$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/PrxQtoEGPMVGE6g2epk1nteWCiI.roa File: PrxQtoEGPMVGE6g2epk1nteWCiI.roa (raw, json) Hash identifier: hrJo69BeXqS/eyq6vcLzZbsW6hMmrw8MmkhO33GCAWg= Subject key identifier: 3E:BC:50:B6:81:06:3C:C5:46:13:A8:36:7A:99:35:9E:D7:96:0A:22 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 12F2 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PrxQtoEGPMVGE6g2epk1nteWCiI.roa Signing time: Fri 01 Sep 2023 09:24:17 +0000 ROA not before: Fri 01 Sep 2023 09:24:17 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 106.105.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4850 (0x12f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:17 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=3EBC50B681063CC54613A8367A99359ED7960A22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:89:75:f3:24:14:5f:5e:aa:82:02:08:24:75: b1:a1:19:41:52:2c:50:9d:fc:89:d9:71:fa:ee:ff: 29:93:4a:94:47:97:54:76:fc:d8:f1:6a:f4:b9:b3: 62:8e:b3:4b:fd:b9:8e:5e:f6:e3:5b:c8:0b:03:79: 9c:d4:a2:0b:20:c9:89:96:9f:b7:7a:32:6c:6e:94: 2a:81:c2:32:c8:68:ac:5c:d4:68:9d:90:de:48:7c: 4b:76:d5:0d:48:56:6f:f5:e9:f7:14:15:fb:a2:7a: 15:08:94:46:2c:6b:1e:84:af:b3:b0:a8:42:ce:41: 4a:a0:50:1f:de:6a:33:e8:83:5f:e2:bf:09:70:bc: ba:89:10:25:94:b6:90:82:de:e3:ed:fb:b3:c1:54: 68:ba:0f:de:5e:5e:90:a7:05:e2:dc:35:40:a1:29: 85:8a:50:b0:b8:59:a4:12:e0:28:ba:b7:c1:22:85: 59:4d:0f:f1:8e:51:9c:72:4b:bb:76:4b:59:e4:a2: e3:ee:85:31:bd:00:c9:1f:db:79:83:d9:d6:58:54: 82:73:5a:6a:93:14:de:97:a5:71:4e:d7:34:ec:52: 9e:8d:a1:6f:7a:d6:bf:54:20:48:a3:5c:ef:76:44: 7a:ba:8e:59:e5:fe:24:27:ac:5c:2f:af:98:e5:22: 37:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:BC:50:B6:81:06:3C:C5:46:13:A8:36:7A:99:35:9E:D7:96:0A:22 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PrxQtoEGPMVGE6g2epk1nteWCiI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.32.0/19 Signature Algorithm: sha256WithRSAEncryption 0b:75:58:c8:7b:08:ec:10:40:31:05:40:25:fd:d7:d9:b9:bc: 20:b3:50:a8:53:23:e5:5b:9f:97:38:17:7d:d8:fb:10:30:22: 4e:86:d4:02:b9:51:40:a6:a0:d2:ab:13:4b:bf:e9:92:e0:9d: 37:01:6c:ba:ac:1f:62:38:ab:ba:08:3b:9d:21:a3:4e:a9:6e: c5:f6:ac:16:64:95:61:8d:fa:d8:a4:98:ff:5f:46:92:21:0e: ce:6a:cc:40:fb:bb:ca:96:20:5a:ea:eb:53:39:90:aa:41:cb: 3e:46:3f:b8:70:77:d6:cf:2f:34:15:18:c2:b8:cb:90:25:d8: 66:2d:9f:19:9e:0d:d7:94:c2:0c:9b:cf:b1:2c:06:50:b8:24: d7:99:9d:a6:d9:b5:d6:5d:a3:d4:07:01:42:73:12:c8:1b:c9: bc:7b:cc:91:48:a5:e9:ac:84:ae:d0:43:e4:2f:85:16:d5:d0: 82:27:bb:51:bb:d1:a3:9d:e9:31:45:92:0d:76:37:f7:94:fb: dd:4e:5c:99:b0:f6:b0:ee:0b:93:21:b4:07:9b:e6:1e:26:d8: 7d:85:c9:53:02:6b:4e:a0:24:41:67:f9:1d:71:23:ae:8b:3b: dd:e1:32:44:54:2f:df:42:31:18:a4:54:03:70:d8:db:08:18: 82:ce:c2:b3 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEvIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDNFQkM1MEI2ODEwNjND QzU0NjEzQTgzNjdBOTkzNTlFRDc5NjBBMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5iXXzJBRfXqqCAggkdbGhGUFSLFCd/InZcfru/ymTSpRHl1R2 /NjxavS5s2KOs0v9uY5e9uNbyAsDeZzUogsgyYmWn7d6MmxulCqBwjLIaKxc1Gid kN5IfEt21Q1IVm/16fcUFfuiehUIlEYsax6Er7OwqELOQUqgUB/eajPog1/ivwlw vLqJECWUtpCC3uPt+7PBVGi6D95eXpCnBeLcNUChKYWKULC4WaQS4Ci6t8EihVlN D/GOUZxyS7t2S1nkouPuhTG9AMkf23mD2dZYVIJzWmqTFN6XpXFO1zTsUp6NoW96 1r9UIEijXO92RHq6jlnl/iQnrFwvr5jlIjcdAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUPrxQtoEGPMVGE6g2epk1nteWCiIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUHJ4UXRvRUdQTVZHRTZnMmVwazFu dGVXQ2lJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBWppIDAN BgkqhkiG9w0BAQsFAAOCAQEAC3VYyHsI7BBAMQVAJf3X2bm8ILNQqFMj5VuflzgX fdj7EDAiTobUArlRQKag0qsTS7/pkuCdNwFsuqwfYjirugg7nSGjTqluxfasFmSV YY362KSY/19GkiEOzmrMQPu7ypYgWurrUzmQqkHLPkY/uHB31s8vNBUYwrjLkCXY Zi2fGZ4N15TCDJvPsSwGULgk15mdptm11l2j1AcBQnMSyBvJvHvMkUil6ayErtBD 5C+FFtXQgie7UbvRo53pMUWSDXY395T73U5cmbD2sO4LkyG0B5vmHibYfYXJUwJr TqAkQWf5HXEjros73eEyRFQv30IxGKRUA3DY2wgYgs7Csw== -----END CERTIFICATE-----Generated at Sat Jun 1 22:20:18 2024 by rpki-client on console-fra.rpki-client.org