$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/P1Cyj_JwqJiIfD8wtKcItl2KQsM.roa File: P1Cyj_JwqJiIfD8wtKcItl2KQsM.roa (raw, json) Hash identifier: qdV05Vo+FUwmpw9X6SpI2DtnVQvVVWdww6sSjEXm/sM= Subject key identifier: 3F:50:B2:8F:F2:70:A8:98:88:7C:3F:30:B4:A7:08:B6:5D:8A:42:C3 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 12F9 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/P1Cyj_JwqJiIfD8wtKcItl2KQsM.roa Signing time: Fri 01 Sep 2023 09:24:19 +0000 ROA not before: Fri 01 Sep 2023 09:24:19 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 220.229.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4857 (0x12f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:19 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=3F50B28FF270A898887C3F30B4A708B65D8A42C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:80:70:f7:e2:5d:a7:af:04:a7:ae:51:55:a5: 8f:22:30:83:de:a9:d8:a9:b7:83:73:aa:13:ef:31: 44:6c:9a:30:1f:07:86:8f:0a:df:12:bb:93:87:4a: 47:f5:fe:dd:e8:1d:fb:6e:a1:52:73:35:ad:a3:9f: cd:c2:b7:81:31:33:dc:f2:60:0f:38:8e:cd:1d:ba: 3d:3d:49:12:a2:52:78:4e:43:1c:f9:36:c9:40:b6: 32:06:84:cc:cf:7f:b8:1f:7f:47:e7:58:77:5e:bf: 25:8c:94:be:8e:c3:b8:eb:ee:97:55:17:4d:1b:10: 2d:40:92:0a:b0:a1:8a:a1:5b:ee:98:5b:c7:cf:53: 60:ca:20:34:30:e0:6e:e7:e3:1c:83:4a:18:e1:69: ef:5a:f1:8d:ff:67:7c:4c:41:56:dd:b1:22:02:e6: 5d:21:28:2c:e0:34:ff:ac:ee:ef:96:5e:a9:44:19: 4a:a0:95:02:57:c0:2f:2c:37:75:8c:b0:81:5e:0e: 03:ec:49:ee:50:cb:6e:84:cf:e7:6b:51:70:7b:7e: fc:7a:86:49:e1:0b:b3:8c:b7:16:67:78:ac:b0:a3: 53:a1:22:18:ab:8d:2a:9e:09:c7:01:17:53:54:1f: 9a:4e:03:b4:95:ad:1d:ff:5d:da:25:84:da:4f:6c: 5b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:50:B2:8F:F2:70:A8:98:88:7C:3F:30:B4:A7:08:B6:5D:8A:42:C3 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/P1Cyj_JwqJiIfD8wtKcItl2KQsM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.229.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1e:4f:75:7e:d8:76:40:7a:03:59:37:06:50:93:04:01:dc:9c: 37:00:e4:b7:0d:d7:82:35:72:60:f1:5b:ac:12:27:0a:ed:6d: d6:fe:56:03:14:11:da:ce:9d:63:01:3d:87:3d:e1:41:80:c9: b9:7b:df:b8:a0:c1:67:ca:36:22:6b:d7:b0:1a:64:80:ba:83: b4:80:4d:b3:4e:81:1b:e6:15:60:25:a6:03:ed:56:09:20:00: f6:1d:fd:84:8d:fe:3a:e3:d5:c1:05:ab:44:3b:4a:00:a6:51: 83:b7:e6:02:89:b9:ed:4e:4d:28:c4:04:64:a5:94:eb:6d:94: 90:f6:23:d3:b8:97:08:a1:78:0c:27:6f:99:d4:d7:66:cf:37: 27:c5:c8:cf:c4:56:80:60:35:88:fd:56:bc:b9:c0:fa:82:79: 9f:1d:57:96:8b:52:38:95:50:49:58:60:3c:22:78:4b:3b:15: a7:77:4a:5b:b3:11:80:e5:11:8d:68:33:c1:ff:5f:e3:39:97: e1:78:2e:0b:9f:d0:63:05:ab:9d:c7:c7:9a:a5:57:21:e3:27: 5d:2e:ed:8a:a4:a9:20:76:9b:a5:ac:a9:dd:56:d5:2f:51:56: 90:b3:4a:96:60:c5:d6:3c:21:79:3b:b8:0f:b5:b0:ba:d2:ad: f3:cb:fa:bd -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICEvkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDNGNTBCMjhGRjI3MEE4 OTg4ODdDM0YzMEI0QTcwOEI2NUQ4QTQyQzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCygHD34l2nrwSnrlFVpY8iMIPeqdipt4NzqhPvMURsmjAfB4aP Ct8Su5OHSkf1/t3oHftuoVJzNa2jn83Ct4ExM9zyYA84js0duj09SRKiUnhOQxz5 NslAtjIGhMzPf7gff0fnWHdevyWMlL6Ow7jr7pdVF00bEC1AkgqwoYqhW+6YW8fP U2DKIDQw4G7n4xyDShjhae9a8Y3/Z3xMQVbdsSIC5l0hKCzgNP+s7u+WXqlEGUqg lQJXwC8sN3WMsIFeDgPsSe5Qy26Ez+drUXB7fvx6hknhC7OMtxZneKywo1OhIhir jSqeCccBF1NUH5pOA7SVrR3/XdolhNpPbFupAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUP1Cyj/JwqJiIfD8wtKcItl2KQsMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUDFDeWpfSndxSmlJZkQ4d3RLY0l0 bDJLUXNNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANzlMA0G CSqGSIb3DQEBCwUAA4IBAQAeT3V+2HZAegNZNwZQkwQB3Jw3AOS3DdeCNXJg8Vus EicK7W3W/lYDFBHazp1jAT2HPeFBgMm5e9+4oMFnyjYia9ewGmSAuoO0gE2zToEb 5hVgJaYD7VYJIAD2Hf2Ejf4649XBBatEO0oAplGDt+YCibntTk0oxARkpZTrbZSQ 9iPTuJcIoXgMJ2+Z1NdmzzcnxcjPxFaAYDWI/Va8ucD6gnmfHVeWi1I4lVBJWGA8 InhLOxWnd0pbsxGA5RGNaDPB/1/jOZfheC4Ln9BjBaudx8eapVch4yddLu2KpKkg dpulrKndVtUvUVaQs0qWYMXWPCF5O7gPtbC60q3zy/q9 -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org