$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/MM5baIf47wtAdn9mACMo4DvrqF0.roa File: MM5baIf47wtAdn9mACMo4DvrqF0.roa (raw, json) Hash identifier: GVzKxGvMGm1Ks3evh0GwfznHkJj3NDlYPk/mGGvp9fg= Subject key identifier: 30:CE:5B:68:87:F8:EF:0B:40:76:7F:66:00:23:28:E0:3B:EB:A8:5D Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1351 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MM5baIf47wtAdn9mACMo4DvrqF0.roa Signing time: Fri 01 Sep 2023 09:24:46 +0000 ROA not before: Fri 01 Sep 2023 09:24:46 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 122.147.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4945 (0x1351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:46 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=30CE5B6887F8EF0B40767F66002328E03BEBA85D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bb:60:0d:17:b8:4d:93:f7:49:f9:2e:71:7d: 85:98:f6:4d:4a:00:fe:89:d6:3a:4f:6e:80:3e:55: 48:fa:5d:bf:1e:b2:bb:01:a3:ed:5d:7a:83:5e:00: 45:c6:8c:7e:7d:c1:e1:b4:48:5d:5e:57:6f:74:9f: d8:2a:22:1c:7e:15:14:4d:c2:a2:e0:02:e1:92:b9: 78:e8:f6:4c:f6:31:6d:89:bf:1c:fc:9c:b6:dd:fe: 31:ff:cb:a8:cc:bc:6a:2c:15:ae:d9:79:f6:16:cb: c9:f6:89:b1:71:f5:5c:19:7f:b4:df:30:3c:08:dc: 7b:23:02:e9:bd:83:53:92:93:db:10:dc:12:bc:b8: ff:e7:41:6f:71:df:5a:f3:d8:8c:4c:9d:84:d1:56: 79:c3:28:67:31:7a:38:f4:07:27:2e:e1:7a:50:58: 5c:9a:b5:d4:e7:08:ab:40:dc:1d:9a:73:22:00:72: 67:00:f3:65:90:0c:80:7f:65:28:56:c1:ee:23:e5: 45:be:b6:4b:d0:77:7a:c6:6f:97:af:78:d4:5d:ed: d0:c4:38:86:f2:4b:db:91:c4:3c:df:03:35:78:56: 25:47:6a:67:51:53:93:a1:a3:41:d7:a4:91:15:2f: 77:b9:91:a0:17:1e:b4:d9:f4:35:bb:7b:17:95:a0: 66:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:CE:5B:68:87:F8:EF:0B:40:76:7F:66:00:23:28:E0:3B:EB:A8:5D X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MM5baIf47wtAdn9mACMo4DvrqF0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.24.0/21 Signature Algorithm: sha256WithRSAEncryption 92:75:af:da:3a:b9:a6:3f:62:af:26:7e:ed:59:40:aa:a2:de: bd:a9:79:92:42:92:b8:ac:9d:a3:33:d5:13:fe:7a:7e:6f:d1: 39:52:c5:7b:53:0e:44:fb:f7:e0:64:77:9c:d6:71:c4:ce:0f: 40:02:ed:74:a6:2d:e0:d1:a5:67:92:14:bd:6a:38:00:0f:3b: c3:ba:45:5a:09:53:cd:ac:44:26:86:ac:6f:69:35:ef:50:09: e2:1e:bc:dd:69:1e:89:68:17:a1:f4:7c:6e:f3:8c:5d:b0:82: 5f:95:61:b9:ef:75:2d:a2:12:02:2b:a8:d1:ba:99:b4:09:28: 87:0b:6c:c3:77:8a:40:d0:37:87:94:0f:87:54:94:64:74:c4: 5b:8d:02:5c:d6:be:a9:db:cf:01:0c:ac:c0:01:28:9c:c2:97: 30:2e:0f:ed:92:bf:fb:64:09:77:5f:19:fa:e7:58:8e:e5:b0: 1c:ac:58:fd:af:f7:ee:02:c0:d6:d7:f8:7c:0a:7f:ab:6c:5a: 1a:a1:2a:12:66:84:bc:d6:a2:d4:0b:2f:17:1b:cc:19:5e:58: b5:97:99:1f:78:16:8b:47:6b:ac:c3:05:d3:c4:06:26:ee:66: b3:e0:dc:5b:ae:a1:57:24:9e:58:2d:eb:ff:5a:e3:d1:86:bc: d0:5f:8f:81 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE1EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDMwQ0U1QjY4ODdGOEVG MEI0MDc2N0Y2NjAwMjMyOEUwM0JFQkE4NUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6u2ANF7hNk/dJ+S5xfYWY9k1KAP6J1jpPboA+VUj6Xb8esrsB o+1deoNeAEXGjH59weG0SF1eV290n9gqIhx+FRRNwqLgAuGSuXjo9kz2MW2Jvxz8 nLbd/jH/y6jMvGosFa7ZefYWy8n2ibFx9VwZf7TfMDwI3HsjAum9g1OSk9sQ3BK8 uP/nQW9x31rz2IxMnYTRVnnDKGcxejj0Bycu4XpQWFyatdTnCKtA3B2acyIAcmcA 82WQDIB/ZShWwe4j5UW+tkvQd3rGb5eveNRd7dDEOIbyS9uRxDzfAzV4ViVHamdR U5Oho0HXpJEVL3e5kaAXHrTZ9DW7exeVoGazAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUMM5baIf47wtAdn9mACMo4DvrqF0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTU01YmFJZjQ3d3RBZG45bUFDTW80 RHZycUYwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3qTGDAN BgkqhkiG9w0BAQsFAAOCAQEAknWv2jq5pj9iryZ+7VlAqqLeval5kkKSuKydozPV E/56fm/ROVLFe1MORPv34GR3nNZxxM4PQALtdKYt4NGlZ5IUvWo4AA87w7pFWglT zaxEJoasb2k171AJ4h683WkeiWgXofR8bvOMXbCCX5Vhue91LaISAiuo0bqZtAko hwtsw3eKQNA3h5QPh1SUZHTEW40CXNa+qdvPAQyswAEonMKXMC4P7ZK/+2QJd18Z +udYjuWwHKxY/a/37gLA1tf4fAp/q2xaGqEqEmaEvNai1AsvFxvMGV5YtZeZH3gW i0drrMMF08QGJu5ms+DcW66hVySeWC3r/1rj0Ya80F+PgQ== -----END CERTIFICATE-----Generated at Sun Jun 2 09:37:17 2024 by rpki-client on console-ams.rpki-client.org