$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/pY1THP46ADYbPYBQXVmielcN1oM.roa File: pY1THP46ADYbPYBQXVmielcN1oM.roa (raw, json) Hash identifier: h9iGvtLrPJ2rlu4EbBuSSPpoTDxazb+AztS92fggqDU= Subject key identifier: A5:8D:53:1C:FE:3A:00:36:1B:3D:80:50:5D:59:A2:7A:57:0D:D6:83 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 133C Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pY1THP46ADYbPYBQXVmielcN1oM.roa Signing time: Fri 01 Sep 2023 09:24:40 +0000 ROA not before: Fri 01 Sep 2023 09:24:40 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 113.196.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4924 (0x133c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:40 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A58D531CFE3A00361B3D80505D59A27A570DD683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d5:e6:0e:13:9e:e7:fd:dd:72:c9:c1:1e:c6: 62:e8:ee:aa:52:6c:62:72:8f:7a:04:32:e0:31:42: 62:0d:bf:e0:8d:a6:f1:85:89:2d:f3:8d:23:34:90: bd:a0:87:fd:ef:94:f9:62:cb:f5:15:74:2c:80:17: df:eb:11:36:1f:82:8c:16:00:2b:be:fe:a3:01:d4: 7f:6a:5f:48:db:29:84:ab:48:f6:54:04:24:33:df: e7:e3:45:c9:bc:2c:2a:3a:04:bc:97:4d:43:b9:f0: f7:21:1f:70:45:0f:35:1c:2c:33:da:42:81:c7:56: f2:94:1e:47:b8:8c:02:66:f1:b6:81:7e:9e:59:47: ba:d5:2f:9e:58:bb:a4:cb:aa:4a:f7:4d:fa:d8:6f: 7e:6c:1e:ec:16:6c:c3:79:37:94:6d:f0:5a:0f:82: fc:85:33:8c:62:cd:a6:62:2a:7f:fc:8e:7e:d5:4a: a5:05:c3:fc:26:ab:36:f4:c8:e0:25:e6:19:be:1f: 3d:a9:fc:ff:ba:c7:a0:1a:46:87:c6:ea:aa:a0:ab: 6a:38:80:a5:78:41:4c:99:3c:a8:70:d3:6d:e9:d8: 9b:43:f9:5c:9e:1f:2d:9d:83:23:54:b3:f8:fb:54: 15:c0:73:fe:75:72:28:38:0a:e9:de:eb:14:78:09: 32:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:8D:53:1C:FE:3A:00:36:1B:3D:80:50:5D:59:A2:7A:57:0D:D6:83 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pY1THP46ADYbPYBQXVmielcN1oM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.196.128.0/17 Signature Algorithm: sha256WithRSAEncryption 39:d0:1f:d4:c1:11:13:6a:60:eb:d8:e4:82:f8:c2:3c:b7:9a: 07:a5:58:fb:a7:f6:65:73:b1:ce:48:a1:30:03:a4:5b:4a:48: c2:40:77:7a:39:42:57:12:51:e7:44:9f:f9:75:81:2c:15:d1: fd:4a:36:f1:33:3e:50:76:ce:22:d4:bd:44:a0:1e:14:13:fb: bd:09:0f:52:08:cd:9d:58:25:a4:87:52:88:0e:18:34:e2:87: 0a:b3:f9:d5:c2:ad:0f:f2:40:b3:7f:8a:09:b5:5e:7e:ce:a0: 9a:9d:21:77:f5:1b:79:32:fe:d5:2e:6a:59:6d:f2:25:8d:c3: df:0f:d5:75:73:33:91:5b:34:06:fc:db:aa:80:ac:f9:59:25: be:da:9a:e2:9f:a1:8a:07:9b:6d:cf:50:57:ea:ac:df:03:0a: 14:c4:a7:2a:58:a5:0f:a0:76:cd:14:22:45:19:5f:6c:0c:a5: 52:7f:a3:1a:f2:01:44:80:f8:8b:53:0b:ce:a1:55:39:d1:45: b4:62:58:b8:9e:55:f5:81:96:47:f5:5a:93:77:d0:3e:16:61: 34:47:45:9f:59:d4:d7:90:b6:f5:0d:a9:01:16:aa:d2:60:c6: 08:0e:6e:ad:f5:e5:05:e9:01:49:3d:c8:c4:44:00:40:e0:3b: b1:1d:29:5f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEzwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEE1OEQ1MzFDRkUzQTAw MzYxQjNEODA1MDVENTlBMjdBNTcwREQ2ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDe1eYOE57n/d1yycEexmLo7qpSbGJyj3oEMuAxQmINv+CNpvGF iS3zjSM0kL2gh/3vlPliy/UVdCyAF9/rETYfgowWACu+/qMB1H9qX0jbKYSrSPZU BCQz3+fjRcm8LCo6BLyXTUO58PchH3BFDzUcLDPaQoHHVvKUHke4jAJm8baBfp5Z R7rVL55Yu6TLqkr3TfrYb35sHuwWbMN5N5Rt8FoPgvyFM4xizaZiKn/8jn7VSqUF w/wmqzb0yOAl5hm+Hz2p/P+6x6AaRofG6qqgq2o4gKV4QUyZPKhw023p2JtD+Vye Hy2dgyNUs/j7VBXAc/51cig4Cune6xR4CTLVAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUpY1THP46ADYbPYBQXVmielcN1oMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcFkxVEhQNDZBRFliUFlCUVhWbWll bGNOMW9NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3HEgDAN BgkqhkiG9w0BAQsFAAOCAQEAOdAf1MERE2pg69jkgvjCPLeaB6VY+6f2ZXOxzkih MAOkW0pIwkB3ejlCVxJR50Sf+XWBLBXR/Uo28TM+UHbOItS9RKAeFBP7vQkPUgjN nVglpIdSiA4YNOKHCrP51cKtD/JAs3+KCbVefs6gmp0hd/UbeTL+1S5qWW3yJY3D 3w/VdXMzkVs0BvzbqoCs+Vklvtqa4p+higebbc9QV+qs3wMKFMSnKlilD6B2zRQi RRlfbAylUn+jGvIBRID4i1MLzqFVOdFFtGJYuJ5V9YGWR/Vak3fQPhZhNEdFn1nU 15C29Q2pARaq0mDGCA5urfXlBekBST3IxEQAQOA7sR0pXw== -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org