$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/nWOqf9SWd284EJQtcBuc4wPuhEw.roa File: nWOqf9SWd284EJQtcBuc4wPuhEw.roa (raw, json) Hash identifier: xwqH7BDsxAArdfoJGAI9EPKZCaKCFrZ/0eZODXC+Xy8= Subject key identifier: 9D:63:AA:7F:D4:96:77:6F:38:10:94:2D:70:1B:9C:E3:03:EE:84:4C Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0DC0 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/nWOqf9SWd284EJQtcBuc4wPuhEw.roa Signing time: Fri 01 Sep 2023 09:25:36 +0000 ROA not before: Fri 01 Sep 2023 09:25:36 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 192.72.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3520 (0xdc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Sep 1 09:25:36 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9D63AA7FD496776F3810942D701B9CE303EE844C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ed:ab:bd:46:9e:7b:55:16:0e:b4:91:94:b3: 34:01:96:2b:c0:db:5e:71:c4:91:54:70:d8:6a:2d: 14:b7:68:38:90:d7:d1:40:28:4b:36:f1:e7:e8:58: 98:1d:9f:71:00:9b:74:7e:42:f0:b3:61:7a:c6:47: f6:b4:6f:1a:32:14:bf:de:c2:23:87:72:ba:10:d4: b5:bc:23:8a:8f:52:55:cf:69:a7:8f:97:ec:16:4a: 58:62:b9:4a:f7:10:82:74:24:d7:fc:db:ed:e9:44: d2:e0:c8:77:4e:3a:5a:b0:7e:47:78:ac:98:a3:ff: ef:5b:d3:b3:bb:0d:de:02:fe:5d:dd:c1:76:dc:d9: 7c:9a:cf:99:c1:d1:c1:da:31:c6:2c:65:92:09:20: 54:85:c4:41:cb:6d:6a:da:02:23:6b:18:54:3b:1c: 3e:24:c6:20:5b:65:49:d8:a3:80:6f:4a:10:b1:3a: 3f:0a:c0:d8:30:1a:ef:20:1c:70:b1:7d:f0:53:03: 84:ed:4f:65:0d:8f:f3:52:1a:13:fb:60:6e:f8:58: a7:fc:04:b6:86:c8:08:3c:8a:bc:c3:66:5d:ec:34: c4:e5:5c:09:2a:d8:fd:e2:60:c5:14:20:9f:4d:a3: 36:1d:46:c2:41:b3:85:3f:95:e9:46:ad:60:b3:c1: ce:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:63:AA:7F:D4:96:77:6F:38:10:94:2D:70:1B:9C:E3:03:EE:84:4C X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/nWOqf9SWd284EJQtcBuc4wPuhEw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.64.0/18 Signature Algorithm: sha256WithRSAEncryption 44:af:df:c1:c6:18:0f:2a:0c:b9:e7:d8:e8:fe:33:ea:24:ab: d8:ad:f0:06:93:78:0c:e9:ed:28:e5:83:12:f7:01:e1:14:89: 8e:83:64:bd:35:04:e1:fe:ca:49:7b:fe:3f:94:10:b8:4c:9e: 15:27:dd:4d:3f:2a:e0:2b:4c:73:a9:fe:a7:25:21:ce:b7:10: ad:4f:b2:ad:c0:f0:f2:bb:98:0d:9f:7b:2b:21:d8:5e:09:9a: 29:c6:51:fe:b5:0f:62:da:ed:11:2b:e0:e3:31:15:dc:4c:fb: 7b:cf:c8:69:5f:7f:01:9b:3e:8c:38:6f:0d:d7:89:7e:e6:46: 52:4a:29:00:79:71:a7:65:6e:fe:89:f0:c7:db:59:d9:83:5f: 36:cb:07:f3:cf:1f:38:f8:01:ed:5d:f4:fb:0c:82:7d:36:21: 80:30:37:02:07:e1:0d:11:fd:94:55:32:b8:73:e4:1d:cc:94: 95:43:82:b1:52:1e:f1:78:72:09:aa:75:4c:6b:5e:6d:9d:9c: 74:6a:d2:c9:fe:30:82:fa:46:31:27:89:7f:0b:b3:f1:59:d1: 04:ba:09:52:c1:11:e3:50:de:ff:c0:52:6f:d8:2d:d1:2f:74: 4f:69:5a:93:46:b6:27:14:2a:8d:85:71:7f:e7:a2:2f:c6:09: a2:28:09:7d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDcAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMzA5MDEw OTI1MzZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlENjNBQTdGRDQ5Njc3 NkYzODEwOTQyRDcwMUI5Q0UzMDNFRTg0NEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDh7au9Rp57VRYOtJGUszQBlivA215xxJFUcNhqLRS3aDiQ19FA KEs28efoWJgdn3EAm3R+QvCzYXrGR/a0bxoyFL/ewiOHcroQ1LW8I4qPUlXPaaeP l+wWSlhiuUr3EIJ0JNf82+3pRNLgyHdOOlqwfkd4rJij/+9b07O7Dd4C/l3dwXbc 2Xyaz5nB0cHaMcYsZZIJIFSFxEHLbWraAiNrGFQ7HD4kxiBbZUnYo4BvShCxOj8K wNgwGu8gHHCxffBTA4TtT2UNj/NSGhP7YG74WKf8BLaGyAg8irzDZl3sNMTlXAkq 2P3iYMUUIJ9NozYdRsJBs4U/lelGrWCzwc4jAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUnWOqf9SWd284EJQtcBuc4wPuhEwwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvbldPcWY5U1dkMjg0RUpRdGNCdWM0 d1B1aEV3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBsBIQDAN BgkqhkiG9w0BAQsFAAOCAQEARK/fwcYYDyoMuefY6P4z6iSr2K3wBpN4DOntKOWD EvcB4RSJjoNkvTUE4f7KSXv+P5QQuEyeFSfdTT8q4CtMc6n+pyUhzrcQrU+yrcDw 8ruYDZ97KyHYXgmaKcZR/rUPYtrtESvg4zEV3Ez7e8/IaV9/AZs+jDhvDdeJfuZG UkopAHlxp2Vu/onwx9tZ2YNfNssH888fOPgB7V30+wyCfTYhgDA3AgfhDRH9lFUy uHPkHcyUlUOCsVIe8XhyCap1TGtebZ2cdGrSyf4wgvpGMSeJfwuz8VnRBLoJUsER 41De/8BSb9gt0S90T2lak0a2JxQqjYVxf+eiL8YJoigJfQ== -----END CERTIFICATE-----Generated at Sun Jun 2 07:14:23 2024 by rpki-client on console-fra.rpki-client.org