$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/MSrLOLYgAKEqGlHJPGEjct3iLLA.roa File: MSrLOLYgAKEqGlHJPGEjct3iLLA.roa (raw, json) Hash identifier: wZYKxal1XcHWfsrPtB5KNroKkOyHOihCBUxEZDO8oAQ= Subject key identifier: 31:2A:CB:38:B6:20:00:A1:2A:1A:51:C9:3C:61:23:72:DD:E2:2C:B0 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 135D Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MSrLOLYgAKEqGlHJPGEjct3iLLA.roa Signing time: Fri 01 Sep 2023 09:24:50 +0000 ROA not before: Fri 01 Sep 2023 09:24:50 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131597 IP address blocks: 106.105.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4957 (0x135d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:50 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=312ACB38B62000A12A1A51C93C612372DDE22CB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3e:72:c1:f6:aa:b9:a8:08:59:05:b0:2a:85: dc:dd:3d:25:e6:bf:3b:dd:f3:9a:bc:d9:85:3f:20: c4:0f:e4:55:b9:e5:25:f2:60:87:fc:24:5a:10:0f: 4f:d6:94:8d:ba:f2:78:9c:c3:7b:f8:72:e4:72:84: 86:82:27:5d:91:71:7d:12:56:c6:03:20:6f:49:14: 8f:24:6d:be:15:cd:7c:ae:71:0d:ba:66:f8:43:76: b8:75:9b:51:7f:61:56:18:99:60:61:0e:b4:3b:26: ff:82:c8:f9:e3:d1:18:8d:d2:3f:86:90:2c:84:4f: 50:78:09:a4:bf:c3:f7:11:43:c0:0d:c6:2d:f0:a0: 5d:fa:f0:9c:a6:f6:d8:92:e6:5a:f8:ad:25:39:13: c6:0b:8b:db:a7:64:30:77:f0:3b:cd:28:e3:c2:dc: 52:aa:5f:c7:b0:db:1e:af:99:f8:e3:a4:42:22:21: 22:00:d9:48:59:1d:0b:ba:27:2b:9d:e4:00:97:f2: 10:27:c7:34:4a:84:5c:57:cf:fa:20:2a:55:4f:20: fe:0f:ad:12:9b:58:b2:ed:18:79:93:9e:a2:64:e8: ed:67:04:15:9b:d4:36:5c:48:02:22:79:b6:5e:e9: 29:d1:02:a2:cd:d4:ba:b5:a9:92:25:6e:8b:71:ee: 27:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:2A:CB:38:B6:20:00:A1:2A:1A:51:C9:3C:61:23:72:DD:E2:2C:B0 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MSrLOLYgAKEqGlHJPGEjct3iLLA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.224.0/21 Signature Algorithm: sha256WithRSAEncryption 0a:00:70:19:a6:14:c9:a8:8b:4b:49:5d:e2:39:a3:42:7d:61: 52:66:cd:de:02:6a:3e:67:0b:b0:3a:ab:42:01:63:69:88:db: 6e:bb:b2:4b:f7:04:1b:8c:f0:c3:9e:59:8d:ef:ce:e3:68:d7: 04:54:92:80:65:73:c2:51:9f:20:ca:f0:82:3d:84:c6:1f:6c: 2e:f4:b1:bc:69:cc:03:3c:06:7b:9d:bf:e0:b3:90:56:3b:d9: c9:67:bf:cf:79:ab:c4:ab:ed:3b:49:b8:04:35:62:45:5f:c9: bf:a2:4e:60:c1:db:f4:ae:61:a3:d4:c6:7b:eb:25:eb:a5:80: 07:5f:0d:96:58:a3:6e:b9:a5:fe:14:56:ed:90:70:b6:83:dc: 63:ff:d3:09:19:e0:9d:47:6b:7a:7c:48:09:0f:d7:fe:24:28: d2:e7:59:8c:91:33:93:a0:b3:4c:c9:29:12:94:bd:fb:86:3a: 48:5a:10:eb:a6:56:a5:d3:a2:3b:5c:9b:ce:00:6d:c2:fa:fb: 5b:e1:8e:2f:b8:87:57:2b:8d:b3:a2:cb:1d:87:64:70:e7:0c: 8b:d6:17:12:b5:6a:be:0b:12:b1:0e:91:e6:bf:e0:0a:ba:8e: d6:b4:8b:e3:18:8c:75:a3:4c:17:33:5d:f5:7b:8d:4d:fc:3d: 62:ec:1b:fc -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE10wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDMxMkFDQjM4QjYyMDAw QTEyQTFBNTFDOTNDNjEyMzcyRERFMjJDQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMPnLB9qq5qAhZBbAqhdzdPSXmvzvd85q82YU/IMQP5FW55SXy YIf8JFoQD0/WlI268nicw3v4cuRyhIaCJ12RcX0SVsYDIG9JFI8kbb4VzXyucQ26 ZvhDdrh1m1F/YVYYmWBhDrQ7Jv+CyPnj0RiN0j+GkCyET1B4CaS/w/cRQ8ANxi3w oF368Jym9tiS5lr4rSU5E8YLi9unZDB38DvNKOPC3FKqX8ew2x6vmfjjpEIiISIA 2UhZHQu6Jyud5ACX8hAnxzRKhFxXz/ogKlVPIP4PrRKbWLLtGHmTnqJk6O1nBBWb 1DZcSAIiebZe6SnRAqLN1Lq1qZIlbotx7icfAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUMSrLOLYgAKEqGlHJPGEjct3iLLAwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTVNyTE9MWWdBS0VxR2xISlBHRWpj dDNpTExBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2pp4DAN BgkqhkiG9w0BAQsFAAOCAQEACgBwGaYUyaiLS0ld4jmjQn1hUmbN3gJqPmcLsDqr QgFjaYjbbruyS/cEG4zww55Zje/O42jXBFSSgGVzwlGfIMrwgj2Exh9sLvSxvGnM AzwGe52/4LOQVjvZyWe/z3mrxKvtO0m4BDViRV/Jv6JOYMHb9K5ho9TGe+sl66WA B18Nllijbrml/hRW7ZBwtoPcY//TCRngnUdrenxICQ/X/iQo0udZjJEzk6CzTMkp EpS9+4Y6SFoQ66ZWpdOiO1ybzgBtwvr7W+GOL7iHVyuNs6LLHYdkcOcMi9YXErVq vgsSsQ6R5r/gCrqO1rSL4xiMdaNMFzNd9XuNTfw9Yuwb/A== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org