$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/KOZAoa7Lfic0DBt7mX1RwoTqV-M.roa File: KOZAoa7Lfic0DBt7mX1RwoTqV-M.roa (raw, json) Hash identifier: DzJXVTxPJey41xJCFkpSwGQq+9Rkki0lUtUnZLMWKYE= Subject key identifier: 28:E6:40:A1:AE:CB:7E:27:34:0C:1B:7B:99:7D:51:C2:84:EA:57:E3 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 13D9 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KOZAoa7Lfic0DBt7mX1RwoTqV-M.roa Signing time: Fri 01 Sep 2023 09:25:31 +0000 ROA not before: Fri 01 Sep 2023 09:25:31 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 122.146.110.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5081 (0x13d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:31 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=28E640A1AECB7E27340C1B7B997D51C284EA57E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:53:8b:be:81:0f:63:6a:c2:69:31:bd:b2:77: b4:44:f8:6e:15:b8:43:71:0e:e4:4d:da:b1:e6:ca: 1b:6e:10:aa:e9:c9:5b:83:ee:81:c5:ce:66:82:9c: 7b:eb:61:d0:84:96:a6:b8:7f:97:45:6c:ec:0c:49: 7b:1d:b0:cb:9e:11:c9:f9:a7:c8:ff:76:47:c7:6c: ed:87:6d:bf:aa:f1:c9:72:7a:35:82:dc:bc:06:36: a6:13:eb:b7:f4:ec:a1:5c:22:93:c4:23:e0:89:e6: 8d:d1:49:51:b1:5f:08:93:c8:87:9e:61:43:53:54: 5d:cb:0e:c0:a3:a0:b9:4d:d9:5d:46:3e:97:71:ba: 0b:77:a4:df:a9:4d:33:db:51:64:b0:b8:6d:62:d9: 8c:0b:cf:50:85:95:54:77:01:bd:95:cd:90:69:e1: af:70:08:74:d9:a0:ee:18:0e:1a:e1:4f:59:8f:95: 9d:88:7f:31:20:6d:c0:8d:8e:3f:bb:56:12:08:e5: 67:3f:74:12:50:03:b9:aa:75:b3:15:44:8f:ad:37: 85:93:df:b1:ff:1f:82:8e:66:4d:a2:5c:95:f2:18: bc:ed:1d:15:89:4c:52:49:1d:9f:14:ee:91:24:e3: bb:da:c7:31:59:48:c2:28:f1:fb:53:66:8e:14:e2: 93:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:E6:40:A1:AE:CB:7E:27:34:0C:1B:7B:99:7D:51:C2:84:EA:57:E3 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KOZAoa7Lfic0DBt7mX1RwoTqV-M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.146.110.0/23 Signature Algorithm: sha256WithRSAEncryption c3:ff:6e:e3:36:bf:5a:12:9d:c9:8a:04:6b:ff:1f:e1:3a:a2: de:3f:f6:ce:6e:56:c8:0f:ff:ec:e0:33:48:48:bc:24:82:ae: 9f:59:1e:9f:33:7c:0d:fe:7a:b1:cd:c9:2d:96:2c:28:ac:95: 0f:c7:b7:1a:2b:53:c2:58:9b:fc:6b:e6:6d:e3:9c:e6:f1:83: 38:6e:ab:9f:04:d9:86:04:91:a8:5e:fe:43:ca:82:a1:24:63: 32:df:6b:3e:17:e6:86:e1:a6:07:5f:d7:07:57:56:fd:03:7a: 5d:d8:a9:5f:5f:e9:be:5d:20:88:2a:2e:36:9e:91:1e:1a:cc: a4:c0:ec:67:e5:6c:e4:fc:d5:00:75:79:39:a0:d1:8c:c9:3d: a6:b0:22:e7:ac:51:87:db:dc:4c:6e:d4:50:ac:9a:77:e7:cf: 7e:f5:8a:7b:17:8b:12:a5:30:c5:61:65:fe:61:ee:72:6e:d3: f4:51:69:1c:9e:65:ac:c3:14:48:43:fe:fe:31:76:d1:50:ae: 5c:f1:2b:14:1d:6d:3b:5a:67:7f:71:fe:2f:86:3b:6e:cb:eb: 67:b1:d1:3e:77:cd:1d:4d:58:81:45:e0:99:45:ee:b8:44:a4: f5:45:89:b8:87:1f:c5:6d:15:10:cd:e9:fb:5b:ca:9d:9e:d4: 7e:f1:26:0c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE9kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MzFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI4RTY0MEExQUVDQjdF MjczNDBDMUI3Qjk5N0Q1MUMyODRFQTU3RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtU4u+gQ9jasJpMb2yd7RE+G4VuENxDuRN2rHmyhtuEKrpyVuD 7oHFzmaCnHvrYdCElqa4f5dFbOwMSXsdsMueEcn5p8j/dkfHbO2Hbb+q8clyejWC 3LwGNqYT67f07KFcIpPEI+CJ5o3RSVGxXwiTyIeeYUNTVF3LDsCjoLlN2V1GPpdx ugt3pN+pTTPbUWSwuG1i2YwLz1CFlVR3Ab2VzZBp4a9wCHTZoO4YDhrhT1mPlZ2I fzEgbcCNjj+7VhII5Wc/dBJQA7mqdbMVRI+tN4WT37H/H4KOZk2iXJXyGLztHRWJ TFJJHZ8U7pEk47vaxzFZSMIo8ftTZo4U4pNnAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUKOZAoa7Lfic0DBt7mX1RwoTqV+MwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvS09aQW9hN0xmaWMwREJ0N21YMVJ3 b1RxVi1NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAXqSbjAN BgkqhkiG9w0BAQsFAAOCAQEAw/9u4za/WhKdyYoEa/8f4Tqi3j/2zm5WyA//7OAz SEi8JIKun1kenzN8Df56sc3JLZYsKKyVD8e3GitTwlib/GvmbeOc5vGDOG6rnwTZ hgSRqF7+Q8qCoSRjMt9rPhfmhuGmB1/XB1dW/QN6XdipX1/pvl0giCouNp6RHhrM pMDsZ+Vs5PzVAHV5OaDRjMk9prAi56xRh9vcTG7UUKyad+fPfvWKexeLEqUwxWFl /mHucm7T9FFpHJ5lrMMUSEP+/jF20VCuXPErFB1tO1pnf3H+L4Y7bsvrZ7HRPnfN HU1YgUXgmUXuuESk9UWJuIcfxW0VEM3p+1vKnZ7UfvEmDA== -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org