$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Pzs3FT9JvVRrgVqBGcpalrU2tNQ.roa File: Pzs3FT9JvVRrgVqBGcpalrU2tNQ.roa (raw, json) Hash identifier: 5UzwN+wdKs8HjKi2hLkC6TZY2ZOhE+g9+ao1wBaZ86Q= Subject key identifier: 3F:3B:37:15:3F:49:BD:54:6B:81:5A:81:19:CA:5A:96:B5:36:B4:D4 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 16BF Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Pzs3FT9JvVRrgVqBGcpalrU2tNQ.roa Signing time: Mon 26 Aug 2024 05:22:34 +0000 ROA not before: Mon 26 Aug 2024 05:22:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 122.146.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5823 (0x16bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:34 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3F3B37153F49BD546B815A8119CA5A96B536B4D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3f:86:5c:ee:c0:64:3c:d6:9a:89:b2:82:d9: d1:1f:79:67:ad:ad:5c:8e:27:16:a5:2d:fc:41:23: 9e:9e:87:2b:b3:e4:28:37:63:67:62:92:d2:a4:cf: 6f:3f:ab:b6:22:e8:ac:88:8e:66:56:a5:dd:57:c4: 9f:4a:0c:4d:27:84:ec:02:5f:02:ab:e0:3d:fa:b0: b9:bd:f0:84:05:e1:cd:3a:a2:6a:fa:ba:d1:5e:9c: 20:02:ce:88:8d:78:76:de:d9:2c:d6:aa:ab:2f:b3: 99:7f:da:67:9a:70:20:10:f0:07:5a:be:ad:de:43: ac:fc:b7:d7:fb:6d:2d:5d:30:6c:88:06:93:5f:f2: a8:9d:af:fc:5b:80:1b:cd:f2:3c:13:e3:20:70:00: 47:34:9a:a3:d7:fb:a4:95:86:29:7b:3a:d9:c2:9f: 61:23:8b:21:00:8c:8a:25:0a:dc:41:e1:9a:fb:f2: ed:29:a7:22:8b:91:d5:7d:0e:75:51:52:49:55:6c: 47:25:1d:3c:d4:9d:05:ce:da:a6:30:ae:df:0e:7b: ca:44:2a:02:29:c9:4d:4f:11:65:a8:f1:ed:93:43: 88:07:26:75:d9:45:a3:28:cb:c1:af:46:6f:23:65: d0:32:89:1a:56:46:05:c6:19:bf:60:3a:f9:2b:39: dc:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:3B:37:15:3F:49:BD:54:6B:81:5A:81:19:CA:5A:96:B5:36:B4:D4 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Pzs3FT9JvVRrgVqBGcpalrU2tNQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.146.0.0/15 Signature Algorithm: sha256WithRSAEncryption 00:d2:9c:2e:37:07:bb:50:88:7e:90:7a:c5:a3:fd:73:f3:49: 79:36:ef:83:dc:d4:66:96:e0:78:e1:58:0f:e6:e3:47:ff:96: b0:95:db:de:5a:3f:c9:a8:de:22:82:1c:0e:d9:36:e8:b3:ab: 32:91:9a:ce:8f:09:90:a8:85:2e:33:82:31:67:17:fe:5f:be: 87:bd:60:2b:69:67:52:3d:c7:57:1e:1f:b2:1b:67:88:2e:bb: 2c:cc:9b:79:96:97:19:dd:a5:4a:11:6d:50:d6:6a:2a:c1:36: 85:85:f7:c8:12:7a:34:dd:16:34:f7:ee:b4:8b:de:09:3d:dd: 17:e9:7a:70:3c:2a:06:4b:33:3d:a3:93:d8:62:69:bb:2b:65: 72:3b:30:fb:43:6c:23:6d:a8:92:48:0b:41:ee:cf:d6:62:90: 64:af:93:5d:97:dc:74:e9:f3:e0:8f:5d:98:87:d6:d6:cb:f1: a4:ad:76:b3:88:a6:97:fe:57:7d:fc:8c:a6:9f:29:02:33:96: b1:f6:0f:1e:f0:85:18:5a:bb:a8:ce:4b:ae:dc:55:60:ce:33: 14:a7:37:bc:95:6b:df:4a:c9:b6:a4:67:48:dc:eb:31:3f:f0: 42:c7:c5:da:54:ae:30:f1:5c:06:0e:e4:02:39:74:c6:af:cc: 71:d1:0f:02 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICFr8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNGM0IzNzE1M0Y0OUJE NTQ2QjgxNUE4MTE5Q0E1QTk2QjUzNkI0RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1P4Zc7sBkPNaaibKC2dEfeWetrVyOJxalLfxBI56ehyuz5Cg3 Y2diktKkz28/q7Yi6KyIjmZWpd1XxJ9KDE0nhOwCXwKr4D36sLm98IQF4c06omr6 utFenCACzoiNeHbe2SzWqqsvs5l/2meacCAQ8Adavq3eQ6z8t9f7bS1dMGyIBpNf 8qidr/xbgBvN8jwT4yBwAEc0mqPX+6SVhil7OtnCn2EjiyEAjIolCtxB4Zr78u0p pyKLkdV9DnVRUklVbEclHTzUnQXO2qYwrt8Oe8pEKgIpyU1PEWWo8e2TQ4gHJnXZ RaMoy8GvRm8jZdAyiRpWRgXGGb9gOvkrOdwNAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUPzs3FT9JvVRrgVqBGcpalrU2tNQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUHpzM0ZUOUp2VlJyZ1ZxQkdjcGFs clUydE5RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAXqSMA0G CSqGSIb3DQEBCwUAA4IBAQAA0pwuNwe7UIh+kHrFo/1z80l5Nu+D3NRmluB44VgP 5uNH/5awldveWj/JqN4ighwO2Tbos6sykZrOjwmQqIUuM4IxZxf+X76HvWAraWdS PcdXHh+yG2eILrsszJt5lpcZ3aVKEW1Q1moqwTaFhffIEno03RY09+60i94JPd0X 6XpwPCoGSzM9o5PYYmm7K2VyOzD7Q2wjbaiSSAtB7s/WYpBkr5Ndl9x06fPgj12Y h9bWy/GkrXaziKaX/ld9/IymnykCM5ax9g8e8IUYWruozkuu3FVgzjMUpze8lWvf Ssm2pGdI3OsxP/BCx8XaVK4w8VwGDuQCOXTGr8xx0Q8C -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:10 2024 by rpki-client on console-ams.rpki-client.org