$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tbeqenLzfnX0wOx7N-MBNsrQKUU.roa File: tbeqenLzfnX0wOx7N-MBNsrQKUU.roa (raw, json) Hash identifier: xwH2VnyFuAbj0GEypmgfmjHyqOGPFTyprKfr4GawbAE= Subject key identifier: B5:B7:AA:7A:72:F3:7E:75:F4:C0:EC:7B:37:E3:01:36:CA:D0:29:45 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1324 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tbeqenLzfnX0wOx7N-MBNsrQKUU.roa Signing time: Fri 01 Sep 2023 09:24:32 +0000 ROA not before: Fri 01 Sep 2023 09:24:32 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38851 IP address blocks: 113.196.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4900 (0x1324) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:32 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B5B7AA7A72F37E75F4C0EC7B37E30136CAD02945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1f:d6:31:f7:f9:4d:a4:eb:e3:4f:20:54:99: 65:29:a7:31:70:cc:72:22:fb:cc:3d:0a:90:9a:04: 1b:08:75:ce:1f:76:36:15:99:af:cf:68:af:37:7e: 96:fb:fd:82:ae:3c:9b:a2:9a:66:0b:5b:68:2c:52: 96:cf:91:3e:2b:85:39:19:72:80:68:13:c9:9b:aa: 66:c8:b9:f2:d2:ab:60:ba:1f:fd:c2:19:6c:1e:8d: d1:74:a6:c5:a0:6a:6c:a2:05:a7:0e:86:e3:ab:01: d1:36:81:18:2d:a0:d0:2a:42:6d:bd:9c:66:81:9f: e2:34:bd:21:ac:e6:4e:ff:6d:62:16:8e:24:b3:0e: 3d:d6:be:1e:1b:73:b1:28:b2:0c:70:98:fd:5f:fd: 5c:9c:f0:c6:dc:a0:70:1f:65:33:26:06:05:25:d2: e9:c9:ca:35:d1:c5:c2:c1:5e:4d:70:20:f2:63:7b: 84:f7:e3:44:57:33:d5:ef:f2:ac:5c:46:9d:1a:8d: 75:33:eb:a2:c7:73:ff:81:4d:cc:01:e9:dc:57:d8: d1:1c:5f:ef:38:5e:e5:a0:c1:50:4f:5a:ef:10:a9: 68:04:61:cf:67:ea:3e:0f:20:1e:8d:82:f1:eb:6d: df:5a:a2:6a:b0:db:25:35:cd:2a:12:1c:dc:0c:01: e2:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:B7:AA:7A:72:F3:7E:75:F4:C0:EC:7B:37:E3:01:36:CA:D0:29:45 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tbeqenLzfnX0wOx7N-MBNsrQKUU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.196.144.0/21 Signature Algorithm: sha256WithRSAEncryption 72:6d:bc:dc:2f:ef:d9:66:3d:ad:40:6d:31:c3:78:3f:9e:e0: 07:9a:2b:68:4a:3d:f6:bb:af:3c:60:08:51:97:6d:da:99:13: 3e:f5:4b:7f:37:70:1c:4b:51:4f:0b:bb:7d:99:ee:7f:81:8c: e2:e1:b6:36:9d:a0:09:9d:20:1d:26:fa:a3:c6:cf:05:dd:10: f5:0a:23:5d:ae:93:40:ff:9e:f5:10:92:27:0a:ef:b1:23:ec: 7c:dd:59:87:6c:ad:1a:fc:a8:70:ba:18:c8:29:b1:2a:fc:46: 53:d7:1d:f0:26:f4:ed:1f:1f:6c:5e:7b:a1:41:06:86:a7:0a: 23:2f:56:4d:d5:99:46:cf:75:6c:61:da:10:07:c5:7b:1c:84: d1:18:68:d1:90:5b:6f:2a:02:56:26:7b:9a:d4:fb:47:09:95: 43:7c:1d:89:1a:46:d7:8d:34:bb:8d:e0:09:90:f4:7b:12:4b: 3f:4f:59:09:2c:66:3d:28:df:82:05:3b:cc:7d:f4:54:97:e9: b0:ea:59:95:a0:f8:40:ed:ef:e7:44:c2:96:66:33:54:2d:17: 9c:8b:69:28:5e:ac:a6:6d:6f:53:23:0c:98:8f:ef:ec:ed:14: 0f:6e:d8:06:37:86:56:45:d6:d5:3b:53:c8:38:d4:12:c1:20: 69:f0:fb:94 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEyQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MzJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI1QjdBQTdBNzJGMzdF NzVGNEMwRUM3QjM3RTMwMTM2Q0FEMDI5NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2H9Yx9/lNpOvjTyBUmWUppzFwzHIi+8w9CpCaBBsIdc4fdjYV ma/PaK83fpb7/YKuPJuimmYLW2gsUpbPkT4rhTkZcoBoE8mbqmbIufLSq2C6H/3C GWwejdF0psWgamyiBacOhuOrAdE2gRgtoNAqQm29nGaBn+I0vSGs5k7/bWIWjiSz Dj3Wvh4bc7EosgxwmP1f/Vyc8MbcoHAfZTMmBgUl0unJyjXRxcLBXk1wIPJje4T3 40RXM9Xv8qxcRp0ajXUz66LHc/+BTcwB6dxX2NEcX+84XuWgwVBPWu8QqWgEYc9n 6j4PIB6NgvHrbd9aomqw2yU1zSoSHNwMAeLPAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUtbeqenLzfnX0wOx7N+MBNsrQKUUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdGJlcWVuTHpmblgwd094N04tTUJO c3JRS1VVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3HEkDAN BgkqhkiG9w0BAQsFAAOCAQEAcm283C/v2WY9rUBtMcN4P57gB5oraEo99ruvPGAI UZdt2pkTPvVLfzdwHEtRTwu7fZnuf4GM4uG2Np2gCZ0gHSb6o8bPBd0Q9QojXa6T QP+e9RCSJwrvsSPsfN1Zh2ytGvyocLoYyCmxKvxGU9cd8Cb07R8fbF57oUEGhqcK Iy9WTdWZRs91bGHaEAfFexyE0Rho0ZBbbyoCViZ7mtT7RwmVQ3wdiRpG1400u43g CZD0exJLP09ZCSxmPSjfggU7zH30VJfpsOpZlaD4QO3v50TClmYzVC0XnItpKF6s pm1vUyMMmI/v7O0UD27YBjeGVkXW1TtTyDjUEsEgafD7lA== -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org