$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/x6As19xZRrweyd6ZY-S2NSO2b8U.roa File: x6As19xZRrweyd6ZY-S2NSO2b8U.roa (raw, json) Hash identifier: Ud8tNdu2sempz0WbKztVoFZDFuypSEJ7ylr+1dLzhiY= Subject key identifier: C7:A0:2C:D7:DC:59:46:BC:1E:C9:DE:99:63:E4:B6:35:23:B6:6F:C5 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13BD Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/x6As19xZRrweyd6ZY-S2NSO2b8U.roa Signing time: Fri 01 Sep 2023 09:25:22 +0000 ROA not before: Fri 01 Sep 2023 09:25:22 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 122.147.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5053 (0x13bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:22 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C7A02CD7DC5946BC1EC9DE9963E4B63523B66FC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:e5:aa:12:90:0b:0f:7f:34:02:41:2a:ec:11: 96:b2:97:a6:03:fd:3b:0b:16:fe:e8:07:51:08:15: 24:93:7a:44:07:cf:4e:c6:cc:10:4d:a4:d7:dc:53: f6:71:b5:c1:04:ac:e1:17:7a:20:4a:ef:4f:66:91: d8:b9:3c:75:07:61:3e:9d:12:a6:bc:12:cc:bb:6e: 32:4f:e7:cf:1c:f0:77:2d:fa:70:35:27:84:33:c8: 3a:87:75:ab:1c:2d:0a:ea:30:a7:9e:f0:df:f8:86: 52:30:75:b9:72:dc:43:28:40:e8:3d:3a:fa:d6:5a: a8:03:25:9e:bd:ae:fc:83:42:41:8c:52:bc:4e:6e: 34:36:e5:43:58:8f:0f:83:d5:85:f0:77:cf:ba:49: ab:66:49:25:c5:0b:45:42:8d:c8:08:dd:64:a9:ef: 58:e4:c5:64:ba:d6:6e:c4:a9:37:71:2a:54:3e:3f: 93:66:8f:1b:3e:63:50:29:0b:06:fd:77:4f:86:fb: 8a:8b:e3:c3:a8:21:de:14:b8:b7:cd:b8:c4:fc:12: e8:e3:d2:e8:44:5b:a6:cb:dc:e4:11:2a:d3:89:0e: 41:05:a5:2a:4c:dc:fb:2e:d0:4a:f9:5e:4e:69:0c: 23:d5:28:69:93:1a:18:ca:ce:60:40:de:34:22:16: 7c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A0:2C:D7:DC:59:46:BC:1E:C9:DE:99:63:E4:B6:35:23:B6:6F:C5 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/x6As19xZRrweyd6ZY-S2NSO2b8U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.16.0/21 Signature Algorithm: sha256WithRSAEncryption 8b:72:e0:a1:16:31:d7:99:92:df:19:c4:55:c3:9c:6a:e1:55: f5:3a:38:4b:97:c1:4e:91:69:21:73:b2:e0:fe:53:70:4d:b5: fb:0d:e9:73:c3:71:76:50:6a:0c:4a:da:78:fb:75:1f:6a:33: a0:a7:5d:35:f7:8e:87:f4:c3:a1:a6:30:bd:92:ed:d5:f7:d6: b5:46:35:20:80:74:e8:56:50:3f:7e:cc:1e:cc:8c:d4:01:a6: 11:bf:05:bb:03:a7:a6:f1:af:2f:05:79:57:03:4e:89:62:89: 11:10:83:e7:97:dc:29:7f:17:56:c2:4e:68:c5:23:27:36:85: ab:13:7d:37:8d:38:7a:77:d5:c1:cf:5f:2f:12:3c:bc:5d:7c: f3:d0:d2:c9:56:18:9c:be:1e:4d:b5:78:3a:b0:35:93:6f:cc: d0:f7:34:32:c1:f4:8e:4a:69:79:b7:e6:7e:44:ea:c8:ba:6c: 74:10:b4:d4:a5:4a:c5:e6:87:04:60:1c:2a:9a:2a:ad:d4:8d: 15:e7:90:74:73:2c:04:a2:b8:31:db:1f:72:77:23:06:9b:5b: e9:4d:16:a1:b8:4d:0f:16:23:9c:d1:29:89:ea:9a:0a:5f:1c: 26:18:6b:38:15:da:85:98:91:ff:99:6f:77:94:e1:eb:ac:1d: 31:55:5a:e8 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE70wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MjJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM3QTAyQ0Q3REM1OTQ2 QkMxRUM5REU5OTYzRTRCNjM1MjNCNjZGQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDw5aoSkAsPfzQCQSrsEZayl6YD/TsLFv7oB1EIFSSTekQHz07G zBBNpNfcU/ZxtcEErOEXeiBK709mkdi5PHUHYT6dEqa8Esy7bjJP588c8Hct+nA1 J4QzyDqHdascLQrqMKee8N/4hlIwdbly3EMoQOg9OvrWWqgDJZ69rvyDQkGMUrxO bjQ25UNYjw+D1YXwd8+6SatmSSXFC0VCjcgI3WSp71jkxWS61m7EqTdxKlQ+P5Nm jxs+Y1ApCwb9d0+G+4qL48OoId4UuLfNuMT8Eujj0uhEW6bL3OQRKtOJDkEFpSpM 3Psu0Er5Xk5pDCPVKGmTGhjKzmBA3jQiFnzXAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUx6As19xZRrweyd6ZY+S2NSO2b8UwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveDZBczE5eFpScndleWQ2WlktUzJO U08yYjhVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3qTEDAN BgkqhkiG9w0BAQsFAAOCAQEAi3LgoRYx15mS3xnEVcOcauFV9To4S5fBTpFpIXOy 4P5TcE21+w3pc8NxdlBqDEraePt1H2ozoKddNfeOh/TDoaYwvZLt1ffWtUY1IIB0 6FZQP37MHsyM1AGmEb8FuwOnpvGvLwV5VwNOiWKJERCD55fcKX8XVsJOaMUjJzaF qxN9N404enfVwc9fLxI8vF1889DSyVYYnL4eTbV4OrA1k2/M0Pc0MsH0jkppebfm fkTqyLpsdBC01KVKxeaHBGAcKpoqrdSNFeeQdHMsBKK4MdsfcncjBptb6U0WobhN DxYjnNEpieqaCl8cJhhrOBXahZiR/5lvd5Th66wdMVVa6A== -----END CERTIFICATE-----Generated at Sun Jun 2 09:37:18 2024 by rpki-client on console-ams.rpki-client.org