$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LGfhN4QjETENkn3eo99UGGBnwF0.roa File: LGfhN4QjETENkn3eo99UGGBnwF0.roa (raw, json) Hash identifier: h0O1SM9AifBqRGnH5qe5q+d71va72gsPdt+uVuBzZXM= Subject key identifier: 2C:67:E1:37:84:23:11:31:0D:92:7D:DE:A3:DF:54:18:60:67:C0:5D Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13DE Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LGfhN4QjETENkn3eo99UGGBnwF0.roa Signing time: Fri 01 Sep 2023 09:25:32 +0000 ROA not before: Fri 01 Sep 2023 09:25:32 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 2401:8000::/26 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5086 (0x13de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:32 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2C67E137842311310D927DDEA3DF54186067C05D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9c:fb:4e:19:04:39:81:c3:98:a5:fe:8e:9e: eb:8a:15:54:e7:df:3d:56:83:23:30:c2:4e:45:08: 70:29:af:54:82:8b:42:12:5a:0d:9e:dc:f8:60:5c: bb:eb:74:ea:62:5e:a2:b0:f4:35:5d:f2:91:36:9f: ce:ed:c8:f0:0d:b2:c4:96:ce:2d:53:51:f5:c7:25: a5:8a:d4:c5:39:de:34:eb:54:4a:99:45:54:61:4f: 30:bc:15:5a:3a:f5:99:40:82:11:96:93:2e:40:2c: 01:e0:f2:3b:5d:75:94:60:5a:53:68:32:63:ed:17: 64:b1:ec:b1:30:9a:14:34:46:35:99:06:6e:e3:eb: 6e:d6:36:b3:c5:4c:33:df:6f:00:86:1f:65:30:24: 9f:0c:bc:a6:c9:ca:45:05:b6:b6:bd:b7:b7:46:49: df:94:1f:41:38:db:10:46:e5:3f:25:85:5d:ea:16: 9d:54:7b:b1:6c:f8:38:53:82:0e:6c:e8:b6:d9:d4: 98:86:18:9c:b2:01:99:a7:a4:6d:c3:8f:12:e8:50: 23:90:7c:c3:cf:c4:3e:a4:a8:da:f4:5a:b6:9f:67: d9:27:34:1b:27:80:be:b9:12:84:59:e6:cc:78:15: fb:3d:db:cc:e9:42:c8:7a:c5:02:8d:a0:3b:58:d9: 4d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:67:E1:37:84:23:11:31:0D:92:7D:DE:A3:DF:54:18:60:67:C0:5D X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LGfhN4QjETENkn3eo99UGGBnwF0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:8000::/26 Signature Algorithm: sha256WithRSAEncryption b5:6a:54:2d:c5:1d:5f:05:2b:b1:d9:61:ad:e7:4a:c7:5f:c4: 43:7a:90:35:51:9c:8e:8e:01:18:94:cc:b1:35:66:e1:5c:fe: a9:00:a2:a1:bd:2e:5f:c1:52:a0:d7:c3:76:8c:6a:af:69:a7: 26:78:2d:df:86:86:d0:a2:43:5d:51:25:ef:c7:d8:b8:aa:1c: f5:84:c1:b9:77:13:61:95:65:47:f8:bf:22:0a:ef:0a:f8:ec: 8e:06:ac:74:27:ab:53:97:52:a4:5c:30:ee:e3:00:b7:0a:5f: d8:1e:0e:a1:8c:9f:7f:c5:cb:0a:82:b4:33:cf:4d:48:38:17: e7:66:3b:95:27:54:bc:b4:0b:f1:82:7d:98:33:68:1b:b0:ec: 0c:21:21:e3:c6:f3:42:99:b9:42:fa:c5:e3:c7:86:1f:72:92: dc:37:c7:95:37:e1:91:41:ee:2c:e4:d5:1a:32:71:fe:00:dc: 60:14:f6:de:96:9d:3a:29:54:7f:df:1e:c4:5d:0b:29:8c:4c: f7:03:f0:ae:aa:77:2e:2d:a1:32:eb:50:7d:a4:9b:10:39:95: 02:25:f9:d2:85:74:6d:f9:5c:ce:a6:da:ee:8b:6d:1c:71:fd: 8e:2a:19:70:5e:eb:e5:15:2d:0f:c4:5f:5f:10:93:a4:75:4d: 52:ed:02:11 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICE94wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MzJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJDNjdFMTM3ODQyMzEx MzEwRDkyN0RERUEzREY1NDE4NjA2N0MwNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJnPtOGQQ5gcOYpf6OnuuKFVTn3z1WgyMwwk5FCHApr1SCi0IS Wg2e3PhgXLvrdOpiXqKw9DVd8pE2n87tyPANssSWzi1TUfXHJaWK1MU53jTrVEqZ RVRhTzC8FVo69ZlAghGWky5ALAHg8jtddZRgWlNoMmPtF2Sx7LEwmhQ0RjWZBm7j 627WNrPFTDPfbwCGH2UwJJ8MvKbJykUFtra9t7dGSd+UH0E42xBG5T8lhV3qFp1U e7Fs+DhTgg5s6LbZ1JiGGJyyAZmnpG3DjxLoUCOQfMPPxD6kqNr0WrafZ9knNBsn gL65EoRZ5sx4Ffs928zpQsh6xQKNoDtY2U23AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQULGfhN4QjETENkn3eo99UGGBnwF0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTEdmaE40UWpFVEVOa24zZW85OVVH R0Jud0YwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFBiQBgAAw DQYJKoZIhvcNAQELBQADggEBALVqVC3FHV8FK7HZYa3nSsdfxEN6kDVRnI6OARiU zLE1ZuFc/qkAoqG9Ll/BUqDXw3aMaq9ppyZ4Ld+GhtCiQ11RJe/H2LiqHPWEwbl3 E2GVZUf4vyIK7wr47I4GrHQnq1OXUqRcMO7jALcKX9geDqGMn3/FywqCtDPPTUg4 F+dmO5UnVLy0C/GCfZgzaBuw7AwhIePG80KZuUL6xePHhh9yktw3x5U34ZFB7izk 1Roycf4A3GAU9t6WnTopVH/fHsRdCymMTPcD8K6qdy4toTLrUH2kmxA5lQIl+dKF dG35XM6m2u6LbRxx/Y4qGXBe6+UVLQ/EX18Qk6R1TVLtAhE= -----END CERTIFICATE-----Generated at Sun Jun 2 09:37:17 2024 by rpki-client on console-ams.rpki-client.org