$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Vl3b5dwePkSeGOf5sXYf5Q-bUk8.roa File: Vl3b5dwePkSeGOf5sXYf5Q-bUk8.roa (raw, json) Hash identifier: uh4QHB0NlN0YN/5YPMGImDJl0UG5RWZUXNaccaK5G44= Subject key identifier: 56:5D:DB:E5:DC:1E:3E:44:9E:18:E7:F9:B1:76:1F:E5:0F:9B:52:4F Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13E5 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Vl3b5dwePkSeGOf5sXYf5Q-bUk8.roa Signing time: Fri 01 Sep 2023 09:25:34 +0000 ROA not before: Fri 01 Sep 2023 09:25:34 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18049 IP address blocks: 175.183.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5093 (0x13e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:34 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=565DDBE5DC1E3E449E18E7F9B1761FE50F9B524F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6b:b4:00:23:e3:6b:71:54:37:61:2a:b1:64: 01:50:a8:2f:31:12:0f:11:43:28:ae:0a:1a:40:8e: b0:80:21:73:f0:bc:97:db:1a:62:09:04:7e:bf:a5: ad:5c:76:4d:af:ca:8e:9d:59:1b:4c:25:54:bd:9d: 81:78:59:78:e4:95:68:35:6d:77:d1:9a:05:ce:1a: 6f:58:18:0c:b5:31:21:d6:a7:a3:f1:48:74:32:97: ef:6f:b5:07:1f:c4:5e:9d:89:92:ff:73:90:5c:9c: e1:9d:03:e3:c4:bb:e0:c9:e2:c1:6a:90:34:9c:19: 7d:c5:43:cd:30:1b:a6:a7:9f:92:c6:92:83:0c:a7: a8:8c:2a:c5:c2:45:4f:21:0a:d3:4a:1d:bd:4a:bc: a3:54:8e:9c:d9:fe:80:6d:60:8d:fb:1c:ce:00:55: c8:6d:3f:ab:1b:04:88:ed:50:bb:d4:91:21:d0:da: 64:f2:18:d1:9c:44:62:5d:8e:08:c8:20:fe:e9:30: 08:d5:4f:31:08:c9:d0:00:74:07:3b:a1:d2:31:3d: 3a:26:a9:79:60:bf:ba:0a:49:bd:cc:4f:8b:5b:ca: 14:b1:97:0c:7b:1a:97:40:76:f5:52:80:61:b6:2a: fd:81:b6:d0:a1:68:93:cd:25:95:a9:00:7a:ef:a8: 77:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:5D:DB:E5:DC:1E:3E:44:9E:18:E7:F9:B1:76:1F:E5:0F:9B:52:4F X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Vl3b5dwePkSeGOf5sXYf5Q-bUk8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.183.32.0/19 Signature Algorithm: sha256WithRSAEncryption 79:77:b3:9e:76:72:12:49:3a:dd:a4:bb:d4:e8:65:0b:ff:3a: 4c:fd:be:6a:ac:2d:5f:c2:07:8d:29:44:49:f4:52:d3:17:ab: 8c:92:9e:08:b2:53:c5:e8:f7:eb:da:78:97:ca:26:c5:52:b1: 01:41:3c:6a:56:6a:36:49:8b:b2:66:85:99:47:71:a8:45:48: 0c:57:a9:bb:33:b1:3a:13:11:8c:be:3c:8e:8b:29:a0:8c:5a: 52:c0:59:56:2e:69:f4:7d:8d:84:a6:7d:30:e6:e6:14:21:cd: 4f:9a:00:0b:1b:b0:88:f8:3d:be:90:a5:99:2a:bd:9f:95:9d: 1a:94:16:72:20:74:11:b3:24:10:a8:a8:69:08:c7:4b:25:40: ed:08:e3:49:ca:c3:dd:2d:ea:8d:80:f9:fe:5d:bc:ed:af:c1: 8d:ec:5b:ef:f2:f9:24:86:80:9c:97:4e:70:3a:5f:d7:45:76: 55:0c:d9:af:86:02:43:9a:be:2c:05:93:c6:94:5b:40:a8:41: 9e:12:5b:52:6c:c3:eb:a2:83:61:50:04:28:ba:6f:e7:c1:82: 24:b7:8f:0d:4c:49:38:43:b1:f3:02:16:36:7e:ae:4f:24:57: ac:80:b2:ed:95:40:ac:c6:22:3a:8b:8c:0f:ed:02:78:ee:de: 64:a0:b7:30 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE+UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MzRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDU2NUREQkU1REMxRTNF NDQ5RTE4RTdGOUIxNzYxRkU1MEY5QjUyNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGa7QAI+NrcVQ3YSqxZAFQqC8xEg8RQyiuChpAjrCAIXPwvJfb GmIJBH6/pa1cdk2vyo6dWRtMJVS9nYF4WXjklWg1bXfRmgXOGm9YGAy1MSHWp6Px SHQyl+9vtQcfxF6diZL/c5BcnOGdA+PEu+DJ4sFqkDScGX3FQ80wG6ann5LGkoMM p6iMKsXCRU8hCtNKHb1KvKNUjpzZ/oBtYI37HM4AVchtP6sbBIjtULvUkSHQ2mTy GNGcRGJdjgjIIP7pMAjVTzEIydAAdAc7odIxPTomqXlgv7oKSb3MT4tbyhSxlwx7 GpdAdvVSgGG2Kv2BttChaJPNJZWpAHrvqHddAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUVl3b5dwePkSeGOf5sXYf5Q+bUk8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVmwzYjVkd2VQa1NlR09mNXNYWWY1 US1iVWs4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBa+3IDAN BgkqhkiG9w0BAQsFAAOCAQEAeXeznnZyEkk63aS71OhlC/86TP2+aqwtX8IHjSlE SfRS0xerjJKeCLJTxej369p4l8omxVKxAUE8alZqNkmLsmaFmUdxqEVIDFepuzOx OhMRjL48jospoIxaUsBZVi5p9H2NhKZ9MObmFCHNT5oACxuwiPg9vpClmSq9n5Wd GpQWciB0EbMkEKioaQjHSyVA7QjjScrD3S3qjYD5/l287a/Bjexb7/L5JIaAnJdO cDpf10V2VQzZr4YCQ5q+LAWTxpRbQKhBnhJbUmzD66KDYVAEKLpv58GCJLePDUxJ OEOx8wIWNn6uTyRXrICy7ZVArMYiOouMD+0CeO7eZKC3MA== -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org