$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/KUgL6jFT8k2abvg68UetKb93j4I.roa File: KUgL6jFT8k2abvg68UetKb93j4I.roa (raw, json) Hash identifier: goRVYX3MMWdr9hdiglFbCsITedpEsjxnED9VjOr6/H8= Subject key identifier: 29:48:0B:EA:31:53:F2:4D:9A:6E:F8:3A:F1:47:AD:29:BF:77:8F:82 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0DB2 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KUgL6jFT8k2abvg68UetKb93j4I.roa Signing time: Fri 01 Sep 2023 09:24:56 +0000 ROA not before: Fri 01 Sep 2023 09:24:56 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 139.175.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3506 (0xdb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Sep 1 09:24:56 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=29480BEA3153F24D9A6EF83AF147AD29BF778F82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1c:46:a8:cc:07:68:c1:b0:ac:f4:ca:ff:6b: a6:f6:7a:5f:16:35:02:a4:9a:4f:a7:8e:a3:7a:dd: f9:5e:d6:53:9a:03:1a:44:5b:6e:f3:c3:85:7b:75: 37:75:b3:a3:9e:76:a8:8e:64:0f:0a:e8:b3:2a:f3: 0f:2e:81:15:05:19:37:8a:fb:81:41:e2:d1:69:f2: 17:24:59:35:b9:73:a2:f8:df:e7:43:6c:f9:ae:21: cd:8e:c4:14:b0:36:c7:31:13:b1:92:49:f9:b8:f7: 6f:ea:8d:31:60:08:7a:32:f1:3f:a7:6e:ca:fe:f2: c9:36:a6:2d:5c:b1:8d:68:e2:76:67:42:3d:de:fb: 68:46:b9:20:6e:b0:a7:d1:e3:3c:28:cd:dc:74:ff: 28:96:cc:52:7f:fb:70:a3:b6:f3:63:af:13:f6:2e: 7f:cc:25:62:42:2b:32:65:8f:23:ad:f7:9e:b9:bd: 08:bc:9b:d5:e5:b0:d1:93:ed:7a:e9:a6:57:96:19: 87:4d:db:0b:04:1c:5e:f2:1b:ca:16:c4:09:54:85: f9:8b:56:30:6b:b5:02:fb:3b:64:97:8f:7f:8c:14: ff:5d:e3:4b:95:b2:e2:b8:35:2f:a8:3b:df:8b:3e: ad:4b:6e:0a:31:81:f4:c4:36:b7:ea:a1:d1:d7:62: 4c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:48:0B:EA:31:53:F2:4D:9A:6E:F8:3A:F1:47:AD:29:BF:77:8F:82 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KUgL6jFT8k2abvg68UetKb93j4I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 139.175.0.0/16 Signature Algorithm: sha256WithRSAEncryption 05:dc:4f:6f:5c:db:d3:76:a1:78:4e:35:23:23:f1:23:ce:dc: bb:ee:79:1c:d3:1d:f3:f6:58:25:ff:7a:9c:d8:ce:b9:a3:17: 3f:3e:bf:c9:cb:75:b3:5e:d1:42:84:0d:28:26:c4:74:82:69: 86:dd:11:f1:57:b5:81:42:e2:bf:f6:41:d0:5b:c7:67:bd:12: a3:0b:2d:2d:52:5f:5f:81:ed:96:fa:23:7e:78:d5:bb:43:34: 16:6c:15:c1:a5:cc:67:05:52:80:30:99:6a:68:98:be:08:ba: 5c:82:a9:1c:b2:2b:7e:39:7b:34:e6:6d:33:22:71:b6:8b:ac: a5:c0:33:3b:d5:56:dc:2e:e6:53:49:d6:af:57:da:63:a1:80: e0:8d:65:3c:e5:82:2f:43:93:6a:f9:7c:78:58:25:9e:1a:1e: a2:d0:55:7d:d1:a9:5b:26:f9:a8:ef:80:2e:7c:ee:ed:aa:68: d9:81:ad:1a:12:59:ee:d8:45:5f:8c:09:8d:66:6b:4c:27:83: a1:26:8f:19:69:b9:52:55:bd:a7:93:12:96:7a:86:1b:24:34: 89:b8:5b:e3:e6:e4:ff:74:50:c7:8b:c5:07:1e:8d:06:5a:9d: c3:43:75:0d:85:c9:d6:26:d1:d0:ce:58:a9:1f:57:ab:55:f9: 3c:eb:dc:30 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICDbIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMzA5MDEw OTI0NTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI5NDgwQkVBMzE1M0Yy NEQ5QTZFRjgzQUYxNDdBRDI5QkY3NzhGODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvHEaozAdowbCs9Mr/a6b2el8WNQKkmk+njqN63fle1lOaAxpE W27zw4V7dTd1s6OedqiOZA8K6LMq8w8ugRUFGTeK+4FB4tFp8hckWTW5c6L43+dD bPmuIc2OxBSwNscxE7GSSfm492/qjTFgCHoy8T+nbsr+8sk2pi1csY1o4nZnQj3e +2hGuSBusKfR4zwozdx0/yiWzFJ/+3CjtvNjrxP2Ln/MJWJCKzJljyOt9565vQi8 m9XlsNGT7XrppleWGYdN2wsEHF7yG8oWxAlUhfmLVjBrtQL7O2SXj3+MFP9d40uV suK4NS+oO9+LPq1LbgoxgfTENrfqodHXYkyrAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUKUgL6jFT8k2abvg68UetKb93j4IwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvS1VnTDZqRlQ4azJhYnZnNjhVZXRL YjkzajRJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAIuvMA0G CSqGSIb3DQEBCwUAA4IBAQAF3E9vXNvTdqF4TjUjI/Ejzty77nkc0x3z9lgl/3qc 2M65oxc/Pr/Jy3WzXtFChA0oJsR0gmmG3RHxV7WBQuK/9kHQW8dnvRKjCy0tUl9f ge2W+iN+eNW7QzQWbBXBpcxnBVKAMJlqaJi+CLpcgqkcsit+OXs05m0zInG2i6yl wDM71VbcLuZTSdavV9pjoYDgjWU85YIvQ5Nq+Xx4WCWeGh6i0FV90albJvmo74Au fO7tqmjZga0aElnu2EVfjAmNZmtMJ4OhJo8ZablSVb2nkxKWeoYbJDSJuFvj5uT/ dFDHi8UHHo0GWp3DQ3UNhcnWJtHQzlipH1erVfk869ww -----END CERTIFICATE-----Generated at Sun Jun 2 07:14:23 2024 by rpki-client on console-fra.rpki-client.org