$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/oJT-OPP3AyMdwhl8p6Em-Mpy8kE.roa File: oJT-OPP3AyMdwhl8p6Em-Mpy8kE.roa (raw, json) Hash identifier: 6IAJy6Ch1UantjgepFga23BZSc1ErZeyAPx5saHpIuM= Subject key identifier: A0:94:FE:38:F3:F7:03:23:1D:C2:19:7C:A7:A1:26:F8:CA:72:F2:41 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1314 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/oJT-OPP3AyMdwhl8p6Em-Mpy8kE.roa Signing time: Fri 01 Sep 2023 09:24:27 +0000 ROA not before: Fri 01 Sep 2023 09:24:27 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 113.196.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4884 (0x1314) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:27 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A094FE38F3F703231DC2197CA7A126F8CA72F241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ce:16:49:10:6d:1e:af:03:1e:ef:9c:4e:aa: 39:9c:5c:3c:5a:76:73:47:55:d0:6b:4f:a7:d5:24: 31:8a:63:63:e3:d5:aa:e4:cb:70:5b:e7:09:23:1e: e2:49:98:7b:63:19:c6:a7:f4:bf:b0:a0:75:8d:48: 36:13:1c:35:1e:f2:8f:ba:8e:c5:89:a9:1c:52:b8: 2e:51:5a:f1:67:83:de:92:5c:39:d4:4c:79:c7:aa: 6b:a7:31:97:a0:da:09:55:50:39:11:bb:52:3d:a6: b0:63:29:40:84:da:5d:2b:e8:62:f6:c4:c4:8f:6b: 5c:a1:93:8b:0b:7a:96:1e:6f:8f:68:73:fe:37:f3: bb:6a:06:ad:e8:c6:70:00:67:fb:ca:34:ef:0a:c3: cc:9b:47:34:15:e1:01:bd:4c:2c:6e:bb:a5:02:f0: d3:e8:32:04:96:51:08:62:f2:a2:7a:d3:1c:5e:69: 09:cf:44:90:cd:60:47:8b:1c:c2:3b:3a:73:de:32: 80:f9:6f:8b:1e:d5:2c:1d:93:6d:6e:35:ee:e9:93: 0f:60:ab:de:12:21:8c:f1:0a:80:e6:ab:c9:1a:80: 0f:cd:1f:38:ec:6d:c3:b1:13:d2:60:e3:f5:b1:fd: 64:d3:8d:0a:78:97:b6:84:9b:28:89:b0:da:e0:6b: 99:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:94:FE:38:F3:F7:03:23:1D:C2:19:7C:A7:A1:26:F8:CA:72:F2:41 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/oJT-OPP3AyMdwhl8p6Em-Mpy8kE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.196.152.0/21 Signature Algorithm: sha256WithRSAEncryption c9:0a:e4:ed:2a:6b:32:cb:3c:67:68:8e:82:e9:4c:83:45:21: 01:18:f5:f8:3e:f0:0c:2c:49:e0:f6:66:d8:7a:3e:ec:2c:bd: fe:bc:bb:6c:c2:6c:57:5e:92:0b:b9:b7:a8:63:ae:59:00:18: e0:36:f3:8e:f6:e5:2f:91:05:b4:da:3b:42:15:13:e0:49:d0: 55:42:e6:cc:30:46:96:97:fc:6d:27:28:bb:78:57:62:17:94: 54:4c:fd:05:eb:e1:cf:de:dd:6d:87:9d:a3:ec:20:fb:dd:2e: 62:cd:4c:cb:1e:b0:88:20:40:06:1c:b2:21:fd:d3:97:a9:c3: 05:14:90:a5:18:57:fc:2f:9b:f4:4a:3c:41:2b:37:ae:83:a8: 6e:80:f8:e4:d0:9d:c9:fe:1c:ab:c0:7c:4c:5c:2d:00:53:09: 88:68:d8:a7:00:0a:74:ed:70:14:e9:2b:a3:6c:b2:d3:3a:ed: d8:07:63:a2:57:64:06:49:4e:bc:ba:aa:7f:ee:75:2b:2c:96: 44:02:27:f4:f4:b1:10:79:7d:9d:a0:23:5a:df:cb:ef:7b:e0: 03:2b:5d:2a:9f:a0:9b:bd:e5:dd:ca:9d:83:77:55:30:2b:9d: 7e:40:70:d6:22:83:68:17:a3:4e:15:f1:6e:c8:f8:57:20:28: ad:1c:92:cf -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICExQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MjdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEEwOTRGRTM4RjNGNzAz MjMxREMyMTk3Q0E3QTEyNkY4Q0E3MkYyNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFzhZJEG0erwMe75xOqjmcXDxadnNHVdBrT6fVJDGKY2Pj1ark y3Bb5wkjHuJJmHtjGcan9L+woHWNSDYTHDUe8o+6jsWJqRxSuC5RWvFng96SXDnU THnHqmunMZeg2glVUDkRu1I9prBjKUCE2l0r6GL2xMSPa1yhk4sLepYeb49oc/43 87tqBq3oxnAAZ/vKNO8Kw8ybRzQV4QG9TCxuu6UC8NPoMgSWUQhi8qJ60xxeaQnP RJDNYEeLHMI7OnPeMoD5b4se1Swdk21uNe7pkw9gq94SIYzxCoDmq8kagA/NHzjs bcOxE9Jg4/Wx/WTTjQp4l7aEmyiJsNrga5n5AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUoJT+OPP3AyMdwhl8p6Em+Mpy8kEwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvb0pULU9QUDNBeU1kd2hsOHA2RW0t TXB5OGtFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3HEmDAN BgkqhkiG9w0BAQsFAAOCAQEAyQrk7SprMss8Z2iOgulMg0UhARj1+D7wDCxJ4PZm 2Ho+7Cy9/ry7bMJsV16SC7m3qGOuWQAY4DbzjvblL5EFtNo7QhUT4EnQVULmzDBG lpf8bScou3hXYheUVEz9Bevhz97dbYedo+wg+90uYs1Myx6wiCBABhyyIf3Tl6nD BRSQpRhX/C+b9Eo8QSs3roOoboD45NCdyf4cq8B8TFwtAFMJiGjYpwAKdO1wFOkr o2yy0zrt2AdjoldkBklOvLqqf+51KyyWRAIn9PSxEHl9naAjWt/L73vgAytdKp+g m73l3cqdg3dVMCudfkBw1iKDaBejThXxbsj4VyAorRySzw== -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org