$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/AMtoTA_4o9OFwS4I5bnV5sD_be8.roa File: AMtoTA_4o9OFwS4I5bnV5sD_be8.roa (raw, json) Hash identifier: ikBj5fXpO7/GXTRGtNY4XZTa7NNB2cfZ9ohGdb+9aPg= Subject key identifier: 00:CB:68:4C:0F:F8:A3:D3:85:C1:2E:08:E5:B9:D5:E6:C0:FF:6D:EF Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 12FF Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/AMtoTA_4o9OFwS4I5bnV5sD_be8.roa Signing time: Fri 01 Sep 2023 09:24:21 +0000 ROA not before: Fri 01 Sep 2023 09:24:21 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 220.228.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4863 (0x12ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:21 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=00CB684C0FF8A3D385C12E08E5B9D5E6C0FF6DEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:1b:52:be:cc:2a:9a:35:26:8a:36:77:0f:56: f9:69:85:40:bd:63:e4:2b:89:cb:14:f5:23:45:2b: 0b:31:a6:50:f0:94:9d:97:0c:e2:13:db:31:36:76: 3e:f5:f1:e2:70:45:29:01:79:ef:a9:a6:25:7a:d6: 73:e2:7f:44:7b:68:2b:7b:6b:5d:c2:c3:71:42:ae: 97:84:da:c1:9c:f5:a9:bf:eb:b8:7e:94:16:8c:f2: ce:b6:71:fc:78:2d:a9:58:0a:1d:d3:48:a5:a8:2b: 2d:44:9b:ff:5f:41:22:d9:33:4d:d1:f4:90:bc:80: ca:0b:1a:49:c6:aa:c6:7b:87:38:a5:fb:17:f3:f8: 52:e6:27:dc:ca:9b:f4:08:f6:fb:27:05:50:b8:dc: 11:f1:c9:da:c1:aa:53:e0:99:d9:c1:13:b8:05:01: e7:60:b4:37:34:30:4d:19:db:1f:e6:1c:6a:28:44: db:c4:15:32:ef:f2:7e:a0:64:93:a7:06:6b:93:a5: 14:96:33:d5:1c:ea:fa:32:53:78:a6:e9:64:6f:de: ec:ce:78:3d:b2:aa:91:90:c8:ee:f4:7f:a8:d4:c7: 28:f6:8d:bf:f3:ff:2b:98:c2:ea:f2:49:56:80:1d: ea:ec:79:2f:86:e8:56:22:e1:4c:19:c1:ca:55:83: 49:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:CB:68:4C:0F:F8:A3:D3:85:C1:2E:08:E5:B9:D5:E6:C0:FF:6D:EF X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/AMtoTA_4o9OFwS4I5bnV5sD_be8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.228.0.0/15 Signature Algorithm: sha256WithRSAEncryption 1b:c2:8e:52:7c:c7:72:9c:c4:1c:a8:74:34:97:36:ec:33:80: 77:1c:8d:12:0e:93:57:8d:da:31:82:4e:16:9b:d3:2f:60:56: d3:3a:5b:cb:29:88:1f:8c:75:bf:0d:8b:cd:fe:12:65:ba:e9: f4:a1:75:93:f7:27:e4:c2:86:c4:a6:c1:e1:76:39:70:74:a2: f3:45:d1:bd:fd:e5:90:12:f7:3c:99:21:a8:ff:97:73:93:bc: d2:f6:89:87:67:c0:ff:ef:3f:d0:51:bf:4f:4e:a9:f9:a5:86: 6f:6b:b4:cf:6f:29:1c:75:de:0b:ed:de:66:cd:e0:12:b2:14: 93:9f:49:e1:a1:dd:1a:56:0f:0e:6b:ed:37:dc:c2:ab:e9:32: 8c:93:dc:53:47:30:4e:7c:59:a9:48:2a:a8:02:cb:00:6f:a1: 1c:43:65:57:0f:cf:f1:aa:6f:82:a4:c3:18:90:b0:94:97:30: ff:28:ee:61:da:e5:c9:d6:24:76:02:5e:e6:b9:b6:57:d7:ac: 65:9b:69:a2:6c:6e:40:a7:5a:93:9d:e7:14:b8:a8:54:af:86: e0:b9:20:4a:9f:b9:fc:65:d0:33:5e:de:41:62:3c:e5:ab:52: 5c:35:2d:5e:98:6d:12:61:80:d8:99:97:a0:5b:41:ff:3c:8c: 49:46:71:0d -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICEv8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MjFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAwQ0I2ODRDMEZGOEEz RDM4NUMxMkUwOEU1QjlENUU2QzBGRjZERUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtG1K+zCqaNSaKNncPVvlphUC9Y+QricsU9SNFKwsxplDwlJ2X DOIT2zE2dj718eJwRSkBee+ppiV61nPif0R7aCt7a13Cw3FCrpeE2sGc9am/67h+ lBaM8s62cfx4LalYCh3TSKWoKy1Em/9fQSLZM03R9JC8gMoLGknGqsZ7hzil+xfz +FLmJ9zKm/QI9vsnBVC43BHxydrBqlPgmdnBE7gFAedgtDc0ME0Z2x/mHGooRNvE FTLv8n6gZJOnBmuTpRSWM9Uc6voyU3im6WRv3uzOeD2yqpGQyO70f6jUxyj2jb/z /yuYwurySVaAHerseS+G6FYi4UwZwcpVg0mtAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUAMtoTA/4o9OFwS4I5bnV5sD/be8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvQU10b1RBXzRvOU9Gd1M0STViblY1 c0RfYmU4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAdzkMA0G CSqGSIb3DQEBCwUAA4IBAQAbwo5SfMdynMQcqHQ0lzbsM4B3HI0SDpNXjdoxgk4W m9MvYFbTOlvLKYgfjHW/DYvN/hJluun0oXWT9yfkwobEpsHhdjlwdKLzRdG9/eWQ Evc8mSGo/5dzk7zS9omHZ8D/7z/QUb9PTqn5pYZva7TPbykcdd4L7d5mzeASshST n0nhod0aVg8Oa+033MKr6TKMk9xTRzBOfFmpSCqoAssAb6EcQ2VXD8/xqm+CpMMY kLCUlzD/KO5h2uXJ1iR2Al7mubZX16xlm2mibG5Ap1qTnecUuKhUr4bguSBKn7n8 ZdAzXt5BYjzlq1JcNS1emG0SYYDYmZegW0H/PIxJRnEN -----END CERTIFICATE-----Generated at Sat Jun 1 22:20:17 2024 by rpki-client on console-fra.rpki-client.org