$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/vdeK6OG99CLjhzmMUkydRvQexUc.roa File: vdeK6OG99CLjhzmMUkydRvQexUc.roa (raw, json) Hash identifier: vykI0oipki1y+mliRPBT6bLV7vzxF1TPd1gsW69WvXc= Subject key identifier: BD:D7:8A:E8:E1:BD:F4:22:E3:87:39:8C:52:4C:9D:46:F4:1E:C5:47 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 136C Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vdeK6OG99CLjhzmMUkydRvQexUc.roa Signing time: Fri 01 Sep 2023 09:24:54 +0000 ROA not before: Fri 01 Sep 2023 09:24:54 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 2401:8000::/26 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4972 (0x136c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:54 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=BDD78AE8E1BDF422E387398C524C9D46F41EC547 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:be:20:cd:a1:4a:76:23:a5:86:75:ac:2a:54: 07:01:e1:c5:52:94:d1:02:0a:be:f8:40:4c:0c:0f: ca:cf:fb:c0:1d:69:95:81:7e:12:54:3a:b9:39:0e: dd:cf:8d:fa:9e:99:a1:b2:b9:d5:86:98:30:0b:95: f2:e3:66:f1:d2:da:25:02:00:f6:fc:b5:1d:77:b4: 73:aa:e3:92:96:56:b3:53:e4:11:62:c0:79:67:d8: c6:c0:e3:e0:8f:b2:91:a2:0b:ad:1b:5e:9b:90:bf: a5:12:fe:1e:1f:12:b5:92:50:42:c7:1e:6c:e3:71: 99:ac:0a:bb:e5:c0:43:93:3b:c5:91:8c:d4:38:ac: c6:1f:c7:0c:42:13:48:31:e8:5b:07:f3:d1:54:9f: db:36:57:df:a0:3b:2e:d6:08:53:aa:42:af:1d:61: 10:e8:52:40:4f:66:41:cc:7f:5c:fb:5b:06:1e:4c: c1:77:db:79:5b:20:fe:34:b3:21:2c:6b:ef:31:d3: 64:93:c6:c3:cc:5f:5f:b2:aa:5e:fd:f3:ac:c7:fd: 36:ff:3e:d1:99:39:25:93:e4:7f:a6:e7:19:89:71: 93:7c:f2:9a:7f:ef:40:93:15:45:ec:ee:cf:8a:42: 5e:60:f8:d9:a2:99:a3:5e:23:92:39:2c:f0:7a:7a: 12:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D7:8A:E8:E1:BD:F4:22:E3:87:39:8C:52:4C:9D:46:F4:1E:C5:47 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vdeK6OG99CLjhzmMUkydRvQexUc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:8000::/26 Signature Algorithm: sha256WithRSAEncryption 35:a5:b8:ea:68:a1:d6:e5:ec:43:74:5e:04:b2:4c:5c:9a:e8: 73:03:15:39:a6:2b:dc:b4:41:df:fe:47:b7:20:2f:17:3d:03: 70:2f:4a:4d:64:69:0e:3b:8e:77:2f:a7:46:1e:46:56:8f:ee: d6:02:43:7e:93:f5:f4:fa:ff:5d:80:fc:b4:c3:07:4a:d3:3d: 93:12:20:6c:65:22:af:95:42:24:13:a0:2d:b4:d7:df:9c:86: 05:08:c9:69:9d:47:9d:69:1a:80:2c:0e:65:a8:2d:90:7d:af: d4:63:b9:0a:9a:b4:0e:fb:fc:2b:8e:d8:ab:4e:7c:f3:9d:e8: 3c:71:e3:22:f7:4b:0f:12:cd:da:d8:13:e4:0a:6b:56:32:90: 15:8d:15:84:e4:0b:54:98:07:0f:f7:37:21:fe:bd:a5:50:1b: 2d:8d:17:7e:3d:81:e4:19:f1:ab:09:dc:f8:09:c1:5b:e1:d7: d7:94:65:a2:96:9b:e2:f4:15:4f:b6:a7:76:c1:40:ef:20:de: bf:37:90:df:74:9f:fc:1f:ca:81:26:b7:c9:1e:c9:44:1f:00: 3a:aa:db:63:8b:01:5a:f5:67:21:f7:b1:85:3e:ec:97:f9:f4: b8:98:79:1d:8a:b7:46:60:11:cc:bc:5d:21:c7:61:dc:da:c6: 81:ea:62:fa -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICE2wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEJERDc4QUU4RTFCREY0 MjJFMzg3Mzk4QzUyNEM5RDQ2RjQxRUM1NDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnviDNoUp2I6WGdawqVAcB4cVSlNECCr74QEwMD8rP+8AdaZWB fhJUOrk5Dt3PjfqemaGyudWGmDALlfLjZvHS2iUCAPb8tR13tHOq45KWVrNT5BFi wHln2MbA4+CPspGiC60bXpuQv6US/h4fErWSUELHHmzjcZmsCrvlwEOTO8WRjNQ4 rMYfxwxCE0gx6FsH89FUn9s2V9+gOy7WCFOqQq8dYRDoUkBPZkHMf1z7WwYeTMF3 23lbIP40syEsa+8x02STxsPMX1+yql7986zH/Tb/PtGZOSWT5H+m5xmJcZN88pp/ 70CTFUXs7s+KQl5g+NmimaNeI5I5LPB6ehLFAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUvdeK6OG99CLjhzmMUkydRvQexUcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdmRlSzZPRzk5Q0xqaHptTVVreWRS dlFleFVjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFBiQBgAAw DQYJKoZIhvcNAQELBQADggEBADWluOpoodbl7EN0XgSyTFya6HMDFTmmK9y0Qd/+ R7cgLxc9A3AvSk1kaQ47jncvp0YeRlaP7tYCQ36T9fT6/12A/LTDB0rTPZMSIGxl Iq+VQiQToC2019+chgUIyWmdR51pGoAsDmWoLZB9r9RjuQqatA77/CuO2KtOfPOd 6Dxx4yL3Sw8SzdrYE+QKa1YykBWNFYTkC1SYBw/3NyH+vaVQGy2NF349geQZ8asJ 3PgJwVvh19eUZaKWm+L0FU+2p3bBQO8g3r83kN90n/wfyoEmt8keyUQfADqq22OL AVr1ZyH3sYU+7Jf59LiYeR2Kt0ZgEcy8XSHHYdzaxoHqYvo= -----END CERTIFICATE-----Generated at Sun Jun 2 07:14:23 2024 by rpki-client on console-fra.rpki-client.org