$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/iuiWGDtiv8sJAQZxy5AFg8v1CjE.roa File: iuiWGDtiv8sJAQZxy5AFg8v1CjE.roa (raw, json) Hash identifier: d9kLlSskRPLbBatGpaZ3moCyNLG6yx+Qqji0/drYWME= Subject key identifier: 8A:E8:96:18:3B:62:BF:CB:09:01:06:71:CB:90:05:83:CB:F5:0A:31 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 136D Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/iuiWGDtiv8sJAQZxy5AFg8v1CjE.roa Signing time: Fri 01 Sep 2023 09:24:55 +0000 ROA not before: Fri 01 Sep 2023 09:24:55 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 61.59.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4973 (0x136d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:55 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8AE896183B62BFCB09010671CB900583CBF50A31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:78:81:c6:09:b6:e0:10:2a:87:6f:45:de:57: 75:01:83:cc:98:7b:99:ef:51:b4:77:50:89:e9:ca: 6d:10:fa:ea:ed:74:45:4f:ef:dd:ab:66:04:9b:9c: 7c:65:35:9c:f5:e9:38:bd:04:e2:d5:80:70:5a:4c: f2:a5:5c:5a:0b:01:eb:96:4e:a3:f2:ed:e4:ea:49: 33:21:ac:5d:98:6e:32:0e:f9:f4:ec:b6:2f:4b:12: 6a:fb:60:37:cd:2c:6e:bb:b0:e1:c9:f2:15:17:3f: 93:16:df:94:c7:4c:89:f1:7a:eb:47:87:bb:0d:2d: 4f:39:97:58:91:ba:04:0b:0f:3f:ef:80:d9:89:eb: f7:85:b7:81:27:d4:07:32:69:03:1b:85:41:a1:44: e8:98:90:13:0c:7b:0f:be:42:c8:96:00:e7:76:17: 27:f7:0a:6b:f6:6b:74:37:a8:84:0a:38:6e:16:3a: 01:08:6c:05:0b:24:33:bf:e0:e3:ae:95:e2:8f:6c: 7c:91:9d:8c:7b:ec:0f:87:44:cf:2f:27:60:95:e7: 23:1a:d2:df:d6:e0:6b:b2:ba:9e:e1:37:86:54:5e: 36:e9:b9:a1:99:38:65:72:59:aa:75:c0:d1:25:ed: de:7b:b0:3f:25:40:a0:37:06:37:cb:18:c2:18:cd: f6:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:E8:96:18:3B:62:BF:CB:09:01:06:71:CB:90:05:83:CB:F5:0A:31 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/iuiWGDtiv8sJAQZxy5AFg8v1CjE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.59.0.0/16 Signature Algorithm: sha256WithRSAEncryption c7:8f:e3:97:1d:b6:e1:ba:f8:56:11:ed:60:64:ec:3b:f1:4f: 40:40:68:37:40:43:7a:d1:d0:ea:2d:d9:d7:59:87:f2:12:2f: ae:a2:19:b1:a5:76:dd:ac:0c:74:0e:5d:a9:0d:7a:de:72:d6: 75:16:99:48:8e:32:2c:44:87:50:0a:4c:d9:90:01:87:0a:4c: 22:36:d8:78:e0:c0:cd:f8:db:d7:c1:ca:7b:09:3c:d0:31:37: 67:9c:58:90:3a:31:34:d1:0e:a2:01:ec:62:bd:59:91:9e:5a: 14:85:f3:38:02:ba:14:81:2e:80:0f:9f:ec:41:95:32:7c:d5: 57:bb:56:d0:ef:0a:e3:27:e9:30:b2:3a:2b:ad:f5:5f:b2:b0: a2:de:36:0b:85:30:02:f4:1e:2c:95:82:51:97:82:a9:28:91: 9a:ad:74:47:84:b3:87:9c:3d:ae:d5:1b:aa:0a:f9:2d:94:64: 1b:98:9f:90:51:f9:ee:07:d5:10:01:62:f4:bd:93:5c:0e:99: 96:6d:eb:f4:7a:75:21:dc:5d:8b:b4:f7:b5:d2:8c:dc:48:d5: 09:8d:9f:11:48:82:36:87:1a:33:61:15:b9:4c:27:de:ca:d3: b0:51:fa:c3:64:83:c5:f0:e6:98:0d:5c:da:06:2d:e7:1a:ee: b4:81:35:da -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICE20wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhBRTg5NjE4M0I2MkJG Q0IwOTAxMDY3MUNCOTAwNTgzQ0JGNTBBMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVeIHGCbbgECqHb0XeV3UBg8yYe5nvUbR3UInpym0Q+urtdEVP 792rZgSbnHxlNZz16Ti9BOLVgHBaTPKlXFoLAeuWTqPy7eTqSTMhrF2YbjIO+fTs ti9LEmr7YDfNLG67sOHJ8hUXP5MW35THTInxeutHh7sNLU85l1iRugQLDz/vgNmJ 6/eFt4En1AcyaQMbhUGhROiYkBMMew++QsiWAOd2Fyf3Cmv2a3Q3qIQKOG4WOgEI bAULJDO/4OOuleKPbHyRnYx77A+HRM8vJ2CV5yMa0t/W4Guyup7hN4ZUXjbpuaGZ OGVyWap1wNEl7d57sD8lQKA3BjfLGMIYzfahAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUiuiWGDtiv8sJAQZxy5AFg8v1CjEwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvaXVpV0dEdGl2OHNKQVFaeHk1QUZn OHYxQ2pFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAD07MA0G CSqGSIb3DQEBCwUAA4IBAQDHj+OXHbbhuvhWEe1gZOw78U9AQGg3QEN60dDqLdnX WYfyEi+uohmxpXbdrAx0Dl2pDXrectZ1FplIjjIsRIdQCkzZkAGHCkwiNth44MDN +NvXwcp7CTzQMTdnnFiQOjE00Q6iAexivVmRnloUhfM4AroUgS6AD5/sQZUyfNVX u1bQ7wrjJ+kwsjorrfVfsrCi3jYLhTAC9B4slYJRl4KpKJGarXRHhLOHnD2u1Ruq CvktlGQbmJ+QUfnuB9UQAWL0vZNcDpmWbev0enUh3F2LtPe10ozcSNUJjZ8RSII2 hxozYRW5TCfeytOwUfrDZIPF8OaYDVzaBi3nGu60gTXa -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org