAsAecJ6 18hsFe1UDNrn/qYzXrHhaJgmyprENxDTfcOpoLGOkXUJdcXcmG87eninSLLJlmf9 3AEe8iE2qT/rDUSA1k2alhyfJIZYVfXWcLPVAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUGKDUrgSVaYDpxVI3Kaav21wQQ6gwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvR0tEVXJnU1ZhWURweFZJM0thYXYy MXdRUTZnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAK+3iDAN BgkqhkiG9w0BAQsFAAOCAQEAP4A3hegVeQxRoFJg78RzNJ4PDw8dZPpoxdwAynKk q/KAgO1SRJL1xnBXGkzMl3FT6dXGjHDB0J+WyozRcmHZNXOrlyah8ysYfRF2sAv6 go6LajlP9+qMEq9/Oh0NRdiCIVWcnA6I1O92ttFktGMAB6zAKd0C0YjpeSIrroY9 pYK78oGvfFyxOn6ojAVEoXUD0Tba9HcBNAJHrdNTIqvF7ZaLxMivPguuk/P9AzZM pdVARuCIXE77ZnUicjfy9H0ElDGCTi/7qPwNWe93EwDlmn5bxsU6kfpBCnN6SKfp c8UIUfPIuaFB/hZTs4XQLix0AezCuJ2tzE0ChGBW0HSQXg== -----END CERTIFICATE-----Generated at Sat Jun 1 15:05:00 2024 by rpki-client on console-fra.rpki-client.org