$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/NPrz2T5nD0eThiMouHD2bm9uF9A.roa File: NPrz2T5nD0eThiMouHD2bm9uF9A.roa (raw, json) Hash identifier: TnB/gFiexKjysMvSQq5uwUEJ0B3Ie6p8Oe29BeUwaK8= Subject key identifier: 34:FA:F3:D9:3E:67:0F:47:93:86:23:28:B8:70:F6:6E:6F:6E:17:D0 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 12E9 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NPrz2T5nD0eThiMouHD2bm9uF9A.roa Signing time: Fri 01 Sep 2023 09:24:15 +0000 ROA not before: Fri 01 Sep 2023 09:24:15 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131586 IP address blocks: 175.183.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4841 (0x12e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:15 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=34FAF3D93E670F4793862328B870F66E6F6E17D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3e:cd:1e:de:f5:09:e9:3c:60:cf:28:7b:02: 3f:2b:22:58:3f:1a:27:5b:31:39:c2:75:b9:58:e3: 41:e8:6e:c2:30:2f:3b:3b:73:76:98:62:ec:f3:1f: bd:63:73:a4:28:c4:f5:d3:94:d7:0d:f6:e8:7e:4c: 10:90:b2:72:96:1f:81:07:30:87:e5:70:c7:32:20: 4f:b6:85:33:fe:72:a1:66:04:a3:64:42:7a:a7:11: 66:98:79:97:dc:2e:67:38:fd:d6:23:c4:c9:73:c0: b8:4c:ba:e7:15:04:5f:c4:12:ce:aa:1e:8c:31:88: dc:22:eb:d3:df:2e:dc:49:4e:b8:43:62:02:69:64: 77:78:39:d0:01:28:b0:55:01:cf:b4:a2:8a:03:d2: 00:46:34:ba:06:e1:b3:22:bc:e1:c1:5a:a9:fe:26: ec:10:95:70:38:25:f2:b5:3f:12:75:3a:fe:06:66: da:2e:d3:fe:b4:2d:d7:98:2a:bc:6b:ca:1e:60:50: d7:d8:e4:3b:ef:f3:2b:16:2f:f9:44:83:76:62:a3: 7e:0b:23:93:da:6a:68:a2:02:27:0b:48:5c:cd:19: c2:be:8b:5d:b7:22:0b:43:fd:39:8f:82:bd:c4:25: ad:5e:ec:ae:56:0f:dd:ea:0e:15:90:38:b8:4e:7b: 0c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:FA:F3:D9:3E:67:0F:47:93:86:23:28:B8:70:F6:6E:6F:6E:17:D0 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NPrz2T5nD0eThiMouHD2bm9uF9A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.183.137.0/24 Signature Algorithm: sha256WithRSAEncryption 00:e2:73:12:fc:f9:b9:62:6c:9e:8c:5b:13:e9:2b:a3:68:f5: f1:cc:28:09:b3:f1:dd:e5:f4:42:d9:78:0f:b9:71:77:b0:7b: 04:f9:33:67:c0:a6:25:56:9c:e6:cc:ee:58:71:f9:4e:f3:86: 5b:96:2b:a3:ab:a7:9a:d0:00:15:c8:6c:c5:ed:6b:63:06:8d: 7e:37:90:6f:ba:10:49:bb:22:a6:c7:ce:b7:1b:91:81:4e:1e: 04:0b:34:2e:a9:24:46:7b:01:a1:a9:78:ce:31:1e:05:c4:85: 06:62:81:82:50:d5:07:8b:70:1b:17:b8:25:38:d6:4c:13:e2: 92:8f:21:99:19:a4:a3:5c:0a:06:2c:8c:26:8c:52:85:df:48: 47:26:5e:41:84:c8:61:22:4f:fe:fd:aa:8a:86:e0:b0:45:de: bc:51:c3:15:fd:cd:df:82:80:bb:af:26:55:1b:fc:f1:62:94: b1:01:de:d6:61:89:ff:43:09:cd:62:77:64:47:03:c1:bb:36: 9a:3c:f5:0b:1d:f3:e9:c8:86:16:09:4f:94:8e:21:ac:6e:11: 8c:9a:db:ab:80:47:9e:9c:aa:e1:69:6e:a3:5e:cd:57:14:c0: d3:ed:0d:c1:7e:ab:20:1d:6d:a7:4c:7a:83:74:0e:3b:39:cb: ca:8c:b0:27 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEukwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM0RkFGM0Q5M0U2NzBG NDc5Mzg2MjMyOEI4NzBGNjZFNkY2RTE3RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzPs0e3vUJ6Txgzyh7Aj8rIlg/GidbMTnCdblY40HobsIwLzs7 c3aYYuzzH71jc6QoxPXTlNcN9uh+TBCQsnKWH4EHMIflcMcyIE+2hTP+cqFmBKNk QnqnEWaYeZfcLmc4/dYjxMlzwLhMuucVBF/EEs6qHowxiNwi69PfLtxJTrhDYgJp ZHd4OdABKLBVAc+0oooD0gBGNLoG4bMivOHBWqn+JuwQlXA4JfK1PxJ1Ov4GZtou 0/60LdeYKrxryh5gUNfY5Dvv8ysWL/lEg3Zio34LI5PaamiiAicLSFzNGcK+i123 IgtD/TmPgr3EJa1e7K5WD93qDhWQOLhOewy5AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUNPrz2T5nD0eThiMouHD2bm9uF9AwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTlByejJUNW5EMGVUaGlNb3VIRDJi bTl1RjlBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAK+3iTAN BgkqhkiG9w0BAQsFAAOCAQEAAOJzEvz5uWJsnoxbE+kro2j18cwoCbPx3eX0Qtl4 D7lxd7B7BPkzZ8CmJVac5szuWHH5TvOGW5Yro6unmtAAFchsxe1rYwaNfjeQb7oQ SbsipsfOtxuRgU4eBAs0LqkkRnsBoal4zjEeBcSFBmKBglDVB4twGxe4JTjWTBPi ko8hmRmko1wKBiyMJoxShd9IRyZeQYTIYSJP/v2qiobgsEXevFHDFf3N34KAu68m VRv88WKUsQHe1mGJ/0MJzWJ3ZEcDwbs2mjz1Cx3z6ciGFglPlI4hrG4RjJrbq4BH npyq4Wluo17NVxTA0+0NwX6rIB1tp0x6g3QOOznLyoywJw== -----END CERTIFICATE-----Generated at Sat Jun 1 22:20:18 2024 by rpki-client on console-fra.rpki-client.org