$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/UfMjhV2MFXBnbNWgudWdP5dgiMQ.roa File: UfMjhV2MFXBnbNWgudWdP5dgiMQ.roa (raw, json) Hash identifier: UYlYnZ+Ik7IVlcpU9SrHAhP/Nl1WDL7HM9JR5Sd5kVI= Subject key identifier: 51:F3:23:85:5D:8C:15:70:67:6C:D5:A0:B9:D5:9D:3F:97:60:88:C4 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 131B Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UfMjhV2MFXBnbNWgudWdP5dgiMQ.roa Signing time: Fri 01 Sep 2023 09:24:29 +0000 ROA not before: Fri 01 Sep 2023 09:24:29 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 59.104.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4891 (0x131b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:29 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=51F323855D8C1570676CD5A0B9D59D3F976088C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:8e:bf:99:a7:83:c4:ee:9d:e9:46:58:2c:a9: c3:fc:cb:90:d6:b3:94:14:62:22:d1:fa:7e:40:da: db:4b:26:fc:df:16:28:cc:b6:ea:7e:8d:71:4d:5e: 28:61:86:a0:c0:fe:f4:31:4a:50:86:34:c9:a6:1e: f0:e3:b7:0d:78:99:bf:f2:83:3f:c2:99:24:19:6e: 3e:5e:f7:e5:03:4f:e7:92:bd:d1:f4:59:cc:95:b9: 82:30:6e:e1:be:ef:c3:46:3b:a3:e7:5a:18:5d:ed: 39:60:e3:b0:61:47:fe:23:0a:7e:b7:76:c6:9b:94: 02:c4:af:06:64:62:ec:f7:f5:30:53:f4:fd:d4:94: bd:ee:c2:b9:f1:69:20:cd:71:b2:c4:fd:de:bb:4f: 69:99:44:32:18:0e:7e:cf:ff:cb:a3:bb:a7:c7:21: 38:b7:40:5f:83:f0:13:73:c5:e9:a7:0e:03:b7:a3: 43:46:72:8f:f8:de:c3:72:bb:7a:2e:c6:70:f3:77: cc:26:8f:5c:f1:2f:3a:76:80:0a:8a:d0:d7:03:ca: 68:30:7f:2a:12:ca:12:59:44:4a:f0:a1:8d:2a:ca: c1:72:d5:bf:94:08:b7:c0:e8:05:ba:2e:c1:d6:ed: bf:f7:24:42:7b:6a:ef:1f:87:0c:8d:1f:80:b7:93: fa:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:F3:23:85:5D:8C:15:70:67:6C:D5:A0:B9:D5:9D:3F:97:60:88:C4 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UfMjhV2MFXBnbNWgudWdP5dgiMQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 59.104.0.0/15 Signature Algorithm: sha256WithRSAEncryption 97:3a:0a:26:d4:09:f0:48:1b:d4:8c:2c:8b:06:a7:a2:f7:62: 23:cf:23:e1:89:d9:c2:4b:2e:e7:75:fa:00:7e:64:4b:33:e0: 51:25:0c:f2:45:f5:83:dd:02:f1:d1:36:99:88:7f:b2:82:be: 58:16:3f:82:c1:ee:51:40:22:63:a5:0d:cd:4a:c7:ac:90:f1: bf:28:18:16:5e:21:c3:ba:29:ec:2b:a1:ef:2c:d3:53:a1:b6: 7d:74:be:92:7c:52:aa:1f:55:35:07:cf:6a:b0:a2:f6:e8:3f: 20:ac:59:a4:ee:0e:41:73:43:68:fd:00:57:a7:ab:4d:be:68: 98:eb:a7:81:a2:00:a1:10:a1:db:04:32:84:b0:64:0e:c3:5a: 3e:fa:97:e6:2f:4a:12:4d:11:3d:ad:90:3b:62:55:18:72:a6: a3:77:af:b2:f8:fe:cd:c4:f6:74:3f:5a:a2:e7:77:af:86:b4: f8:0c:94:cc:8a:23:68:cb:b8:2b:2a:a4:f2:bd:11:f0:ac:e4: c0:74:8e:b8:65:0d:5e:d4:92:53:e3:6d:6f:91:f7:c9:17:70: 4f:ea:a2:96:5c:0b:1d:39:e1:c0:ae:66:56:d7:9a:d3:b9:c9: 66:59:a0:66:77:06:03:29:c3:f7:eb:7e:ef:3a:9d:77:13:7e: e7:10:2c:08 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICExswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MjlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDUxRjMyMzg1NUQ4QzE1 NzA2NzZDRDVBMEI5RDU5RDNGOTc2MDg4QzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDljr+Zp4PE7p3pRlgsqcP8y5DWs5QUYiLR+n5A2ttLJvzfFijM tup+jXFNXihhhqDA/vQxSlCGNMmmHvDjtw14mb/ygz/CmSQZbj5e9+UDT+eSvdH0 WcyVuYIwbuG+78NGO6PnWhhd7Tlg47BhR/4jCn63dsablALErwZkYuz39TBT9P3U lL3uwrnxaSDNcbLE/d67T2mZRDIYDn7P/8uju6fHITi3QF+D8BNzxemnDgO3o0NG co/43sNyu3ouxnDzd8wmj1zxLzp2gAqK0NcDymgwfyoSyhJZRErwoY0qysFy1b+U CLfA6AW6LsHW7b/3JEJ7au8fhwyNH4C3k/rFAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUUfMjhV2MFXBnbNWgudWdP5dgiMQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVWZNamhWMk1GWEJuYk5XZ3VkV2RQ NWRnaU1RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDATtoMA0G CSqGSIb3DQEBCwUAA4IBAQCXOgom1AnwSBvUjCyLBqei92IjzyPhidnCSy7ndfoA fmRLM+BRJQzyRfWD3QLx0TaZiH+ygr5YFj+Cwe5RQCJjpQ3NSseskPG/KBgWXiHD uinsK6HvLNNTobZ9dL6SfFKqH1U1B89qsKL26D8grFmk7g5Bc0No/QBXp6tNvmiY 66eBogChEKHbBDKEsGQOw1o++pfmL0oSTRE9rZA7YlUYcqajd6+y+P7NxPZ0P1qi 53evhrT4DJTMiiNoy7grKqTyvRHwrOTAdI64ZQ1e1JJT421vkffJF3BP6qKWXAsd OeHArmZW15rTuclmWaBmdwYDKcP3637vOp13E37nECwI -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org