$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/S2nd65tpu_3QOJY62xQpaXpotC0.roa File: S2nd65tpu_3QOJY62xQpaXpotC0.roa (raw, json) Hash identifier: 0AUGf/k8xngkga+kFR/3kM7cksUc4LGnnJYdENCx7qk= Subject key identifier: 4B:69:DD:EB:9B:69:BB:FD:D0:38:96:3A:DB:14:29:69:7A:68:B4:2D Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13AA Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/S2nd65tpu_3QOJY62xQpaXpotC0.roa Signing time: Fri 01 Sep 2023 09:25:16 +0000 ROA not before: Fri 01 Sep 2023 09:25:16 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 122.147.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5034 (0x13aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:16 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=4B69DDEB9B69BBFDD038963ADB1429697A68B42D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a3:b8:da:5e:2b:99:79:1f:5f:4b:a4:0d:8b: 2b:50:69:1f:e5:50:d3:32:0f:f6:10:67:ba:47:eb: 85:b7:cc:0a:10:47:62:c6:d5:cb:5b:6f:2b:cd:b3: 62:22:cb:c2:f9:fc:74:6e:d2:71:e5:61:66:e9:4f: 98:4a:04:21:fa:cb:62:c9:88:f3:39:b3:c7:ca:45: ff:14:0f:0a:62:b1:e6:69:92:79:5e:e8:0d:2a:21: c6:58:d4:03:81:1e:ec:5b:1b:5f:d3:fc:96:0d:de: 51:df:97:22:f8:50:11:1a:38:33:f0:a2:d6:6c:ff: f7:7c:64:0d:65:0c:c6:d3:7d:e8:69:b8:4a:54:73: 63:32:ec:ad:11:93:37:d6:f4:71:b3:eb:bf:f8:af: 02:b6:a9:75:37:90:9f:a0:5c:61:c3:bd:47:85:47: bf:f5:2c:31:08:25:73:c1:7c:5e:37:69:81:58:9f: 0a:c9:0e:39:d5:90:ae:d2:8e:ea:3e:4a:d0:91:ae: 9f:37:41:f5:ce:f0:db:ac:c0:44:1b:f2:13:0e:ce: cf:86:39:5a:c4:fa:70:9d:f0:44:92:9d:93:b2:24: 6e:0b:d9:79:1b:f0:af:3a:b9:b5:a6:9d:4f:79:c9: 37:d6:b4:db:79:e6:91:c2:c1:22:7f:c4:e5:09:c3: 46:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:69:DD:EB:9B:69:BB:FD:D0:38:96:3A:DB:14:29:69:7A:68:B4:2D X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/S2nd65tpu_3QOJY62xQpaXpotC0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.128.0/17 Signature Algorithm: sha256WithRSAEncryption a6:fc:52:04:40:01:a7:c6:d2:e5:67:b8:cb:47:2b:18:70:26: f4:00:0f:b7:b7:9a:3a:23:7a:04:ce:54:c6:e7:66:b9:5d:e5: 27:de:57:0a:a9:97:cc:c6:06:dd:97:d5:67:9b:bf:80:2c:09: ae:f0:41:fc:e4:07:23:2b:b6:c0:b6:9a:f0:be:e4:d5:d2:8f: 7c:d4:d0:2d:cd:23:38:cb:c7:30:ac:5f:36:99:70:3f:1d:56: 53:08:c9:42:dc:ae:68:d1:40:c3:69:b4:3e:b0:44:63:5a:f8: 32:d2:5a:27:da:a9:88:9d:00:d9:2b:2c:f4:48:4d:7a:5e:e3: 55:3f:f7:66:cb:93:9b:2e:48:16:bf:28:5c:74:92:f1:e8:fe: a0:55:8e:08:2a:8e:5e:ed:52:94:b6:b1:49:70:70:2f:34:16: 3d:ad:22:5c:ac:5a:7b:47:62:12:80:62:ec:7d:0c:4c:29:76: 6e:a1:d9:b2:3d:b8:43:a5:df:95:c1:60:8e:31:e8:9c:50:21: 63:2c:f6:a0:ad:30:b6:12:d5:64:7a:ee:36:24:66:bc:02:67: 96:93:ae:0f:c1:57:57:40:27:85:5f:f2:e5:26:ab:3f:4e:ba: d7:bf:ee:16:c0:6f:d3:e0:d6:de:dd:ee:39:fe:de:4c:7a:a4: d7:f8:28:54 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE6owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDRCNjlEREVCOUI2OUJC RkREMDM4OTYzQURCMTQyOTY5N0E2OEI0MkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzo7jaXiuZeR9fS6QNiytQaR/lUNMyD/YQZ7pH64W3zAoQR2LG 1ctbbyvNs2Iiy8L5/HRu0nHlYWbpT5hKBCH6y2LJiPM5s8fKRf8UDwpiseZpknle 6A0qIcZY1AOBHuxbG1/T/JYN3lHflyL4UBEaODPwotZs//d8ZA1lDMbTfehpuEpU c2My7K0RkzfW9HGz67/4rwK2qXU3kJ+gXGHDvUeFR7/1LDEIJXPBfF43aYFYnwrJ DjnVkK7Sjuo+StCRrp83QfXO8NuswEQb8hMOzs+GOVrE+nCd8ESSnZOyJG4L2Xkb 8K86ubWmnU95yTfWtNt55pHCwSJ/xOUJw0avAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUS2nd65tpu/3QOJY62xQpaXpotC0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUzJuZDY1dHB1XzNRT0pZNjJ4UXBh WHBvdEMwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3qTgDAN BgkqhkiG9w0BAQsFAAOCAQEApvxSBEABp8bS5We4y0crGHAm9AAPt7eaOiN6BM5U xudmuV3lJ95XCqmXzMYG3ZfVZ5u/gCwJrvBB/OQHIyu2wLaa8L7k1dKPfNTQLc0j OMvHMKxfNplwPx1WUwjJQtyuaNFAw2m0PrBEY1r4MtJaJ9qpiJ0A2Sss9EhNel7j VT/3ZsuTmy5IFr8oXHSS8ej+oFWOCCqOXu1SlLaxSXBwLzQWPa0iXKxae0diEoBi 7H0MTCl2bqHZsj24Q6XflcFgjjHonFAhYyz2oK0wthLVZHruNiRmvAJnlpOuD8FX V0AnhV/y5SarP06617/uFsBv0+DW3t3uOf7eTHqk1/goVA== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org