$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/kRpCldYPlkzWUM8q8iN3oJQAQG4.roa File: kRpCldYPlkzWUM8q8iN3oJQAQG4.roa (raw, json) Hash identifier: YVdY1hne4Mj0hp2FqR46qft5+uPdsY/hZbfVBip6G0M= Subject key identifier: 91:1A:42:95:D6:0F:96:4C:D6:50:CF:2A:F2:23:77:A0:94:00:40:6E Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1304 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kRpCldYPlkzWUM8q8iN3oJQAQG4.roa Signing time: Fri 01 Sep 2023 09:24:23 +0000 ROA not before: Fri 01 Sep 2023 09:24:23 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 106.105.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4868 (0x1304) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:23 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=911A4295D60F964CD650CF2AF22377A09400406E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fa:b0:ab:54:6f:58:05:81:4b:db:27:9f:cb: be:15:f5:c5:a8:b4:03:1b:66:b6:fa:2a:c1:57:28: 65:f1:14:97:52:26:95:ec:2f:6c:d2:d9:68:1c:7c: 8f:00:50:2c:13:40:ca:cf:1e:5f:5c:7a:e5:66:d8: c2:4e:7e:68:fd:5d:7d:a3:8b:26:9b:dd:8e:b6:1b: 99:9e:26:17:b6:63:b1:0d:56:a2:c2:cb:7a:b1:f3: ee:ae:54:c9:fa:20:4a:85:f3:93:47:42:41:2f:d4: b8:72:63:22:e1:fe:c0:f1:e4:2f:cf:33:cd:16:74: 94:00:75:39:1a:e7:b7:96:a5:c7:1b:06:a7:d0:ea: 72:4b:ca:74:df:7d:df:ba:69:e8:2c:ac:71:75:7a: 96:b4:0a:70:62:86:f4:26:49:1d:5a:07:54:1f:8e: b0:43:b0:0c:03:f0:fc:de:51:50:6e:1f:41:86:d3: 4b:86:be:00:ab:7c:ed:fc:33:6c:20:71:0c:f5:e7: 28:bd:34:42:a4:76:54:b5:88:c7:c8:bc:84:b4:3c: 09:e9:ae:71:3a:30:1e:2a:e9:3b:48:bc:2d:4b:6f: 85:e2:65:05:4d:0e:79:f8:0f:02:5c:d7:24:54:25: 84:17:db:76:9c:47:96:07:a1:53:93:af:42:6d:37: 79:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:1A:42:95:D6:0F:96:4C:D6:50:CF:2A:F2:23:77:A0:94:00:40:6E X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/kRpCldYPlkzWUM8q8iN3oJQAQG4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.96.0/19 Signature Algorithm: sha256WithRSAEncryption 51:96:c0:d3:85:4d:06:08:94:b5:e9:f9:85:f2:c0:63:95:1b: d2:5d:49:30:4a:05:e6:44:1e:c2:5a:5a:bd:d0:bf:a5:5a:ec: 0b:a1:0e:a8:23:96:68:02:43:0c:07:dc:0e:2c:2e:99:2b:a8: 58:e4:36:84:00:ba:f4:6e:ad:ee:15:74:c1:99:7d:2f:b4:e6: 65:2e:d6:6a:d0:db:7e:d6:d9:ce:5a:88:d2:dd:90:f6:e2:0f: 3d:56:00:70:2b:81:cb:d3:02:8e:01:51:40:cf:1b:ad:bf:d5: 47:95:67:29:af:d0:79:db:44:29:2a:d0:d8:79:5b:20:65:13: e0:fb:3e:5f:67:06:d3:32:01:54:5f:47:c9:d2:cf:b7:92:70: 46:4a:2d:30:6e:7c:bd:20:67:5f:ec:05:36:c8:fc:ac:71:b3: bd:3c:0d:37:b8:22:a5:37:17:ba:e3:6f:82:4d:68:d7:e6:17: 87:3e:a9:31:70:e0:ce:74:89:84:c1:7b:ac:be:5c:36:d6:6e: 81:31:91:15:da:60:0a:46:84:3c:59:6a:e0:af:ac:4a:ea:4b: d2:d9:d0:7d:a0:ba:02:aa:55:03:a7:82:8f:b9:d2:94:76:86: 78:31:8c:69:fa:36:45:c0:e8:c1:59:41:8f:d7:d8:2b:fe:14: 21:b9:02:f0 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEwQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkxMUE0Mjk1RDYwRjk2 NENENjUwQ0YyQUYyMjM3N0EwOTQwMDQwNkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo+rCrVG9YBYFL2yefy74V9cWotAMbZrb6KsFXKGXxFJdSJpXs L2zS2WgcfI8AUCwTQMrPHl9ceuVm2MJOfmj9XX2jiyab3Y62G5meJhe2Y7ENVqLC y3qx8+6uVMn6IEqF85NHQkEv1LhyYyLh/sDx5C/PM80WdJQAdTka57eWpccbBqfQ 6nJLynTffd+6aegsrHF1epa0CnBihvQmSR1aB1QfjrBDsAwD8PzeUVBuH0GG00uG vgCrfO38M2wgcQz15yi9NEKkdlS1iMfIvIS0PAnprnE6MB4q6TtIvC1Lb4XiZQVN Dnn4DwJc1yRUJYQX23acR5YHoVOTr0JtN3lbAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUkRpCldYPlkzWUM8q8iN3oJQAQG4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMva1JwQ2xkWVBsa3pXVU04cThpTjNv SlFBUUc0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBWppYDAN BgkqhkiG9w0BAQsFAAOCAQEAUZbA04VNBgiUten5hfLAY5Ub0l1JMEoF5kQewlpa vdC/pVrsC6EOqCOWaAJDDAfcDiwumSuoWOQ2hAC69G6t7hV0wZl9L7TmZS7WatDb ftbZzlqI0t2Q9uIPPVYAcCuBy9MCjgFRQM8brb/VR5VnKa/QedtEKSrQ2HlbIGUT 4Ps+X2cG0zIBVF9HydLPt5JwRkotMG58vSBnX+wFNsj8rHGzvTwNN7gipTcXuuNv gk1o1+YXhz6pMXDgznSJhMF7rL5cNtZugTGRFdpgCkaEPFlq4K+sSupL0tnQfaC6 AqpVA6eCj7nSlHaGeDGMafo2RcDowVlBj9fYK/4UIbkC8A== -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:38 2024 by rpki-client on console-ams.rpki-client.org