$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jvbfDzDYMd_bYPi8CYlFJbKQGMw.roa File: jvbfDzDYMd_bYPi8CYlFJbKQGMw.roa (raw, json) Hash identifier: hoZyGLyAP0dfBhfocm8Up7hCAcwgBE0m9IhQ6WValCU= Subject key identifier: 8E:F6:DF:0F:30:D8:31:DF:DB:60:F8:BC:09:89:45:25:B2:90:18:CC Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1390 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jvbfDzDYMd_bYPi8CYlFJbKQGMw.roa Signing time: Fri 01 Sep 2023 09:25:09 +0000 ROA not before: Fri 01 Sep 2023 09:25:09 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 220.228.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5008 (0x1390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:09 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8EF6DF0F30D831DFDB60F8BC09894525B29018CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:19:fa:fd:fd:15:54:96:5b:18:09:97:e0:31: 49:ca:53:a9:8a:1f:0f:4f:e6:e9:bd:fa:26:e1:e9: 37:7f:b6:07:4d:94:09:be:c9:78:83:8d:c1:bf:7a: b3:0a:db:1c:fb:83:39:e9:25:f8:f3:78:9e:9c:8d: 75:ab:12:27:5a:7c:3e:c9:4c:22:c2:63:ed:dd:f0: b1:ee:be:0a:a9:c2:88:c1:2d:3c:5e:69:78:50:3e: b8:04:0a:c3:21:33:9f:c3:1b:b9:3c:de:38:06:17: 1a:07:26:93:82:12:01:4e:f7:a3:ac:88:7f:16:25: 1c:d4:ed:96:b5:1d:ea:7f:9e:32:c4:e6:7a:8a:9f: a3:58:d4:90:77:24:4d:bd:81:e0:91:45:f4:91:0d: 69:ae:9f:c2:79:e9:a2:32:a9:94:3b:c9:4b:88:79: 14:71:b4:c2:11:ae:28:ca:49:98:3a:11:cc:8c:c5: f9:fd:ae:c4:e7:1b:19:d3:7a:b1:0f:d8:5c:d7:cd: d3:1b:c5:72:f9:4c:38:d2:da:79:1f:f9:1e:ed:f1: 90:f6:17:83:6f:83:d3:aa:87:31:71:25:d8:03:29: c0:72:be:6f:11:b3:25:e7:f6:2e:77:22:4b:4f:93: 1e:c4:8f:55:09:af:81:e2:b7:42:f4:e2:d4:b7:3c: 03:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:F6:DF:0F:30:D8:31:DF:DB:60:F8:BC:09:89:45:25:B2:90:18:CC X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jvbfDzDYMd_bYPi8CYlFJbKQGMw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.228.0.0/16 Signature Algorithm: sha256WithRSAEncryption ae:04:b1:65:b9:a8:49:76:ff:f4:4d:5a:66:01:c4:d2:cd:72: e2:2b:41:cd:e5:20:19:88:b3:39:1b:c8:2d:a7:7c:1a:39:0a: 72:fe:52:63:d4:ac:5b:34:49:94:a0:1b:2e:3b:9a:f8:70:7a: a6:0b:88:e6:8d:9c:cd:53:70:37:53:a2:f9:29:e6:82:83:7b: b3:ec:45:e0:40:84:03:41:60:ed:38:fc:d6:a8:a1:1c:87:95: 9e:ec:cf:52:84:de:e2:d9:26:97:b7:b6:b1:87:a8:df:1b:6b: 87:cb:70:c3:1a:9b:10:2e:53:49:e9:11:3f:77:bd:89:b0:49: 17:a2:2f:f3:f4:1e:db:19:1d:7d:4a:88:d3:23:f6:8e:6c:35: 18:ef:59:07:82:6c:d4:2a:d1:8f:c2:44:b5:9b:31:80:8c:8a: 91:0b:9e:2a:d0:13:06:39:98:ae:25:49:d7:62:3f:1d:89:03: ef:9d:18:d0:ee:f1:21:d7:81:74:f7:99:2b:ab:8c:9f:93:f0: 5a:dc:2e:8c:88:84:d8:1c:1e:51:8a:62:16:17:fe:91:9a:7b: b3:1b:ec:88:97:cb:44:3b:30:11:2d:ba:23:61:7b:43:0e:e8: 84:b8:30:44:74:e6:87:e3:26:fb:20:c4:cd:75:00:4c:92:9f: e1:88:3a:c6 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICE5AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhFRjZERjBGMzBEODMx REZEQjYwRjhCQzA5ODk0NTI1QjI5MDE4Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1Gfr9/RVUllsYCZfgMUnKU6mKHw9P5um9+ibh6Td/tgdNlAm+ yXiDjcG/erMK2xz7gznpJfjzeJ6cjXWrEidafD7JTCLCY+3d8LHuvgqpwojBLTxe aXhQPrgECsMhM5/DG7k83jgGFxoHJpOCEgFO96OsiH8WJRzU7Za1Hep/njLE5nqK n6NY1JB3JE29geCRRfSRDWmun8J56aIyqZQ7yUuIeRRxtMIRrijKSZg6EcyMxfn9 rsTnGxnTerEP2FzXzdMbxXL5TDjS2nkf+R7t8ZD2F4Nvg9OqhzFxJdgDKcByvm8R syXn9i53IktPkx7Ej1UJr4Hit0L04tS3PAPJAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUjvbfDzDYMd/bYPi8CYlFJbKQGMwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvanZiZkR6RFlNZF9iWVBpOENZbEZK YktRR013LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANzkMA0G CSqGSIb3DQEBCwUAA4IBAQCuBLFluahJdv/0TVpmAcTSzXLiK0HN5SAZiLM5G8gt p3waOQpy/lJj1KxbNEmUoBsuO5r4cHqmC4jmjZzNU3A3U6L5KeaCg3uz7EXgQIQD QWDtOPzWqKEch5We7M9ShN7i2SaXt7axh6jfG2uHy3DDGpsQLlNJ6RE/d72JsEkX oi/z9B7bGR19SojTI/aObDUY71kHgmzUKtGPwkS1mzGAjIqRC54q0BMGOZiuJUnX Yj8diQPvnRjQ7vEh14F095krq4yfk/Ba3C6MiITYHB5RimIWF/6RmnuzG+yIl8tE OzARLbojYXtDDuiEuDBEdOaH4yb7IMTNdQBMkp/hiDrG -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:38 2024 by rpki-client on console-ams.rpki-client.org