$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Lhqzib-eTuRZV9Yc01HEa9H0ScM.roa File: Lhqzib-eTuRZV9Yc01HEa9H0ScM.roa (raw, json) Hash identifier: o9ECvUxs6si42ZzyvTYuzThgQEXZf5h5XsQ4kXsyzEk= Subject key identifier: 2E:1A:B3:89:BF:9E:4E:E4:59:57:D6:1C:D3:51:C4:6B:D1:F4:49:C3 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 135C Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Lhqzib-eTuRZV9Yc01HEa9H0ScM.roa Signing time: Fri 01 Sep 2023 09:24:50 +0000 ROA not before: Fri 01 Sep 2023 09:24:50 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 210.64.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4956 (0x135c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:50 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2E1AB389BF9E4EE45957D61CD351C46BD1F449C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d0:04:fb:2f:94:b7:b3:f5:c7:60:fd:fc:d6: b9:02:94:f7:c6:2c:8b:c7:6c:fd:49:4f:62:7f:f1: 67:ce:99:fd:c8:ef:aa:6a:2e:21:4f:1d:62:4f:f8: 73:a5:da:d0:58:a6:8a:5e:51:6e:fa:e0:31:c6:ff: 11:65:22:e9:e2:ab:0a:24:60:4b:96:f2:7f:e6:33: 53:16:27:aa:60:45:5e:cc:7a:ef:0c:30:b5:d8:84: 9a:9d:98:d5:9f:f3:c9:62:c8:d1:ee:d1:de:b5:a2: c3:46:34:74:12:6e:a9:59:7e:47:09:fd:50:cf:45: 25:67:5a:4c:2c:2f:86:33:d2:bb:08:65:78:4d:ed: 55:45:c6:26:d4:0b:f4:86:30:4c:33:d4:13:b6:30: 42:ab:23:1e:e7:3b:ba:7d:27:e9:1e:52:aa:13:58: 8f:cd:8f:13:91:9d:2e:25:7b:98:7b:5f:d7:aa:7b: 1f:99:7a:92:bb:5d:34:7f:6f:4e:27:be:05:e2:62: c3:39:90:78:c0:8d:42:7f:dc:57:b5:f2:a9:09:d9: b6:3e:80:a2:b5:ec:6a:00:2d:37:c0:6f:40:63:c9: 1a:1f:74:cb:23:21:7c:2b:54:ee:91:de:f9:82:c8: 48:8d:cf:17:2b:c0:6a:a3:46:30:22:d3:34:d9:78: f7:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:1A:B3:89:BF:9E:4E:E4:59:57:D6:1C:D3:51:C4:6B:D1:F4:49:C3 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Lhqzib-eTuRZV9Yc01HEa9H0ScM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.64.0.0/16 Signature Algorithm: sha256WithRSAEncryption 21:02:3b:70:45:f7:b0:e3:e6:d2:f1:1c:76:f3:55:7e:fc:cd: fe:14:64:5d:a9:ed:50:84:ec:06:60:eb:be:0d:26:1c:94:83: 3f:57:85:8f:c5:e4:d4:1b:fc:1f:24:53:fd:44:33:cb:3e:bd: e9:b8:63:df:bd:82:fd:58:60:8a:26:c5:d5:af:0d:81:2c:16: 1b:6a:00:35:0c:f1:9d:a4:a9:d8:44:e8:22:94:7f:58:1d:9f: 5e:65:cb:09:21:de:f7:11:2f:88:68:93:6f:90:24:28:3b:cb: 20:35:18:e8:23:fc:39:e4:01:26:de:57:af:7e:a1:a9:6f:b3: 47:30:44:9f:ec:9a:e7:2f:c6:9d:9f:f5:09:36:07:29:6b:c0: 77:78:4b:86:28:f3:a1:fa:b7:94:35:e5:de:29:21:43:2a:ac: e4:d5:7a:90:ce:c1:98:b9:19:17:11:aa:4b:9f:dc:28:01:37: 83:2c:65:89:35:ef:5c:d4:57:b8:b1:ff:f4:dd:de:08:e5:7a: 46:2f:70:7f:d0:8c:0c:81:c9:6b:6b:88:7f:62:84:84:89:12: 9c:cc:90:01:d7:d0:7b:79:cd:a4:08:fd:2a:0b:01:60:5c:b0: 6a:c6:71:8f:e3:96:2d:69:d9:81:45:aa:d6:4b:e3:8e:eb:e8: df:c4:71:96 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICE1wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJFMUFCMzg5QkY5RTRF RTQ1OTU3RDYxQ0QzNTFDNDZCRDFGNDQ5QzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ0AT7L5S3s/XHYP381rkClPfGLIvHbP1JT2J/8WfOmf3I76pq LiFPHWJP+HOl2tBYpopeUW764DHG/xFlIuniqwokYEuW8n/mM1MWJ6pgRV7Meu8M MLXYhJqdmNWf88liyNHu0d61osNGNHQSbqlZfkcJ/VDPRSVnWkwsL4Yz0rsIZXhN 7VVFxibUC/SGMEwz1BO2MEKrIx7nO7p9J+keUqoTWI/NjxORnS4le5h7X9eqex+Z epK7XTR/b04nvgXiYsM5kHjAjUJ/3Fe18qkJ2bY+gKK17GoALTfAb0BjyRofdMsj IXwrVO6R3vmCyEiNzxcrwGqjRjAi0zTZePeTAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQULhqzib+eTuRZV9Yc01HEa9H0ScMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTGhxemliLWVUdVJaVjlZYzAxSEVh OUgwU2NNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANJAMA0G CSqGSIb3DQEBCwUAA4IBAQAhAjtwRfew4+bS8Rx281V+/M3+FGRdqe1QhOwGYOu+ DSYclIM/V4WPxeTUG/wfJFP9RDPLPr3puGPfvYL9WGCKJsXVrw2BLBYbagA1DPGd pKnYROgilH9YHZ9eZcsJId73ES+IaJNvkCQoO8sgNRjoI/w55AEm3levfqGpb7NH MESf7JrnL8adn/UJNgcpa8B3eEuGKPOh+reUNeXeKSFDKqzk1XqQzsGYuRkXEapL n9woATeDLGWJNe9c1Fe4sf/03d4I5XpGL3B/0IwMgclra4h/YoSEiRKczJAB19B7 ec2kCP0qCwFgXLBqxnGP45YtadmBRarWS+OO6+jfxHGW -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org