$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/rH_JDVqMPKOz7e6FvDiuuxPtSgc.roa File: rH_JDVqMPKOz7e6FvDiuuxPtSgc.roa (raw, json) Hash identifier: iGdbuTVWAowsrgTGLREX9gqIvOS3UCKlVS0sdDS/cUs= Subject key identifier: AC:7F:C9:0D:5A:8C:3C:A3:B3:ED:EE:85:BC:38:AE:BB:13:ED:4A:07 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1398 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rH_JDVqMPKOz7e6FvDiuuxPtSgc.roa Signing time: Fri 01 Sep 2023 09:25:11 +0000 ROA not before: Fri 01 Sep 2023 09:25:11 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 122.146.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5016 (0x1398) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:11 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=AC7FC90D5A8C3CA3B3EDEE85BC38AEBB13ED4A07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ac:8c:6c:a2:7b:72:75:18:cb:b5:2e:f5:1f: 97:9b:87:ed:f0:30:2d:24:9e:dd:53:cf:81:8e:7e: 3c:c1:56:85:9b:18:76:7d:06:8c:08:25:54:60:5c: 95:86:60:78:77:2a:22:3b:79:e3:6a:b9:c8:0e:7c: 68:5b:af:a6:c5:86:94:8b:db:c5:b0:35:74:56:7b: b1:f2:08:32:6c:92:73:32:ea:c7:db:9d:b1:3a:2e: 5b:a9:54:ca:9d:3e:e5:9d:d1:96:44:14:15:dd:ef: fd:de:c2:97:c4:3e:f4:23:fc:31:89:58:0a:b8:47: c5:68:3b:26:c7:5d:7d:ad:d0:1a:bc:cd:26:27:e9: f6:51:f2:3f:3d:49:db:e6:a1:3c:4d:2d:0b:f9:b6: 98:ec:2c:b3:fa:f0:0c:96:5a:78:59:be:aa:4b:7c: af:78:1b:87:27:2a:a3:40:86:25:a3:7e:3e:97:1c: 3f:fe:79:64:d0:fa:df:2a:0b:7f:2f:93:91:9d:eb: c8:85:9a:cb:6f:cd:f3:9e:ca:1f:15:d8:cb:c0:4a: 69:72:3d:bf:db:4c:2a:9c:87:15:90:f9:b3:59:db: 82:4f:04:bf:bc:b0:2c:2b:2d:26:3e:e1:4f:7f:a1: 53:a6:35:33:c3:70:ee:20:5f:e6:6a:a1:ec:b3:9b: 6a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:7F:C9:0D:5A:8C:3C:A3:B3:ED:EE:85:BC:38:AE:BB:13:ED:4A:07 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rH_JDVqMPKOz7e6FvDiuuxPtSgc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.146.0.0/18 Signature Algorithm: sha256WithRSAEncryption 38:5e:09:d6:13:73:df:10:03:0f:8a:24:4e:f3:ab:2f:08:b6: 7d:da:1d:40:b0:ca:4a:f9:63:11:55:3d:87:db:02:42:20:a1: 40:03:c9:88:b7:d9:d2:2e:6f:35:e9:c8:32:34:3b:f9:64:23: da:d3:b2:43:fd:d8:80:30:a4:5f:b6:9d:13:b8:ae:9a:a3:33: 40:e0:c8:7b:3e:aa:72:4d:c3:66:28:b5:3a:2a:09:e3:ab:37: a5:15:b0:48:f4:30:d3:1c:ed:98:21:d0:99:f5:61:37:af:30: 23:06:2b:4d:9e:e9:65:76:c5:9f:59:b2:bc:1c:cd:f3:12:4e: 13:6e:00:b0:50:aa:16:ca:49:15:0f:10:41:9a:4b:87:43:c9: 0b:4e:d1:89:e7:6e:89:5a:85:a2:57:aa:9e:32:35:82:ba:4e: 23:4f:4a:12:be:85:c3:d2:78:d7:ee:21:91:74:00:db:67:6f: ef:8f:09:b7:f1:83:ee:e0:fc:b7:91:6a:fa:3e:31:96:5f:12: 32:26:3f:79:4b:a6:31:54:ca:bc:1f:fc:97:4b:69:d0:22:16: 47:1e:d3:48:36:78:0e:15:f8:bf:5b:a6:a4:13:35:0b:66:b1: ec:22:bc:c3:80:1b:f9:16:a9:b1:a5:9d:af:4e:ab:5a:61:1f: a9:0f:1e:6c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE5gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFDN0ZDOTBENUE4QzND QTNCM0VERUU4NUJDMzhBRUJCMTNFRDRBMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6rIxsontydRjLtS71H5ebh+3wMC0knt1Tz4GOfjzBVoWbGHZ9 BowIJVRgXJWGYHh3KiI7eeNqucgOfGhbr6bFhpSL28WwNXRWe7HyCDJsknMy6sfb nbE6LlupVMqdPuWd0ZZEFBXd7/3ewpfEPvQj/DGJWAq4R8VoOybHXX2t0Bq8zSYn 6fZR8j89SdvmoTxNLQv5tpjsLLP68AyWWnhZvqpLfK94G4cnKqNAhiWjfj6XHD/+ eWTQ+t8qC38vk5Gd68iFmstvzfOeyh8V2MvASmlyPb/bTCqchxWQ+bNZ24JPBL+8 sCwrLSY+4U9/oVOmNTPDcO4gX+Zqoeyzm2qDAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUrH/JDVqMPKOz7e6FvDiuuxPtSgcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvckhfSkRWcU1QS096N2U2RnZEaXV1 eFB0U2djLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnqSADAN BgkqhkiG9w0BAQsFAAOCAQEAOF4J1hNz3xADD4okTvOrLwi2fdodQLDKSvljEVU9 h9sCQiChQAPJiLfZ0i5vNenIMjQ7+WQj2tOyQ/3YgDCkX7adE7iumqMzQODIez6q ck3DZii1OioJ46s3pRWwSPQw0xztmCHQmfVhN68wIwYrTZ7pZXbFn1myvBzN8xJO E24AsFCqFspJFQ8QQZpLh0PJC07RieduiVqFoleqnjI1grpOI09KEr6Fw9J41+4h kXQA22dv748Jt/GD7uD8t5Fq+j4xll8SMiY/eUumMVTKvB/8l0tp0CIWRx7TSDZ4 DhX4v1umpBM1C2ax7CK8w4Ab+RapsaWdr06rWmEfqQ8ebA== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org