$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/_fsftauOtqzjFkzMupR7XANZ7VI.roa File: _fsftauOtqzjFkzMupR7XANZ7VI.roa (raw, json) Hash identifier: byhmZMV7XZvjTMg1Yo+JPPdJLgIlknKenrbN8gtbaus= Subject key identifier: FD:FB:1F:B5:AB:8E:B6:AC:E3:16:4C:CC:BA:94:7B:5C:03:59:ED:52 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13A3 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_fsftauOtqzjFkzMupR7XANZ7VI.roa Signing time: Fri 01 Sep 2023 09:25:14 +0000 ROA not before: Fri 01 Sep 2023 09:25:14 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131584 IP address blocks: 106.105.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5027 (0x13a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:14 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=FDFB1FB5AB8EB6ACE3164CCCBA947B5C0359ED52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8d:7d:34:a3:25:4b:41:9b:66:0f:1a:c3:30: 2e:c9:09:3b:9a:44:fa:47:cc:9d:d2:00:60:74:10: 10:a7:76:78:fd:41:ae:d9:b9:af:c7:03:7b:23:b5: 0a:75:3d:e4:ec:d3:04:d9:ed:c8:a0:0a:e6:29:ed: 56:26:9d:8d:b7:0b:8f:3f:f5:e3:44:c7:12:94:57: fa:af:97:45:a4:ea:3a:50:db:34:5d:19:5d:b5:9d: 44:91:ce:e3:4c:1e:4a:d5:41:86:25:97:44:fe:6c: e8:5b:a0:71:b7:2d:c5:14:3b:38:f1:e1:b7:7b:fc: 13:82:d3:df:5b:5f:9f:d9:fe:c1:19:1b:17:cd:71: a1:79:8d:e3:38:2c:4e:2c:19:57:c2:a2:e9:80:33: ad:eb:e0:5a:74:45:5e:a3:f3:30:23:72:b9:dc:2b: 23:a0:74:17:ee:fc:98:ec:52:cf:70:a1:bd:a0:2d: d8:11:c1:86:0e:0b:14:71:1c:39:c4:4f:36:91:7e: f2:cd:fa:98:75:2b:38:41:41:97:a0:c5:d0:90:30: c9:3a:69:cc:38:c6:86:87:d5:5e:4c:1e:c4:2b:d0: bc:5a:e1:e3:45:c4:54:15:85:8a:08:e9:de:6b:9c: d1:ff:59:30:0f:c9:3f:1f:47:e2:9f:a5:82:3b:02: ab:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:FB:1F:B5:AB:8E:B6:AC:E3:16:4C:CC:BA:94:7B:5C:03:59:ED:52 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_fsftauOtqzjFkzMupR7XANZ7VI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.179.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:63:0e:4b:3b:49:b0:94:d4:19:b4:e8:11:68:e2:14:eb:59: 4b:01:4d:01:ff:14:b2:cb:94:6f:6f:16:f1:69:63:7b:5d:0d: b2:c6:2d:4e:c5:7e:7b:e6:c0:64:13:8b:cf:88:1a:81:4d:8b: 23:48:16:2a:3d:3a:c2:8e:58:b9:66:1c:9e:52:c2:dc:b7:0b: 91:fe:73:08:12:54:70:af:02:f0:2e:fb:76:d7:e0:bb:83:5e: 45:b9:c1:20:75:67:a3:f3:17:eb:14:c4:9b:a5:03:91:32:0e: f3:f6:5a:20:f0:8b:36:fa:77:52:ca:ea:bd:a5:1c:fa:50:b3: c4:e2:0a:14:1a:99:6e:9e:dc:ed:8d:b1:48:0d:97:8a:99:de: 8b:25:8b:66:1f:71:c2:5a:c9:3f:57:5e:bb:68:d8:d7:e4:e0: 23:77:23:5b:ab:7d:10:d2:34:e9:19:0b:7e:30:ef:ea:90:cd: 42:35:48:d2:a7:0e:5b:b7:c0:ea:9e:48:58:ef:70:51:e9:be: 80:2b:58:38:74:98:8c:0c:f6:03:12:ad:eb:77:c1:be:87:be: 12:89:30:d9:8b:d0:7e:ba:c3:1b:1c:a2:57:7c:09:c4:ab:b8: d5:d6:fc:15:39:16:23:6c:8a:20:4e:7f:c3:07:09:16:fe:18: 2b:d3:c7:0e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE6MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZERkIxRkI1QUI4RUI2 QUNFMzE2NENDQ0JBOTQ3QjVDMDM1OUVENTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPjX00oyVLQZtmDxrDMC7JCTuaRPpHzJ3SAGB0EBCndnj9Qa7Z ua/HA3sjtQp1PeTs0wTZ7cigCuYp7VYmnY23C48/9eNExxKUV/qvl0Wk6jpQ2zRd GV21nUSRzuNMHkrVQYYll0T+bOhboHG3LcUUOzjx4bd7/BOC099bX5/Z/sEZGxfN caF5jeM4LE4sGVfCoumAM63r4Fp0RV6j8zAjcrncKyOgdBfu/JjsUs9wob2gLdgR wYYOCxRxHDnETzaRfvLN+ph1KzhBQZegxdCQMMk6acw4xoaH1V5MHsQr0Lxa4eNF xFQVhYoI6d5rnNH/WTAPyT8fR+KfpYI7AqtZAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU/fsftauOtqzjFkzMupR7XANZ7VIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvX2ZzZnRhdU90cXpqRmt6TXVwUjdY QU5aN1ZJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGppszAN BgkqhkiG9w0BAQsFAAOCAQEAWmMOSztJsJTUGbToEWjiFOtZSwFNAf8UssuUb28W 8Wlje10NssYtTsV+e+bAZBOLz4gagU2LI0gWKj06wo5YuWYcnlLC3LcLkf5zCBJU cK8C8C77dtfgu4NeRbnBIHVno/MX6xTEm6UDkTIO8/ZaIPCLNvp3UsrqvaUc+lCz xOIKFBqZbp7c7Y2xSA2XipneiyWLZh9xwlrJP1deu2jY1+TgI3cjW6t9ENI06RkL fjDv6pDNQjVI0qcOW7fA6p5IWO9wUem+gCtYOHSYjAz2AxKt63fBvoe+Eokw2YvQ frrDGxyiV3wJxKu41db8FTkWI2yKIE5/wwcJFv4YK9PHDg== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org