$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/WSK5nkj6mpBKuHeWUbODW8TLehk.roa File: WSK5nkj6mpBKuHeWUbODW8TLehk.roa (raw, json) Hash identifier: 3bLaqz5D84sLi8tLFPiR9gOvtwiOezXbkyxPE0vdYNQ= Subject key identifier: 59:22:B9:9E:48:FA:9A:90:4A:B8:77:96:51:B3:83:5B:C4:CB:7A:19 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1393 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WSK5nkj6mpBKuHeWUbODW8TLehk.roa Signing time: Fri 01 Sep 2023 09:25:10 +0000 ROA not before: Fri 01 Sep 2023 09:25:10 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 218.32.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5011 (0x1393) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:10 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5922B99E48FA9A904AB8779651B3835BC4CB7A19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:13:0e:7d:cf:84:0a:5a:80:ab:d0:db:c6:84: 8d:2b:4a:fb:f9:35:18:d9:a0:03:1c:5b:90:16:79: ad:e0:09:fb:de:c3:26:d7:a8:67:94:60:20:f7:fc: 1d:b9:8e:d8:13:1e:20:44:a9:ee:7c:d0:1f:08:3f: ca:b7:d7:59:ff:9f:ee:25:64:61:5f:ae:ce:45:13: ac:63:8f:25:6c:95:36:68:73:8a:a9:d0:16:77:73: b9:84:eb:da:cc:c8:c6:42:9e:9d:a9:bf:b2:eb:46: cf:be:18:bf:4e:e3:39:f5:d2:9b:64:bc:5f:90:5a: 55:b5:8a:59:d2:ce:7e:e2:7f:ff:5e:11:b9:54:fe: f2:d4:db:e5:a8:c2:79:e4:9e:60:0e:33:c4:13:2e: 31:80:33:1d:0b:c1:92:b2:9a:a6:14:49:47:f9:63: a7:f2:2c:e3:a6:6f:e6:ff:a0:7f:e7:ce:1d:aa:b4: 3c:ce:59:0d:1a:b8:db:6b:4c:22:58:88:4c:a6:85: f5:de:43:b0:f4:50:bc:91:f2:88:b5:5b:cd:69:93: 26:cb:bd:3c:aa:97:40:bd:16:1b:ce:35:7b:ae:7e: d9:a6:fe:ce:5f:c3:af:27:50:84:84:c9:ae:4d:2a: 07:36:c8:5b:05:3f:6d:cc:0c:87:41:c1:29:9f:78: 32:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:22:B9:9E:48:FA:9A:90:4A:B8:77:96:51:B3:83:5B:C4:CB:7A:19 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WSK5nkj6mpBKuHeWUbODW8TLehk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.32.0.0/16 Signature Algorithm: sha256WithRSAEncryption 67:4a:94:2c:14:33:59:c3:32:00:a2:9e:90:96:cc:af:5c:ca: c2:02:fe:3d:15:5d:fd:0d:fe:89:6c:d2:a5:c1:85:b7:2e:0b: 05:fb:40:d4:59:2b:bd:c2:fb:d3:05:f0:a7:50:65:02:12:eb: 21:93:f7:cf:82:30:53:b9:17:4b:89:12:38:9b:eb:c1:b0:e6: 48:77:39:70:7b:2f:2b:7d:8b:06:b0:d2:82:74:9a:ac:b5:0a: ee:7d:a5:a9:7d:30:06:55:a1:bd:f4:91:e8:b5:44:1f:3e:9e: 41:12:05:ec:e4:f9:05:b6:7f:77:34:da:29:e4:be:03:c6:f9: 23:3e:7c:7d:15:45:87:e1:ba:a4:a3:10:a4:4b:2f:4d:fb:17: 30:2e:52:e1:86:01:82:62:32:7b:7e:82:f2:fa:e8:b5:fa:ec: f6:66:49:9d:7b:8b:e6:87:a1:ff:2d:d2:d6:a6:4a:d0:a1:b0: c7:fc:71:17:7b:29:10:94:d1:9b:37:da:b4:5b:ed:0e:f0:86: 65:1f:ef:e5:b4:30:aa:e5:de:35:aa:81:67:7a:7a:a0:23:b1: 33:6e:13:75:3f:4e:f9:25:b5:47:22:af:56:c4:ca:17:3f:d2: 8f:78:15:f3:92:a8:45:b1:50:01:91:38:e2:00:15:c8:83:2e: e7:ea:d9:b6 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICE5MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDU5MjJCOTlFNDhGQTlB OTA0QUI4Nzc5NjUxQjM4MzVCQzRDQjdBMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbEw59z4QKWoCr0NvGhI0rSvv5NRjZoAMcW5AWea3gCfvewybX qGeUYCD3/B25jtgTHiBEqe580B8IP8q311n/n+4lZGFfrs5FE6xjjyVslTZoc4qp 0BZ3c7mE69rMyMZCnp2pv7LrRs++GL9O4zn10ptkvF+QWlW1ilnSzn7if/9eEblU /vLU2+WownnknmAOM8QTLjGAMx0LwZKymqYUSUf5Y6fyLOOmb+b/oH/nzh2qtDzO WQ0auNtrTCJYiEymhfXeQ7D0ULyR8oi1W81pkybLvTyql0C9FhvONXuuftmm/s5f w68nUISEya5NKgc2yFsFP23MDIdBwSmfeDIFAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUWSK5nkj6mpBKuHeWUbODW8TLehkwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvV1NLNW5rajZtcEJLdUhlV1ViT0RX OFRMZWhrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANogMA0G CSqGSIb3DQEBCwUAA4IBAQBnSpQsFDNZwzIAop6QlsyvXMrCAv49FV39Df6JbNKl wYW3LgsF+0DUWSu9wvvTBfCnUGUCEushk/fPgjBTuRdLiRI4m+vBsOZIdzlwey8r fYsGsNKCdJqstQrufaWpfTAGVaG99JHotUQfPp5BEgXs5PkFtn93NNop5L4Dxvkj Pnx9FUWH4bqkoxCkSy9N+xcwLlLhhgGCYjJ7foLy+ui1+uz2Zkmde4vmh6H/LdLW pkrQobDH/HEXeykQlNGbN9q0W+0O8IZlH+/ltDCq5d41qoFnenqgI7EzbhN1P075 JbVHIq9WxMoXP9KPeBXzkqhFsVABkTjiABXIgy7n6tm2 -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org