$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ESQZhDIxH2x6XpXJbH9-SbVBWcw.roa File: ESQZhDIxH2x6XpXJbH9-SbVBWcw.roa (raw, json) Hash identifier: IGYQ0oDxcFyIP5NYNsDUoPB03LWxsSXSHp9NjHa+9ws= Subject key identifier: 11:24:19:84:32:31:1F:6C:7A:5E:95:C9:6C:7F:7E:49:B5:41:59:CC Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13E7 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ESQZhDIxH2x6XpXJbH9-SbVBWcw.roa Signing time: Fri 01 Sep 2023 09:25:35 +0000 ROA not before: Fri 01 Sep 2023 09:25:35 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18049 IP address blocks: 175.183.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5095 (0x13e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:35 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=1124198432311F6C7A5E95C96C7F7E49B54159CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:72:c1:c1:d0:1f:0a:b2:75:a8:ad:c1:1d:53: 92:6d:e5:af:f3:70:9e:7e:b7:91:34:2f:aa:e3:bf: 8f:5d:87:86:db:cf:af:fe:a1:10:12:9e:d4:66:4c: 38:90:2e:c3:c4:e1:8b:84:42:7c:3e:cc:2b:d8:f3: 2e:7f:e9:53:c4:80:db:fd:b4:ed:fa:b2:03:c8:38: a7:ef:78:55:29:85:6d:a0:33:65:89:b1:94:f7:86: 92:40:2e:43:d7:1f:0f:48:f6:b4:e7:e8:b3:4d:86: 0d:ca:0a:bc:77:ba:31:65:4e:f3:68:65:f6:41:96: f1:0a:ba:67:ea:82:3d:69:95:77:46:9b:01:7c:62: ee:55:75:b5:e7:5f:76:be:6e:f5:d5:e5:cf:4d:9c: bb:a7:d8:78:16:7e:0b:96:7f:ed:1f:a4:5f:52:fd: b7:5a:1a:37:ff:0d:22:f5:df:e6:e6:23:8f:17:ff: 8a:15:6d:c2:47:bc:94:fa:4a:88:38:dd:ef:88:d0: 2b:24:c0:1c:f1:81:5b:a2:f4:eb:b9:4a:6b:72:2d: ec:33:88:36:59:19:b1:86:16:96:df:ed:50:d5:0e: 1a:c2:1c:e9:a7:a0:6b:74:b1:e7:82:9b:1d:6f:5c: b5:f7:18:97:c8:dc:e1:6d:b5:40:1e:38:56:13:7d: e1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:24:19:84:32:31:1F:6C:7A:5E:95:C9:6C:7F:7E:49:B5:41:59:CC X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ESQZhDIxH2x6XpXJbH9-SbVBWcw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.183.0.0/18 Signature Algorithm: sha256WithRSAEncryption 13:b5:e8:68:d1:8d:a6:e0:f2:a1:c2:16:a1:fe:d1:cb:08:14: 69:c8:79:b9:0d:ac:00:bb:a6:a1:6e:a7:73:04:6c:a0:85:a9: 2b:19:a7:9f:b0:98:98:52:d7:da:d1:42:82:5d:bf:84:97:16: f4:01:d6:fe:64:b7:f0:74:74:82:16:09:7e:bb:a4:71:b6:2c: 1d:e1:33:34:19:08:5b:9f:f5:76:ec:25:d8:c2:f0:b7:11:fb: 42:ab:1c:07:32:8c:b7:1c:05:ce:b9:03:4e:72:6e:f3:78:b7: 6f:80:96:e5:14:fa:0b:a1:48:5e:93:64:c6:07:33:c9:39:92: d7:c0:c7:fb:43:cb:a7:c2:e6:bc:23:ae:1e:28:f8:b1:21:16: 85:00:b3:56:84:24:12:05:22:48:24:2f:09:b0:b1:e9:8a:86: ce:29:ad:78:4b:f0:3c:1f:f2:35:36:dd:4e:9c:73:4b:43:ec: ba:68:d0:1c:4c:58:00:8e:0d:13:a1:18:02:cc:b4:df:49:37: 22:fc:e7:8c:ff:c8:cc:09:c2:16:2e:25:9d:b9:0c:7c:ee:7a: e6:d0:17:fa:cf:63:8b:0c:f8:3f:59:1d:cd:4b:bf:dc:c0:48: c8:ff:c5:4d:f4:99:ea:68:ed:2b:92:0f:1e:47:07:1f:4f:ae: 0d:6c:3d:6c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE+cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MzVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDExMjQxOTg0MzIzMTFG NkM3QTVFOTVDOTZDN0Y3RTQ5QjU0MTU5Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDacsHB0B8KsnWorcEdU5Jt5a/zcJ5+t5E0L6rjv49dh4bbz6/+ oRASntRmTDiQLsPE4YuEQnw+zCvY8y5/6VPEgNv9tO36sgPIOKfveFUphW2gM2WJ sZT3hpJALkPXHw9I9rTn6LNNhg3KCrx3ujFlTvNoZfZBlvEKumfqgj1plXdGmwF8 Yu5VdbXnX3a+bvXV5c9NnLun2HgWfguWf+0fpF9S/bdaGjf/DSL13+bmI48X/4oV bcJHvJT6Sog43e+I0CskwBzxgVui9Ou5SmtyLewziDZZGbGGFpbf7VDVDhrCHOmn oGt0seeCmx1vXLX3GJfI3OFttUAeOFYTfeGRAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUESQZhDIxH2x6XpXJbH9+SbVBWcwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRVNRWmhESXhIMng2WHBYSmJIOS1T YlZCV2N3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBq+3ADAN BgkqhkiG9w0BAQsFAAOCAQEAE7XoaNGNpuDyocIWof7RywgUach5uQ2sALumoW6n cwRsoIWpKxmnn7CYmFLX2tFCgl2/hJcW9AHW/mS38HR0ghYJfrukcbYsHeEzNBkI W5/1duwl2MLwtxH7QqscBzKMtxwFzrkDTnJu83i3b4CW5RT6C6FIXpNkxgczyTmS 18DH+0PLp8LmvCOuHij4sSEWhQCzVoQkEgUiSCQvCbCx6YqGzimteEvwPB/yNTbd TpxzS0PsumjQHExYAI4NE6EYAsy030k3IvznjP/IzAnCFi4lnbkMfO565tAX+s9j iwz4P1kdzUu/3MBIyP/FTfSZ6mjtK5IPHkcHH0+uDWw9bA== -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:37 2024 by rpki-client on console-ams.rpki-client.org