$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Kl94xS7O2D6dZBCWCYfcfLrk064.roa File: Kl94xS7O2D6dZBCWCYfcfLrk064.roa (raw, json) Hash identifier: F1K3MToo/qapZPn4DGV/t+szMbS7K0DKLPxV703QU4M= Subject key identifier: 2A:5F:78:C5:2E:CE:D8:3E:9D:64:10:96:09:87:DC:7C:BA:E4:D3:AE Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1358 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Kl94xS7O2D6dZBCWCYfcfLrk064.roa Signing time: Fri 01 Sep 2023 09:24:49 +0000 ROA not before: Fri 01 Sep 2023 09:24:49 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 45.64.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4952 (0x1358) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:49 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2A5F78C52ECED83E9D6410960987DC7CBAE4D3AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:68:e8:f4:f4:66:3b:41:37:69:60:c5:1c:ec: 93:00:a3:27:d8:24:b5:6e:eb:7c:d0:3d:33:67:ec: 09:1e:7b:f2:58:18:75:17:aa:7a:ff:1c:c3:f7:a1: 59:9c:10:91:fd:68:2d:7d:a4:3a:58:fa:47:42:fc: 9a:72:bd:38:9d:e2:6e:a9:9c:20:b0:31:57:4a:16: ab:46:b1:89:0b:e1:3b:ec:15:ac:3b:dc:38:f3:03: 12:76:4e:37:98:d1:df:bf:9c:4b:64:a8:89:3a:a2: 04:fb:6d:82:4c:1d:e0:63:90:8d:07:1d:2e:ce:9f: c1:3f:72:ea:50:8b:40:6b:6f:73:d6:a4:b9:f3:4b: 93:50:86:97:75:31:2e:45:db:82:32:74:ad:2b:7e: 29:47:24:36:f6:98:54:c1:b7:4c:2a:41:ca:60:c1: eb:76:05:db:16:b5:1d:6e:7f:9f:c3:f5:14:8b:3c: ca:94:e9:5c:bd:42:21:2f:ab:58:63:d2:85:b1:5e: ed:a0:88:1e:95:67:62:f4:58:55:c9:a5:8a:7f:99: 97:fb:25:36:45:3c:25:53:50:eb:58:6f:da:f7:3d: 72:5b:4e:0f:81:af:d6:4b:44:f2:38:78:1f:83:73: 54:6c:8b:2e:40:59:c3:b5:a2:f3:f6:1d:e4:4f:eb: 35:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:5F:78:C5:2E:CE:D8:3E:9D:64:10:96:09:87:DC:7C:BA:E4:D3:AE X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Kl94xS7O2D6dZBCWCYfcfLrk064.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.64.228.0/22 Signature Algorithm: sha256WithRSAEncryption a4:a1:5c:05:83:63:d4:46:27:47:4b:b3:46:de:8e:e4:13:69: 57:cf:f4:7d:72:f1:03:ac:df:98:62:2a:35:10:05:b3:aa:4b: 85:6d:ae:56:85:54:3d:8d:7f:06:68:e0:ef:af:21:18:a1:cf: b4:db:7b:4d:0f:b5:a2:90:b0:7f:b2:d0:70:34:10:9a:63:f0: aa:6c:d6:15:ea:14:9e:0c:a6:cd:cc:c4:61:20:56:42:d7:b2: 53:1c:9f:96:e3:af:a3:90:a6:eb:10:98:c5:95:53:13:e3:d8: 53:b9:84:55:82:53:18:6d:d8:e1:f5:d0:34:50:cf:97:48:9a: e9:8b:6c:7c:d1:5e:51:21:fa:29:e2:97:42:59:40:1c:9f:c6: 1b:6a:e2:6b:39:1c:2f:99:8e:52:df:24:16:0f:88:f9:00:e7: 9d:6a:74:89:40:49:ad:f3:ca:15:ea:8c:93:4f:a9:a6:5f:c0: 67:92:a3:07:57:f3:b1:37:c9:81:cc:e2:ba:78:9d:6a:6d:df: 04:0b:31:49:48:d1:79:77:dc:d0:67:da:b6:ad:4d:42:b3:47: 60:84:81:8a:ed:60:8a:31:53:61:8d:13:9b:e7:ad:1b:47:bc: d4:ed:ff:1f:41:8b:3d:af:bc:c7:3a:6c:eb:29:d1:a3:16:fc: 62:af:18:64 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE1gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJBNUY3OEM1MkVDRUQ4 M0U5RDY0MTA5NjA5ODdEQzdDQkFFNEQzQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPaOj09GY7QTdpYMUc7JMAoyfYJLVu63zQPTNn7Akee/JYGHUX qnr/HMP3oVmcEJH9aC19pDpY+kdC/JpyvTid4m6pnCCwMVdKFqtGsYkL4TvsFaw7 3DjzAxJ2TjeY0d+/nEtkqIk6ogT7bYJMHeBjkI0HHS7On8E/cupQi0Brb3PWpLnz S5NQhpd1MS5F24IydK0rfilHJDb2mFTBt0wqQcpgwet2BdsWtR1uf5/D9RSLPMqU 6Vy9QiEvq1hj0oWxXu2giB6VZ2L0WFXJpYp/mZf7JTZFPCVTUOtYb9r3PXJbTg+B r9ZLRPI4eB+Dc1Rsiy5AWcO1ovP2HeRP6zU7AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUKl94xS7O2D6dZBCWCYfcfLrk064wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvS2w5NHhTN08yRDZkWkJDV0NZZmNm THJrMDY0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1A5DAN BgkqhkiG9w0BAQsFAAOCAQEApKFcBYNj1EYnR0uzRt6O5BNpV8/0fXLxA6zfmGIq NRAFs6pLhW2uVoVUPY1/Bmjg768hGKHPtNt7TQ+1opCwf7LQcDQQmmPwqmzWFeoU ngymzczEYSBWQteyUxyfluOvo5Cm6xCYxZVTE+PYU7mEVYJTGG3Y4fXQNFDPl0ia 6YtsfNFeUSH6KeKXQllAHJ/GG2riazkcL5mOUt8kFg+I+QDnnWp0iUBJrfPKFeqM k0+ppl/AZ5KjB1fzsTfJgcziunidam3fBAsxSUjReXfc0Gfatq1NQrNHYISBiu1g ijFTYY0Tm+etG0e81O3/H0GLPa+8xzps6ynRoxb8Yq8YZA== -----END CERTIFICATE-----Generated at Sat Jun 1 22:20:17 2024 by rpki-client on console-fra.rpki-client.org