$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xeadw366n6b6c50OgJkB4WZTNlY.roa File: Xeadw366n6b6c50OgJkB4WZTNlY.roa (raw, json) Hash identifier: SlrhAcYbLL5RocumuCgho+6kQ9ZrAbxY4kYoYhXY8jQ= Subject key identifier: 5D:E6:9D:C3:7E:BA:9F:A6:FA:73:9D:0E:80:99:01:E1:66:53:36:56 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13E3 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xeadw366n6b6c50OgJkB4WZTNlY.roa Signing time: Fri 01 Sep 2023 09:25:33 +0000 ROA not before: Fri 01 Sep 2023 09:25:33 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 220.229.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5091 (0x13e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:33 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5DE69DC37EBA9FA6FA739D0E809901E166533656 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0e:16:a4:d6:f5:4d:65:e7:e9:0f:85:9b:b3: d2:58:51:3d:5e:07:d6:27:17:dc:8b:05:2a:a6:c5: 1b:7e:99:0e:00:8b:b1:8f:ec:c2:6d:c4:53:10:ac: 95:82:4b:ac:6e:8e:2c:90:b8:8e:92:9c:aa:3c:bb: d1:57:fb:a8:74:a1:62:b6:a9:5d:72:4b:fd:62:cc: 5d:98:d4:5e:b5:e1:c4:e0:d2:2f:58:d7:21:3e:70: e0:b6:4f:89:f4:03:af:e5:fb:2f:95:da:22:38:40: 44:67:1b:57:6d:f7:d2:b9:99:35:ff:f2:0a:e9:33: 9f:3b:08:0a:57:b5:a6:25:d0:82:a9:cf:15:86:3d: 43:4f:f9:dc:93:90:01:d1:f3:60:37:8f:ca:c7:cd: b7:06:0d:46:40:7b:e1:03:7c:2a:9a:ed:15:ae:d4: 42:65:34:f2:0d:85:10:1f:e4:fe:4b:f9:45:f3:83: 9a:ae:11:0f:10:5c:a9:ee:3c:49:06:96:c7:e8:6a: 9b:e4:98:b7:8b:11:08:b0:37:67:fc:7c:79:4b:6a: 79:c5:fc:b6:4f:03:82:6f:f7:4a:ff:bd:36:a8:55: 95:33:c3:f0:9d:17:93:37:1e:37:6e:c7:ac:ed:b7: 25:fe:46:7c:bc:79:06:bc:8e:db:8a:c6:16:87:8b: b0:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E6:9D:C3:7E:BA:9F:A6:FA:73:9D:0E:80:99:01:E1:66:53:36:56 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Xeadw366n6b6c50OgJkB4WZTNlY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.229.68.0/22 Signature Algorithm: sha256WithRSAEncryption 49:84:c3:03:c8:25:8e:19:1d:eb:b4:3c:44:c1:fe:0e:4f:f8: db:0f:ad:a4:fe:4e:85:20:19:d4:b7:b9:20:69:30:d4:16:56: 63:a2:68:b5:42:65:29:37:ec:42:32:9e:6b:ac:2d:8b:aa:b4: 5d:af:bb:ee:c4:30:83:45:14:78:81:bf:e2:88:30:e4:4b:d6: 50:e4:df:32:ce:c3:77:85:ba:e6:16:44:e0:cd:03:4e:fe:77: a8:ac:c7:af:62:96:1e:e8:bb:2d:5d:df:48:35:d7:e4:b5:37: 39:35:b5:5b:75:fe:80:b4:15:4f:63:1b:01:5d:dc:14:13:64: 50:ed:45:f0:7a:93:06:10:b5:e4:de:f6:bf:15:ce:26:d4:ee: a6:d0:7f:33:ec:c5:86:06:7f:30:fc:de:0c:46:99:1f:4d:1f: 96:c0:43:0a:47:1f:dd:c9:4e:10:f8:1d:1e:44:33:26:9a:a1: 30:90:3c:07:6f:85:65:9a:1a:8c:02:63:70:f9:ea:7f:80:1f: c8:83:fd:fc:a4:10:a8:77:49:0e:0a:c4:03:85:e2:9b:cc:62: 0d:05:5e:7e:06:be:c0:46:65:a0:0f:cc:25:70:99:c9:c0:c3: cb:1f:b7:64:c6:51:0a:8b:4c:6c:a2:a5:f2:33:49:e4:44:5e: 81:56:5f:5a -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE+MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVERTY5REMzN0VCQTlG QTZGQTczOUQwRTgwOTkwMUUxNjY1MzM2NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQDhak1vVNZefpD4Wbs9JYUT1eB9YnF9yLBSqmxRt+mQ4Ai7GP 7MJtxFMQrJWCS6xujiyQuI6SnKo8u9FX+6h0oWK2qV1yS/1izF2Y1F614cTg0i9Y 1yE+cOC2T4n0A6/l+y+V2iI4QERnG1dt99K5mTX/8grpM587CApXtaYl0IKpzxWG PUNP+dyTkAHR82A3j8rHzbcGDUZAe+EDfCqa7RWu1EJlNPINhRAf5P5L+UXzg5qu EQ8QXKnuPEkGlsfoapvkmLeLEQiwN2f8fHlLannF/LZPA4Jv90r/vTaoVZUzw/Cd F5M3Hjdux6zttyX+Rny8eQa8jtuKxhaHi7BZAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUXeadw366n6b6c50OgJkB4WZTNlYwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWGVhZHczNjZuNmI2YzUwT2dKa0I0 V1pUTmxZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtzlRDAN BgkqhkiG9w0BAQsFAAOCAQEASYTDA8gljhkd67Q8RMH+Dk/42w+tpP5OhSAZ1Le5 IGkw1BZWY6JotUJlKTfsQjKea6wti6q0Xa+77sQwg0UUeIG/4ogw5EvWUOTfMs7D d4W65hZE4M0DTv53qKzHr2KWHui7LV3fSDXX5LU3OTW1W3X+gLQVT2MbAV3cFBNk UO1F8HqTBhC15N72vxXOJtTuptB/M+zFhgZ/MPzeDEaZH00flsBDCkcf3clOEPgd HkQzJpqhMJA8B2+FZZoajAJjcPnqf4AfyIP9/KQQqHdJDgrEA4Xim8xiDQVefga+ wEZloA/MJXCZycDDyx+3ZMZRCotMbKKl8jNJ5ERegVZfWg== -----END CERTIFICATE-----Generated at Sun Jun 2 09:37:18 2024 by rpki-client on console-ams.rpki-client.org