$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/J-Ayu-5OP9fjAqhQONcWklx2pfI.roa File: J-Ayu-5OP9fjAqhQONcWklx2pfI.roa (raw, json) Hash identifier: oQshvKPtLMNiRkZcEOPXnvygvf25rQEfr6f4ikBWN2M= Subject key identifier: 27:E0:32:BB:EE:4E:3F:D7:E3:02:A8:50:38:D7:16:92:5C:76:A5:F2 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1375 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/J-Ayu-5OP9fjAqhQONcWklx2pfI.roa Signing time: Fri 01 Sep 2023 09:24:58 +0000 ROA not before: Fri 01 Sep 2023 09:24:58 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 211.74.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4981 (0x1375) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:58 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=27E032BBEE4E3FD7E302A85038D716925C76A5F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:99:1e:f9:5e:64:85:5d:c6:d1:6c:bc:56:f9: f1:b8:e7:33:cf:40:9c:21:8f:17:38:b1:a9:4b:44: 16:ad:d1:df:7d:f8:cf:08:ae:81:99:57:eb:c9:6d: d9:9f:b1:ad:44:51:fc:c0:b6:30:3e:4e:2e:02:8b: b3:d1:01:49:a2:01:2f:b3:ae:a6:b5:3d:e4:c0:34: cb:ec:65:02:15:d9:5e:c9:62:58:64:18:f2:c8:9f: f2:29:7f:fc:cf:ee:4c:8f:f6:85:78:5e:5a:b1:3f: 18:53:e9:63:4f:f3:16:22:47:7d:f9:e9:ac:8d:05: 1e:97:30:a7:1d:5a:6e:80:53:48:e8:9c:ac:fc:1a: 10:fa:80:ff:47:1f:e1:7b:24:fc:a0:57:47:ec:6d: 58:88:07:d1:31:f3:29:9c:dd:38:81:dd:e5:20:51: b4:bb:ce:d1:72:23:e5:b6:1a:b7:9e:b4:a6:4d:6d: 10:bc:9f:a0:3f:6b:4b:37:b1:25:79:c1:e7:3e:41: b5:c8:62:f0:99:8e:48:14:18:bd:64:f5:11:8a:96: 43:1b:36:32:6b:b0:da:f3:6f:6a:56:39:96:b4:23: fd:83:16:78:c1:f1:a5:94:eb:2f:ce:c7:f7:ac:3b: 73:36:9a:da:b7:9b:9a:0b:47:e6:f3:ab:d4:8d:13: 39:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:E0:32:BB:EE:4E:3F:D7:E3:02:A8:50:38:D7:16:92:5C:76:A5:F2 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/J-Ayu-5OP9fjAqhQONcWklx2pfI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.74.0.0/16 Signature Algorithm: sha256WithRSAEncryption 07:a9:b3:6e:b3:22:21:f2:bc:c5:fd:46:99:ea:6a:61:62:25: ac:ae:20:d0:1a:ab:91:ad:e6:da:32:df:69:43:73:11:52:b4: 4e:78:48:28:dd:62:3a:db:f3:9e:21:e7:b3:d0:70:b7:62:1f: 29:2b:79:bb:32:aa:1c:03:ee:28:e7:6b:26:ab:84:38:65:1b: ac:09:6a:1b:8d:dc:e1:fb:28:b6:67:71:dc:7c:8a:2a:74:d3: 3a:ee:ff:df:be:0b:8e:4a:bc:c1:29:1e:44:5d:7e:3a:ee:70: 34:02:c5:72:03:68:0a:a4:5e:b8:e5:fd:29:07:75:7d:3b:24: 59:6b:52:bb:3b:11:33:e8:4a:4b:1c:77:5b:4b:25:8a:7e:a0: 88:a2:ca:c3:b0:84:b5:55:1e:46:1b:27:bc:96:42:e6:f6:ef: e0:10:d8:4b:22:af:3e:3b:f2:ff:f1:3d:71:65:9d:ea:c1:e0: bd:9b:b5:77:f1:95:34:a9:35:5a:84:df:d2:0d:34:f5:be:10: dc:67:b3:57:09:b5:48:7b:54:e2:6f:d0:8c:70:0c:6a:59:15: 0b:5c:ea:f4:51:16:23:57:ac:38:e7:03:37:ac:cf:7b:c8:e4: 71:ad:36:73:48:0a:a1:70:02:02:53:10:19:48:03:4d:33:17: 76:34:61:a9 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICE3UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI3RTAzMkJCRUU0RTNG RDdFMzAyQTg1MDM4RDcxNjkyNUM3NkE1RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7mR75XmSFXcbRbLxW+fG45zPPQJwhjxc4salLRBat0d99+M8I roGZV+vJbdmfsa1EUfzAtjA+Ti4Ci7PRAUmiAS+zrqa1PeTANMvsZQIV2V7JYlhk GPLIn/Ipf/zP7kyP9oV4XlqxPxhT6WNP8xYiR3356ayNBR6XMKcdWm6AU0jonKz8 GhD6gP9HH+F7JPygV0fsbViIB9Ex8ymc3TiB3eUgUbS7ztFyI+W2GreetKZNbRC8 n6A/a0s3sSV5wec+QbXIYvCZjkgUGL1k9RGKlkMbNjJrsNrzb2pWOZa0I/2DFnjB 8aWU6y/Ox/esO3M2mtq3m5oLR+bzq9SNEzkrAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUJ+Ayu+5OP9fjAqhQONcWklx2pfIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSi1BeXUtNU9QOWZqQXFoUU9OY1dr bHgycGZJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANNKMA0G CSqGSIb3DQEBCwUAA4IBAQAHqbNusyIh8rzF/UaZ6mphYiWsriDQGquRrebaMt9p Q3MRUrROeEgo3WI62/OeIeez0HC3Yh8pK3m7MqocA+4o52smq4Q4ZRusCWobjdzh +yi2Z3HcfIoqdNM67v/fvguOSrzBKR5EXX467nA0AsVyA2gKpF645f0pB3V9OyRZ a1K7OxEz6EpLHHdbSyWKfqCIosrDsIS1VR5GGye8lkLm9u/gENhLIq8+O/L/8T1x ZZ3qweC9m7V38ZU0qTVahN/SDTT1vhDcZ7NXCbVIe1Tib9CMcAxqWRULXOr0URYj V6w45wM3rM97yORxrTZzSAqhcAICUxAZSANNMxd2NGGp -----END CERTIFICATE-----Generated at Sun Jun 2 07:14:23 2024 by rpki-client on console-fra.rpki-client.org