$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LzkFUv3pSFhg2mkv3wVq4CnFoVg.roa File: LzkFUv3pSFhg2mkv3wVq4CnFoVg.roa (raw, json) Hash identifier: V5GnAhJGfcQeaEs7972zIwMzqWFJW1KF2QdNcg9jKR4= Subject key identifier: 2F:39:05:52:FD:E9:48:58:60:DA:69:2F:DF:05:6A:E0:29:C5:A1:58 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1338 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LzkFUv3pSFhg2mkv3wVq4CnFoVg.roa Signing time: Fri 01 Sep 2023 09:24:39 +0000 ROA not before: Fri 01 Sep 2023 09:24:39 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18049 IP address blocks: 175.183.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4920 (0x1338) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:39 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2F390552FDE9485860DA692FDF056AE029C5A158 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7e:2e:40:11:b0:52:c5:67:65:14:01:eb:9a: ce:35:d7:71:01:35:e0:91:15:a6:dd:dc:c0:49:eb: ae:89:01:45:cc:68:83:93:6c:f3:60:ce:04:60:d6: cb:52:e8:1b:d6:53:10:1a:ec:dc:ec:d6:35:64:dc: 52:75:85:c3:cd:d9:fd:26:2b:2b:92:54:32:03:42: f5:3f:83:ed:79:3b:36:0c:1d:83:57:e5:41:3d:55: 80:42:44:68:51:22:0b:63:8f:4c:7a:49:9f:f8:1f: 01:33:aa:7a:b2:e9:24:18:cf:ec:0c:54:45:06:3d: a8:cb:2e:a0:f9:b5:cf:a1:29:40:67:e0:73:21:a9: 7e:da:09:1e:0e:13:0e:af:d2:ec:ce:e5:99:bb:b8: 20:d3:78:dc:84:75:a4:f0:af:43:4d:f7:fa:a8:5d: 47:e2:04:36:85:21:1b:64:09:52:70:c4:51:65:1a: e6:1e:4a:d4:1f:34:69:41:f2:60:27:55:fb:b3:7e: 31:45:3b:18:f5:3f:51:ce:65:20:83:77:64:a5:6b: 69:76:9f:78:22:fc:92:88:61:cc:1b:77:a9:b1:a8: 34:85:d8:3e:cc:08:c2:ce:90:d9:da:4e:48:ec:56: f3:94:22:64:ae:a1:c6:83:2a:8b:28:ab:bd:70:75: 36:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:39:05:52:FD:E9:48:58:60:DA:69:2F:DF:05:6A:E0:29:C5:A1:58 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LzkFUv3pSFhg2mkv3wVq4CnFoVg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.183.64.0/19 Signature Algorithm: sha256WithRSAEncryption 99:64:d9:8c:fa:25:27:02:fb:e4:8e:9a:f2:58:8a:1f:77:d6: a5:58:d6:d7:fe:a7:1b:c6:6d:9d:28:b5:e4:68:20:ca:a7:27: b5:f0:6d:f3:09:da:e8:2c:0d:0c:53:0d:9a:ca:91:43:f2:b2: 8f:84:b5:f0:af:db:ad:1b:15:9e:fd:41:8e:6b:2f:5c:28:9b: 7f:79:85:47:0c:c8:40:86:91:0c:4f:c9:b3:50:1e:7b:8b:2b: 00:41:e8:68:98:cc:3e:4c:67:d7:cb:11:f1:44:33:ff:90:a7: 9a:13:50:c5:74:f5:17:61:98:d2:71:9b:cb:79:9c:7d:28:b5: 28:46:e6:3f:d8:88:33:39:b7:37:b6:81:37:8a:4c:b6:6b:44: 58:96:b4:8a:e0:ce:59:cf:e4:35:f4:4e:8f:95:d0:e5:87:8d: 9b:54:01:a0:38:73:0f:29:2f:05:c8:3b:14:7c:42:c6:b6:85: 13:44:b1:27:17:83:2d:60:33:ad:e8:c7:71:87:66:88:e4:54: db:8f:1a:3b:ba:ca:50:c1:93:a5:d6:1a:ee:6e:a2:41:af:aa: d3:d5:84:10:3d:e5:f3:ff:4a:98:d7:10:a2:a1:08:7e:7e:93: 24:e2:e9:b4:25:1c:24:d2:8f:9f:cd:d9:a4:36:b9:da:42:d0: 19:82:4c:8b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEzgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MzlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJGMzkwNTUyRkRFOTQ4 NTg2MERBNjkyRkRGMDU2QUUwMjlDNUExNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/fi5AEbBSxWdlFAHrms4113EBNeCRFabd3MBJ666JAUXMaIOT bPNgzgRg1stS6BvWUxAa7Nzs1jVk3FJ1hcPN2f0mKyuSVDIDQvU/g+15OzYMHYNX 5UE9VYBCRGhRIgtjj0x6SZ/4HwEzqnqy6SQYz+wMVEUGPajLLqD5tc+hKUBn4HMh qX7aCR4OEw6v0uzO5Zm7uCDTeNyEdaTwr0NN9/qoXUfiBDaFIRtkCVJwxFFlGuYe StQfNGlB8mAnVfuzfjFFOxj1P1HOZSCDd2Sla2l2n3gi/JKIYcwbd6mxqDSF2D7M CMLOkNnaTkjsVvOUImSuocaDKosoq71wdTZZAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQULzkFUv3pSFhg2mkv3wVq4CnFoVgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTHprRlV2M3BTRmhnMm1rdjN3VnE0 Q25Gb1ZnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBa+3QDAN BgkqhkiG9w0BAQsFAAOCAQEAmWTZjPolJwL75I6a8liKH3fWpVjW1/6nG8ZtnSi1 5GggyqcntfBt8wna6CwNDFMNmsqRQ/Kyj4S18K/brRsVnv1BjmsvXCibf3mFRwzI QIaRDE/Js1Aee4srAEHoaJjMPkxn18sR8UQz/5CnmhNQxXT1F2GY0nGby3mcfSi1 KEbmP9iIMzm3N7aBN4pMtmtEWJa0iuDOWc/kNfROj5XQ5YeNm1QBoDhzDykvBcg7 FHxCxraFE0SxJxeDLWAzrejHcYdmiORU248aO7rKUMGTpdYa7m6iQa+q09WEED3l 8/9KmNcQoqEIfn6TJOLptCUcJNKPn83ZpDa52kLQGYJMiw== -----END CERTIFICATE-----Generated at Sat Jun 1 15:05:00 2024 by rpki-client on console-fra.rpki-client.org