$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/X8GGE8Vh__cfSvh9Co81QhoiSqc.roa File: X8GGE8Vh__cfSvh9Co81QhoiSqc.roa (raw, json) Hash identifier: xzWL+QO2ZaxvOkhmmmHHR2jF8EhKTzrgSw+pWojSabg= Subject key identifier: 5F:C1:86:13:C5:61:FF:F7:1F:4A:F8:7D:0A:8F:35:42:1A:22:4A:A7 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13B1 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/X8GGE8Vh__cfSvh9Co81QhoiSqc.roa Signing time: Fri 01 Sep 2023 09:25:18 +0000 ROA not before: Fri 01 Sep 2023 09:25:18 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 112.105.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5041 (0x13b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:18 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5FC18613C561FFF71F4AF87D0A8F35421A224AA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:90:70:4a:24:9a:a4:c4:9f:3b:95:01:ea:67: 52:93:52:f0:08:11:a9:ac:b6:fa:40:da:18:78:66: 43:f0:ab:32:05:04:0e:21:e6:27:41:66:49:4c:29: 20:79:82:81:51:57:fb:81:8b:50:0e:ed:c8:53:91: 8c:e4:b1:26:fa:bd:6f:d7:5e:54:cc:b3:28:e3:1c: b4:c9:3d:fd:77:65:71:3b:a3:a1:66:d6:b9:59:9e: 41:b2:1d:cd:c8:ad:9a:c8:3f:7a:d9:a2:7e:60:c0: d7:a9:55:4f:56:92:2a:c9:46:8c:7c:22:4a:e7:0e: 91:b6:08:1e:c9:a8:b6:dc:02:30:a5:ba:11:f1:32: 04:d1:1e:7a:a0:72:94:1c:1f:1c:c6:2a:55:06:2c: e1:1a:a7:71:09:63:00:0e:ba:ca:10:ec:d3:ea:68: 6b:42:e2:f8:2d:2a:29:95:2b:44:81:59:18:c6:3c: 4a:67:bc:5d:9f:29:96:f7:f1:76:f7:72:c9:b6:f6: 8f:02:10:ed:3c:89:a3:c0:dc:91:08:87:e1:c0:2b: bb:3e:60:38:ae:f2:24:69:b1:ca:95:f5:70:6e:98: a5:5a:2a:8b:7d:64:e4:e2:aa:6a:41:bf:82:fd:5b: c8:75:80:b2:15:02:73:4c:6c:38:d5:c5:5d:58:ea: 53:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:C1:86:13:C5:61:FF:F7:1F:4A:F8:7D:0A:8F:35:42:1A:22:4A:A7 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/X8GGE8Vh__cfSvh9Co81QhoiSqc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.105.64.0/18 Signature Algorithm: sha256WithRSAEncryption 65:08:19:b2:9e:ab:99:42:56:3b:a2:0d:ba:3a:fa:76:82:4b: 66:0f:8a:20:21:e2:6a:5a:e5:30:26:f4:f0:bd:ac:4a:42:33: d1:f2:11:e1:36:f6:14:b5:7c:76:3e:b7:c8:75:22:c0:dd:99: b5:d0:92:b9:36:f1:d8:37:39:39:37:49:a5:b2:ee:cd:88:73: 51:9c:0a:85:c7:07:e2:d9:0a:0d:1d:b4:98:10:16:22:8b:1a: 97:d4:3d:37:1a:9f:78:d4:5c:15:2b:27:ff:be:1e:a9:79:1b: b7:71:be:ca:6d:54:82:3e:6e:d4:99:cc:3d:6c:7b:84:8e:a3: 95:6b:94:1b:0b:62:c6:9f:a2:bc:e5:21:22:58:8a:9b:11:0d: 21:80:48:3e:10:d0:74:95:c3:30:c4:c2:62:fd:34:a2:06:1a: f1:9a:57:95:3d:b8:14:68:84:3b:c3:3b:27:13:70:f9:bf:77: 09:5b:8e:1e:1e:e4:ed:e8:f4:d2:8b:bb:ec:94:b5:fb:ef:15: da:3b:56:0b:c2:e5:4a:22:18:4b:b4:a3:d8:d5:83:88:e1:0c: ae:3f:3d:fb:cd:08:99:96:58:28:3d:a2:05:ce:5d:b7:25:e9: 55:a7:a9:c7:9c:a3:e8:d7:1e:17:a4:b7:6b:34:72:bd:2d:9d: 05:bd:ee:64 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE7EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVGQzE4NjEzQzU2MUZG RjcxRjRBRjg3RDBBOEYzNTQyMUEyMjRBQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNkHBKJJqkxJ87lQHqZ1KTUvAIEamstvpA2hh4ZkPwqzIFBA4h 5idBZklMKSB5goFRV/uBi1AO7chTkYzksSb6vW/XXlTMsyjjHLTJPf13ZXE7o6Fm 1rlZnkGyHc3IrZrIP3rZon5gwNepVU9WkirJRox8IkrnDpG2CB7JqLbcAjCluhHx MgTRHnqgcpQcHxzGKlUGLOEap3EJYwAOusoQ7NPqaGtC4vgtKimVK0SBWRjGPEpn vF2fKZb38Xb3csm29o8CEO08iaPA3JEIh+HAK7s+YDiu8iRpscqV9XBumKVaKot9 ZOTiqmpBv4L9W8h1gLIVAnNMbDjVxV1Y6lNpAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUX8GGE8Vh//cfSvh9Co81QhoiSqcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWDhHR0U4VmhfX2NmU3ZoOUNvODFR aG9pU3FjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnBpQDAN BgkqhkiG9w0BAQsFAAOCAQEAZQgZsp6rmUJWO6INujr6doJLZg+KICHialrlMCb0 8L2sSkIz0fIR4Tb2FLV8dj63yHUiwN2ZtdCSuTbx2Dc5OTdJpbLuzYhzUZwKhccH 4tkKDR20mBAWIosal9Q9NxqfeNRcFSsn/74eqXkbt3G+ym1Ugj5u1JnMPWx7hI6j lWuUGwtixp+ivOUhIliKmxENIYBIPhDQdJXDMMTCYv00ogYa8ZpXlT24FGiEO8M7 JxNw+b93CVuOHh7k7ej00ou77JS1++8V2jtWC8LlSiIYS7Sj2NWDiOEMrj89+80I mZZYKD2iBc5dtyXpVaepx5yj6NceF6S3azRyvS2dBb3uZA== -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org