$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/xEtWwB1o7I0KNAtuikRK574E_tU.roa File: xEtWwB1o7I0KNAtuikRK574E_tU.roa (raw, json) Hash identifier: 5GwkcmG8WN9nnkQf9BpSrq2gHPMD/7OiY49tSGbgt9s= Subject key identifier: C4:4B:56:C0:1D:68:EC:8D:0A:34:0B:6E:8A:44:4A:E7:BE:04:FE:D5 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1319 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xEtWwB1o7I0KNAtuikRK574E_tU.roa Signing time: Fri 01 Sep 2023 09:24:28 +0000 ROA not before: Fri 01 Sep 2023 09:24:28 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 122.147.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4889 (0x1319) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:28 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C44B56C01D68EC8D0A340B6E8A444AE7BE04FED5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fa:38:cd:ec:99:8f:0e:da:17:9c:6c:46:40: 68:84:b9:a0:6a:0a:00:07:0b:50:71:7d:4e:0a:24: 14:fb:be:da:28:c3:5e:8e:2c:97:7e:c0:ec:94:cf: a9:0b:1f:9f:17:85:0f:2a:8f:f6:ce:9c:91:34:b0: 8a:38:c9:3f:81:a5:4e:b7:6f:d0:42:d9:b5:11:a1: 4e:f7:b2:47:27:ca:3d:89:d0:7c:35:bc:18:b9:06: 71:20:88:6f:c5:f9:91:55:ab:50:43:09:bf:8c:14: 51:0e:a8:3f:8a:aa:62:9a:f2:44:91:0d:dd:6e:bb: 73:aa:4c:5a:d7:1d:39:01:62:41:a6:c7:bc:93:ee: 45:09:08:56:f8:22:fe:bb:67:fd:2d:4c:69:a3:1f: e2:a2:f2:6e:fb:9f:ae:5e:37:ef:79:66:8e:33:5f: b4:68:42:d1:eb:df:0c:d2:15:09:b2:fe:8e:d1:31: c0:50:bb:40:72:da:cd:0a:90:aa:b2:68:1f:4f:63: 7d:6d:a4:85:50:bf:3e:a0:06:b3:64:49:a0:a1:7a: b1:2a:e9:91:5b:b7:48:41:c6:b8:09:34:3e:a3:76: 0f:b8:35:8c:ce:8c:d6:fc:0a:1e:e4:9e:ea:ae:81: 76:b6:6b:84:c4:ec:55:26:ec:82:fa:81:44:5a:36: 92:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:4B:56:C0:1D:68:EC:8D:0A:34:0B:6E:8A:44:4A:E7:BE:04:FE:D5 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xEtWwB1o7I0KNAtuikRK574E_tU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.166.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:6c:ef:35:d8:cf:f9:95:4c:3d:8f:ea:ca:f0:bd:bd:6e:fa: 1e:44:2c:3b:d0:8e:60:af:3b:af:e2:e8:4a:be:6e:97:0c:9e: 85:35:9d:e6:5c:31:c0:2b:ed:7c:47:b7:7a:ea:6a:bf:fd:d5: 8a:3e:8c:16:da:7a:e7:ba:c2:f3:71:77:0f:32:93:b3:54:4d: c7:45:5a:75:eb:88:59:2d:01:66:ef:f6:d2:85:e3:6c:8c:8a: b9:c7:32:22:d7:43:5a:9d:ed:fe:30:5f:2f:6f:d0:fd:6b:08: d6:fc:23:b0:cb:67:a9:26:d2:a9:1f:91:43:23:4c:db:10:4e: 5b:99:e2:ec:9d:7d:51:12:a4:6c:af:b8:44:5b:60:54:75:fc: 69:6c:e3:98:f9:67:9c:1e:58:a8:27:b1:4e:8f:30:01:e5:8e: 32:d7:1f:53:a9:87:9b:c0:4b:17:79:08:74:f8:88:4e:38:45: f3:43:48:9f:3d:57:f5:da:c2:0d:f6:29:ef:fb:1d:5f:43:a6: ed:45:41:21:22:c4:a7:d2:7d:44:9c:1e:2f:a2:9a:be:67:4f: 48:5d:20:ef:f4:07:1b:0a:d8:13:8a:61:ba:9d:09:94:e7:d2: 35:75:8f:83:3d:7a:b7:80:f0:83:87:35:b6:54:27:76:9f:fa: 34:f1:65:66 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICExkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MjhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM0NEI1NkMwMUQ2OEVD OEQwQTM0MEI2RThBNDQ0QUU3QkUwNEZFRDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA+jjN7JmPDtoXnGxGQGiEuaBqCgAHC1BxfU4KJBT7vtoow16O LJd+wOyUz6kLH58XhQ8qj/bOnJE0sIo4yT+BpU63b9BC2bURoU73skcnyj2J0Hw1 vBi5BnEgiG/F+ZFVq1BDCb+MFFEOqD+KqmKa8kSRDd1uu3OqTFrXHTkBYkGmx7yT 7kUJCFb4Iv67Z/0tTGmjH+Ki8m77n65eN+95Zo4zX7RoQtHr3wzSFQmy/o7RMcBQ u0By2s0KkKqyaB9PY31tpIVQvz6gBrNkSaCherEq6ZFbt0hBxrgJND6jdg+4NYzO jNb8Ch7knuqugXa2a4TE7FUm7IL6gURaNpLxAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUxEtWwB1o7I0KNAtuikRK574E/tUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveEV0V3dCMW83STBLTkF0dWlrUks1 NzRFX3RVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXqTpjAN BgkqhkiG9w0BAQsFAAOCAQEAb2zvNdjP+ZVMPY/qyvC9vW76HkQsO9COYK87r+Lo Sr5ulwyehTWd5lwxwCvtfEe3eupqv/3Vij6MFtp657rC83F3DzKTs1RNx0VadeuI WS0BZu/20oXjbIyKuccyItdDWp3t/jBfL2/Q/WsI1vwjsMtnqSbSqR+RQyNM2xBO W5ni7J19URKkbK+4RFtgVHX8aWzjmPlnnB5YqCexTo8wAeWOMtcfU6mHm8BLF3kI dPiITjhF80NInz1X9drCDfYp7/sdX0Om7UVBISLEp9J9RJweL6KavmdPSF0g7/QH GwrYE4phup0JlOfSNXWPgz16t4Dwg4c1tlQndp/6NPFlZg== -----END CERTIFICATE-----Generated at Mon May 20 11:12:53 2024 by rpki-client on console-ams.rpki-client.org