$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/V6p6IIw9jWozlh4bS4gXMgeC9_Q.roa File: V6p6IIw9jWozlh4bS4gXMgeC9_Q.roa (raw, json) Hash identifier: sw3v9wn2vG2mjjtPXwuv4mH/rMdNnIHaPQidR/tFZbQ= Subject key identifier: 57:AA:7A:20:8C:3D:8D:6A:33:96:1E:1B:4B:88:17:32:07:82:F7:F4 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 12ED Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/V6p6IIw9jWozlh4bS4gXMgeC9_Q.roa Signing time: Fri 01 Sep 2023 09:24:16 +0000 ROA not before: Fri 01 Sep 2023 09:24:16 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18049 IP address blocks: 106.107.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4845 (0x12ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:16 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=57AA7A208C3D8D6A33961E1B4B8817320782F7F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6d:32:e2:c3:d0:1f:d4:df:e6:68:a2:a8:d2: 71:a5:83:c4:cb:27:3f:59:27:e5:96:98:7f:20:18: 71:dd:3c:84:52:96:ce:df:1d:16:0b:8c:01:14:6c: 73:5e:56:d2:8d:61:34:51:54:f3:d5:3e:06:56:30: 8c:f9:cd:df:de:0c:88:39:c6:c9:c9:88:86:0d:49: c6:05:c4:97:87:0e:67:41:99:79:f2:cd:fb:1c:5d: 1b:d2:ed:3e:24:98:b3:d9:1d:b2:f2:0b:52:f4:74: 70:10:07:7e:a4:1a:46:61:de:b5:e7:0c:d3:93:c1: ee:0d:f0:ff:fc:dd:2a:66:32:17:e7:8a:7f:e7:39: 66:98:c3:32:ac:29:3a:55:7a:dc:6a:de:b8:18:30: a5:6a:46:23:16:dd:84:27:7d:55:26:c5:75:7d:6d: 34:78:d9:d0:57:cb:5d:ee:99:7e:c8:12:52:01:c3: b6:2e:6b:00:50:5a:97:7c:33:99:a4:af:f5:3c:51: 73:98:b6:e5:79:d6:b9:be:1e:36:1d:87:55:c5:75: 9a:8a:8e:c6:bc:a4:2d:a6:ae:73:d4:b7:05:b2:3c: 4b:cc:a3:63:3e:64:f5:69:ce:12:ee:bd:28:85:d3: 90:aa:98:55:28:dd:12:b6:6a:fe:8e:bb:f0:bd:03: da:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:AA:7A:20:8C:3D:8D:6A:33:96:1E:1B:4B:88:17:32:07:82:F7:F4 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/V6p6IIw9jWozlh4bS4gXMgeC9_Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.107.192.0/20 Signature Algorithm: sha256WithRSAEncryption 80:d0:16:54:34:4b:f2:95:65:ea:f6:b3:b8:52:ce:3c:c6:94: d2:5f:94:08:be:9e:49:c5:7b:a9:3e:dd:61:7a:de:1b:0d:c1: f4:e2:c5:16:18:64:1e:a4:6b:b2:58:c2:f6:25:99:5a:68:58: 02:a9:7b:df:28:b5:84:53:ca:bb:0d:e6:88:1e:78:c5:76:5e: 92:34:c4:e9:4a:37:1c:c9:7f:eb:5a:42:27:97:54:2d:3b:a1: c1:b2:71:7d:6e:53:5a:63:5d:4b:71:88:cb:be:c8:eb:88:fa: cb:11:2e:dc:a2:07:70:a9:cc:53:0f:67:89:5f:f9:19:5f:5f: c5:6a:82:ab:5b:09:eb:f6:44:27:40:0e:fa:aa:16:b0:f3:89: 4f:bb:29:f2:d4:90:1a:99:22:4f:59:c5:f7:88:86:94:35:b3: fb:02:86:df:b2:3d:7f:e8:7e:5c:42:96:c3:48:d8:38:e5:03: 1b:bc:be:a8:ff:f5:b3:d1:04:7f:e0:49:a7:d3:98:a0:80:77: 1d:5a:2e:d7:02:20:38:b4:09:1f:0c:4c:83:d1:8d:47:e6:b9: f0:99:43:8f:92:14:6b:84:5e:d8:8c:18:d1:31:bd:66:05:f7: 1c:0d:a7:73:2c:96:75:5f:94:81:9c:af:c7:ce:50:0e:86:2d: 8e:d5:de:58 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEu0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDU3QUE3QTIwOEMzRDhE NkEzMzk2MUUxQjRCODgxNzMyMDc4MkY3RjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCbTLiw9Af1N/maKKo0nGlg8TLJz9ZJ+WWmH8gGHHdPIRSls7f HRYLjAEUbHNeVtKNYTRRVPPVPgZWMIz5zd/eDIg5xsnJiIYNScYFxJeHDmdBmXny zfscXRvS7T4kmLPZHbLyC1L0dHAQB36kGkZh3rXnDNOTwe4N8P/83SpmMhfnin/n OWaYwzKsKTpVetxq3rgYMKVqRiMW3YQnfVUmxXV9bTR42dBXy13umX7IElIBw7Yu awBQWpd8M5mkr/U8UXOYtuV51rm+HjYdh1XFdZqKjsa8pC2mrnPUtwWyPEvMo2M+ ZPVpzhLuvSiF05CqmFUo3RK2av6Ou/C9A9qVAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUV6p6IIw9jWozlh4bS4gXMgeC9/QwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVjZwNklJdzlqV296bGg0YlM0Z1hN Z2VDOV9RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBGprwDAN BgkqhkiG9w0BAQsFAAOCAQEAgNAWVDRL8pVl6vazuFLOPMaU0l+UCL6eScV7qT7d YXreGw3B9OLFFhhkHqRrsljC9iWZWmhYAql73yi1hFPKuw3miB54xXZekjTE6Uo3 HMl/61pCJ5dULTuhwbJxfW5TWmNdS3GIy77I64j6yxEu3KIHcKnMUw9niV/5GV9f xWqCq1sJ6/ZEJ0AO+qoWsPOJT7sp8tSQGpkiT1nF94iGlDWz+wKG37I9f+h+XEKW w0jYOOUDG7y+qP/1s9EEf+BJp9OYoIB3HVou1wIgOLQJHwxMg9GNR+a58JlDj5IU a4Re2IwY0TG9ZgX3HA2ncyyWdV+UgZyvx85QDoYtjtXeWA== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org