$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/JLTdF7e1fcm1ygrAL25CjNsa5w4.roa File: JLTdF7e1fcm1ygrAL25CjNsa5w4.roa (raw, json) Hash identifier: +EmuzGp4fP5EHT88i72+DRqzDWY11JUeQvfVjNdOEu0= Subject key identifier: 24:B4:DD:17:B7:B5:7D:C9:B5:CA:0A:C0:2F:6E:42:8C:DB:1A:E7:0E Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1339 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JLTdF7e1fcm1ygrAL25CjNsa5w4.roa Signing time: Fri 01 Sep 2023 09:24:39 +0000 ROA not before: Fri 01 Sep 2023 09:24:39 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9922 IP address blocks: 203.190.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4921 (0x1339) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:39 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=24B4DD17B7B57DC9B5CA0AC02F6E428CDB1AE70E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:13:82:2f:7d:68:31:c4:06:52:52:36:d4:f2: e3:06:6b:b4:9c:cc:9f:2a:bf:ee:72:59:6e:8b:72: 1a:0d:64:fb:48:d8:8a:59:96:8a:64:ce:8c:17:31: e7:64:77:c5:e3:e3:35:29:ae:56:ee:42:b2:b2:17: 41:a3:8d:51:14:cb:4b:f1:71:71:f6:3a:43:dc:73: 4e:e9:dd:cb:42:c3:2b:18:28:dc:41:2a:48:ba:85: af:f7:41:41:a5:0f:74:9b:29:dc:d4:74:9a:a4:d9: d4:2f:1a:7e:36:ec:85:e6:25:e5:7b:ac:b5:29:03: 2c:f7:0c:ce:3a:97:6e:dc:fd:e1:54:ae:8b:63:54: 5f:25:05:d3:62:af:90:ba:01:8f:19:6e:fc:8d:e8: 53:a2:55:02:fa:32:f5:cd:11:40:6f:38:60:f0:5a: 79:e6:46:a4:27:fd:14:2e:c9:9f:04:58:03:60:a1: 5a:c7:6c:37:b4:3c:fb:5b:65:6c:a1:14:a6:2b:4c: ed:81:9f:a3:fd:37:1f:c6:f0:eb:23:b6:6b:eb:98: 86:2f:ba:68:65:f2:68:be:7b:eb:79:67:8e:b4:80: 45:ad:62:86:b4:c5:be:5e:2d:f7:ee:07:c5:3b:51: 1f:03:48:f8:8a:9a:2f:c9:0b:0b:c7:32:dc:d3:3a: 28:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B4:DD:17:B7:B5:7D:C9:B5:CA:0A:C0:2F:6E:42:8C:DB:1A:E7:0E X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JLTdF7e1fcm1ygrAL25CjNsa5w4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.190.16.0/21 Signature Algorithm: sha256WithRSAEncryption 08:4e:0f:44:83:af:e2:fc:9d:95:6c:18:42:f4:3b:36:88:b0: 2a:f2:2e:c7:c4:02:e4:98:7d:08:cc:0a:2e:0e:8f:08:d7:90: 15:b9:77:01:64:79:67:03:7a:df:25:84:20:31:32:2e:f7:66: f9:72:a5:7c:12:e4:3f:cb:af:8b:62:e8:f6:07:cc:b4:0e:fa: 84:ad:6d:b6:86:cf:2e:2f:c9:88:e9:59:b1:68:b1:fc:26:58: 89:22:7f:ed:d2:af:a5:20:4c:4e:8a:78:1a:76:01:e0:3a:cf: 05:b5:47:d2:27:8e:65:66:ea:2d:0d:75:d7:1a:87:e5:c6:41: b8:89:48:94:f3:e3:0d:0e:8d:a6:0a:06:40:71:ca:6d:bb:bd: b3:e5:ef:32:30:36:22:25:f6:0d:88:fb:80:51:4a:71:12:de: 2f:25:03:af:26:32:5a:e6:53:c6:cf:23:d5:ac:96:72:fa:21: 5f:48:c8:8a:0e:62:2a:98:c8:a0:80:65:36:68:3b:32:66:61: fb:67:0d:0a:a1:f7:98:9e:48:9a:7b:4a:d4:2f:c9:15:46:68: 17:52:22:5e:77:34:c6:20:c7:ec:59:ad:6a:28:d3:6a:aa:aa: ed:df:1e:8b:2c:cd:fb:63:61:6c:6d:7f:3c:e9:35:b6:8a:35: b2:5d:de:73 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEzkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MzlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI0QjRERDE3QjdCNTdE QzlCNUNBMEFDMDJGNkU0MjhDREIxQUU3MEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8E4IvfWgxxAZSUjbU8uMGa7SczJ8qv+5yWW6LchoNZPtI2IpZ lopkzowXMedkd8Xj4zUprlbuQrKyF0GjjVEUy0vxcXH2OkPcc07p3ctCwysYKNxB Kki6ha/3QUGlD3SbKdzUdJqk2dQvGn427IXmJeV7rLUpAyz3DM46l27c/eFUrotj VF8lBdNir5C6AY8ZbvyN6FOiVQL6MvXNEUBvOGDwWnnmRqQn/RQuyZ8EWANgoVrH bDe0PPtbZWyhFKYrTO2Bn6P9Nx/G8OsjtmvrmIYvumhl8mi+e+t5Z460gEWtYoa0 xb5eLffuB8U7UR8DSPiKmi/JCwvHMtzTOihRAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUJLTdF7e1fcm1ygrAL25CjNsa5w4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSkxUZEY3ZTFmY20xeWdyQUwyNUNq TnNhNXc0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8u+EDAN BgkqhkiG9w0BAQsFAAOCAQEACE4PRIOv4vydlWwYQvQ7NoiwKvIux8QC5Jh9CMwK Lg6PCNeQFbl3AWR5ZwN63yWEIDEyLvdm+XKlfBLkP8uvi2Lo9gfMtA76hK1ttobP Li/JiOlZsWix/CZYiSJ/7dKvpSBMTop4GnYB4DrPBbVH0ieOZWbqLQ111xqH5cZB uIlIlPPjDQ6NpgoGQHHKbbu9s+XvMjA2IiX2DYj7gFFKcRLeLyUDryYyWuZTxs8j 1ayWcvohX0jIig5iKpjIoIBlNmg7MmZh+2cNCqH3mJ5ImntK1C/JFUZoF1IiXnc0 xiDH7FmtaijTaqqq7d8eiyzN+2NhbG1/POk1too1sl3ecw== -----END CERTIFICATE-----Generated at Sat Jun 1 17:04:04 2024 by rpki-client on console-ams.rpki-client.org