$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/2ZeEDOUcigOUdYwaFuzSFEoaHqk.roa File: 2ZeEDOUcigOUdYwaFuzSFEoaHqk.roa (raw, json) Hash identifier: FFe1m2e8W2Npwv6qqST3zaTOR7xaylqemUs7C8OGYPs= Subject key identifier: D9:97:84:0C:E5:1C:8A:03:94:75:8C:1A:16:EC:D2:14:4A:1A:1E:A9 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13E0 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2ZeEDOUcigOUdYwaFuzSFEoaHqk.roa Signing time: Fri 01 Sep 2023 09:25:33 +0000 ROA not before: Fri 01 Sep 2023 09:25:33 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 122.146.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5088 (0x13e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:33 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D997840CE51C8A0394758C1A16ECD2144A1A1EA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:31:09:9c:ee:bb:ce:33:33:2e:84:ca:97:9e: 6c:23:ca:90:8c:3e:2f:53:fb:f5:db:cd:09:37:f1: 42:26:e4:70:77:48:53:3c:45:c1:3e:a9:3a:67:ed: c9:e5:0c:6e:d0:68:a7:82:79:d4:85:e1:2f:d4:97: 44:e1:70:42:51:31:7d:58:56:b9:f2:e6:3b:25:f3: 61:c3:ab:70:94:27:39:fe:47:21:6d:3f:82:a3:5b: cb:fc:54:be:78:91:59:11:7f:7a:b9:e0:a0:9f:df: a4:da:d4:bb:f5:de:c4:43:e3:cf:01:2b:77:c9:91: 57:7f:63:65:53:1a:c7:06:2d:cc:92:6f:31:77:e3: de:88:82:89:4e:1d:3e:5b:f4:72:58:2f:69:9d:c4: d5:30:a2:29:67:c1:2a:a5:6e:de:52:3b:e8:9f:db: c1:b9:b5:d3:3d:2e:81:de:5d:fa:da:37:12:fd:fa: 25:39:03:b3:5a:e5:f4:0e:49:5b:51:9b:16:83:29: 00:12:87:2a:ae:9f:5f:4a:13:b3:5d:60:7a:57:01: cd:09:c5:50:c6:c9:fa:84:1d:a9:13:63:63:b6:c3: 3f:d1:25:f1:35:b4:f8:22:b2:81:83:cd:a6:f3:36: 35:96:ad:c3:12:fc:05:a2:28:ab:37:65:73:f3:96: 02:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:97:84:0C:E5:1C:8A:03:94:75:8C:1A:16:EC:D2:14:4A:1A:1E:A9 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2ZeEDOUcigOUdYwaFuzSFEoaHqk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.146.64.0/19 Signature Algorithm: sha256WithRSAEncryption 67:40:aa:cf:21:8b:69:5e:9d:a8:62:57:a5:14:cd:1c:15:01: bb:aa:3f:50:82:0c:67:d4:97:f0:08:58:af:81:13:90:c3:8e: 36:26:53:a2:60:67:9e:8c:8a:dd:97:62:ac:44:0a:df:58:12: 11:03:ca:9f:f7:3c:45:17:de:27:bf:0b:1b:4e:54:b0:cf:2a: 14:b7:b0:ef:19:3b:24:75:0a:be:ba:30:64:4f:fb:13:d7:c5: 03:d1:fd:bc:eb:8d:52:95:34:e6:ae:7c:06:d7:cb:5d:d9:94: b4:5b:6f:1e:25:c8:98:4b:d9:97:b2:14:40:3a:26:72:cb:9e: ef:1a:e7:a1:64:19:28:59:82:c4:6f:e2:a2:35:c1:53:87:67: d3:0b:0c:e3:20:28:67:5f:ca:f2:32:c6:8d:92:d0:a6:3c:bb: e9:0e:8f:12:ef:3e:59:f3:85:88:b1:25:bf:57:4c:d8:a9:72: 62:a8:c7:d8:34:d3:36:bb:1f:e5:68:a5:55:62:a7:55:5c:02: 0a:ec:35:81:b4:58:62:d0:1c:df:9d:3e:a8:76:7c:6b:e8:ac: 1e:83:83:59:74:10:29:98:d7:fa:e9:88:dc:d6:d6:50:71:f7: 1b:b8:d5:b1:b3:37:3b:39:56:d0:c8:66:f8:33:2c:12:f2:ca: ef:6c:5e:dd -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE+AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ5OTc4NDBDRTUxQzhB MDM5NDc1OEMxQTE2RUNEMjE0NEExQTFFQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIMQmc7rvOMzMuhMqXnmwjypCMPi9T+/XbzQk38UIm5HB3SFM8 RcE+qTpn7cnlDG7QaKeCedSF4S/Ul0ThcEJRMX1YVrny5jsl82HDq3CUJzn+RyFt P4KjW8v8VL54kVkRf3q54KCf36Ta1Lv13sRD488BK3fJkVd/Y2VTGscGLcySbzF3 496IgolOHT5b9HJYL2mdxNUwoilnwSqlbt5SO+if28G5tdM9LoHeXfraNxL9+iU5 A7Na5fQOSVtRmxaDKQAShyqun19KE7NdYHpXAc0JxVDGyfqEHakTY2O2wz/RJfE1 tPgisoGDzabzNjWWrcMS/AWiKKs3ZXPzlgLlAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU2ZeEDOUcigOUdYwaFuzSFEoaHqkwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMlplRURPVWNpZ09VZFl3YUZ1elNG RW9hSHFrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXqSQDAN BgkqhkiG9w0BAQsFAAOCAQEAZ0CqzyGLaV6dqGJXpRTNHBUBu6o/UIIMZ9SX8AhY r4ETkMOONiZTomBnnoyK3ZdirEQK31gSEQPKn/c8RRfeJ78LG05UsM8qFLew7xk7 JHUKvrowZE/7E9fFA9H9vOuNUpU05q58BtfLXdmUtFtvHiXImEvZl7IUQDomcsue 7xrnoWQZKFmCxG/iojXBU4dn0wsM4yAoZ1/K8jLGjZLQpjy76Q6PEu8+WfOFiLEl v1dM2KlyYqjH2DTTNrsf5WilVWKnVVwCCuw1gbRYYtAc350+qHZ8a+isHoODWXQQ KZjX+umI3NbWUHH3G7jVsbM3OzlW0Mhm+DMsEvLK72xe3Q== -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org