$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/TlChoN-6dQUrq1aR5scPOpJwARo.roa File: TlChoN-6dQUrq1aR5scPOpJwARo.roa (raw, json) Hash identifier: k4QUeN3JI65dViqCVwd4FaSWogFy0D8hzoXTwrD8Hy0= Subject key identifier: 4E:50:A1:A0:DF:BA:75:05:2B:AB:56:91:E6:C7:0F:3A:92:70:01:1A Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1320 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TlChoN-6dQUrq1aR5scPOpJwARo.roa Signing time: Fri 01 Sep 2023 09:24:31 +0000 ROA not before: Fri 01 Sep 2023 09:24:31 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 106.104.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4896 (0x1320) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:31 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=4E50A1A0DFBA75052BAB5691E6C70F3A9270011A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:22:5d:fc:8f:f6:78:8f:87:11:43:af:1c:18: 6e:cf:66:ea:33:69:0b:85:ee:e3:cf:02:76:fc:11: a1:96:67:b0:7c:25:ec:eb:a0:2f:00:66:6e:4b:44: 1a:68:9d:5f:b1:fe:4b:44:ab:19:a3:52:3f:c7:7d: 2a:74:79:0e:47:62:de:af:ee:27:cf:75:5e:7d:16: ba:87:a8:0b:b0:13:c3:21:9a:db:29:a8:31:d6:30: 64:ac:14:03:fd:2e:9c:33:f9:c2:08:b6:dc:7f:98: 05:ba:86:b9:33:15:31:67:bc:f3:f1:4f:20:a2:16: eb:5a:db:52:99:22:01:d8:26:fa:e3:12:91:4c:92: 2d:e0:9f:0c:9e:03:99:57:83:0b:3e:e4:7e:cc:86: a9:ef:fc:c9:fb:65:88:b1:08:fd:d9:81:19:e6:41: 70:cf:e3:d7:e7:d0:87:c8:ef:99:a9:8a:3a:b8:47: e5:3d:62:d5:38:df:72:9e:b5:77:c9:14:74:7e:fc: 8c:58:21:6c:f8:85:17:ac:3a:23:c3:87:25:07:d5: c7:fd:32:21:63:64:85:28:81:f2:35:ed:b4:45:42: b1:ed:30:a5:3a:89:c6:5c:f3:75:17:02:03:b9:cc: 06:8f:83:be:53:24:ba:2b:76:ce:c0:15:2e:2c:c2: 85:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:50:A1:A0:DF:BA:75:05:2B:AB:56:91:E6:C7:0F:3A:92:70:01:1A X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TlChoN-6dQUrq1aR5scPOpJwARo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.104.0.0/14 Signature Algorithm: sha256WithRSAEncryption 84:ed:a7:59:4a:66:c1:a0:0d:5f:1f:88:22:46:08:e8:9f:ac: 29:20:a9:ca:d7:a0:08:9a:f8:ad:f0:2b:93:10:e1:c8:e5:3e: 43:6c:fa:a8:37:d3:90:32:55:64:94:29:02:45:43:49:cb:2e: e4:b8:66:28:b8:8b:e4:0d:95:b8:b0:31:00:39:05:21:07:ff: 0a:8b:16:d4:16:35:18:25:90:6f:56:02:a2:2e:01:08:73:10: 87:0f:43:5d:20:4c:41:1a:05:70:42:85:e0:8f:74:e6:13:d6: e0:ec:9f:9d:5e:aa:5e:ce:5a:c1:84:9e:c8:0d:f3:0a:a7:1f: 2b:df:98:2a:06:b3:c5:4c:dc:9d:26:9e:db:73:6a:65:65:08: e9:6b:89:56:ec:1c:0a:34:cf:5b:6c:39:aa:1b:e6:78:28:ab: 73:92:34:0e:81:af:fe:cc:e2:7f:33:92:21:ee:2d:76:24:a0: cd:4a:07:be:ec:07:a4:76:ed:a1:0f:d1:b9:32:0d:56:70:86: 8c:67:05:a5:14:dc:52:cc:b5:fe:84:35:f0:58:d7:e8:24:8a: 3d:0f:05:c5:22:d7:a5:d9:13:d7:70:01:ac:20:92:35:3f:b8: 32:7d:3c:2e:5d:68:ef:03:81:1e:8d:6b:d6:70:75:cb:8a:53: b5:27:e4:be -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICEyAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MzFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDRFNTBBMUEwREZCQTc1 MDUyQkFCNTY5MUU2QzcwRjNBOTI3MDAxMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8Il38j/Z4j4cRQ68cGG7PZuozaQuF7uPPAnb8EaGWZ7B8Jezr oC8AZm5LRBponV+x/ktEqxmjUj/HfSp0eQ5HYt6v7ifPdV59FrqHqAuwE8Mhmtsp qDHWMGSsFAP9Lpwz+cIIttx/mAW6hrkzFTFnvPPxTyCiFuta21KZIgHYJvrjEpFM ki3gnwyeA5lXgws+5H7Mhqnv/Mn7ZYixCP3ZgRnmQXDP49fn0IfI75mpijq4R+U9 YtU433KetXfJFHR+/IxYIWz4hResOiPDhyUH1cf9MiFjZIUogfI17bRFQrHtMKU6 icZc83UXAgO5zAaPg75TJLords7AFS4swoV7AgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUTlChoN+6dQUrq1aR5scPOpJwARowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVGxDaG9OLTZkUVVycTFhUjVzY1BP cEp3QVJvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAmpoMA0G CSqGSIb3DQEBCwUAA4IBAQCE7adZSmbBoA1fH4giRgjon6wpIKnK16AImvit8CuT EOHI5T5DbPqoN9OQMlVklCkCRUNJyy7kuGYouIvkDZW4sDEAOQUhB/8KixbUFjUY JZBvVgKiLgEIcxCHD0NdIExBGgVwQoXgj3TmE9bg7J+dXqpezlrBhJ7IDfMKpx8r 35gqBrPFTNydJp7bc2plZQjpa4lW7BwKNM9bbDmqG+Z4KKtzkjQOga/+zOJ/M5Ih 7i12JKDNSge+7Aekdu2hD9G5Mg1WcIaMZwWlFNxSzLX+hDXwWNfoJIo9DwXFItel 2RPXcAGsIJI1P7gyfTwuXWjvA4EejWvWcHXLilO1J+S+ -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org