$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/enZ6EPK3nCuGEIDoRu5H5M_gvVA.roa File: enZ6EPK3nCuGEIDoRu5H5M_gvVA.roa (raw, json) Hash identifier: vjoy5dlSOgkCIn7f5Lp34TvJfh1xSbW6jb4qddqK6+4= Subject key identifier: 7A:76:7A:10:F2:B7:9C:2B:86:10:80:E8:46:EE:47:E4:CF:E0:BD:50 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 130B Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/enZ6EPK3nCuGEIDoRu5H5M_gvVA.roa Signing time: Fri 01 Sep 2023 09:24:25 +0000 ROA not before: Fri 01 Sep 2023 09:24:25 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 60.245.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4875 (0x130b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:25 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=7A767A10F2B79C2B861080E846EE47E4CFE0BD50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d2:3e:cd:be:90:4b:8f:47:7b:28:5a:76:74: 82:fc:d0:7c:06:45:91:46:e1:d9:80:6c:6a:bf:da: 38:99:79:53:4e:b8:97:ec:77:7b:b8:02:c4:4a:86: a0:49:04:7e:56:7d:5e:bc:74:b7:5d:9f:c3:a7:5f: d3:f3:2e:32:94:19:65:ab:41:53:83:df:d9:8a:57: 0e:d3:e5:06:72:9f:40:2e:4a:33:ea:0c:44:e6:51: b2:fc:13:43:19:00:ee:cc:90:e0:a9:d2:be:d2:a1: 14:b3:09:dc:c7:1a:4b:c1:22:02:33:49:36:5e:bb: 82:55:9d:06:52:41:16:e1:23:7c:09:37:33:0c:c0: 3b:fd:97:e7:9f:6e:ac:fe:88:04:a7:3f:99:0a:2a: 39:8a:d2:0b:a5:7f:91:5a:60:9c:8f:9b:30:1e:bd: 56:e0:2d:ef:5a:0b:8f:66:54:33:55:a3:7c:d5:b9: 5d:24:89:9e:89:19:7a:54:f2:1d:db:3d:f5:e8:57: 22:e6:85:0c:ba:39:0f:f4:64:3a:63:56:cb:71:65: 68:6a:98:b2:37:27:fe:51:90:8a:da:29:6e:ea:63: 49:70:9f:ba:05:d4:6e:fb:f8:eb:e2:46:83:62:a7: ab:34:47:1a:d9:1f:fa:28:1d:ce:37:7a:fd:16:f2: c5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:76:7A:10:F2:B7:9C:2B:86:10:80:E8:46:EE:47:E4:CF:E0:BD:50 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/enZ6EPK3nCuGEIDoRu5H5M_gvVA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.245.112.0/21 Signature Algorithm: sha256WithRSAEncryption 4e:64:6b:c6:05:b0:5a:a4:06:22:f2:d1:c0:5b:60:ad:7d:92: 68:7f:34:29:08:73:b3:97:0f:15:99:61:24:f3:8d:2b:6f:d3: 4c:50:f6:ad:2b:b3:d1:66:85:43:df:e8:42:13:2a:26:04:6b: 33:78:2e:92:89:fc:db:cf:ad:a4:42:6f:92:c6:fa:9e:d5:5a: f1:cf:8c:91:b6:3a:4a:a6:25:c9:03:20:0c:e3:59:2a:0c:df: 9d:3c:78:e9:7b:2b:8e:9f:26:82:a0:d7:14:db:c3:25:a7:1b: c2:ca:60:4d:74:06:b8:e0:ce:8e:04:8e:96:ca:18:10:ef:66: 03:32:3f:21:10:89:77:7a:28:dd:a6:f8:41:d5:36:5d:6e:31: 0c:40:2e:fb:11:36:e6:b7:bf:2f:8a:94:98:cf:1b:46:ac:ac: 81:c3:a6:9d:cd:56:16:3b:fe:e5:97:85:34:19:f1:41:95:71: bc:44:eb:13:7e:d0:33:60:5d:ee:f7:96:cd:d2:18:8b:5e:38: 44:e2:2a:b3:89:d6:4b:d6:80:9b:1b:4a:69:5c:8c:a4:e9:00: 1a:ad:d5:52:00:7c:d8:48:7f:68:74:81:d8:5a:03:a1:23:9b: 3e:4c:68:7a:6c:91:b4:5e:8e:ec:04:63:01:0c:bf:2e:32:99: a6:3a:bc:cc -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEwswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MjVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDdBNzY3QTEwRjJCNzlD MkI4NjEwODBFODQ2RUU0N0U0Q0ZFMEJENTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA0j7NvpBLj0d7KFp2dIL80HwGRZFG4dmAbGq/2jiZeVNOuJfs d3u4AsRKhqBJBH5WfV68dLddn8OnX9PzLjKUGWWrQVOD39mKVw7T5QZyn0AuSjPq DETmUbL8E0MZAO7MkOCp0r7SoRSzCdzHGkvBIgIzSTZeu4JVnQZSQRbhI3wJNzMM wDv9l+efbqz+iASnP5kKKjmK0gulf5FaYJyPmzAevVbgLe9aC49mVDNVo3zVuV0k iZ6JGXpU8h3bPfXoVyLmhQy6OQ/0ZDpjVstxZWhqmLI3J/5RkIraKW7qY0lwn7oF 1G77+OviRoNip6s0RxrZH/ooHc43ev0W8sX3AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUenZ6EPK3nCuGEIDoRu5H5M/gvVAwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZW5aNkVQSzNuQ3VHRUlEb1J1NUg1 TV9ndlZBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAzz1cDAN BgkqhkiG9w0BAQsFAAOCAQEATmRrxgWwWqQGIvLRwFtgrX2SaH80KQhzs5cPFZlh JPONK2/TTFD2rSuz0WaFQ9/oQhMqJgRrM3gukon828+tpEJvksb6ntVa8c+MkbY6 SqYlyQMgDONZKgzfnTx46Xsrjp8mgqDXFNvDJacbwspgTXQGuODOjgSOlsoYEO9m AzI/IRCJd3oo3ab4QdU2XW4xDEAu+xE25re/L4qUmM8bRqysgcOmnc1WFjv+5ZeF NBnxQZVxvETrE37QM2Bd7veWzdIYi144ROIqs4nWS9aAmxtKaVyMpOkAGq3VUgB8 2Eh/aHSB2FoDoSObPkxoemyRtF6O7ARjAQy/LjKZpjq8zA== -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org