$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/WYMm3KI8EtXtItT-w8CFfzYrs48.roa File: WYMm3KI8EtXtItT-w8CFfzYrs48.roa (raw, json) Hash identifier: Oa4uufCRrt3hNORlmD75jos6S1U+Zr6tu0bIPAaWeAk= Subject key identifier: 59:83:26:DC:A2:3C:12:D5:ED:22:D4:FE:C3:C0:85:7F:36:2B:B3:8F Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13D8 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WYMm3KI8EtXtItT-w8CFfzYrs48.roa Signing time: Fri 01 Sep 2023 09:25:31 +0000 ROA not before: Fri 01 Sep 2023 09:25:31 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 218.32.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5080 (0x13d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:31 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=598326DCA23C12D5ED22D4FEC3C0857F362BB38F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2f:65:f3:8a:b1:9b:3d:b0:90:96:e7:9f:65: 8b:80:40:bc:6a:04:d7:bf:63:5d:16:d4:37:1d:4d: a3:85:3d:a3:64:47:b1:c3:5d:e2:62:c2:48:cf:2a: e0:61:6c:a7:2c:b5:4c:38:0a:8b:89:9f:d9:7b:58: 42:57:f4:62:5a:39:42:33:d4:db:da:f3:3c:e2:31: 83:f8:6d:b5:a7:c9:b6:e6:cb:5a:37:8a:6c:9b:93: c3:b5:ea:47:80:78:5f:46:c8:87:fd:8c:71:8c:3e: c6:eb:a9:94:45:15:e5:24:d7:da:40:ec:19:1c:e7: 57:82:0f:f7:98:ff:63:2d:9c:05:e3:b3:21:15:92: 24:59:ca:9d:63:e6:ec:69:97:4b:aa:0a:31:f8:cc: 33:d6:7a:8f:9f:4e:ed:6c:a1:e2:c7:cf:b3:92:bf: 36:c1:e1:9e:b9:dc:bf:e2:3c:1a:61:69:27:4d:74: 60:79:2a:71:58:5d:7d:b6:a6:a6:4c:12:8e:f2:d8: 24:d3:0c:fd:79:b3:56:8f:ff:6d:26:e2:65:b6:0f: 8b:db:fa:7f:fc:bf:a1:8f:11:cd:ae:ee:17:ee:83: 70:ca:79:fc:b1:5f:91:ea:bf:d0:f1:4f:f4:8e:30: 42:c1:66:e8:d0:63:86:5a:ca:a1:5a:a3:2e:1a:fe: b7:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:83:26:DC:A2:3C:12:D5:ED:22:D4:FE:C3:C0:85:7F:36:2B:B3:8F X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WYMm3KI8EtXtItT-w8CFfzYrs48.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.32.0.0/16 Signature Algorithm: sha256WithRSAEncryption 39:0f:8a:19:f4:c1:db:0c:e7:e5:91:1b:8e:8f:78:99:66:3a: d4:57:89:12:ea:45:51:50:f0:86:a1:2e:70:bb:c8:bf:76:af: c6:db:8c:ff:17:b1:10:98:b5:43:5f:b7:72:78:64:cf:8f:1b: 47:65:7f:43:fb:bf:5d:a6:ba:33:74:14:fa:72:aa:fe:c6:88: 03:7b:32:00:e4:12:cb:4f:68:32:e3:0a:1d:ad:f4:34:71:a4: 0f:6e:16:54:26:47:b0:a5:e2:cf:f5:40:ff:96:20:58:6e:e2: 4b:42:d0:70:61:b8:e4:6a:b5:91:ab:82:e8:ec:ec:22:07:af: 93:ad:9b:ab:85:06:2d:e4:d0:0b:b8:68:84:2d:39:de:46:34: 7b:3f:62:27:5b:06:15:25:00:ed:73:48:ef:f9:2f:bb:76:c5: d1:2b:8c:b1:98:dc:55:a6:b5:d6:14:34:1e:2c:03:9b:69:3a: b9:0e:73:f0:60:38:73:d0:d5:d7:3a:32:b7:e8:db:84:64:81: c4:66:db:bc:d1:53:0f:f4:97:39:e0:d2:5a:38:86:5e:ab:69: e1:07:64:be:9d:5c:52:66:eb:96:a0:e2:55:c3:a3:51:07:75: 55:77:be:a1:99:bd:48:45:8b:38:07:92:c6:0a:20:d9:7e:1c: d9:b6:5a:ac -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICE9gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MzFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDU5ODMyNkRDQTIzQzEy RDVFRDIyRDRGRUMzQzA4NTdGMzYyQkIzOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAL2XzirGbPbCQluefZYuAQLxqBNe/Y10W1DcdTaOFPaNkR7HD XeJiwkjPKuBhbKcstUw4CouJn9l7WEJX9GJaOUIz1Nva8zziMYP4bbWnybbmy1o3 imybk8O16keAeF9GyIf9jHGMPsbrqZRFFeUk19pA7Bkc51eCD/eY/2MtnAXjsyEV kiRZyp1j5uxpl0uqCjH4zDPWeo+fTu1soeLHz7OSvzbB4Z653L/iPBphaSdNdGB5 KnFYXX22pqZMEo7y2CTTDP15s1aP/20m4mW2D4vb+n/8v6GPEc2u7hfug3DKefyx X5Hqv9DxT/SOMELBZujQY4ZayqFaoy4a/rdbAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUWYMm3KI8EtXtItT+w8CFfzYrs48wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvV1lNbTNLSThFdFh0SXRULXc4Q0Zm ellyczQ4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANogMA0G CSqGSIb3DQEBCwUAA4IBAQA5D4oZ9MHbDOflkRuOj3iZZjrUV4kS6kVRUPCGoS5w u8i/dq/G24z/F7EQmLVDX7dyeGTPjxtHZX9D+79dprozdBT6cqr+xogDezIA5BLL T2gy4wodrfQ0caQPbhZUJkewpeLP9UD/liBYbuJLQtBwYbjkarWRq4Lo7OwiB6+T rZurhQYt5NALuGiELTneRjR7P2InWwYVJQDtc0jv+S+7dsXRK4yxmNxVprXWFDQe LAObaTq5DnPwYDhz0NXXOjK36NuEZIHEZtu80VMP9Jc54NJaOIZeq2nhB2S+nVxS ZuuWoOJVw6NRB3VVd76hmb1IRYs4B5LGCiDZfhzZtlqs -----END CERTIFICATE-----Generated at Sun Jun 2 09:37:18 2024 by rpki-client on console-ams.rpki-client.org