$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/hiT61irAF289VCHmAeCpBiu2Rmk.roa File: hiT61irAF289VCHmAeCpBiu2Rmk.roa (raw, json) Hash identifier: iwZysTZebLSKCwzQD/7kj9ZDijiJf/7Yi8wqAqrTqXo= Subject key identifier: 86:24:FA:D6:2A:C0:17:6F:3D:54:21:E6:01:E0:A9:06:2B:B6:46:69 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13B7 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hiT61irAF289VCHmAeCpBiu2Rmk.roa Signing time: Fri 01 Sep 2023 09:25:19 +0000 ROA not before: Fri 01 Sep 2023 09:25:19 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18049 IP address blocks: 106.105.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5047 (0x13b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:19 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8624FAD62AC0176F3D5421E601E0A9062BB64669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:99:70:a7:fc:88:d5:05:da:85:b7:14:da:76: 24:b1:7b:24:65:83:c5:77:6c:b1:e7:f6:5f:36:d9: 97:cd:b8:35:3b:c1:60:f5:53:94:42:12:98:1d:af: 12:10:2d:fa:b1:00:26:0e:c9:5d:4c:4c:97:b3:a4: e1:c5:7c:f1:7f:bb:a3:ed:8c:15:f0:e5:8e:fd:a0: 41:f1:31:14:31:cf:9e:29:37:bf:ea:da:54:75:43: 0b:c8:db:bb:58:66:cd:40:70:a0:3a:b6:1a:92:a1: 86:b2:18:42:0f:52:8f:04:88:ec:68:ff:5d:fd:ba: 8f:7c:57:6e:41:9b:ce:48:47:2c:11:b2:fa:c1:f2: e7:4d:d4:a2:19:9a:ae:17:f7:0c:af:67:9c:0d:2d: c4:14:41:f0:f3:9d:17:b2:6a:4a:db:86:7e:c7:62: 9b:a0:f2:15:61:5f:ad:0b:11:ab:3c:6c:ed:22:b0: 64:50:93:95:aa:a5:74:3f:3a:42:45:39:33:22:9a: ff:09:06:84:c4:f5:1b:33:89:73:88:6b:77:04:69: 33:8e:2b:8c:aa:63:9d:f8:6c:65:ad:e3:ad:ec:fc: 02:88:3f:10:74:6b:07:ad:ff:8b:10:da:d8:26:89: 82:12:bb:c5:72:2a:e2:9a:31:21:5a:38:27:45:85: 64:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:24:FA:D6:2A:C0:17:6F:3D:54:21:E6:01:E0:A9:06:2B:B6:46:69 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/hiT61irAF289VCHmAeCpBiu2Rmk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.88.0/21 Signature Algorithm: sha256WithRSAEncryption 5e:7c:52:87:74:7c:a3:83:c2:de:9c:2d:57:ff:58:b3:0d:9a: 41:88:44:1f:dc:31:11:35:be:ff:d5:27:30:5a:b4:03:d4:cb: 13:29:22:9b:53:b9:60:d9:9c:a6:de:10:08:f7:56:28:6a:1a: 75:66:be:2d:38:1e:94:b1:67:89:bd:48:55:fa:f4:fc:bb:5d: 42:fb:ec:d8:98:38:05:79:91:b7:9a:40:99:81:19:96:fa:af: bb:87:41:c1:9b:e4:5b:b9:1e:e0:63:4b:86:23:6b:fa:62:04: 49:49:bc:69:79:37:25:c5:b1:ad:1e:78:a6:28:7f:3b:80:23: 9e:2b:f4:78:bf:1c:e8:b9:2f:f3:b0:06:c4:66:bc:31:f7:91: 1b:19:b3:69:6d:d1:e6:39:89:40:64:5b:a1:18:81:b3:07:41: e0:71:d7:e2:51:a8:bf:c3:0d:d9:4b:6a:a9:e1:82:c7:ad:8f: 4e:ef:0e:54:69:91:42:20:f7:d2:e5:3b:9b:45:91:1d:50:04: e7:f6:23:6d:62:b0:aa:81:a7:eb:e5:71:fe:64:1e:f1:3e:3f: 43:e6:6a:ce:6b:a3:06:44:01:4e:d5:f7:92:39:c1:d0:f0:55: 8e:e5:d0:48:a1:44:c2:fe:b4:ad:91:67:3e:0b:13:64:c2:06: 30:c1:ca:4f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE7cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg2MjRGQUQ2MkFDMDE3 NkYzRDU0MjFFNjAxRTBBOTA2MkJCNjQ2NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJmXCn/IjVBdqFtxTadiSxeyRlg8V3bLHn9l822ZfNuDU7wWD1 U5RCEpgdrxIQLfqxACYOyV1MTJezpOHFfPF/u6PtjBXw5Y79oEHxMRQxz54pN7/q 2lR1QwvI27tYZs1AcKA6thqSoYayGEIPUo8EiOxo/139uo98V25Bm85IRywRsvrB 8udN1KIZmq4X9wyvZ5wNLcQUQfDznReyakrbhn7HYpug8hVhX60LEas8bO0isGRQ k5WqpXQ/OkJFOTMimv8JBoTE9RsziXOIa3cEaTOOK4yqY534bGWt463s/AKIPxB0 awet/4sQ2tgmiYISu8VyKuKaMSFaOCdFhWQJAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUhiT61irAF289VCHmAeCpBiu2RmkwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvaGlUNjFpckFGMjg5VkNIbUFlQ3BC aXUyUm1rLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2ppWDAN BgkqhkiG9w0BAQsFAAOCAQEAXnxSh3R8o4PC3pwtV/9Ysw2aQYhEH9wxETW+/9Un MFq0A9TLEykim1O5YNmcpt4QCPdWKGoadWa+LTgelLFnib1IVfr0/LtdQvvs2Jg4 BXmRt5pAmYEZlvqvu4dBwZvkW7ke4GNLhiNr+mIESUm8aXk3JcWxrR54pih/O4Aj niv0eL8c6Lkv87AGxGa8MfeRGxmzaW3R5jmJQGRboRiBswdB4HHX4lGov8MN2Utq qeGCx62PTu8OVGmRQiD30uU7m0WRHVAE5/YjbWKwqoGn6+Vx/mQe8T4/Q+Zqzmuj BkQBTtX3kjnB0PBVjuXQSKFEwv60rZFnPgsTZMIGMMHKTw== -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org