$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/yTpjPxySQmy_WmflM4Wgpr2GpJg.roa File: yTpjPxySQmy_WmflM4Wgpr2GpJg.roa (raw, json) Hash identifier: qHmDt0bM/+ESXzvonb2acIXYOdECdAH6S2t+QsO7LaM= Subject key identifier: C9:3A:63:3F:1C:92:42:6C:BF:5A:67:E5:33:85:A0:A6:BD:86:A4:98 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0DBA Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yTpjPxySQmy_WmflM4Wgpr2GpJg.roa Signing time: Fri 01 Sep 2023 09:25:20 +0000 ROA not before: Fri 01 Sep 2023 09:25:20 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 192.72.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 17:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3514 (0xdba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Sep 1 09:25:20 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C93A633F1C92426CBF5A67E53385A0A6BD86A498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:e1:eb:ff:bc:db:85:ff:16:5c:51:10:81:8e: 4a:d6:4a:8c:d6:63:59:3b:94:a8:7e:93:ed:5a:29: 81:d2:eb:64:76:50:e4:9e:fe:c7:c0:65:f3:55:7f: 17:cb:71:f6:e6:e3:06:b7:70:0b:90:12:87:f0:6b: 30:18:ab:c3:8a:10:23:a5:73:a7:dd:8b:ee:2e:b7: 01:f6:af:83:1f:cd:bf:0d:56:25:a7:f2:08:9c:19: e6:ec:a4:e3:53:f5:36:eb:3e:2c:bd:48:f3:de:c2: 1b:53:ad:9b:f3:24:b8:91:19:fb:d6:78:46:a0:fd: 16:cd:37:d2:db:e3:5d:61:1d:bc:8e:67:48:7d:6c: 95:e6:a2:f9:0b:40:8d:ef:a7:11:07:9b:3b:23:ef: 44:f6:47:78:3f:53:39:be:5c:21:a1:2c:1d:df:15: 38:f3:cb:be:86:f0:99:a2:06:26:11:ec:b7:e0:d7: 1b:88:bd:ee:78:72:8f:04:13:b6:9d:53:77:24:33: bf:b7:cd:c3:e4:52:cb:f7:fa:17:40:1a:8b:99:87: d6:03:21:8b:92:65:2a:1a:90:71:11:07:6b:78:0d: eb:aa:bd:ff:60:9a:e3:11:37:ed:40:17:fc:b2:8d: f6:46:95:ee:ea:b3:eb:fb:0f:c9:51:13:62:27:dd: 55:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:3A:63:3F:1C:92:42:6C:BF:5A:67:E5:33:85:A0:A6:BD:86:A4:98 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yTpjPxySQmy_WmflM4Wgpr2GpJg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.32.0/19 Signature Algorithm: sha256WithRSAEncryption 36:e6:cf:cd:31:d7:e8:0e:bf:07:ef:a2:02:2c:4a:3f:d6:ea: 0b:01:26:4c:2a:04:a0:da:3c:8e:22:be:af:13:ac:84:b7:9f: 26:db:41:8c:be:eb:2e:d9:72:cf:31:ae:99:36:f9:cb:3e:4c: be:11:de:5b:ad:47:c8:cf:14:43:e4:6d:64:ad:d0:eb:58:94: 4e:7a:47:68:6f:3e:74:8c:7c:c2:38:9a:f2:28:a8:97:5d:be: 9f:1c:6d:ff:46:4f:8b:8c:91:fc:ea:5e:db:e5:5f:88:f1:32: e4:55:d9:75:93:dd:a1:ef:c2:20:39:9f:08:c3:6a:d9:cb:56: f3:c8:87:45:62:da:66:2d:f0:e1:8a:de:9d:14:72:63:40:51: 86:70:49:5d:61:02:7c:b8:a3:47:db:10:99:e6:93:e0:84:e6: ec:b8:02:09:f9:3c:bb:fd:66:e5:a5:39:81:25:02:d4:a9:91: 47:fb:38:86:f7:ad:29:07:67:f3:02:a5:07:3d:7f:05:d1:99: 81:b9:49:a9:fe:d7:3c:3f:a3:64:38:f7:0b:36:d5:a3:3c:80: 90:98:de:ec:a4:44:4b:a5:ca:56:9e:9c:3d:03:84:c8:73:7c: 2a:8e:51:e9:d1:dd:03:3f:d9:8f:31:2b:46:a3:59:0b:d4:69: 53:f1:6e:92 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDbowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yMzA5MDEw OTI1MjBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM5M0E2MzNGMUM5MjQy NkNCRjVBNjdFNTMzODVBMEE2QkQ4NkE0OTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDv4ev/vNuF/xZcURCBjkrWSozWY1k7lKh+k+1aKYHS62R2UOSe /sfAZfNVfxfLcfbm4wa3cAuQEofwazAYq8OKECOlc6fdi+4utwH2r4Mfzb8NViWn 8gicGebspONT9TbrPiy9SPPewhtTrZvzJLiRGfvWeEag/RbNN9Lb411hHbyOZ0h9 bJXmovkLQI3vpxEHmzsj70T2R3g/Uzm+XCGhLB3fFTjzy76G8JmiBiYR7Lfg1xuI ve54co8EE7adU3ckM7+3zcPkUsv3+hdAGouZh9YDIYuSZSoakHERB2t4Deuqvf9g muMRN+1AF/yyjfZGle7qs+v7D8lRE2In3VVRAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUyTpjPxySQmy/WmflM4Wgpr2GpJgwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveVRwalB4eVNRbXlfV21mbE00V2dw cjJHcEpnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcBIIDAN BgkqhkiG9w0BAQsFAAOCAQEANubPzTHX6A6/B++iAixKP9bqCwEmTCoEoNo8jiK+ rxOshLefJttBjL7rLtlyzzGumTb5yz5MvhHeW61HyM8UQ+RtZK3Q61iUTnpHaG8+ dIx8wjia8iiol12+nxxt/0ZPi4yR/Ope2+VfiPEy5FXZdZPdoe/CIDmfCMNq2ctW 88iHRWLaZi3w4YrenRRyY0BRhnBJXWECfLijR9sQmeaT4ITm7LgCCfk8u/1m5aU5 gSUC1KmRR/s4hvetKQdn8wKlBz1/BdGZgblJqf7XPD+jZDj3CzbVozyAkJje7KRE S6XKVp6cPQOEyHN8Ko5R6dHdAz/ZjzErRqNZC9RpU/Fukg== -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:38 2024 by rpki-client on console-ams.rpki-client.org