$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/oLcl0v8tK6-_5vQperQMh2jLCtQ.roa File: oLcl0v8tK6-_5vQperQMh2jLCtQ.roa (raw, json) Hash identifier: wJjG77xHdSAMiUJQ5W3+VQF6qdIgmWx+i451d+m3cx4= Subject key identifier: A0:B7:25:D2:FF:2D:2B:AF:BF:E6:F4:29:7A:B4:0C:87:68:CB:0A:D4 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 138E Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/oLcl0v8tK6-_5vQperQMh2jLCtQ.roa Signing time: Fri 01 Sep 2023 09:25:08 +0000 ROA not before: Fri 01 Sep 2023 09:25:08 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131602 IP address blocks: 123.205.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5006 (0x138e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:08 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A0B725D2FF2D2BAFBFE6F4297AB40C8768CB0AD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:f4:9b:ff:93:6d:35:18:85:b4:72:40:f4:31: aa:d1:3a:f0:b1:03:53:ba:50:11:44:4b:ef:73:9a: da:2e:1c:1e:08:66:3c:4a:b8:00:49:7c:71:b0:10: 12:45:02:57:f7:26:ea:88:6e:de:ef:bd:44:04:11: 41:28:13:51:1c:a4:b3:5b:70:80:5d:93:ac:d3:1d: 09:4c:95:29:ce:b7:34:f8:86:33:be:b1:f2:3a:40: 05:30:e9:32:a3:12:b5:2b:c8:41:ab:bf:13:45:b8: 40:cc:a4:83:4e:00:63:92:31:ba:16:24:e4:b7:d7: fe:37:84:60:a1:09:10:44:66:ed:d0:e8:d8:f1:5e: 0c:1e:94:0a:c4:ef:9e:46:48:1f:29:b4:7c:4e:8c: e3:78:05:b5:f8:18:5d:bf:8b:cb:f5:4e:07:25:99: ec:65:f7:29:a4:d8:23:5b:77:f3:6a:8d:59:84:2e: a7:17:7e:03:ab:0e:c6:5c:bb:91:17:6a:f8:f9:bc: 29:43:1a:4c:72:7c:a1:2f:54:4e:e4:99:48:81:f1: 0e:6d:57:d8:e6:a6:76:a1:7c:c0:75:d1:4c:eb:38: 92:dc:53:26:96:e7:ae:97:1d:d3:1a:63:ef:da:da: 74:fd:6c:aa:4c:ae:ba:5c:8c:c7:77:8d:3b:27:34: dc:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:B7:25:D2:FF:2D:2B:AF:BF:E6:F4:29:7A:B4:0C:87:68:CB:0A:D4 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/oLcl0v8tK6-_5vQperQMh2jLCtQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.205.160.0/20 Signature Algorithm: sha256WithRSAEncryption 23:03:b5:0f:98:a4:3e:b2:42:0b:8e:95:af:c5:a3:00:3f:17: 53:db:af:59:1e:85:ef:4b:3e:c4:bd:2c:7c:82:92:6f:ea:6c: 6f:d6:9f:3c:b0:df:70:5e:a1:d2:64:ab:75:b9:06:ee:87:21: 5c:b2:71:b4:8b:9b:2b:1a:d9:c3:78:a8:91:72:ee:fc:af:24: bb:63:a8:eb:38:a1:48:f7:a1:96:02:e5:95:6f:72:4e:87:cd: 19:62:83:23:72:57:4e:e1:2e:81:28:f0:aa:45:73:ab:aa:cf: 3b:03:50:df:e3:52:c5:4a:71:e1:f2:c7:0c:19:4e:90:24:cd: c1:be:4d:01:b9:a9:4b:f1:74:18:e0:51:6f:e1:fb:a4:b0:6f: b1:b7:f9:57:4e:ec:39:a1:ee:5c:c3:28:9d:08:0e:2e:98:45: 72:94:97:02:22:39:3f:e5:cc:a8:b3:d1:07:aa:ae:a3:aa:60: 57:97:3a:89:22:4a:b3:c7:c3:ea:5f:4d:fc:42:00:16:ee:95: a3:3c:44:55:31:b4:4f:c5:a4:3e:00:41:4e:6d:89:ee:8a:15: aa:67:0d:37:8e:ca:94:34:41:32:69:14:fa:48:b3:57:a8:96: 3e:0e:0b:f2:0e:ae:66:f1:cc:13:86:29:8c:16:8a:ec:34:a5: 5e:e9:d5:bd -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE44wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEEwQjcyNUQyRkYyRDJC QUZCRkU2RjQyOTdBQjQwQzg3NjhDQjBBRDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDx9Jv/k201GIW0ckD0MarROvCxA1O6UBFES+9zmtouHB4IZjxK uABJfHGwEBJFAlf3JuqIbt7vvUQEEUEoE1EcpLNbcIBdk6zTHQlMlSnOtzT4hjO+ sfI6QAUw6TKjErUryEGrvxNFuEDMpINOAGOSMboWJOS31/43hGChCRBEZu3Q6Njx XgwelArE755GSB8ptHxOjON4BbX4GF2/i8v1Tgclmexl9ymk2CNbd/NqjVmELqcX fgOrDsZcu5EXavj5vClDGkxyfKEvVE7kmUiB8Q5tV9jmpnahfMB10UzrOJLcUyaW 566XHdMaY+/a2nT9bKpMrrpcjMd3jTsnNNy3AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUoLcl0v8tK6+/5vQperQMh2jLCtQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvb0xjbDB2OHRLNi1fNXZRcGVyUU1o MmpMQ3RRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHvNoDAN BgkqhkiG9w0BAQsFAAOCAQEAIwO1D5ikPrJCC46Vr8WjAD8XU9uvWR6F70s+xL0s fIKSb+psb9afPLDfcF6h0mSrdbkG7ochXLJxtIubKxrZw3iokXLu/K8ku2Oo6zih SPehlgLllW9yTofNGWKDI3JXTuEugSjwqkVzq6rPOwNQ3+NSxUpx4fLHDBlOkCTN wb5NAbmpS/F0GOBRb+H7pLBvsbf5V07sOaHuXMMonQgOLphFcpSXAiI5P+XMqLPR B6quo6pgV5c6iSJKs8fD6l9N/EIAFu6VozxEVTG0T8WkPgBBTm2J7ooVqmcNN47K lDRBMmkU+kizV6iWPg4L8g6uZvHME4YpjBaK7DSlXunVvQ== -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:38 2024 by rpki-client on console-ams.rpki-client.org