$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/RENuwTmPN-1pMoeIzKJshHGMGiQ.roa File: RENuwTmPN-1pMoeIzKJshHGMGiQ.roa (raw, json) Hash identifier: fFqXE5uAq8Qg84I5YmdcGS1/7Gjbz7y9XJfD78p2b6I= Subject key identifier: 44:43:6E:C1:39:8F:37:ED:69:32:87:88:CC:A2:6C:84:71:8C:1A:24 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 130F Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RENuwTmPN-1pMoeIzKJshHGMGiQ.roa Signing time: Fri 01 Sep 2023 09:24:26 +0000 ROA not before: Fri 01 Sep 2023 09:24:26 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 210.243.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4879 (0x130f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:26 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=44436EC1398F37ED69328788CCA26C84718C1A24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:66:95:a6:28:33:ae:3b:7f:9a:24:99:20:0d: 56:b0:8e:82:4f:fd:4a:10:3b:80:ca:fc:36:94:fe: 9a:2a:ef:10:fa:7e:be:85:45:bf:8a:12:34:8e:1d: a7:3b:37:42:35:8f:cd:7e:7e:4c:fd:75:0e:e1:41: cb:a6:a4:92:92:67:c6:22:d4:18:f2:ef:94:52:b4: ed:e8:f3:28:49:79:80:ef:0d:cd:5f:93:5e:72:4e: 90:ba:cb:53:29:d1:72:3f:cb:7a:71:91:87:67:ec: 1e:e6:f6:9e:21:8a:c0:a3:9d:5a:6e:97:a5:ef:83: 5c:93:ad:67:ab:1b:3f:93:e0:26:e5:75:fe:fc:dc: ec:f7:1f:11:88:e1:bb:61:e5:0f:06:0c:f1:f8:af: ce:a5:ba:74:b3:12:1b:2b:c9:8a:a9:9d:2a:9e:ab: 63:6b:71:25:55:86:f5:58:5c:8e:22:9c:b0:d4:88: 76:9a:62:3f:7e:58:1d:91:17:f6:db:e1:5a:35:da: 0f:79:ba:20:73:95:da:25:04:5c:0f:99:87:81:1a: f6:4c:ae:b8:dc:5a:bc:01:1f:87:cb:cf:cb:02:99: ee:e6:90:d4:6c:49:69:98:1f:6d:07:b8:99:50:d5: 17:61:bf:ab:d2:e0:64:f7:7d:2d:17:38:12:11:ca: 04:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:43:6E:C1:39:8F:37:ED:69:32:87:88:CC:A2:6C:84:71:8C:1A:24 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RENuwTmPN-1pMoeIzKJshHGMGiQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.243.128.0/17 Signature Algorithm: sha256WithRSAEncryption 1a:fb:41:ad:1b:f3:89:85:78:eb:f5:e7:a6:e4:10:97:ac:9d: a4:3e:2e:50:86:a7:2a:7a:b4:cd:0d:fa:10:69:ba:59:da:94: e1:64:d1:e9:8e:13:df:3d:b1:46:b5:fb:85:46:48:68:f5:2f: 7d:68:26:26:77:b5:3d:45:fb:53:38:1d:22:97:16:77:1f:3b: 33:2b:f2:a5:c3:c4:a1:e7:60:82:0a:5f:3e:f5:01:c3:85:0b: 18:89:a2:38:dd:8e:8e:da:27:68:7a:1a:46:0c:b4:5e:fc:a7: 28:6b:27:3c:05:fd:e4:ae:0e:97:2e:36:87:c5:62:99:36:87: d5:cb:9b:08:4e:cb:12:06:40:8f:85:d2:01:15:e0:42:68:89: 4d:fe:50:71:81:d1:61:a0:78:b2:d2:8b:d9:67:52:15:4f:a9: 02:d3:ad:1a:71:2f:9e:de:a0:5f:fb:72:c8:b6:0d:36:e6:39: ae:d9:ae:f2:7d:29:9a:49:2f:5a:84:c0:53:a9:aa:ee:37:83: 9d:48:72:39:40:5c:5c:a1:41:b0:15:9e:04:a8:7a:c8:e1:5c: 22:8b:d2:ca:0f:e9:f1:7f:c6:66:2d:62:83:e1:96:b0:61:8f: 66:32:57:9e:a1:34:ae:3c:29:27:43:54:e0:1b:45:59:07:48: b2:87:5e:82 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEw8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MjZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQ0NDM2RUMxMzk4RjM3 RUQ2OTMyODc4OENDQTI2Qzg0NzE4QzFBMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4ZpWmKDOuO3+aJJkgDVawjoJP/UoQO4DK/DaU/poq7xD6fr6F Rb+KEjSOHac7N0I1j81+fkz9dQ7hQcumpJKSZ8Yi1Bjy75RStO3o8yhJeYDvDc1f k15yTpC6y1Mp0XI/y3pxkYdn7B7m9p4hisCjnVpul6Xvg1yTrWerGz+T4Cbldf78 3Oz3HxGI4bth5Q8GDPH4r86lunSzEhsryYqpnSqeq2NrcSVVhvVYXI4inLDUiHaa Yj9+WB2RF/bb4Vo12g95uiBzldolBFwPmYeBGvZMrrjcWrwBH4fLz8sCme7mkNRs SWmYH20HuJlQ1Rdhv6vS4GT3fS0XOBIRygTlAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQURENuwTmPN+1pMoeIzKJshHGMGiQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUkVOdXdUbVBOLTFwTW9lSXpLSnNo SEdNR2lRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9LzgDAN BgkqhkiG9w0BAQsFAAOCAQEAGvtBrRvziYV46/XnpuQQl6ydpD4uUIanKnq0zQ36 EGm6WdqU4WTR6Y4T3z2xRrX7hUZIaPUvfWgmJne1PUX7UzgdIpcWdx87MyvypcPE oedgggpfPvUBw4ULGImiON2OjtonaHoaRgy0XvynKGsnPAX95K4Oly42h8VimTaH 1cubCE7LEgZAj4XSARXgQmiJTf5QcYHRYaB4stKL2WdSFU+pAtOtGnEvnt6gX/ty yLYNNuY5rtmu8n0pmkkvWoTAU6mq7jeDnUhyOUBcXKFBsBWeBKh6yOFcIovSyg/p 8X/GZi1ig+GWsGGPZjJXnqE0rjwpJ0NU4BtFWQdIsodegg== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org