$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/y9vpPnc-Z6H4N-b1TXlSz52mw4Q.roa File: y9vpPnc-Z6H4N-b1TXlSz52mw4Q.roa (raw, json) Hash identifier: 4l8ATk05J/fWBLkwmhov3DEfddM9LctPyZG4Gb/w6cA= Subject key identifier: CB:DB:E9:3E:77:3E:67:A1:F8:37:E6:F5:4D:79:52:CF:9D:A6:C3:84 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 139D Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/y9vpPnc-Z6H4N-b1TXlSz52mw4Q.roa Signing time: Fri 01 Sep 2023 09:25:12 +0000 ROA not before: Fri 01 Sep 2023 09:25:12 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131586 IP address blocks: 106.106.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5021 (0x139d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:12 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CBDBE93E773E67A1F837E6F54D7952CF9DA6C384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:64:1d:35:ee:b7:c1:dc:67:36:03:da:08:84: 2f:b2:d5:02:68:45:06:67:90:9a:5f:d4:f7:f4:db: 7e:35:aa:b2:a5:32:6e:86:1a:fd:03:6e:47:4e:ae: 9f:57:1c:46:42:f9:ea:d7:32:ab:fe:35:42:d2:5d: c0:6c:23:ee:d9:a6:97:2e:c0:9e:2e:f4:72:de:52: 08:5d:5d:f8:53:f4:70:c2:9f:48:37:24:9e:ae:17: b2:6f:61:7d:ef:03:ce:29:d4:0f:dd:48:19:82:bf: af:aa:86:5d:44:fc:91:0f:84:0e:af:88:d0:c7:a4: f1:e4:f1:1c:1d:e3:03:04:35:a5:f8:36:5c:60:0e: 25:f6:c5:0a:f7:8c:8e:d2:c3:dc:c4:e4:f8:ca:ff: c8:40:c2:a7:e6:a2:91:4e:90:9c:6e:be:78:9e:b4: 8e:1b:90:b7:f8:62:3f:21:5b:47:59:89:49:2d:e7: c7:47:56:63:5e:00:6c:3c:f8:2b:d4:43:73:15:23: 05:93:f6:3b:87:aa:fe:cb:85:50:08:a8:7d:3e:4a: 19:60:25:89:1d:7b:01:90:f0:9b:7e:28:fb:8f:38: 30:33:f1:8a:b1:83:67:56:58:4e:83:22:7e:8b:cd: 53:a5:d2:0a:ac:b2:13:c0:d4:a5:e8:cc:cb:c4:52: 3a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:DB:E9:3E:77:3E:67:A1:F8:37:E6:F5:4D:79:52:CF:9D:A6:C3:84 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/y9vpPnc-Z6H4N-b1TXlSz52mw4Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.106.0.0/16 Signature Algorithm: sha256WithRSAEncryption 89:a2:71:f7:15:d5:eb:f6:62:bd:17:17:e6:ee:7f:9d:01:ec: f8:a5:6c:a3:f6:94:d2:f1:ce:ef:15:43:19:ab:59:0a:47:fd: 01:2c:63:1e:03:40:cc:2d:c8:2d:63:3b:b6:53:88:07:49:77: ad:83:16:71:f2:03:2c:4c:64:ac:cc:6c:af:53:99:2b:eb:7a: 0d:53:89:7d:9c:cf:38:81:a7:c4:9b:f2:29:90:26:f4:36:0f: 53:7f:88:49:84:c4:3f:22:ac:1b:2b:c0:29:4b:7b:d0:0e:ca: 52:f9:13:2f:67:37:97:99:c0:bd:cc:bb:80:48:fb:d0:c6:af: 3b:40:bb:c7:f2:ad:d1:37:89:28:f4:da:36:23:6e:9c:ec:d4: 4d:23:4e:11:9c:b4:b2:b6:27:87:a3:c2:c9:fc:b1:ed:34:bc: 0f:6b:a9:9b:dc:67:d2:4d:79:6f:8a:1e:4a:c3:a9:77:f1:4b: 19:f1:7b:23:c3:79:a3:2d:ec:c6:05:5f:a4:c1:e1:e2:17:a0: d6:2c:e0:a1:37:3e:d3:e1:7f:02:36:2f:59:86:27:fa:1a:ce: 93:87:3b:bc:01:06:22:b2:35:eb:4b:09:fb:35:21:cb:fe:41: f8:49:fa:19:78:3d:c1:c5:76:65:6a:c0:2f:fc:82:84:f2:a8: 41:04:d5:93 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICE50wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENCREJFOTNFNzczRTY3 QTFGODM3RTZGNTRENzk1MkNGOURBNkMzODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7ZB017rfB3Gc2A9oIhC+y1QJoRQZnkJpf1Pf02341qrKlMm6G Gv0DbkdOrp9XHEZC+erXMqv+NULSXcBsI+7ZppcuwJ4u9HLeUghdXfhT9HDCn0g3 JJ6uF7JvYX3vA84p1A/dSBmCv6+qhl1E/JEPhA6viNDHpPHk8Rwd4wMENaX4Nlxg DiX2xQr3jI7Sw9zE5PjK/8hAwqfmopFOkJxuvnietI4bkLf4Yj8hW0dZiUkt58dH VmNeAGw8+CvUQ3MVIwWT9juHqv7LhVAIqH0+ShlgJYkdewGQ8Jt+KPuPODAz8Yqx g2dWWE6DIn6LzVOl0gqsshPA1KXozMvEUjqxAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUy9vpPnc+Z6H4N+b1TXlSz52mw4QwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveTl2cFBuYy1aNkg0Ti1iMVRYbFN6 NTJtdzRRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAGpqMA0G CSqGSIb3DQEBCwUAA4IBAQCJonH3FdXr9mK9Fxfm7n+dAez4pWyj9pTS8c7vFUMZ q1kKR/0BLGMeA0DMLcgtYzu2U4gHSXetgxZx8gMsTGSszGyvU5kr63oNU4l9nM84 gafEm/IpkCb0Ng9Tf4hJhMQ/IqwbK8ApS3vQDspS+RMvZzeXmcC9zLuASPvQxq87 QLvH8q3RN4ko9No2I26c7NRNI04RnLSytieHo8LJ/LHtNLwPa6mb3GfSTXlvih5K w6l38UsZ8Xsjw3mjLezGBV+kweHiF6DWLOChNz7T4X8CNi9Zhif6Gs6Thzu8AQYi sjXrSwn7NSHL/kH4SfoZeD3BxXZlasAv/IKE8qhBBNWT -----END CERTIFICATE-----Generated at Mon May 20 11:12:53 2024 by rpki-client on console-ams.rpki-client.org