$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/iu-r0iFGcrUI8WOmfiPSeUlBV3Y.roa File: iu-r0iFGcrUI8WOmfiPSeUlBV3Y.roa (raw, json) Hash identifier: 0dO/KL7hr6I7432BvYSrptPWYyUpC25pSG9UUBmxTGo= Subject key identifier: 8A:EF:AB:D2:21:46:72:B5:08:F1:63:A6:7E:23:D2:79:49:41:57:76 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13C6 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/iu-r0iFGcrUI8WOmfiPSeUlBV3Y.roa Signing time: Fri 01 Sep 2023 09:25:25 +0000 ROA not before: Fri 01 Sep 2023 09:25:25 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18049 IP address blocks: 175.183.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5062 (0x13c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:25 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8AEFABD2214672B508F163A67E23D27949415776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ee:2f:56:f8:69:a0:06:dd:95:a7:bd:6d:ee: cd:49:02:f3:e9:2f:a4:bf:81:cf:d1:68:d3:0e:4d: 12:13:ee:1f:7c:bd:f3:94:c2:b7:38:d4:20:6c:64: 2d:a4:0c:c8:6f:4c:d5:a1:2c:a9:aa:50:f9:f1:b7: 61:83:69:73:44:c8:03:42:04:78:d6:4c:11:29:ad: 79:dc:24:23:3b:ec:f7:c6:5e:67:ef:ca:81:53:0a: 78:36:07:8b:89:d0:18:f4:e9:8d:98:47:0d:57:37: 5f:cb:20:73:b2:18:0f:09:cb:d1:86:49:56:6a:d3: 0f:16:6a:11:57:91:d7:30:e8:59:0a:d1:c0:d4:81: 51:62:53:56:80:ee:73:49:a8:ec:de:de:d4:90:c7: 7e:71:83:e8:c5:aa:02:b3:ad:ca:a7:db:64:f7:16: c5:3b:d1:3c:7c:ba:1e:1a:cf:15:7b:11:6f:9d:7d: 9f:7b:bd:1d:1a:07:e6:b3:9b:2a:44:12:cc:9c:4a: 76:1b:42:35:d4:8c:f1:d4:fd:98:03:76:13:bc:aa: 61:2b:80:61:94:b4:41:cf:58:13:0b:c9:88:e7:b7: c8:8a:c5:d3:91:af:1b:45:6a:dd:53:d0:fb:2e:fd: db:78:35:37:d9:0d:af:f7:96:05:d5:05:fd:da:05: e9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:EF:AB:D2:21:46:72:B5:08:F1:63:A6:7E:23:D2:79:49:41:57:76 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/iu-r0iFGcrUI8WOmfiPSeUlBV3Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.183.0.0/19 Signature Algorithm: sha256WithRSAEncryption 8c:bc:0e:50:84:31:c0:93:66:d5:b9:25:c4:b4:ea:16:57:02: 05:c3:b6:f9:40:70:cf:49:17:cf:17:96:6d:58:bf:41:e9:4a: d9:1d:68:fd:da:57:f6:b9:0e:34:a8:b1:7b:3d:e7:77:1e:48: 8b:a2:0f:29:13:db:f8:31:96:2a:eb:d3:75:2b:7d:cd:7f:61: 7c:2f:a8:7d:18:ff:f4:fc:4e:f2:4e:cb:4d:a7:ce:47:2f:a7: 7c:e8:91:53:28:04:0f:4a:68:8f:06:73:d1:c7:37:a3:de:db: 05:f0:c2:34:5c:37:5b:6d:ba:95:9d:4d:33:cb:02:d9:5e:2c: 5b:0b:be:93:df:5a:24:05:f6:ce:91:e9:fd:b0:79:f5:37:5b: 85:6f:ab:32:7f:8c:36:64:25:cc:86:ee:f3:a3:ef:69:f3:fd: d5:05:b4:cc:75:74:a5:7f:2b:9f:ba:82:ee:24:83:c7:b3:1f: dd:f2:ae:99:4d:fc:3f:45:af:cf:20:d3:cb:be:7a:b7:a9:71: 39:ae:09:81:42:45:20:6f:d5:23:08:a3:9b:86:90:73:0b:ba: cd:09:9b:49:1c:6e:57:fe:2f:22:8e:28:49:ee:4d:cc:99:40: 5e:1f:e8:0f:e5:73:f8:00:e8:82:ba:a3:e4:6a:d5:e5:17:78: 25:ad:16:da -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE8YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MjVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhBRUZBQkQyMjE0Njcy QjUwOEYxNjNBNjdFMjNEMjc5NDk0MTU3NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC77i9W+GmgBt2Vp71t7s1JAvPpL6S/gc/RaNMOTRIT7h98vfOU wrc41CBsZC2kDMhvTNWhLKmqUPnxt2GDaXNEyANCBHjWTBEprXncJCM77PfGXmfv yoFTCng2B4uJ0Bj06Y2YRw1XN1/LIHOyGA8Jy9GGSVZq0w8WahFXkdcw6FkK0cDU gVFiU1aA7nNJqOze3tSQx35xg+jFqgKzrcqn22T3FsU70Tx8uh4azxV7EW+dfZ97 vR0aB+azmypEEsycSnYbQjXUjPHU/ZgDdhO8qmErgGGUtEHPWBMLyYjnt8iKxdOR rxtFat1T0Psu/dt4NTfZDa/3lgXVBf3aBenNAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUiu+r0iFGcrUI8WOmfiPSeUlBV3YwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvaXUtcjBpRkdjclVJOFdPbWZpUFNl VWxCVjNZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBa+3ADAN BgkqhkiG9w0BAQsFAAOCAQEAjLwOUIQxwJNm1bklxLTqFlcCBcO2+UBwz0kXzxeW bVi/QelK2R1o/dpX9rkONKixez3ndx5Ii6IPKRPb+DGWKuvTdSt9zX9hfC+ofRj/ 9PxO8k7LTafORy+nfOiRUygED0pojwZz0cc3o97bBfDCNFw3W226lZ1NM8sC2V4s Wwu+k99aJAX2zpHp/bB59TdbhW+rMn+MNmQlzIbu86PvafP91QW0zHV0pX8rn7qC 7iSDx7Mf3fKumU38P0WvzyDTy756t6lxOa4JgUJFIG/VIwijm4aQcwu6zQmbSRxu V/4vIo4oSe5NzJlAXh/oD+Vz+ADogrqj5GrV5Rd4Ja0W2g== -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org