$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/cjw1K2P0olxsdowD4Ii7NNNDFFc.roa File: cjw1K2P0olxsdowD4Ii7NNNDFFc.roa (raw, json) Hash identifier: 97eRlccPFQuX9coifTdHi+G1+r+gwEStQn4YNSnnr9I= Subject key identifier: 72:3C:35:2B:63:F4:A2:5C:6C:76:8C:03:E0:88:BB:34:D3:43:14:57 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 12EA Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cjw1K2P0olxsdowD4Ii7NNNDFFc.roa Signing time: Fri 01 Sep 2023 09:24:15 +0000 ROA not before: Fri 01 Sep 2023 09:24:15 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131602 IP address blocks: 115.30.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4842 (0x12ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:15 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=723C352B63F4A25C6C768C03E088BB34D3431457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:8b:28:20:19:3e:0a:40:c1:e8:44:cb:3b:69: 79:f1:f0:cb:2d:b2:cf:14:3c:b2:50:bd:bf:5e:e8: 89:19:20:e4:50:1f:36:41:44:b2:c4:36:8d:ad:6a: 43:f5:22:68:e1:94:91:a2:5a:70:b1:ed:88:31:b8: 3a:00:11:e4:b9:30:57:19:e3:12:67:4e:fe:fe:ab: 67:13:01:3f:17:bc:aa:38:23:8e:07:27:ef:02:f1: 3b:d5:6a:32:c0:e8:63:90:ed:df:4d:67:c4:38:44: dd:5a:e9:a8:7d:3f:21:00:65:ad:8b:81:71:5d:fd: cf:28:a9:0b:f0:7f:d5:33:da:87:49:2d:bc:b0:9e: 97:4c:bf:49:9b:d7:a0:fb:c1:b0:82:0d:c6:79:6a: e3:53:bf:91:a5:3c:d1:32:d4:21:d0:7a:37:eb:46: 1f:c1:c4:0e:12:08:59:cb:a6:b1:d4:4b:1a:8b:3d: bc:3e:94:cc:ba:4a:a8:b5:93:c0:92:18:b0:ff:d8: 02:9c:b6:8c:b5:55:18:b5:11:e4:16:8d:12:5e:d9: d8:27:37:47:d7:9b:01:53:7d:eb:00:8b:98:c5:b5: 2b:eb:38:0d:29:89:81:fa:e2:2c:d8:3b:7f:a4:ae: 33:73:30:4e:d9:98:ae:46:39:38:b9:0c:fa:d6:cd: 96:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:3C:35:2B:63:F4:A2:5C:6C:76:8C:03:E0:88:BB:34:D3:43:14:57 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/cjw1K2P0olxsdowD4Ii7NNNDFFc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.30.72.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:eb:a2:05:90:6b:bb:8e:3e:fc:88:3e:a5:57:87:2a:8b:46: c7:e0:ab:eb:09:c4:b1:ba:0e:8b:1d:75:64:14:ec:fc:1d:28: 73:8b:8d:29:ec:cf:3b:81:21:c0:31:b0:c5:8d:ed:40:e6:5a: ed:3d:3e:87:ae:85:1a:4f:a8:a2:b6:99:ef:1f:88:ea:86:91: 7a:fd:4d:22:3d:95:9e:a0:17:32:03:bb:a0:75:74:80:71:cc: 74:f2:1d:10:53:af:7f:c9:96:3e:4c:ec:59:a6:7e:a6:26:ff: 85:d8:77:6f:34:82:15:cc:2a:2c:de:4d:7f:12:ee:95:35:d7: 95:47:77:5b:40:3d:89:e7:c7:22:71:5a:93:c7:9f:bb:ee:a0: 89:2d:a3:04:7b:e7:1b:d4:d9:9d:7a:d3:e4:5f:57:82:c7:06: 9d:04:83:56:e4:7e:1e:19:b8:ff:ae:20:4c:4f:c2:49:5a:41: 6c:df:75:04:d2:ed:e6:84:f9:1c:37:2c:a6:54:f3:25:a5:8b: 43:ff:50:b3:73:7a:18:b4:32:97:9d:67:9a:94:e4:d1:79:73: c7:f6:fa:d7:38:05:14:48:14:b1:a5:3d:da:95:e2:89:90:66: 65:64:3e:10:e6:b7:5d:da:7f:22:c4:3c:38:e7:de:65:3c:42: 78:36:28:9b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEuowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDcyM0MzNTJCNjNGNEEy NUM2Qzc2OEMwM0UwODhCQjM0RDM0MzE0NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtiyggGT4KQMHoRMs7aXnx8Mstss8UPLJQvb9e6IkZIORQHzZB RLLENo2takP1ImjhlJGiWnCx7YgxuDoAEeS5MFcZ4xJnTv7+q2cTAT8XvKo4I44H J+8C8TvVajLA6GOQ7d9NZ8Q4RN1a6ah9PyEAZa2LgXFd/c8oqQvwf9Uz2odJLbyw npdMv0mb16D7wbCCDcZ5auNTv5GlPNEy1CHQejfrRh/BxA4SCFnLprHUSxqLPbw+ lMy6Sqi1k8CSGLD/2AKctoy1VRi1EeQWjRJe2dgnN0fXmwFTfesAi5jFtSvrOA0p iYH64izYO3+krjNzME7ZmK5GOTi5DPrWzZY9AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUcjw1K2P0olxsdowD4Ii7NNNDFFcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvY2p3MUsyUDBvbHhzZG93RDRJaTdO Tk5ERkZjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnMeSDAN BgkqhkiG9w0BAQsFAAOCAQEAjuuiBZBru44+/Ig+pVeHKotGx+Cr6wnEsboOix11 ZBTs/B0oc4uNKezPO4EhwDGwxY3tQOZa7T0+h66FGk+ooraZ7x+I6oaRev1NIj2V nqAXMgO7oHV0gHHMdPIdEFOvf8mWPkzsWaZ+pib/hdh3bzSCFcwqLN5NfxLulTXX lUd3W0A9iefHInFak8efu+6giS2jBHvnG9TZnXrT5F9XgscGnQSDVuR+Hhm4/64g TE/CSVpBbN91BNLt5oT5HDcsplTzJaWLQ/9Qs3N6GLQyl51nmpTk0Xlzx/b61zgF FEgUsaU92pXiiZBmZWQ+EOa3Xdp/IsQ8OOfeZTxCeDYomw== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org