$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/sd5nQzQqtOXBODGoGqmNiPMBweQ.roa File: sd5nQzQqtOXBODGoGqmNiPMBweQ.roa (raw, json) Hash identifier: XuMo/hiZXJoVB4+0hhkek085LYBPDPZZQI58cXzkbl4= Subject key identifier: B1:DE:67:43:34:2A:B4:E5:C1:38:31:A8:1A:A9:8D:88:F3:01:C1:E4 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1369 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sd5nQzQqtOXBODGoGqmNiPMBweQ.roa Signing time: Fri 01 Sep 2023 09:24:54 +0000 ROA not before: Fri 01 Sep 2023 09:24:54 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 210.66.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4969 (0x1369) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:54 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B1DE6743342AB4E5C13831A81AA98D88F301C1E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:32:16:18:8f:38:a4:3f:19:a9:34:42:13:9a: ec:0d:b7:2c:9c:f6:ae:f7:19:c6:74:56:35:35:41: 25:99:bd:83:43:02:fc:f9:a9:8c:ef:64:66:14:cb: db:c0:3f:a7:0e:09:59:95:83:05:53:d9:f6:9e:7b: 8e:7f:45:53:f0:db:bd:a2:59:8d:a8:cb:77:f7:21: b8:92:6b:83:6d:8a:46:0a:a4:58:9d:0b:1c:4b:42: c4:2a:53:87:6c:a7:e0:26:02:78:0e:52:15:bf:59: 6a:ea:46:17:d5:b3:20:5b:f3:6f:48:c4:b6:2d:93: 64:09:ab:2e:c1:80:fc:f7:e8:8a:37:be:e4:9a:72: d5:20:fb:8b:92:03:bb:a7:ec:ad:30:b6:c0:58:f2: ac:e6:6b:7e:f7:c0:e5:8a:41:dc:b6:83:6b:bf:cd: 9c:1b:f0:f4:42:03:6d:95:ac:91:44:07:89:f8:26: 7e:d8:54:70:33:54:51:3b:2d:39:e8:de:54:00:6e: 8e:8f:ed:5a:46:bf:9f:d6:f4:6e:4d:bb:b5:1f:8c: b8:d2:d7:c9:a6:bb:03:78:93:8c:09:48:e3:85:7e: d0:60:c1:14:ea:0a:7d:d3:8f:81:bb:9d:67:f4:61: 01:35:8b:d7:c8:d2:c2:64:f7:47:f2:65:91:98:5f: 5b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:DE:67:43:34:2A:B4:E5:C1:38:31:A8:1A:A9:8D:88:F3:01:C1:E4 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sd5nQzQqtOXBODGoGqmNiPMBweQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.66.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8f:ad:76:35:ba:bd:fc:84:6d:16:f5:c1:7c:af:d3:17:da:19: 14:65:24:56:87:91:8a:6d:c7:9d:2a:68:33:7a:08:1f:62:41: 54:bf:1a:3f:8a:34:d6:a5:a4:e1:a3:b1:fa:28:9f:65:9c:fe: 53:ac:44:7b:4e:49:8e:88:e4:66:e8:a1:3e:ff:05:3d:ce:1f: dc:38:01:c5:07:01:e8:c4:87:ee:ef:0d:b4:5e:b0:3a:e4:9d: 5e:c5:a6:c8:4b:b3:b6:f0:98:58:17:14:d7:36:fc:a1:6b:71: 9f:5a:e7:f1:9f:48:25:be:e3:53:82:99:c3:a9:d2:aa:8a:01: cf:7d:5b:38:65:7d:97:63:72:0e:4a:e9:55:ea:4e:d4:2c:24: 75:d6:0b:5c:46:3b:8b:5c:39:2c:b5:b3:19:47:29:c3:49:8b: c2:90:ad:88:9f:44:60:24:08:e3:c3:b3:36:3b:b3:b7:54:c6: 2c:b8:39:36:9b:42:0f:f6:a0:d7:25:b8:bd:19:b6:e4:56:50: af:40:8e:e2:6e:d7:6e:db:cf:c5:eb:43:30:d0:d8:eb:0b:b1: f8:ac:46:2c:3f:d2:4c:40:04:a5:b7:4f:3f:89:9c:83:4b:c3: d0:a0:10:83:d0:6a:fc:b9:51:de:67:1d:42:69:19:06:ec:3b: 84:0b:7c:a3 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICE2kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEIxREU2NzQzMzQyQUI0 RTVDMTM4MzFBODFBQTk4RDg4RjMwMUMxRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOMhYYjzikPxmpNEITmuwNtyyc9q73GcZ0VjU1QSWZvYNDAvz5 qYzvZGYUy9vAP6cOCVmVgwVT2faee45/RVPw272iWY2oy3f3IbiSa4NtikYKpFid CxxLQsQqU4dsp+AmAngOUhW/WWrqRhfVsyBb829IxLYtk2QJqy7BgPz36Io3vuSa ctUg+4uSA7un7K0wtsBY8qzma373wOWKQdy2g2u/zZwb8PRCA22VrJFEB4n4Jn7Y VHAzVFE7LTno3lQAbo6P7VpGv5/W9G5Nu7UfjLjS18mmuwN4k4wJSOOFftBgwRTq Cn3Tj4G7nWf0YQE1i9fI0sJk90fyZZGYX1sPAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUsd5nQzQqtOXBODGoGqmNiPMBweQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvc2Q1blF6UXF0T1hCT0RHb0dxbU5p UE1Cd2VRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANJCMA0G CSqGSIb3DQEBCwUAA4IBAQCPrXY1ur38hG0W9cF8r9MX2hkUZSRWh5GKbcedKmgz eggfYkFUvxo/ijTWpaTho7H6KJ9lnP5TrER7TkmOiORm6KE+/wU9zh/cOAHFBwHo xIfu7w20XrA65J1exabIS7O28JhYFxTXNvyha3GfWufxn0glvuNTgpnDqdKqigHP fVs4ZX2XY3IOSulV6k7ULCR11gtcRjuLXDkstbMZRynDSYvCkK2In0RgJAjjw7M2 O7O3VMYsuDk2m0IP9qDXJbi9GbbkVlCvQI7ibtdu28/F60Mw0NjrC7H4rEYsP9JM QASlt08/iZyDS8PQoBCD0Gr8uVHeZx1CaRkG7DuEC3yj -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org