$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/PzWQptUD4soaqx7FQRmHfOXbrWA.roa File: PzWQptUD4soaqx7FQRmHfOXbrWA.roa (raw, json) Hash identifier: S6RRNEPhRErGPt75L5ybzsItcl8wLM5Dt2mUxWvg8Ks= Subject key identifier: 3F:35:90:A6:D5:03:E2:CA:1A:AB:1E:C5:41:19:87:7C:E5:DB:AD:60 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1343 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PzWQptUD4soaqx7FQRmHfOXbrWA.roa Signing time: Fri 01 Sep 2023 09:24:42 +0000 ROA not before: Fri 01 Sep 2023 09:24:42 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 123.204.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4931 (0x1343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:42 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=3F3590A6D503E2CA1AAB1EC54119877CE5DBAD60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:96:6c:82:b3:27:78:97:1b:9f:eb:aa:b1:4f: 2e:9c:52:7a:1c:19:46:b8:5b:b7:8c:e0:00:77:c0: 82:ae:bf:0b:58:8e:d6:cb:c1:59:9f:93:6d:d5:ec: 8c:78:4f:21:a6:bc:df:d5:d4:61:e0:60:c2:3a:8b: 38:a6:c7:d3:7f:44:0e:34:84:51:a6:f5:4f:d1:29: 91:33:63:ae:9f:1d:ad:45:4f:77:53:2c:43:85:a4: c9:ac:c8:80:d5:e1:db:a8:e6:47:3c:10:f5:94:f5: dc:e8:f8:dc:70:a5:a3:ce:e3:ee:e6:d9:ee:8f:45: a9:1c:50:9a:dd:67:ee:32:71:3d:7e:bd:2f:f8:c0: ab:b0:8c:24:cf:1e:86:d5:3f:e5:15:09:b3:fc:f8: fc:b8:2e:3d:83:c6:a0:4d:25:c7:13:d6:83:b6:47: e1:e3:a5:5f:77:c1:cc:0c:9b:54:c6:47:75:8a:6b: df:33:67:88:a4:6e:e3:07:58:e4:98:d2:3e:9b:c6: 7e:ae:ee:d4:64:b3:c3:30:f3:ba:8c:e2:ad:26:36: db:68:d8:4a:4e:d8:99:eb:32:f8:e7:50:40:d9:c2: 70:6d:2e:2d:f6:c0:a9:a3:37:a6:3e:ed:bc:8c:ac: 82:d9:63:15:bf:5d:ea:3e:93:52:09:e1:f2:44:3c: 28:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:35:90:A6:D5:03:E2:CA:1A:AB:1E:C5:41:19:87:7C:E5:DB:AD:60 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PzWQptUD4soaqx7FQRmHfOXbrWA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.204.0.0/15 Signature Algorithm: sha256WithRSAEncryption 7a:d6:ea:83:ca:2f:2d:a2:4e:50:5e:70:ce:f0:c0:ec:42:4f: 02:c9:6b:86:96:86:20:ac:92:93:e4:85:11:a4:d8:84:03:74: fd:2f:bc:8a:97:59:48:eb:7f:c0:43:14:2b:96:97:53:8c:09: 1b:24:c2:ed:99:d4:66:aa:68:43:04:ad:68:fc:41:b5:ab:89: c1:8b:56:e7:fd:38:65:0e:a0:0c:e2:d6:fe:a8:69:8c:b4:ab: 5e:83:1c:e7:5a:fa:51:20:62:dc:23:b7:79:91:e3:ab:40:e4: 39:d0:d4:f3:a0:92:0e:65:83:36:9a:a5:fa:63:80:58:07:be: 5b:ac:76:35:eb:3e:99:37:12:72:dc:25:8b:ad:b1:71:34:5f: a5:a0:45:e1:e1:38:58:c9:06:51:c7:ae:06:2c:26:f2:07:b6: 18:fb:4d:d1:61:8b:6f:3a:06:4f:fa:9b:f4:e8:2c:9c:21:5a: 6a:6d:a6:36:a8:b4:8c:fb:a1:c2:94:8d:eb:ca:f1:df:24:1d: 8a:af:a7:d5:22:66:f3:91:cf:3f:53:2f:22:dd:35:a4:4c:d0: fd:0e:ab:4f:e8:f0:20:1d:c8:8a:c4:a0:c7:7a:28:69:a1:80: 11:bd:bd:02:3a:0d:fb:ba:6f:78:68:8a:43:dd:3e:6d:66:82: fb:7c:aa:bc -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICE0MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0NDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDNGMzU5MEE2RDUwM0Uy Q0ExQUFCMUVDNTQxMTk4NzdDRTVEQkFENjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCalmyCsyd4lxuf66qxTy6cUnocGUa4W7eM4AB3wIKuvwtYjtbL wVmfk23V7Ix4TyGmvN/V1GHgYMI6izimx9N/RA40hFGm9U/RKZEzY66fHa1FT3dT LEOFpMmsyIDV4duo5kc8EPWU9dzo+NxwpaPO4+7m2e6PRakcUJrdZ+4ycT1+vS/4 wKuwjCTPHobVP+UVCbP8+Py4Lj2DxqBNJccT1oO2R+HjpV93wcwMm1TGR3WKa98z Z4ikbuMHWOSY0j6bxn6u7tRks8Mw87qM4q0mNtto2EpO2JnrMvjnUEDZwnBtLi32 wKmjN6Y+7byMrILZYxW/Xeo+k1IJ4fJEPCijAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUPzWQptUD4soaqx7FQRmHfOXbrWAwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUHpXUXB0VUQ0c29hcXg3RlFSbUhm T1hicldBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAXvMMA0G CSqGSIb3DQEBCwUAA4IBAQB61uqDyi8tok5QXnDO8MDsQk8CyWuGloYgrJKT5IUR pNiEA3T9L7yKl1lI63/AQxQrlpdTjAkbJMLtmdRmqmhDBK1o/EG1q4nBi1bn/Thl DqAM4tb+qGmMtKtegxznWvpRIGLcI7d5keOrQOQ50NTzoJIOZYM2mqX6Y4BYB75b rHY16z6ZNxJy3CWLrbFxNF+loEXh4ThYyQZRx64GLCbyB7YY+03RYYtvOgZP+pv0 6CycIVpqbaY2qLSM+6HClI3ryvHfJB2Kr6fVImbzkc8/Uy8i3TWkTND9DqtP6PAg HciKxKDHeihpoYARvb0COg37um94aIpD3T5tZoL7fKq8 -----END CERTIFICATE-----Generated at Mon May 20 12:32:57 2024 by rpki-client on console-fra.rpki-client.org