$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/SH6xutrOBIJahzwKC5rL4mNccKk.roa File: SH6xutrOBIJahzwKC5rL4mNccKk.roa (raw, json) Hash identifier: vmJ+j/cGeLpjUPXkAiU3afd0S5HW6A4YRXjQ6na0M88= Subject key identifier: 48:7E:B1:BA:DA:CE:04:82:5A:87:3C:0A:0B:9A:CB:E2:63:5C:70:A9 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1310 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/SH6xutrOBIJahzwKC5rL4mNccKk.roa Signing time: Fri 01 Sep 2023 09:24:26 +0000 ROA not before: Fri 01 Sep 2023 09:24:26 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 218.210.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4880 (0x1310) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:26 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=487EB1BADACE04825A873C0A0B9ACBE2635C70A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:83:87:bf:35:ea:83:cf:be:09:b2:ed:d1:52: e7:a3:b2:02:9c:33:67:ca:52:1b:41:30:b3:b2:89: 4c:5d:9e:ea:43:82:7d:4f:dc:5c:96:b6:a0:e6:3b: f4:ce:f3:e9:75:f9:a7:6e:95:49:ea:d3:05:f5:f7: e0:5b:21:56:fb:07:6a:7a:c9:45:96:fb:ea:42:00: 27:55:61:32:74:69:e7:fb:e1:f5:ed:e9:52:1c:90: bb:d5:2a:ee:c7:34:e3:40:28:28:c4:2f:ce:ea:6c: 7c:f7:c3:3d:e9:c7:73:9e:d0:e2:fa:4e:f1:8a:d9: f0:ad:23:fd:c7:be:fa:da:66:f4:0b:96:c7:4e:2d: e2:b6:d2:32:9b:6c:29:95:60:f1:9c:4a:04:93:a9: 00:5f:71:3b:1d:48:f3:8f:70:d4:b8:46:6d:4b:96: 99:52:93:1a:3d:2e:3f:46:77:ef:f5:19:c6:3b:f2: aa:e5:d1:6d:23:cc:af:5b:08:c8:76:c4:11:82:d9: 64:58:e1:87:ff:cd:a6:db:6c:9c:ae:d1:3a:fc:66: bd:4c:6a:ac:d5:97:41:f4:1b:88:c8:16:91:03:58: 6f:26:1d:26:1c:19:0b:b3:30:70:7a:e0:1c:6b:6e: 32:b1:a2:3a:3a:27:e6:13:2c:b1:db:e2:12:64:76: 2f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:7E:B1:BA:DA:CE:04:82:5A:87:3C:0A:0B:9A:CB:E2:63:5C:70:A9 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/SH6xutrOBIJahzwKC5rL4mNccKk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.210.0.0/19 Signature Algorithm: sha256WithRSAEncryption 51:21:44:33:b0:2f:65:20:31:e5:da:0d:fc:70:f7:0c:cf:93: 50:f2:85:be:be:69:57:f0:6a:05:5a:6d:bd:7d:99:8b:75:2a: ef:75:a2:b9:9e:1b:7e:5d:4c:fb:22:b3:48:e0:90:cf:1a:3a: 5d:95:c9:ad:db:d4:e5:4c:87:90:81:5f:67:a8:b8:6f:db:9e: b0:f2:54:6e:8f:05:5e:88:3a:f5:23:4b:c9:c3:41:0e:e9:ec: 9a:36:b1:2c:5c:9e:08:3d:82:30:55:50:81:01:0d:8b:05:91: 6e:cc:89:4e:8a:b0:9d:e4:b6:c4:6b:51:1b:d8:2b:8d:36:a0: 4e:a1:7d:6f:f5:41:c7:0c:b4:2e:e8:6a:e7:a7:2f:20:b0:02: 57:64:1f:20:bf:21:aa:d8:fb:2b:50:24:31:e5:bb:cf:9f:87: 7c:03:1a:7d:e8:e9:92:ed:5e:71:70:4a:99:34:96:76:a7:79: 24:5f:85:5d:22:80:62:cb:1a:a0:f7:78:7e:d0:1a:d0:2e:4a: a4:71:a2:d2:24:7e:7d:3c:9b:35:32:7c:40:77:d2:da:00:72: 8d:24:a1:bc:9b:4c:1f:30:fa:6e:87:ec:74:0b:93:bc:0e:da: c6:5f:2c:e9:00:60:6e:b6:8c:81:a6:47:06:b3:05:5b:35:04: b5:4b:44:e7 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICExAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MjZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQ4N0VCMUJBREFDRTA0 ODI1QTg3M0MwQTBCOUFDQkUyNjM1QzcwQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqg4e/NeqDz74Jsu3RUuejsgKcM2fKUhtBMLOyiUxdnupDgn1P 3FyWtqDmO/TO8+l1+adulUnq0wX19+BbIVb7B2p6yUWW++pCACdVYTJ0aef74fXt 6VIckLvVKu7HNONAKCjEL87qbHz3wz3px3Oe0OL6TvGK2fCtI/3HvvraZvQLlsdO LeK20jKbbCmVYPGcSgSTqQBfcTsdSPOPcNS4Rm1LlplSkxo9Lj9Gd+/1GcY78qrl 0W0jzK9bCMh2xBGC2WRY4Yf/zabbbJyu0Tr8Zr1MaqzVl0H0G4jIFpEDWG8mHSYc GQuzMHB64BxrbjKxojo6J+YTLLHb4hJkdi91AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUSH6xutrOBIJahzwKC5rL4mNccKkwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvU0g2eHV0ck9CSUphaHp3S0M1ckw0 bU5jY0trLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdrSADAN BgkqhkiG9w0BAQsFAAOCAQEAUSFEM7AvZSAx5doN/HD3DM+TUPKFvr5pV/BqBVpt vX2Zi3Uq73WiuZ4bfl1M+yKzSOCQzxo6XZXJrdvU5UyHkIFfZ6i4b9uesPJUbo8F Xog69SNLycNBDunsmjaxLFyeCD2CMFVQgQENiwWRbsyJToqwneS2xGtRG9grjTag TqF9b/VBxwy0Luhq56cvILACV2QfIL8hqtj7K1AkMeW7z5+HfAMafejpku1ecXBK mTSWdqd5JF+FXSKAYssaoPd4ftAa0C5KpHGi0iR+fTybNTJ8QHfS2gByjSShvJtM HzD6bofsdAuTvA7axl8s6QBgbraMgaZHBrMFWzUEtUtE5w== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org