$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/e22shUv1-a2EHniXNA6-nP0H5A4.roa File: e22shUv1-a2EHniXNA6-nP0H5A4.roa (raw, json) Hash identifier: QJY0v3FPghVdLtnBW/v36IG4rnK3ISp3Sua0t6zcpXQ= Subject key identifier: 7B:6D:AC:85:4B:F5:F9:AD:84:1E:78:97:34:0E:BE:9C:FD:07:E4:0E Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1363 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/e22shUv1-a2EHniXNA6-nP0H5A4.roa Signing time: Fri 01 Sep 2023 09:24:52 +0000 ROA not before: Fri 01 Sep 2023 09:24:52 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 203.67.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4963 (0x1363) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:52 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=7B6DAC854BF5F9AD841E7897340EBE9CFD07E40E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:42:b4:72:7b:6e:f1:4f:c7:5a:f5:56:d6:a6: ab:37:41:16:d3:7b:65:89:47:36:84:aa:89:46:b8: fe:07:8e:53:f3:75:9b:fa:8f:b2:10:8c:09:2c:9e: 7f:c7:f4:6e:9d:3b:01:c8:6b:4f:fa:f4:f5:f7:23: de:f4:68:1c:4a:16:6a:22:b8:7a:e9:32:e8:f0:8e: 6a:c0:7c:d7:ad:ba:70:cd:16:2a:97:01:b1:a3:cf: 79:44:9c:ee:5f:21:86:75:ae:e3:ab:eb:10:c3:52: 78:e6:d2:e3:fa:e1:43:35:41:14:3c:4d:c6:fa:32: 01:8f:5f:18:b0:43:40:09:7d:a0:2b:af:a0:92:33: 82:65:37:e0:c4:88:ab:71:45:91:53:86:f6:59:f7: cb:49:41:b5:96:c6:95:83:6e:f4:a1:2c:03:22:7d: 71:fa:b3:fe:3e:e0:0a:5a:77:25:13:0c:e2:45:35: f3:e7:12:48:ba:49:d5:3a:7f:54:d5:2f:2a:02:ac: 57:23:26:8d:a0:4c:ff:aa:6f:f8:c8:2e:a2:2d:04: 74:8d:41:8a:5d:bd:de:ab:33:ac:47:46:94:23:98: bf:3c:08:f8:94:47:da:58:8c:fe:bc:91:03:44:93: 43:36:2b:2a:27:82:fb:42:74:54:40:e3:83:63:49: d9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:6D:AC:85:4B:F5:F9:AD:84:1E:78:97:34:0E:BE:9C:FD:07:E4:0E X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/e22shUv1-a2EHniXNA6-nP0H5A4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.67.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5c:c1:94:ba:09:83:3e:d4:9e:3b:84:9c:a0:0d:85:7a:4a:a6: 6d:cb:8c:9c:fc:f1:4b:12:12:de:65:a8:32:64:07:65:d7:15: b8:d0:53:5c:1a:d3:ab:3f:2b:f2:91:40:ed:f7:5a:2d:ec:f0: 53:d4:f6:08:ed:ad:d0:3a:ee:40:da:a4:37:19:5b:02:08:a7: c9:b7:13:03:95:ea:66:dc:73:96:33:dc:ec:2c:82:c8:a8:fe: c5:83:0d:34:4e:f6:76:ba:40:c8:1d:88:3b:4c:42:be:43:a3: 54:c8:03:e4:de:41:59:93:fd:b0:f6:c0:2c:22:97:e7:1c:c5: 7a:a9:40:c9:39:19:fb:e6:13:ae:71:07:42:da:b7:f2:33:a7: 3d:bc:5d:10:0e:05:4a:66:aa:7d:fa:ea:47:5f:53:9c:6a:ac: d2:98:93:92:cd:9c:08:49:d8:ca:fd:62:3d:5f:b0:34:5d:45: 38:65:92:0f:a0:e6:83:34:3f:af:44:55:79:b6:56:d6:61:e3: 9d:b2:29:55:36:ff:a6:2c:2f:4e:bc:7d:13:55:bc:2a:7b:6c: 5c:d1:13:3a:af:5a:71:ff:3c:d4:e2:38:8e:2f:da:1d:27:a5: 0e:c3:eb:74:8e:49:6f:c4:eb:d2:b2:26:91:c4:b9:c5:46:c3: 99:d8:a4:82 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICE2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDdCNkRBQzg1NEJGNUY5 QUQ4NDFFNzg5NzM0MEVCRTlDRkQwN0U0MEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1QrRye27xT8da9VbWpqs3QRbTe2WJRzaEqolGuP4HjlPzdZv6 j7IQjAksnn/H9G6dOwHIa0/69PX3I970aBxKFmoiuHrpMujwjmrAfNetunDNFiqX AbGjz3lEnO5fIYZ1ruOr6xDDUnjm0uP64UM1QRQ8Tcb6MgGPXxiwQ0AJfaArr6CS M4JlN+DEiKtxRZFThvZZ98tJQbWWxpWDbvShLAMifXH6s/4+4ApadyUTDOJFNfPn Eki6SdU6f1TVLyoCrFcjJo2gTP+qb/jILqItBHSNQYpdvd6rM6xHRpQjmL88CPiU R9pYjP68kQNEk0M2KyongvtCdFRA44NjSdnNAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUe22shUv1+a2EHniXNA6+nP0H5A4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZTIyc2hVdjEtYTJFSG5pWE5BNi1u UDBINUE0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMtDMA0G CSqGSIb3DQEBCwUAA4IBAQBcwZS6CYM+1J47hJygDYV6SqZty4yc/PFLEhLeZagy ZAdl1xW40FNcGtOrPyvykUDt91ot7PBT1PYI7a3QOu5A2qQ3GVsCCKfJtxMDlepm 3HOWM9zsLILIqP7Fgw00TvZ2ukDIHYg7TEK+Q6NUyAPk3kFZk/2w9sAsIpfnHMV6 qUDJORn75hOucQdC2rfyM6c9vF0QDgVKZqp9+upHX1OcaqzSmJOSzZwISdjK/WI9 X7A0XUU4ZZIPoOaDND+vRFV5tlbWYeOdsilVNv+mLC9OvH0TVbwqe2xc0RM6r1px /zzU4jiOL9odJ6UOw+t0jklvxOvSsiaRxLnFRsOZ2KSC -----END CERTIFICATE-----Generated at Sat Jun 1 22:20:18 2024 by rpki-client on console-fra.rpki-client.org