$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/TRTmubxau3rRREdzaiVvwA8M6oQ.roa File: TRTmubxau3rRREdzaiVvwA8M6oQ.roa (raw, json) Hash identifier: Qq9MCQ4BrRgQaKjZg+A3Vy1M+Pg79Syu0VzMHBOzqOo= Subject key identifier: 4D:14:E6:B9:BC:5A:BB:7A:D1:44:47:73:6A:25:6F:C0:0F:0C:EA:84 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1364 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TRTmubxau3rRREdzaiVvwA8M6oQ.roa Signing time: Fri 01 Sep 2023 09:24:52 +0000 ROA not before: Fri 01 Sep 2023 09:24:52 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131584 IP address blocks: 106.105.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4964 (0x1364) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:52 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=4D14E6B9BC5ABB7AD14447736A256FC00F0CEA84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8f:08:cb:cd:94:90:bb:51:d2:3f:32:5a:2e: 64:52:ac:5d:ff:bf:fb:c3:c7:33:e5:4b:b8:a7:80: 8f:cb:26:8d:a1:67:8e:9c:7a:06:d1:d4:2d:81:58: d8:ce:cd:0b:9a:d3:a4:a5:ef:d7:89:d4:66:64:46: a9:c3:ae:61:6d:54:1d:1e:c6:82:07:e7:1d:2f:a1: c5:b3:c1:b8:4c:fa:2f:37:6b:3c:6b:19:e7:76:4f: 20:b5:2b:fb:7a:39:6c:b5:39:ed:e9:74:04:da:c1: 84:23:c6:07:72:88:24:cc:18:19:72:bb:51:29:5c: 05:4c:58:47:b3:c0:ab:f9:44:40:05:c0:a8:55:7d: f3:87:de:18:ab:c5:4e:62:5b:66:f4:fe:83:ac:53: d3:61:82:61:b3:c6:8b:c1:16:bd:f8:e0:47:66:27: 09:14:16:a1:fc:11:98:b3:3c:e7:e3:c4:53:5d:0d: fe:bf:e9:dc:9a:77:6e:c7:30:20:6b:35:30:43:1f: 48:17:64:57:a0:6f:d9:59:82:15:e1:62:91:1a:c3: ac:ee:3a:37:50:a4:7f:b1:48:56:7e:67:e7:7b:17: 1a:36:a9:40:2b:b2:6a:ca:86:78:ff:ec:94:ef:9a: 4f:f9:19:ec:48:0d:c7:10:fe:e8:79:e1:63:d2:4c: ea:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:14:E6:B9:BC:5A:BB:7A:D1:44:47:73:6A:25:6F:C0:0F:0C:EA:84 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TRTmubxau3rRREdzaiVvwA8M6oQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.180.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:83:a7:ff:fb:ab:74:33:fe:5f:d2:0c:1e:d6:62:5c:22:48: eb:96:ac:2f:bd:65:2b:82:b8:a9:4f:21:19:48:ad:2c:e6:54: 58:55:7c:fe:a8:ab:20:76:1b:57:57:c9:6e:65:48:d8:8e:35: df:4f:0a:f0:cf:27:fe:d5:2f:a0:7e:90:7f:5e:af:c9:d2:b3: 38:07:f4:75:86:aa:07:1c:08:23:2e:88:aa:dc:b2:cb:36:b5: 2d:2a:be:8f:dc:d2:49:49:5c:e0:95:c7:e9:d8:a5:5b:03:21: b5:e1:36:83:9f:26:3e:5d:60:7f:82:d2:6f:17:d7:03:9b:93: 81:cd:e4:93:19:ba:66:5e:b9:c7:8c:ca:f8:4a:32:f7:27:e7: f4:39:90:1e:9c:83:ac:82:39:99:26:2d:58:e2:2f:8c:89:3a: 65:90:f5:87:c1:3a:43:45:23:d9:b4:35:9c:0d:13:c2:18:a0: 82:7c:0e:da:62:db:1c:e4:22:93:72:99:39:bc:b3:ba:58:65: 98:68:c1:14:5b:0d:3c:e7:a7:f0:42:31:d5:7d:23:83:e1:a0: 66:51:da:97:fa:3d:99:6f:22:6f:c5:20:83:b3:7d:f5:34:b1: 70:a5:ad:85:5e:7c:67:22:58:24:6f:68:50:2d:20:d3:34:53: 67:d5:73:09 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE2QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDREMTRFNkI5QkM1QUJC N0FEMTQ0NDc3MzZBMjU2RkMwMEYwQ0VBODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4jwjLzZSQu1HSPzJaLmRSrF3/v/vDxzPlS7ingI/LJo2hZ46c egbR1C2BWNjOzQua06Sl79eJ1GZkRqnDrmFtVB0exoIH5x0vocWzwbhM+i83azxr Ged2TyC1K/t6OWy1Oe3pdATawYQjxgdyiCTMGBlyu1EpXAVMWEezwKv5REAFwKhV ffOH3hirxU5iW2b0/oOsU9NhgmGzxovBFr344EdmJwkUFqH8EZizPOfjxFNdDf6/ 6dyad27HMCBrNTBDH0gXZFegb9lZghXhYpEaw6zuOjdQpH+xSFZ+Z+d7Fxo2qUAr smrKhnj/7JTvmk/5GexIDccQ/uh54WPSTOr9AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUTRTmubxau3rRREdzaiVvwA8M6oQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVFJUbXVieGF1M3JSUkVkemFpVnZ3 QThNNm9RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGpptDAN BgkqhkiG9w0BAQsFAAOCAQEAG4On//urdDP+X9IMHtZiXCJI65asL71lK4K4qU8h GUitLOZUWFV8/qirIHYbV1fJbmVI2I41308K8M8n/tUvoH6Qf16vydKzOAf0dYaq BxwIIy6Iqtyyyza1LSq+j9zSSUlc4JXH6dilWwMhteE2g58mPl1gf4LSbxfXA5uT gc3kkxm6Zl65x4zK+Eoy9yfn9DmQHpyDrII5mSYtWOIvjIk6ZZD1h8E6Q0Uj2bQ1 nA0TwhiggnwO2mLbHOQik3KZObyzulhlmGjBFFsNPOen8EIx1X0jg+GgZlHal/o9 mW8ib8Ugg7N99TSxcKWthV58ZyJYJG9oUC0g0zRTZ9VzCQ== -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:37 2024 by rpki-client on console-ams.rpki-client.org