$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/iCLLZnsE5fS2gh-YOpKZdULoPR0.roa File: iCLLZnsE5fS2gh-YOpKZdULoPR0.roa (raw, json) Hash identifier: ZgqFtY7tm4g7ThHXiKaoKTWVTsBsG/CU1/9R4c9yCoQ= Subject key identifier: 88:22:CB:66:7B:04:E5:F4:B6:82:1F:98:3A:92:99:75:42:E8:3D:1D Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1328 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/iCLLZnsE5fS2gh-YOpKZdULoPR0.roa Signing time: Fri 01 Sep 2023 09:24:33 +0000 ROA not before: Fri 01 Sep 2023 09:24:33 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 210.243.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4904 (0x1328) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:33 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8822CB667B04E5F4B6821F983A92997542E83D1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:ab:1e:36:e7:5f:80:ec:4d:46:0f:f4:35:ba: 4d:fd:1b:70:15:8b:63:86:12:92:ba:fe:c4:c1:d9: 35:54:22:47:45:a2:03:bd:19:d4:39:fe:a8:c0:fb: ac:ba:ff:c8:c8:50:38:c8:cc:98:f2:ed:fc:1d:41: a9:48:2c:99:04:56:ba:e8:f7:d2:3a:71:4e:4d:bc: 37:49:1e:5c:3e:fa:55:b9:47:cb:f5:cd:48:38:42: 0e:7e:72:58:7e:be:ba:fe:dd:f5:77:9f:94:f3:6e: 7c:f5:8d:cb:4d:d3:40:9e:16:0b:61:2c:bd:b3:3e: a4:d9:af:2c:2c:af:3b:34:1b:29:0c:3d:e0:11:76: 54:59:3a:5d:4b:fc:35:6d:bb:d6:bb:4c:a4:39:a6: 9b:dd:58:d0:b6:cc:d1:69:4b:45:ef:28:09:73:02: 3b:06:dd:86:c4:28:e2:3d:f0:5c:c8:7f:54:90:0a: bf:28:a9:60:0d:d6:ed:f9:ef:c5:f0:5b:65:33:18: 31:d1:e7:15:75:ec:63:fa:0d:09:71:ea:cf:86:79: 8c:ca:05:af:80:54:f5:49:42:17:49:4f:17:77:7b: b5:bb:4a:73:fe:a4:17:3c:4a:e7:f8:bc:82:f8:7a: 79:71:d3:64:c3:6c:2c:47:ca:60:27:e6:5a:ee:ba: 30:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:22:CB:66:7B:04:E5:F4:B6:82:1F:98:3A:92:99:75:42:E8:3D:1D X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/iCLLZnsE5fS2gh-YOpKZdULoPR0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.243.128.0/17 Signature Algorithm: sha256WithRSAEncryption 3b:7e:69:47:79:6d:bb:39:75:f4:1b:99:5e:21:d0:fb:ee:c5: 5d:aa:fa:83:9d:f4:f1:4f:97:07:15:6e:1b:a1:f0:8e:61:77: f3:23:35:38:19:5f:2d:9e:71:24:98:1e:16:3f:51:7d:eb:24: b6:f6:ac:c8:1b:2c:98:bc:d6:18:3d:47:96:9d:01:35:6b:10: 17:4a:fa:c7:b4:02:85:eb:7a:0a:45:c4:38:be:91:a3:a1:d8: 89:22:29:a5:3c:96:b8:c7:ad:b8:47:47:fb:d5:23:cd:b4:73: 0c:7f:9a:b7:20:ad:46:1b:fd:55:b6:3c:fc:65:a0:f6:77:07: 8b:5b:50:b0:4e:8c:7e:87:e4:4e:11:f1:c8:ea:b9:89:82:22: a5:a4:ce:6f:6d:54:59:53:83:03:f0:27:d7:b3:fa:6c:93:37: 28:89:d0:35:87:39:44:da:3f:74:f4:fc:0f:02:95:79:75:fd: 5c:1b:76:1a:75:a4:89:b8:9b:fe:ea:43:c3:eb:61:ee:6e:89: 58:d3:48:4e:c8:1d:18:e6:f9:5a:05:32:94:5d:da:e3:a1:7a: 00:b9:bb:2a:39:42:23:32:69:4a:2e:66:94:dc:8c:ed:e4:cd: c1:cb:06:06:03:c7:20:e8:ee:6e:18:b6:0e:2b:06:a4:e3:0d: 2b:b6:be:cf -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEygwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg4MjJDQjY2N0IwNEU1 RjRCNjgyMUY5ODNBOTI5OTc1NDJFODNEMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCSqx4251+A7E1GD/Q1uk39G3AVi2OGEpK6/sTB2TVUIkdFogO9 GdQ5/qjA+6y6/8jIUDjIzJjy7fwdQalILJkEVrro99I6cU5NvDdJHlw++lW5R8v1 zUg4Qg5+clh+vrr+3fV3n5Tzbnz1jctN00CeFgthLL2zPqTZrywsrzs0GykMPeAR dlRZOl1L/DVtu9a7TKQ5ppvdWNC2zNFpS0XvKAlzAjsG3YbEKOI98FzIf1SQCr8o qWAN1u3578XwW2UzGDHR5xV17GP6DQlx6s+GeYzKBa+AVPVJQhdJTxd3e7W7SnP+ pBc8Suf4vIL4enlx02TDbCxHymAn5lruujBJAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUiCLLZnsE5fS2gh+YOpKZdULoPR0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvaUNMTFpuc0U1ZlMyZ2gtWU9wS1pk VUxvUFIwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9LzgDAN BgkqhkiG9w0BAQsFAAOCAQEAO35pR3ltuzl19BuZXiHQ++7FXar6g5308U+XBxVu G6HwjmF38yM1OBlfLZ5xJJgeFj9RfesktvasyBssmLzWGD1Hlp0BNWsQF0r6x7QC het6CkXEOL6Ro6HYiSIppTyWuMetuEdH+9UjzbRzDH+atyCtRhv9VbY8/GWg9ncH i1tQsE6MfofkThHxyOq5iYIipaTOb21UWVODA/An17P6bJM3KInQNYc5RNo/dPT8 DwKVeXX9XBt2GnWkibib/upDw+th7m6JWNNITsgdGOb5WgUylF3a46F6ALm7KjlC IzJpSi5mlNyM7eTNwcsGBgPHIOjubhi2DisGpOMNK7a+zw== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org