$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/xscyjNSsEskIHKuUsoqusF24xp0.roa File: xscyjNSsEskIHKuUsoqusF24xp0.roa (raw, json) Hash identifier: LIaoUteneZ6MsS8OpT7cM5NEpXYv7LAQGtv/6j3HtGw= Subject key identifier: C6:C7:32:8C:D4:AC:12:C9:08:1C:AB:94:B2:8A:AE:B0:5D:B8:C6:9D Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 138B Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xscyjNSsEskIHKuUsoqusF24xp0.roa Signing time: Fri 01 Sep 2023 09:25:07 +0000 ROA not before: Fri 01 Sep 2023 09:25:07 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 203.190.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5003 (0x138b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:07 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C6C7328CD4AC12C9081CAB94B28AAEB05DB8C69D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:6a:b8:b2:cb:06:74:5b:90:18:68:c1:fc:81: 95:59:a8:eb:b3:1d:58:c7:17:a5:de:42:c2:ee:22: 64:60:17:8a:72:17:7d:74:65:82:80:45:92:02:6e: 28:44:67:44:f3:2b:65:95:73:43:74:35:58:b2:37: e3:4e:9f:32:88:c7:b2:97:4c:27:16:ab:89:41:72: 93:09:f9:e5:1a:63:1c:00:21:f1:0e:ee:68:e5:07: 87:4d:42:e9:4e:ea:29:c6:ef:a3:63:08:fe:2e:6d: 8b:a7:e1:3f:15:1a:86:9f:20:28:0d:4e:29:40:21: 3f:d1:97:94:4d:fc:81:70:83:5d:11:f6:39:a0:f4: cc:dc:2d:4f:0e:c4:e5:ec:cf:5e:c1:50:af:4b:fd: f8:a0:1e:e8:bf:dd:c1:fd:82:33:17:74:f2:db:1d: 50:6b:ee:0d:4a:0e:52:6a:0b:16:13:3e:d7:a1:fe: af:65:59:c3:4f:cd:14:83:5c:c1:ea:3a:ab:1b:ef: 9c:1c:01:17:c3:4a:9d:5f:11:ad:ec:0d:f8:cf:1a: 24:5f:35:1f:ea:77:90:9e:6f:22:a9:78:cc:37:8f: d0:3b:3d:63:2b:4d:6b:6d:be:c1:77:9b:54:3b:41: 86:af:37:d1:36:44:83:9d:d4:57:d5:73:bf:86:aa: 19:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:C7:32:8C:D4:AC:12:C9:08:1C:AB:94:B2:8A:AE:B0:5D:B8:C6:9D X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/xscyjNSsEskIHKuUsoqusF24xp0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.190.16.0/21 Signature Algorithm: sha256WithRSAEncryption b2:1d:ed:9b:2b:81:b8:a9:bd:c6:08:f4:90:01:5c:70:82:d8: 39:c6:27:fd:07:00:61:75:97:7b:c5:ea:1f:a7:cf:09:c3:fc: f9:7b:6f:05:fb:c6:24:d2:23:90:dd:ce:f2:1f:a5:0b:c8:e9: 82:85:5e:8a:82:f9:0f:b3:34:1c:69:6e:d9:90:27:34:57:29: 77:6c:c6:e9:07:e5:c6:50:42:8c:1c:29:a0:3d:d2:b7:0a:19: 2a:17:91:d6:87:53:d3:36:4a:90:b2:9a:05:1e:c1:c7:ba:2b: 35:b8:fb:28:30:31:ee:11:7f:42:85:ad:04:8b:9e:49:86:ba: 19:51:be:e7:8a:88:ab:bb:6b:0c:0d:9e:01:c1:aa:96:4a:1f: 0b:6b:37:db:16:c3:4a:ff:5d:27:b9:5d:e9:ac:a6:39:cd:9c: ff:29:1f:7e:c6:43:88:09:12:a4:df:92:2f:d9:ee:a8:5c:59: c5:b3:28:e2:23:56:75:05:22:6a:4b:57:20:8b:93:56:b9:13: 3c:4a:d1:20:f8:b9:fc:ce:bc:5f:8a:61:e6:ae:ab:44:9e:4a: df:50:cf:73:4b:8b:35:ba:a1:9a:7e:42:c5:8f:d2:09:19:c1: 05:e9:6e:a9:0f:02:2b:83:02:06:10:08:af:c9:35:47:73:a3: 30:8a:f8:28 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE4swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM2QzczMjhDRDRBQzEy QzkwODFDQUI5NEIyOEFBRUIwNURCOEM2OUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcariyywZ0W5AYaMH8gZVZqOuzHVjHF6XeQsLuImRgF4pyF310 ZYKARZICbihEZ0TzK2WVc0N0NViyN+NOnzKIx7KXTCcWq4lBcpMJ+eUaYxwAIfEO 7mjlB4dNQulO6inG76NjCP4ubYun4T8VGoafICgNTilAIT/Rl5RN/IFwg10R9jmg 9MzcLU8OxOXsz17BUK9L/figHui/3cH9gjMXdPLbHVBr7g1KDlJqCxYTPteh/q9l WcNPzRSDXMHqOqsb75wcARfDSp1fEa3sDfjPGiRfNR/qd5CebyKpeMw3j9A7PWMr TWttvsF3m1Q7QYavN9E2RIOd1FfVc7+GqhkNAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUxscyjNSsEskIHKuUsoqusF24xp0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveHNjeWpOU3NFc2tJSEt1VXNvcXVz RjI0eHAwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8u+EDAN BgkqhkiG9w0BAQsFAAOCAQEAsh3tmyuBuKm9xgj0kAFccILYOcYn/QcAYXWXe8Xq H6fPCcP8+XtvBfvGJNIjkN3O8h+lC8jpgoVeioL5D7M0HGlu2ZAnNFcpd2zG6Qfl xlBCjBwpoD3StwoZKheR1odT0zZKkLKaBR7Bx7orNbj7KDAx7hF/QoWtBIueSYa6 GVG+54qIq7trDA2eAcGqlkofC2s32xbDSv9dJ7ld6aymOc2c/ykffsZDiAkSpN+S L9nuqFxZxbMo4iNWdQUiaktXIIuTVrkTPErRIPi5/M68X4ph5q6rRJ5K31DPc0uL Nbqhmn5CxY/SCRnBBeluqQ8CK4MCBhAIr8k1R3OjMIr4KA== -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:38 2024 by rpki-client on console-ams.rpki-client.org