$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/9ZV-_81p2ljjZSdtzU3kdkdXy6A.roa File: 9ZV-_81p2ljjZSdtzU3kdkdXy6A.roa (raw, json) Hash identifier: Ql/EVCneAeWfhBLAYeSd0zpKpp0ah8XSV+opWSRCUQg= Subject key identifier: F5:95:7E:FF:CD:69:DA:58:E3:65:27:6D:CD:4D:E4:76:47:57:CB:A0 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1325 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9ZV-_81p2ljjZSdtzU3kdkdXy6A.roa Signing time: Fri 01 Sep 2023 09:24:32 +0000 ROA not before: Fri 01 Sep 2023 09:24:32 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 122.147.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4901 (0x1325) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:32 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F5957EFFCD69DA58E365276DCD4DE4764757CBA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8c:40:2b:98:25:5a:5e:dd:cd:63:57:ef:12: 6f:aa:f7:9b:e5:11:f5:7b:fd:0a:fe:cd:37:78:b1: 6f:aa:98:10:2d:66:72:26:b5:e6:bc:fc:1f:62:a2: f8:65:ec:ca:b5:05:87:0e:dc:26:f4:dc:67:ca:8a: 1d:c9:c4:39:39:f3:8c:a6:21:cf:1e:57:67:08:2c: 40:65:99:a7:bb:8e:aa:51:d9:bf:2b:1b:fc:66:df: a7:26:34:82:89:b1:df:94:6d:74:6a:71:58:95:79: bf:65:37:e6:50:a8:e4:55:8b:22:d9:29:3b:ff:12: 1f:43:b4:c0:b7:b0:73:70:21:d1:0a:74:25:05:f0: 47:10:6b:99:09:57:01:a2:2b:63:66:35:3c:f4:f3: c7:47:ed:b7:b7:aa:6f:69:2b:b0:8a:30:a9:70:0b: a3:bb:3a:eb:d9:4e:9d:50:a0:30:70:2c:13:fb:43: 12:53:ba:46:91:94:5c:a4:3a:60:77:32:7d:0c:48: 71:05:a5:c8:58:c1:6e:8d:11:27:3d:94:d8:c3:ce: 4d:bd:41:bf:30:2a:29:9a:54:bc:a0:96:20:68:18: 62:7b:01:ca:e8:67:98:47:be:6b:cd:d1:84:ad:29: a9:72:22:9f:9f:d5:d8:bb:2c:42:61:d4:75:37:f7: 5f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:95:7E:FF:CD:69:DA:58:E3:65:27:6D:CD:4D:E4:76:47:57:CB:A0 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9ZV-_81p2ljjZSdtzU3kdkdXy6A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.128.0/19 Signature Algorithm: sha256WithRSAEncryption 96:42:41:88:3c:9a:4c:04:de:96:12:bb:05:d0:4b:2e:7f:ee: 75:04:75:f1:85:e5:e1:0c:dd:48:b8:c8:f3:97:7a:d5:0f:5a: d9:14:2f:b2:8d:d8:3f:77:4c:01:34:73:a0:ae:88:18:da:28: 80:97:f2:df:dc:1d:85:15:40:e2:dc:cf:f2:a5:ae:14:6c:f6: c0:8a:d9:e6:00:9d:12:23:05:a5:fc:04:24:c5:c3:0f:9b:66: a9:91:2b:de:ed:da:e4:80:8e:df:f4:75:7d:85:8d:94:cb:8e: d9:e5:37:f2:e7:5f:8c:99:cd:2c:09:4b:20:39:06:12:63:c2: e2:1b:b2:d3:b0:3c:d2:9a:d7:09:36:a7:68:05:c2:30:f3:94: 75:06:13:4a:bc:f5:8a:91:b9:c3:24:52:08:6b:26:3e:31:a9: c0:66:1b:83:1a:ad:48:14:8c:42:6f:a7:90:4f:41:dc:a5:fc: b2:0a:1d:85:30:20:0b:d9:06:16:9a:9d:b4:c8:55:1f:56:b0: 37:85:b4:33:c2:27:c1:69:e9:bc:c3:70:6b:d0:ca:33:81:4a: dc:fa:bf:8c:cd:ce:3e:2c:be:61:14:d7:85:7e:bc:4e:a8:ae: 40:ad:7e:5a:09:cc:38:c5:4e:3f:e7:b7:17:fb:ff:49:90:02: ef:a0:78:e9 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEyUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MzJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY1OTU3RUZGQ0Q2OURB NThFMzY1Mjc2RENENERFNDc2NDc1N0NCQTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnjEArmCVaXt3NY1fvEm+q95vlEfV7/Qr+zTd4sW+qmBAtZnIm tea8/B9iovhl7Mq1BYcO3Cb03GfKih3JxDk584ymIc8eV2cILEBlmae7jqpR2b8r G/xm36cmNIKJsd+UbXRqcViVeb9lN+ZQqORViyLZKTv/Eh9DtMC3sHNwIdEKdCUF 8EcQa5kJVwGiK2NmNTz088dH7be3qm9pK7CKMKlwC6O7OuvZTp1QoDBwLBP7QxJT ukaRlFykOmB3Mn0MSHEFpchYwW6NESc9lNjDzk29Qb8wKimaVLygliBoGGJ7Acro Z5hHvmvN0YStKalyIp+f1di7LEJh1HU391/JAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU9ZV+/81p2ljjZSdtzU3kdkdXy6AwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvOVpWLV84MXAybGpqWlNkdHpVM2tk a2RYeTZBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXqTgDAN BgkqhkiG9w0BAQsFAAOCAQEAlkJBiDyaTATelhK7BdBLLn/udQR18YXl4QzdSLjI 85d61Q9a2RQvso3YP3dMATRzoK6IGNoogJfy39wdhRVA4tzP8qWuFGz2wIrZ5gCd EiMFpfwEJMXDD5tmqZEr3u3a5ICO3/R1fYWNlMuO2eU38udfjJnNLAlLIDkGEmPC 4huy07A80prXCTanaAXCMPOUdQYTSrz1ipG5wyRSCGsmPjGpwGYbgxqtSBSMQm+n kE9B3KX8sgodhTAgC9kGFpqdtMhVH1awN4W0M8InwWnpvMNwa9DKM4FK3Pq/jM3O Piy+YRTXhX68TqiuQK1+WgnMOMVOP+e3F/v/SZAC76B46Q== -----END CERTIFICATE-----Generated at Sat Jun 1 22:20:17 2024 by rpki-client on console-fra.rpki-client.org