$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/llAdsnhmerPTqWrRLr9N1X9YSq4.roa File: llAdsnhmerPTqWrRLr9N1X9YSq4.roa (raw, json) Hash identifier: PUfK0oEdBp6zhWd3E3D5JpCYgMmO/VvRm7P+Xltx+Uw= Subject key identifier: 96:50:1D:B2:78:66:7A:B3:D3:A9:6A:D1:2E:BF:4D:D5:7F:58:4A:AE Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1303 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/llAdsnhmerPTqWrRLr9N1X9YSq4.roa Signing time: Fri 01 Sep 2023 09:24:22 +0000 ROA not before: Fri 01 Sep 2023 09:24:22 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 220.229.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4867 (0x1303) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:22 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=96501DB278667AB3D3A96AD12EBF4DD57F584AAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:9a:da:09:61:66:f6:e2:39:73:ef:db:94:28: 7c:53:4a:30:b8:2a:b6:1d:65:58:76:09:09:fd:2d: ff:ee:b2:37:3f:d7:6d:a0:58:78:1c:e4:4a:c1:c9: cb:5e:14:30:b6:9b:bd:78:f6:b8:42:f2:f7:0d:c4: 1d:40:8e:98:79:fd:36:ae:d7:e2:40:17:66:67:5f: 9c:e3:21:8c:ed:d3:54:8a:ee:65:ad:d1:f4:a7:90: 6b:78:19:e8:4b:16:49:1f:51:1c:0c:07:52:0a:fe: 21:fb:df:5e:55:d3:65:71:fe:2f:b4:8b:22:94:dd: ed:c0:ad:0f:39:48:96:d6:b1:93:e8:6f:87:41:6f: 48:44:ae:cd:7b:4d:3a:eb:e9:2a:94:33:0d:b1:38: cb:36:d3:89:d4:da:d7:a6:3f:5e:9c:df:7a:ce:b4: 32:a6:22:9b:51:1c:c4:4f:00:84:69:43:fb:d7:fa: 8e:96:08:82:bf:db:89:b9:23:35:59:25:f1:45:62: 57:bc:42:fc:6e:38:62:e4:62:69:2d:2f:51:31:20: 33:df:65:5a:4e:18:a3:d9:ff:95:5c:ee:99:54:c4: 36:13:15:97:a1:d7:b4:eb:5c:3d:b6:04:2f:59:29: 04:2f:2c:ba:b4:79:2f:2b:d6:50:f4:bc:6f:83:c4: 75:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:50:1D:B2:78:66:7A:B3:D3:A9:6A:D1:2E:BF:4D:D5:7F:58:4A:AE X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/llAdsnhmerPTqWrRLr9N1X9YSq4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.229.0.0/16 Signature Algorithm: sha256WithRSAEncryption a3:5f:ce:69:aa:b1:7e:c5:7f:66:41:ff:13:a5:2b:2d:49:d9: 9b:3f:31:8f:78:18:01:e7:68:5f:c6:bf:29:7c:e4:25:57:e2: f8:26:0c:bb:36:07:b1:1d:a8:15:61:e4:ab:2b:48:8f:e5:c7: c6:12:4d:4f:b6:dd:ce:e3:70:b4:a5:34:57:64:da:de:f9:e3: 67:80:6d:b9:ca:1a:d1:a1:4c:4d:d2:24:02:e0:30:14:b2:e4: 44:a5:84:c9:b6:47:42:70:72:d9:6a:ea:8d:66:80:ad:64:f5: a2:5e:1d:ce:61:d1:63:77:c5:7f:ec:0b:c8:fb:e3:bb:9c:43: e4:fa:a9:ba:9a:78:87:9b:5f:9d:dd:e2:0c:21:bf:c7:21:88: 16:fc:a6:78:d6:17:9d:10:58:2b:35:16:7c:d4:75:41:0f:42: 99:70:5e:7c:09:3f:1e:fb:47:e3:fb:dc:41:3a:90:e1:e6:98: a2:99:9e:3b:e4:3a:55:15:19:12:bd:6f:10:84:dc:70:d8:3d: f2:4c:34:a2:26:ba:6b:06:f6:7e:b9:67:27:66:89:a7:38:9d: 79:ad:50:aa:45:f9:53:c9:61:3a:d9:29:da:40:e3:51:ad:a8: f4:b7:53:1b:4e:6a:06:37:ea:a1:85:9f:85:d8:f9:d5:27:12: 14:1d:8c:8c -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICEwMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MjJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDk2NTAxREIyNzg2NjdB QjNEM0E5NkFEMTJFQkY0REQ1N0Y1ODRBQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYmtoJYWb24jlz79uUKHxTSjC4KrYdZVh2CQn9Lf/usjc/122g WHgc5ErBycteFDC2m7149rhC8vcNxB1Ajph5/Tau1+JAF2ZnX5zjIYzt01SK7mWt 0fSnkGt4GehLFkkfURwMB1IK/iH7315V02Vx/i+0iyKU3e3ArQ85SJbWsZPob4dB b0hErs17TTrr6SqUMw2xOMs204nU2temP16c33rOtDKmIptRHMRPAIRpQ/vX+o6W CIK/24m5IzVZJfFFYle8QvxuOGLkYmktL1ExIDPfZVpOGKPZ/5Vc7plUxDYTFZeh 17TrXD22BC9ZKQQvLLq0eS8r1lD0vG+DxHVHAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUllAdsnhmerPTqWrRLr9N1X9YSq4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvbGxBZHNuaG1lclBUcVdyUkxyOU4x WDlZU3E0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANzlMA0G CSqGSIb3DQEBCwUAA4IBAQCjX85pqrF+xX9mQf8TpSstSdmbPzGPeBgB52hfxr8p fOQlV+L4Jgy7NgexHagVYeSrK0iP5cfGEk1Ptt3O43C0pTRXZNre+eNngG25yhrR oUxN0iQC4DAUsuREpYTJtkdCcHLZauqNZoCtZPWiXh3OYdFjd8V/7AvI++O7nEPk +qm6mniHm1+d3eIMIb/HIYgW/KZ41hedEFgrNRZ81HVBD0KZcF58CT8e+0fj+9xB OpDh5piimZ475DpVFRkSvW8QhNxw2D3yTDSiJrprBvZ+uWcnZomnOJ15rVCqRflT yWE62SnaQONRraj0t1MbTmoGN+qhhZ+F2PnVJxIUHYyM -----END CERTIFICATE-----Generated at Sun Jun 2 09:37:18 2024 by rpki-client on console-ams.rpki-client.org