$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/YcWbke6J5dLVQcwTvQkxG27bgT4.roa File: YcWbke6J5dLVQcwTvQkxG27bgT4.roa (raw, json) Hash identifier: K9z7dmGbFjG9C3Rcsq3PlJoSLgJcca+ErqoGq1FFWCk= Subject key identifier: 61:C5:9B:91:EE:89:E5:D2:D5:41:CC:13:BD:09:31:1B:6E:DB:81:3E Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 133A Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YcWbke6J5dLVQcwTvQkxG27bgT4.roa Signing time: Fri 01 Sep 2023 09:24:40 +0000 ROA not before: Fri 01 Sep 2023 09:24:40 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 210.66.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4922 (0x133a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:40 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=61C59B91EE89E5D2D541CC13BD09311B6EDB813E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:54:29:e0:c2:38:88:0b:9d:56:e8:57:f8:f1: 28:07:53:47:55:85:15:c2:50:08:05:b9:27:b2:8c: ee:2b:cc:9a:e6:5a:21:af:86:ce:4b:c2:69:3d:d4: 2a:e3:1a:ae:ea:9c:8e:6b:8a:66:50:12:f4:66:69: 5d:00:72:12:70:b9:1e:16:a2:de:7d:f6:8e:b7:52: ed:c8:40:f5:ae:1f:0e:3b:70:37:c7:db:ca:31:cf: 70:89:99:d2:b2:37:b7:02:83:ef:b4:c7:dc:15:dd: 8e:60:18:4f:5f:16:ed:b2:fd:f0:d3:48:df:0c:2f: 29:b8:74:83:e0:e7:08:72:86:6a:17:5c:2e:84:3c: 35:78:92:6e:43:28:bf:f1:65:e1:68:10:a9:6e:f2: 93:46:8e:68:43:24:21:00:63:80:a9:5b:01:63:5d: f4:4b:cd:20:d6:9c:9a:7f:9e:5c:bc:cd:fd:9d:1d: 84:16:d6:85:f7:87:e8:34:59:45:6c:69:2f:99:af: 51:09:f6:e4:91:96:9d:97:b0:4a:a7:60:ca:5d:6d: a7:ce:33:c5:bb:8d:30:f0:19:83:6a:06:b4:ea:fe: 92:d6:28:86:fd:c1:15:eb:18:96:16:84:70:f8:af: 80:c1:35:3f:0c:2e:f4:30:29:f8:75:ee:7f:72:43: d8:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:C5:9B:91:EE:89:E5:D2:D5:41:CC:13:BD:09:31:1B:6E:DB:81:3E X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YcWbke6J5dLVQcwTvQkxG27bgT4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.66.0.0/16 Signature Algorithm: sha256WithRSAEncryption b1:1d:86:9d:45:3e:5e:83:e3:19:ad:cf:aa:ac:a7:02:f2:67: 65:5a:e2:2c:ab:d7:e2:94:57:2d:0d:62:83:ec:10:29:b9:7a: cc:11:06:66:33:a3:2e:b4:83:4b:11:4e:42:70:cf:2b:1b:97: 43:0b:7c:ed:24:1c:72:ce:65:47:f4:65:82:3c:ce:c5:77:47: 75:f0:64:92:c7:0c:15:7b:82:13:55:a1:a1:af:98:2c:2d:cf: aa:d6:ec:4e:81:67:48:a3:cf:38:46:00:a1:a4:2d:4d:fb:04: ba:ff:fb:65:22:15:9a:31:b4:5a:0f:50:6c:d0:a5:04:3a:c5: 0e:67:9e:a6:ae:bd:9b:e9:7b:4e:88:6d:f8:5b:62:a7:f2:7e: 86:14:e1:7a:53:fb:c6:21:21:af:d5:a4:15:75:76:cf:2f:21: af:46:a1:4a:c8:cb:6d:4c:05:1c:15:2c:44:ae:69:94:fa:c0: 38:68:64:f2:04:54:c0:41:54:bc:59:87:7a:52:f4:0d:f3:93: 96:35:d1:29:27:51:15:81:da:42:aa:96:bc:cc:c7:65:cc:1d: d8:cd:80:42:93:65:1e:c4:a2:6c:1b:0e:23:9b:23:0c:ca:8b: 95:fb:40:18:1c:64:ce:55:b1:19:d4:e3:06:b0:4d:8e:14:0d: a8:bf:f2:f1 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICEzowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDYxQzU5QjkxRUU4OUU1 RDJENTQxQ0MxM0JEMDkzMTFCNkVEQjgxM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxVCngwjiIC51W6Ff48SgHU0dVhRXCUAgFuSeyjO4rzJrmWiGv hs5Lwmk91CrjGq7qnI5rimZQEvRmaV0AchJwuR4Wot599o63Uu3IQPWuHw47cDfH 28oxz3CJmdKyN7cCg++0x9wV3Y5gGE9fFu2y/fDTSN8MLym4dIPg5whyhmoXXC6E PDV4km5DKL/xZeFoEKlu8pNGjmhDJCEAY4CpWwFjXfRLzSDWnJp/nly8zf2dHYQW 1oX3h+g0WUVsaS+Zr1EJ9uSRlp2XsEqnYMpdbafOM8W7jTDwGYNqBrTq/pLWKIb9 wRXrGJYWhHD4r4DBNT8MLvQwKfh17n9yQ9irAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUYcWbke6J5dLVQcwTvQkxG27bgT4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWWNXYmtlNko1ZExWUWN3VHZRa3hH MjdiZ1Q0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANJCMA0G CSqGSIb3DQEBCwUAA4IBAQCxHYadRT5eg+MZrc+qrKcC8mdlWuIsq9filFctDWKD 7BApuXrMEQZmM6MutINLEU5CcM8rG5dDC3ztJBxyzmVH9GWCPM7Fd0d18GSSxwwV e4ITVaGhr5gsLc+q1uxOgWdIo884RgChpC1N+wS6//tlIhWaMbRaD1Bs0KUEOsUO Z56mrr2b6XtOiG34W2Kn8n6GFOF6U/vGISGv1aQVdXbPLyGvRqFKyMttTAUcFSxE rmmU+sA4aGTyBFTAQVS8WYd6UvQN85OWNdEpJ1EVgdpCqpa8zMdlzB3YzYBCk2Ue xKJsGw4jmyMMyouV+0AYHGTOVbEZ1OMGsE2OFA2ov/Lx -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org