$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ac_ItwR41tffuwYx5uXitLg963M.roa File: ac_ItwR41tffuwYx5uXitLg963M.roa (raw, json) Hash identifier: Ac61FtsnhS6gHDKMDMk2Qu9VvpOG2Ipat4F/0RSw7M4= Subject key identifier: 69:CF:C8:B7:04:78:D6:D7:DF:BB:06:31:E6:E5:E2:B4:B8:3D:EB:73 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1391 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ac_ItwR41tffuwYx5uXitLg963M.roa Signing time: Fri 01 Sep 2023 09:25:09 +0000 ROA not before: Fri 01 Sep 2023 09:25:09 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131584 IP address blocks: 106.105.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5009 (0x1391) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:09 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=69CFC8B70478D6D7DFBB0631E6E5E2B4B83DEB73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3f:a7:73:d0:22:d5:05:02:39:76:31:0a:d4: 7a:ff:82:02:2a:ce:73:73:39:aa:2e:2b:41:f9:59: b2:e2:dc:b2:ed:96:f8:40:39:33:59:f9:01:c4:de: 60:84:54:f0:97:a4:62:f6:fe:3f:9f:68:1a:3a:c2: 02:2d:d2:f4:8a:62:cf:14:74:3a:09:9c:fe:31:b2: e5:3b:1e:85:b8:26:92:6d:41:b9:54:9e:d2:cb:d3: 17:47:7e:e2:0e:ba:83:24:c1:56:03:44:14:aa:68: 12:da:62:ea:2c:a4:fb:f6:22:dc:8d:45:d7:07:ad: ef:24:64:fb:38:5f:0e:0f:43:e8:bf:4f:98:c7:d5: da:17:63:79:03:ee:c2:58:99:ab:49:76:58:a0:38: 97:43:c7:9a:ac:f1:34:71:56:7d:b3:af:63:5f:9f: b5:04:8b:59:3d:1c:fd:95:e7:7e:41:a1:6b:54:f0: 7f:08:3d:7b:cc:10:f5:36:66:39:38:f1:81:e0:b2: bb:a6:81:a8:36:a4:b8:8b:ec:3b:e1:01:0e:af:9b: c1:0f:30:94:33:85:69:ba:46:6c:a0:72:3a:2e:2e: e4:bd:bb:9f:13:b0:6a:51:24:5f:8b:1d:5c:65:3d: 10:59:2f:25:44:4b:d8:dd:38:9d:c8:96:43:92:ab: c6:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:CF:C8:B7:04:78:D6:D7:DF:BB:06:31:E6:E5:E2:B4:B8:3D:EB:73 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ac_ItwR41tffuwYx5uXitLg963M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.182.0/24 Signature Algorithm: sha256WithRSAEncryption 34:6a:94:db:6b:ed:b7:99:26:8f:40:41:d4:0e:a2:b2:5c:cc: cf:27:13:68:d6:f2:d0:51:bf:f5:29:42:1a:13:41:e8:75:08: 7d:49:86:5c:e8:b0:fd:f7:a7:bc:2c:f8:56:55:4a:45:ba:f5: 09:0b:fc:8a:87:63:68:02:8b:05:b7:f7:a7:a7:da:9a:89:43: af:2f:6b:f9:5f:a0:1e:c5:d7:fa:a5:58:b0:01:dd:4b:0f:04: 9f:23:c6:7e:8b:3f:44:8a:b7:c7:c7:06:a0:c8:43:b5:76:d0: 6a:d4:0c:72:e6:5f:bf:01:37:bd:03:7d:61:f7:6e:6b:9f:11: df:ee:ac:40:47:f7:43:d3:e3:56:0c:dd:8b:bb:64:bb:df:de: 6b:5e:f6:61:52:86:89:42:44:c6:f6:8e:e4:a6:a6:7c:0e:01: 5b:a1:b2:70:8d:3f:2e:db:3a:a4:36:36:89:f3:72:67:08:a9: 02:67:c2:7f:3a:1c:fd:12:82:38:a0:5a:ce:19:26:59:65:d8: cc:d5:fa:d2:22:0a:42:b6:03:09:9f:4d:03:2b:00:f8:56:f9: 90:66:74:e6:74:33:b8:6d:f7:52:b4:94:2e:86:a4:a3:11:4e: 6a:48:3a:e9:66:0e:d4:e3:d1:70:bf:00:b0:1e:6e:b8:ec:b0: 23:80:a6:92 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE5EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY5Q0ZDOEI3MDQ3OEQ2 RDdERkJCMDYzMUU2RTVFMkI0QjgzREVCNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJP6dz0CLVBQI5djEK1Hr/ggIqznNzOaouK0H5WbLi3LLtlvhA OTNZ+QHE3mCEVPCXpGL2/j+faBo6wgIt0vSKYs8UdDoJnP4xsuU7HoW4JpJtQblU ntLL0xdHfuIOuoMkwVYDRBSqaBLaYuospPv2ItyNRdcHre8kZPs4Xw4PQ+i/T5jH 1doXY3kD7sJYmatJdligOJdDx5qs8TRxVn2zr2Nfn7UEi1k9HP2V535BoWtU8H8I PXvMEPU2Zjk48YHgsrumgag2pLiL7DvhAQ6vm8EPMJQzhWm6RmygcjouLuS9u58T sGpRJF+LHVxlPRBZLyVES9jdOJ3IlkOSq8avAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUac/ItwR41tffuwYx5uXitLg963MwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYWNfSXR3UjQxdGZmdXdZeDV1WGl0 TGc5NjNNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGpptjAN BgkqhkiG9w0BAQsFAAOCAQEANGqU22vtt5kmj0BB1A6islzMzycTaNby0FG/9SlC GhNB6HUIfUmGXOiw/fenvCz4VlVKRbr1CQv8iodjaAKLBbf3p6famolDry9r+V+g HsXX+qVYsAHdSw8EnyPGfos/RIq3x8cGoMhDtXbQatQMcuZfvwE3vQN9Yfdua58R 3+6sQEf3Q9PjVgzdi7tku9/ea172YVKGiUJExvaO5KamfA4BW6GycI0/Lts6pDY2 ifNyZwipAmfCfzoc/RKCOKBazhkmWWXYzNX60iIKQrYDCZ9NAysA+Fb5kGZ05nQz uG33UrSULoakoxFOakg66WYO1OPRcL8AsB5uuOywI4Cmkg== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org