$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/OEYX8BLetnn7B6JmMSXv-oNtQao.roa File: OEYX8BLetnn7B6JmMSXv-oNtQao.roa (raw, json) Hash identifier: RCrxz0EjcxdrDL6P8aaOjZKI2wStE+wxVTtEJ/IficI= Subject key identifier: 38:46:17:F0:12:DE:B6:79:FB:07:A2:66:31:25:EF:FA:83:6D:41:AA Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 131C Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OEYX8BLetnn7B6JmMSXv-oNtQao.roa Signing time: Fri 01 Sep 2023 09:24:29 +0000 ROA not before: Fri 01 Sep 2023 09:24:29 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18049 IP address blocks: 106.107.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4892 (0x131c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:29 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=384617F012DEB679FB07A2663125EFFA836D41AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f1:f3:c6:83:fd:bc:98:34:29:5d:3a:4b:fb: 76:72:98:b9:6e:4f:42:53:de:c6:95:75:20:d6:3a: f0:1f:39:e3:d9:3c:98:f0:b5:3c:a1:0a:8b:6a:fb: 01:f7:1d:7d:5c:c0:4b:4f:09:92:e5:35:cb:2b:49: cd:6b:16:9b:3c:f7:29:34:e6:44:82:e4:c9:7a:a9: 09:47:07:49:82:c9:b7:99:4f:06:32:fc:2d:70:f8: 2d:e5:82:eb:11:b1:1d:4d:34:41:16:67:53:7a:fa: 88:33:31:13:a3:ec:9e:e5:ce:25:86:c5:65:c4:80: 68:15:54:7c:b7:83:4d:e2:2e:48:c3:33:57:ab:60: e6:f3:e6:07:00:75:5d:96:af:9c:f4:38:e1:8c:71: de:ac:f8:74:8e:0e:2d:ed:c0:79:bc:0f:74:6b:46: 5d:4e:f5:8b:5e:e2:6b:70:61:f8:9f:5c:c6:e9:41: 16:aa:ff:da:f4:17:af:b7:8a:51:5e:10:39:18:b8: b1:75:88:50:88:df:36:75:0c:dd:57:87:f1:71:77: 7d:eb:b1:a6:89:fd:e3:9a:3a:32:81:7b:7d:6a:8e: 07:ec:88:41:4a:65:27:af:02:48:1b:ce:7b:a8:54: 42:4c:e8:b6:11:b9:50:38:5c:e2:74:6d:9d:6f:bb: 0e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:46:17:F0:12:DE:B6:79:FB:07:A2:66:31:25:EF:FA:83:6D:41:AA X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/OEYX8BLetnn7B6JmMSXv-oNtQao.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.107.240.0/20 Signature Algorithm: sha256WithRSAEncryption b4:15:aa:32:a7:27:a7:36:bb:5c:40:20:0d:1d:56:8d:74:98: 7f:d0:b0:61:fa:be:ed:7f:db:0a:61:bb:54:5f:3c:64:c3:31: 25:e5:e4:77:13:28:ac:75:fa:62:09:d4:14:1e:7c:ac:db:43: 84:ea:7c:8d:59:e6:e9:73:4c:05:91:cd:41:28:51:74:7c:37: 30:d4:43:55:d7:7d:2b:03:1b:f4:ec:65:72:ed:71:4c:93:5e: 18:9e:b3:e0:0b:52:7b:80:e4:7f:6c:1c:d6:e0:3b:96:cb:0b: ff:f5:77:19:77:1d:48:77:d2:7b:19:72:eb:a0:34:99:a5:85: 5d:cd:a8:10:dd:19:64:71:b9:bb:8a:f9:04:c5:4e:2f:ee:a3: 80:04:8e:50:59:86:05:08:f1:09:80:7a:b2:c9:77:76:ac:26: d3:6b:1b:e1:49:20:f4:fb:69:c2:6e:75:d6:43:f7:36:8e:3e: 04:1b:77:dc:d0:7f:6e:1b:93:40:5e:40:86:23:21:5e:ba:74: 83:85:22:42:1c:a9:c7:40:4b:77:1c:76:da:9f:13:17:f6:a6: 00:cf:b0:1a:98:4a:70:ad:99:44:a3:b8:c4:54:a5:1d:f7:10: 70:53:2f:4b:99:89:fd:0c:ac:65:8e:42:2b:7d:4a:66:65:68: 5f:a7:4e:d1 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICExwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MjlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM4NDYxN0YwMTJERUI2 NzlGQjA3QTI2NjMxMjVFRkZBODM2RDQxQUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC68fPGg/28mDQpXTpL+3ZymLluT0JT3saVdSDWOvAfOePZPJjw tTyhCotq+wH3HX1cwEtPCZLlNcsrSc1rFps89yk05kSC5Ml6qQlHB0mCybeZTwYy /C1w+C3lgusRsR1NNEEWZ1N6+ogzMROj7J7lziWGxWXEgGgVVHy3g03iLkjDM1er YObz5gcAdV2Wr5z0OOGMcd6s+HSODi3twHm8D3RrRl1O9Yte4mtwYfifXMbpQRaq /9r0F6+3ilFeEDkYuLF1iFCI3zZ1DN1Xh/Fxd33rsaaJ/eOaOjKBe31qjgfsiEFK ZSevAkgbznuoVEJM6LYRuVA4XOJ0bZ1vuw61AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUOEYX8BLetnn7B6JmMSXv+oNtQaowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvT0VZWDhCTGV0bm43QjZKbU1TWHYt b050UWFvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBGpr8DAN BgkqhkiG9w0BAQsFAAOCAQEAtBWqMqcnpza7XEAgDR1WjXSYf9CwYfq+7X/bCmG7 VF88ZMMxJeXkdxMorHX6YgnUFB58rNtDhOp8jVnm6XNMBZHNQShRdHw3MNRDVdd9 KwMb9Oxlcu1xTJNeGJ6z4AtSe4Dkf2wc1uA7lssL//V3GXcdSHfSexly66A0maWF Xc2oEN0ZZHG5u4r5BMVOL+6jgASOUFmGBQjxCYB6ssl3dqwm02sb4Ukg9Ptpwm51 1kP3No4+BBt33NB/bhuTQF5AhiMhXrp0g4UiQhypx0BLdxx22p8TF/amAM+wGphK cK2ZRKO4xFSlHfcQcFMvS5mJ/QysZY5CK31KZmVoX6dO0Q== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org