$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Q29pQ5SPmADMYJ6q1cFkrSs0Ut0.roa File: Q29pQ5SPmADMYJ6q1cFkrSs0Ut0.roa (raw, json) Hash identifier: cOMyucvd8MPTTwbJLZfnaoOsJBsqEL2Zb8kai5Oxsis= Subject key identifier: 43:6F:69:43:94:8F:98:00:CC:60:9E:AA:D5:C1:64:AD:2B:34:52:DD Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0DAE Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Q29pQ5SPmADMYJ6q1cFkrSs0Ut0.roa Signing time: Fri 01 Sep 2023 09:24:48 +0000 ROA not before: Fri 01 Sep 2023 09:24:48 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 192.72.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 17:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3502 (0xdae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Sep 1 09:24:48 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=436F6943948F9800CC609EAAD5C164AD2B3452DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7e:79:9e:d2:3f:a5:72:4e:ff:f2:39:51:80: 54:76:86:ed:2d:e8:62:75:fd:77:f7:c8:c5:83:62: db:ef:d5:0a:33:e7:b1:9e:51:0e:f3:ad:8b:c8:8b: a0:2a:eb:5e:50:ee:34:4b:9f:5f:be:29:09:57:4c: c1:6e:f2:1e:35:36:88:08:b0:ff:0a:64:d9:63:1e: e0:32:2a:21:9a:38:f6:2b:04:3e:d2:d7:17:5b:88: 4a:47:51:39:d7:97:b6:53:7d:c2:16:c9:a9:f1:29: d2:50:78:87:8b:c7:99:eb:aa:06:de:6a:94:f1:31: c2:08:b0:20:4d:e0:46:18:61:68:ec:01:44:1f:d7: 70:05:82:07:bc:e3:5b:dd:c6:ac:0f:a1:20:f8:1d: e5:49:82:e5:43:ed:7b:a0:d4:cb:47:e6:20:8d:34: bf:64:22:a6:9f:a1:28:a4:b6:9b:5c:64:8f:9e:26: 45:ee:9d:6c:67:15:b8:cb:2e:aa:09:f7:74:be:b6: b2:d0:7f:d1:50:bf:e6:19:ec:5c:6b:39:fe:b9:0f: f0:90:6a:e7:3d:42:c5:15:05:99:06:21:b5:f8:f1: 21:c5:0b:3e:ac:a8:b5:e5:a5:e6:e8:0d:72:76:72: 7c:9f:20:d7:54:d7:eb:d6:82:1b:a9:23:60:a2:0d: 9a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:6F:69:43:94:8F:98:00:CC:60:9E:AA:D5:C1:64:AD:2B:34:52:DD X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Q29pQ5SPmADMYJ6q1cFkrSs0Ut0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.192.0/19 Signature Algorithm: sha256WithRSAEncryption 67:1c:2d:38:dc:c9:22:61:bc:ea:16:70:7a:97:dc:02:0b:40: ea:43:e4:c6:65:f1:b7:44:28:da:a7:54:4f:a1:b6:9b:8e:c2: d0:6b:1b:e1:fc:00:c3:32:97:a8:60:b0:7b:d9:d6:b3:75:6e: 59:f5:c8:3f:e7:33:dd:cc:96:80:54:14:6f:df:2c:c6:f9:11: 72:f0:4b:1f:16:ea:e1:d2:ba:b8:f7:80:c5:fc:be:94:b6:c7: 88:e8:27:a4:5c:96:57:0d:c8:df:51:e0:3e:19:a7:f7:aa:4a: 5b:c7:1e:f6:50:0b:8c:3c:40:73:6c:36:0f:af:cd:a3:a4:03: 73:af:06:47:ba:20:54:44:e8:e7:ad:b4:fc:12:4a:93:6b:83: a7:74:b7:c5:e6:b3:5c:f0:2f:31:b1:30:cc:5d:7d:27:6b:cc: 06:61:ce:16:be:c8:e5:f7:28:4a:71:1a:82:d2:1b:75:f5:2e: 0c:2c:b0:9e:4b:df:82:25:10:4e:4d:45:d2:cf:64:60:41:e1: 28:91:ee:2b:ce:97:da:00:cc:2e:ce:b4:1f:9c:fd:8b:f7:4d: 9a:77:a5:c8:b8:79:95:77:b8:f1:d0:b5:20:4a:07:8d:6d:40: 82:45:71:cb:14:18:d5:45:62:70:93:f4:58:63:6e:9a:4d:4e: f4:5b:40:f7 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDa4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMzA5MDEw OTI0NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQzNkY2OTQzOTQ4Rjk4 MDBDQzYwOUVBQUQ1QzE2NEFEMkIzNDUyREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2fnme0j+lck7/8jlRgFR2hu0t6GJ1/Xf3yMWDYtvv1Qoz57Ge UQ7zrYvIi6Aq615Q7jRLn1++KQlXTMFu8h41NogIsP8KZNljHuAyKiGaOPYrBD7S 1xdbiEpHUTnXl7ZTfcIWyanxKdJQeIeLx5nrqgbeapTxMcIIsCBN4EYYYWjsAUQf 13AFgge841vdxqwPoSD4HeVJguVD7Xug1MtH5iCNNL9kIqafoSiktptcZI+eJkXu nWxnFbjLLqoJ93S+trLQf9FQv+YZ7FxrOf65D/CQauc9QsUVBZkGIbX48SHFCz6s qLXlpeboDXJ2cnyfINdU1+vWghupI2CiDZrPAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUQ29pQ5SPmADMYJ6q1cFkrSs0Ut0wHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUTI5cFE1U1BtQURNWUo2cTFjRmty U3MwVXQwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcBIwDAN BgkqhkiG9w0BAQsFAAOCAQEAZxwtONzJImG86hZwepfcAgtA6kPkxmXxt0Qo2qdU T6G2m47C0Gsb4fwAwzKXqGCwe9nWs3VuWfXIP+cz3cyWgFQUb98sxvkRcvBLHxbq 4dK6uPeAxfy+lLbHiOgnpFyWVw3I31HgPhmn96pKW8ce9lALjDxAc2w2D6/No6QD c68GR7ogVETo5620/BJKk2uDp3S3xeazXPAvMbEwzF19J2vMBmHOFr7I5fcoSnEa gtIbdfUuDCywnkvfgiUQTk1F0s9kYEHhKJHuK86X2gDMLs60H5z9i/dNmnelyLh5 lXe48dC1IEoHjW1AgkVxyxQY1UVicJP0WGNumk1O9FtA9w== -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org