$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/RA1kwhtbvt3d-vT2TryeeecUZjs.roa File: RA1kwhtbvt3d-vT2TryeeecUZjs.roa (raw, json) Hash identifier: vbzLf+xUSaNkyneRmGJuLu8Pdxpw2kamzcoH2oebhV8= Subject key identifier: 44:0D:64:C2:1B:5B:BE:DD:DD:FA:F4:F6:4E:BC:9E:79:E7:14:66:3B Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1367 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RA1kwhtbvt3d-vT2TryeeecUZjs.roa Signing time: Fri 01 Sep 2023 09:24:53 +0000 ROA not before: Fri 01 Sep 2023 09:24:53 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 211.78.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4967 (0x1367) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:53 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=440D64C21B5BBEDDDDFAF4F64EBC9E79E714663B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:8d:57:3f:40:4b:ab:2b:18:fa:05:a3:91:86: 09:52:c9:ae:75:2c:0b:72:58:66:ce:df:4b:4c:66: 54:dd:18:43:17:d4:ab:cb:12:43:09:57:0f:ec:96: 9d:c4:80:34:91:94:d2:cb:da:78:16:c2:9f:43:22: 95:86:fc:e9:20:5d:08:15:7d:50:1b:9e:b3:b3:cb: 47:73:a0:3e:cf:a5:a0:5b:8a:72:66:ef:fc:00:c4: 16:0a:0e:ec:0f:2b:ae:7a:ab:e9:78:27:7f:18:49: 02:7f:c9:b8:37:09:c7:7a:a5:48:c9:91:a7:b5:76: 00:ed:9d:bb:f6:8a:5f:26:47:93:d4:bd:73:ae:34: f8:3b:21:26:30:69:68:54:7c:42:8c:ce:76:94:85: 91:71:7c:b9:54:5a:9b:5a:5b:4a:4d:80:8e:bd:cd: 35:e1:c0:fb:dd:43:49:5c:b6:e4:70:d2:18:19:60: 42:75:7e:2d:d6:6a:e1:e4:ad:b4:62:ca:9a:59:13: 80:75:c3:85:82:a0:bc:58:c7:ea:94:00:2e:5a:dc: c9:16:e2:90:e3:aa:25:ce:74:03:45:49:e3:77:e1: 02:da:5a:c0:8a:bd:ed:14:e3:3a:e6:20:22:85:ba: 66:17:ed:44:69:f3:cd:d8:41:e7:74:a7:52:38:1c: 82:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:0D:64:C2:1B:5B:BE:DD:DD:FA:F4:F6:4E:BC:9E:79:E7:14:66:3B X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RA1kwhtbvt3d-vT2TryeeecUZjs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.160.0/19 Signature Algorithm: sha256WithRSAEncryption 86:9c:0e:a1:f6:da:79:29:86:2d:68:a0:6b:b8:a6:48:60:e6: 34:e7:a7:f4:32:2e:7d:c8:67:4d:82:93:b7:be:ca:0b:61:7b: 32:42:2d:50:07:a8:fb:22:f6:19:97:ce:a5:a9:75:bf:77:2c: 9f:d8:5f:b5:3b:bc:d6:bc:f2:dc:c7:b2:1c:cc:63:ef:ed:7f: fd:57:fc:42:65:77:83:fb:6e:72:84:b5:31:33:1a:12:77:4c: 24:31:4b:71:cf:de:69:b9:d2:89:aa:8e:99:1f:3b:a6:6d:0f: 6f:4f:27:be:45:28:54:ea:d0:82:22:52:31:9f:25:39:ba:60: 96:02:25:5a:ae:98:46:35:6b:31:27:cb:28:d0:71:51:75:62: 6e:bb:0b:f3:75:83:75:d6:5e:16:8e:e2:21:a5:5c:7b:15:49: 31:c6:68:97:f8:96:2e:03:c2:ab:dd:73:73:b3:52:e1:ae:32: c6:5e:b9:50:33:c8:68:57:16:a7:56:fc:e5:eb:ec:a5:76:74: c0:6b:81:26:d1:d3:9c:33:42:4b:48:c9:22:af:ca:e8:72:94: 6e:5f:70:c3:14:3b:23:bf:f3:8b:82:f3:0f:2b:a3:14:16:0a: f9:e5:26:a4:59:17:7f:19:6b:51:24:80:e9:52:70:b7:ab:85: d7:ee:67:82 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE2cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQ0MEQ2NEMyMUI1QkJF REREREZBRjRGNjRFQkM5RTc5RTcxNDY2M0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCajVc/QEurKxj6BaORhglSya51LAtyWGbO30tMZlTdGEMX1KvL EkMJVw/slp3EgDSRlNLL2ngWwp9DIpWG/OkgXQgVfVAbnrOzy0dzoD7PpaBbinJm 7/wAxBYKDuwPK656q+l4J38YSQJ/ybg3Ccd6pUjJkae1dgDtnbv2il8mR5PUvXOu NPg7ISYwaWhUfEKMznaUhZFxfLlUWptaW0pNgI69zTXhwPvdQ0lctuRw0hgZYEJ1 fi3WauHkrbRiyppZE4B1w4WCoLxYx+qUAC5a3MkW4pDjqiXOdANFSeN34QLaWsCK ve0U4zrmICKFumYX7URp883YQed0p1I4HIL7AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQURA1kwhtbvt3d+vT2TryeeecUZjswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUkExa3dodGJ2dDNkLXZUMlRyeWVl ZWNVWmpzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdNOoDAN BgkqhkiG9w0BAQsFAAOCAQEAhpwOofbaeSmGLWiga7imSGDmNOen9DIufchnTYKT t77KC2F7MkItUAeo+yL2GZfOpal1v3csn9hftTu81rzy3MeyHMxj7+1//Vf8QmV3 g/tucoS1MTMaEndMJDFLcc/eabnSiaqOmR87pm0Pb08nvkUoVOrQgiJSMZ8lObpg lgIlWq6YRjVrMSfLKNBxUXVibrsL83WDddZeFo7iIaVcexVJMcZol/iWLgPCq91z c7NS4a4yxl65UDPIaFcWp1b85evspXZ0wGuBJtHTnDNCS0jJIq/K6HKUbl9wwxQ7 I7/zi4LzDyujFBYK+eUmpFkXfxlrUSSA6VJwt6uF1+5ngg== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org