$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/fptBHFoxrFDDi63XgqPK8gF9g04.roa File: fptBHFoxrFDDi63XgqPK8gF9g04.roa (raw, json) Hash identifier: w5hJ1JBHdyxHypjrbHt2yqPtAjayof9aIhcF1iDILz8= Subject key identifier: 7E:9B:41:1C:5A:31:AC:50:C3:8B:AD:D7:82:A3:CA:F2:01:7D:83:4E Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 131E Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fptBHFoxrFDDi63XgqPK8gF9g04.roa Signing time: Fri 01 Sep 2023 09:24:29 +0000 ROA not before: Fri 01 Sep 2023 09:24:29 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131602 IP address blocks: 106.105.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4894 (0x131e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:29 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=7E9B411C5A31AC50C38BADD782A3CAF2017D834E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:7e:5d:7b:88:6f:65:3a:ce:03:81:27:8f:85: f4:89:94:96:ab:c3:cb:48:2e:f5:ba:d3:89:49:0d: 3a:d9:8d:24:31:aa:5e:36:3b:16:e8:70:e0:4c:15: 11:80:39:0b:75:85:76:81:1d:65:ac:e1:d1:5f:64: af:3f:c0:aa:57:99:51:7a:3a:2f:dd:c7:97:6f:2e: 3d:b0:c5:f7:87:ca:a7:93:2c:0e:25:25:46:3e:2c: c5:01:8e:52:19:22:f1:3c:ae:ec:9d:d9:7f:86:79: ad:bc:ea:f5:8c:10:4a:82:e9:6d:c7:73:9a:da:44: 1f:cb:26:cf:ad:e7:af:be:83:b9:75:d0:e6:8c:57: 90:b8:42:89:a7:04:1a:45:4c:8c:9b:0c:30:2f:da: ed:5d:e0:d5:15:f7:21:10:cf:a0:43:b7:ef:91:97: b0:ad:c7:14:57:b2:33:a6:92:91:3c:30:eb:34:ce: 89:f8:59:6d:a3:2d:62:c2:12:32:6e:a4:89:6c:4f: 9d:57:e0:bc:70:59:a6:43:74:e8:14:14:e1:a2:09: 96:25:7e:89:17:9b:17:31:9b:c1:6d:a0:5b:4c:14: 5d:85:ca:c7:b9:75:ea:76:82:c7:32:cf:36:23:40: e5:b1:6e:88:8b:eb:e8:a9:c9:e6:6c:a7:70:1b:5b: 84:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:9B:41:1C:5A:31:AC:50:C3:8B:AD:D7:82:A3:CA:F2:01:7D:83:4E X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/fptBHFoxrFDDi63XgqPK8gF9g04.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.128.0/19 Signature Algorithm: sha256WithRSAEncryption 4b:aa:fd:1e:e8:c8:0c:2b:d9:85:08:1c:b1:cc:9a:fa:f2:01: f9:3a:55:5e:41:18:89:f9:73:1b:1a:a2:70:b2:e7:78:25:a9: 78:1e:d1:26:4a:d8:1c:e7:c1:b9:d7:b5:9f:49:a2:19:54:83: 39:27:28:1f:6c:ae:5d:0b:8f:93:64:82:57:a2:82:73:a6:c5: 6c:9b:99:3d:66:c2:94:92:e9:cf:6a:73:e0:6d:20:04:0f:46: bc:63:f1:b5:a7:1f:ad:d8:1e:e1:08:30:6d:20:dc:9a:67:ec: d2:76:5a:b4:f0:fb:ba:ed:f8:72:2d:e9:02:80:4e:d4:05:e9: e7:79:e6:3e:0d:9f:c2:eb:97:b2:66:75:c8:ed:3c:47:d5:1b: db:f3:2d:21:e6:6f:5d:3f:09:1a:7e:37:9e:37:4d:6b:07:ea: e8:0c:51:dd:c7:67:f7:3d:4d:85:59:69:a6:71:7a:ee:fb:da: ef:7d:91:ec:5f:0b:b1:69:6b:6b:54:a2:15:75:c9:69:46:40: 65:f8:6c:5b:fd:29:5b:15:13:81:a8:8d:a5:d7:8f:7f:2e:59: ba:b9:9a:49:69:b6:f5:5f:1d:77:d1:2d:e4:4e:1d:cc:e2:f9: cb:cd:2f:71:c4:31:4f:fa:d2:04:8e:58:a3:71:c4:74:7e:cb: 77:27:ee:04 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEx4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MjlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDdFOUI0MTFDNUEzMUFD NTBDMzhCQURENzgyQTNDQUYyMDE3RDgzNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDufl17iG9lOs4DgSePhfSJlJarw8tILvW604lJDTrZjSQxql42 OxbocOBMFRGAOQt1hXaBHWWs4dFfZK8/wKpXmVF6Oi/dx5dvLj2wxfeHyqeTLA4l JUY+LMUBjlIZIvE8ruyd2X+Gea286vWMEEqC6W3Hc5raRB/LJs+t56++g7l10OaM V5C4QomnBBpFTIybDDAv2u1d4NUV9yEQz6BDt++Rl7CtxxRXsjOmkpE8MOs0zon4 WW2jLWLCEjJupIlsT51X4LxwWaZDdOgUFOGiCZYlfokXmxcxm8FtoFtMFF2Fyse5 dep2gscyzzYjQOWxboiL6+ipyeZsp3AbW4TFAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUfptBHFoxrFDDi63XgqPK8gF9g04wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZnB0QkhGb3hyRkREaTYzWGdxUEs4 Z0Y5ZzA0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBWppgDAN BgkqhkiG9w0BAQsFAAOCAQEAS6r9HujIDCvZhQgcscya+vIB+TpVXkEYiflzGxqi cLLneCWpeB7RJkrYHOfBude1n0miGVSDOScoH2yuXQuPk2SCV6KCc6bFbJuZPWbC lJLpz2pz4G0gBA9GvGPxtacfrdge4QgwbSDcmmfs0nZatPD7uu34ci3pAoBO1AXp 53nmPg2fwuuXsmZ1yO08R9Ub2/MtIeZvXT8JGn43njdNawfq6AxR3cdn9z1NhVlp pnF67vva732R7F8LsWlra1SiFXXJaUZAZfhsW/0pWxUTgaiNpdePfy5ZurmaSWm2 9V8dd9Et5E4dzOL5y80vccQxT/rSBI5Yo3HEdH7LdyfuBA== -----END CERTIFICATE-----Generated at Sun Jun 2 09:37:18 2024 by rpki-client on console-ams.rpki-client.org