$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/vzbyD7eaBJIWwVC2vgBYXzkiJjU.roa File: vzbyD7eaBJIWwVC2vgBYXzkiJjU.roa (raw, json) Hash identifier: gqKeFOJaKV3a7fxYTRB8SAbG/olCPAuwh6Dr7I4LsA8= Subject key identifier: BF:36:F2:0F:B7:9A:04:92:16:C1:50:B6:BE:00:58:5F:39:22:26:35 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1356 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vzbyD7eaBJIWwVC2vgBYXzkiJjU.roa Signing time: Fri 01 Sep 2023 09:24:48 +0000 ROA not before: Fri 01 Sep 2023 09:24:48 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 61.56.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4950 (0x1356) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:48 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=BF36F20FB79A049216C150B6BE00585F39222635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c5:dc:d2:a1:18:77:ff:e9:16:ba:b1:16:9a: b7:9e:bb:ac:b9:85:b1:ab:7a:15:44:33:03:69:00: 7a:a9:1d:01:b2:8f:67:e8:41:5c:07:4e:e3:81:6d: b1:a7:80:91:d5:eb:e6:26:9a:c3:74:83:2a:26:59: ec:ee:18:b1:71:26:c2:8a:fb:a3:c9:40:62:cd:8d: 79:9e:97:a1:63:e9:9a:7f:0b:5c:ad:f6:bd:b0:df: c7:56:66:01:f3:df:c8:f0:6c:7b:2c:b0:d0:f6:fe: 0d:17:18:7c:63:4b:55:da:3e:89:f5:f4:b4:5f:1f: 25:a7:ed:e5:5f:75:6d:56:ad:2c:a1:50:45:91:19: ab:f6:a5:4b:96:86:42:a1:d7:04:13:da:52:39:49: 60:19:9d:e1:e5:5a:75:6c:88:a0:08:aa:ec:72:dc: a4:f7:5e:95:ca:f5:e0:fd:45:01:53:84:58:5b:a7: 66:d1:d8:b1:ff:54:54:74:b6:af:87:dd:81:18:a3: 2f:e2:33:7a:3b:3a:90:6c:c8:04:8c:b1:94:68:6a: 00:42:07:f2:26:ea:3b:48:71:dc:ca:dc:f2:f9:08: 8c:ef:f0:cb:8c:40:82:5c:ea:72:c0:01:43:bd:73: 15:0a:6e:6c:4c:ca:a4:57:7c:a1:43:c9:e3:4d:6d: 06:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:36:F2:0F:B7:9A:04:92:16:C1:50:B6:BE:00:58:5F:39:22:26:35 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/vzbyD7eaBJIWwVC2vgBYXzkiJjU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.224.0/19 Signature Algorithm: sha256WithRSAEncryption 7c:ec:86:52:00:f2:92:59:49:b6:c9:03:c6:b8:58:de:2d:7c: 9f:34:4b:9d:44:b7:fc:a4:8b:38:84:35:e7:2a:ea:9f:be:e8: 04:7f:eb:66:ae:0b:a3:78:04:f4:46:e6:6b:89:e3:6a:ce:6f: 5a:2c:33:21:fd:b7:78:cc:16:e0:65:d5:89:2f:cc:01:c8:88: 0c:ee:42:2c:6e:14:2b:37:8f:99:6c:1f:97:ed:f2:09:53:a4: 01:2b:48:66:aa:ea:6d:a6:39:57:52:ea:ac:5f:0d:d7:dc:9b: df:d1:ba:f5:e0:6b:73:c6:63:35:88:be:04:5c:28:75:ee:6d: f1:fc:fc:f3:45:9e:42:ac:4c:9d:b9:00:aa:4c:cc:6b:6f:ea: 9f:c0:8b:45:45:26:e6:83:02:a4:f7:0d:48:51:2f:3d:f3:29: a5:76:87:6d:fa:ea:a5:a1:e0:4c:25:74:f5:5e:8d:a0:f1:e4: 64:8d:d7:53:6a:f9:ec:63:14:31:c9:92:1d:04:cf:25:09:27: 9b:84:dd:5f:d8:1d:b5:55:7d:88:75:73:dd:af:c9:6f:33:48: 9f:8d:40:db:b1:10:7a:0d:11:e2:2e:bd:dd:fb:2f:53:dd:4b: d8:b3:08:dd:b2:ae:03:fc:cb:48:58:41:ef:39:68:1d:3c:01: 93:eb:67:09 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE1YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEJGMzZGMjBGQjc5QTA0 OTIxNkMxNTBCNkJFMDA1ODVGMzkyMjI2MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpxdzSoRh3/+kWurEWmreeu6y5hbGrehVEMwNpAHqpHQGyj2fo QVwHTuOBbbGngJHV6+YmmsN0gyomWezuGLFxJsKK+6PJQGLNjXmel6Fj6Zp/C1yt 9r2w38dWZgHz38jwbHsssND2/g0XGHxjS1XaPon19LRfHyWn7eVfdW1WrSyhUEWR Gav2pUuWhkKh1wQT2lI5SWAZneHlWnVsiKAIquxy3KT3XpXK9eD9RQFThFhbp2bR 2LH/VFR0tq+H3YEYoy/iM3o7OpBsyASMsZRoagBCB/Im6jtIcdzK3PL5CIzv8MuM QIJc6nLAAUO9cxUKbmxMyqRXfKFDyeNNbQZbAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUvzbyD7eaBJIWwVC2vgBYXzkiJjUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdnpieUQ3ZWFCSklXd1ZDMnZnQllY emtpSmpVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBT044DAN BgkqhkiG9w0BAQsFAAOCAQEAfOyGUgDykllJtskDxrhY3i18nzRLnUS3/KSLOIQ1 5yrqn77oBH/rZq4Lo3gE9Ebma4njas5vWiwzIf23eMwW4GXViS/MAciIDO5CLG4U KzePmWwfl+3yCVOkAStIZqrqbaY5V1LqrF8N19yb39G69eBrc8ZjNYi+BFwode5t 8fz880WeQqxMnbkAqkzMa2/qn8CLRUUm5oMCpPcNSFEvPfMppXaHbfrqpaHgTCV0 9V6NoPHkZI3XU2r57GMUMcmSHQTPJQknm4TdX9gdtVV9iHVz3a/JbzNIn41A27EQ eg0R4i693fsvU91L2LMI3bKuA/zLSFhB7zloHTwBk+tnCQ== -----END CERTIFICATE-----Generated at Sat Jun 1 22:20:18 2024 by rpki-client on console-fra.rpki-client.org