$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZOZh_GEnT6v1pXHTCc08puH6aKM.roa File: ZOZh_GEnT6v1pXHTCc08puH6aKM.roa (raw, json) Hash identifier: 0Zrr3IzsvPrv83XP7S2z/ey5fO4wsMEwgMKwA7fSy7c= Subject key identifier: 64:E6:61:FC:61:27:4F:AB:F5:A5:71:D3:09:CD:3C:A6:E1:FA:68:A3 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1394 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZOZh_GEnT6v1pXHTCc08puH6aKM.roa Signing time: Fri 01 Sep 2023 09:25:10 +0000 ROA not before: Fri 01 Sep 2023 09:25:10 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 112.105.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5012 (0x1394) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:25:10 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=64E661FC61274FABF5A571D309CD3CA6E1FA68A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:64:f0:9f:02:2f:78:9e:4d:7a:94:05:83:18: 95:c7:cf:f6:03:65:81:3e:f6:95:ab:b2:7c:32:14: 68:07:5e:c5:02:72:cb:35:cb:34:06:5e:2f:8a:60: a6:09:49:e7:63:e3:91:d3:78:b8:5f:29:2b:26:7c: 8d:77:9e:50:db:aa:40:05:5c:0c:f0:e6:55:f2:37: 00:5b:cb:e4:6a:2f:bf:b0:e6:fe:a7:fc:7b:83:aa: 81:0f:c0:ea:5d:eb:59:d9:8f:1b:70:10:0d:a1:d9: 62:0a:68:c5:c8:0a:f5:9d:22:07:3d:3f:92:21:c3: 67:56:e9:8d:59:4b:b8:94:e1:0c:10:64:28:3f:58: 48:af:5b:01:10:9d:70:b2:e0:1f:85:f4:0c:d5:53: b5:77:40:e1:10:c2:7e:77:3e:53:e1:dc:59:70:a9: 4c:a3:22:11:3d:0a:2c:a1:46:dc:89:b8:8e:8c:69: 95:9b:d0:7e:f0:d2:ac:ef:74:a7:97:e6:d8:94:05: e5:cb:0a:5e:c3:be:85:4c:40:06:60:d4:6f:39:81: be:2e:08:2f:e1:43:fb:ba:de:4c:1a:a6:d9:b8:76: 6d:84:61:6f:23:ba:47:a4:11:d5:84:c3:04:12:27: 99:95:d4:ec:d1:86:f8:90:66:af:4b:03:61:80:c8: 30:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:E6:61:FC:61:27:4F:AB:F5:A5:71:D3:09:CD:3C:A6:E1:FA:68:A3 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZOZh_GEnT6v1pXHTCc08puH6aKM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.105.8.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:b4:89:0e:39:96:6b:9c:18:c4:5c:1d:06:57:8c:30:91:6c: f2:4c:00:23:e2:53:8b:4c:2c:fb:eb:9b:ec:77:08:b0:06:ec: f2:ef:8d:16:25:e7:9f:fe:44:44:40:3c:be:05:8c:fb:12:d7: 43:cd:2d:03:4c:a5:d4:1c:3b:67:e8:aa:ba:89:9a:8f:e6:42: 14:73:ef:be:c8:e6:f3:4d:d9:60:94:a2:f2:94:26:87:1b:c6: 61:2b:f7:67:c6:40:90:9a:b2:04:7e:51:85:b4:47:16:79:49: 94:61:3c:92:6b:42:c5:3b:5e:b5:0f:2a:4a:07:5f:f2:1f:3e: 3e:b5:da:0e:76:ec:71:f8:a4:e3:68:73:3a:2b:17:c0:7a:c5: e3:b4:33:6f:23:97:01:06:93:97:f7:a3:c6:02:27:85:35:75: ec:3c:6b:30:1a:2d:28:b2:d5:e8:f4:24:ff:af:6c:0c:3f:40: bc:aa:66:4d:af:15:9e:2d:d7:3b:44:dd:01:8c:6d:65:11:87: a5:8f:69:74:3c:02:0d:1a:7d:c6:00:43:01:6c:b2:8d:e0:b8: 23:8d:fd:84:2d:c3:3c:02:7b:f7:bf:ef:c8:03:3c:1e:cc:ad: 76:21:a3:90:68:f1:ef:ff:5b:4d:76:f6:4c:86:13:6f:d6:d7: d0:f1:2f:05 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICE5QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI1MTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY0RTY2MUZDNjEyNzRG QUJGNUE1NzFEMzA5Q0QzQ0E2RTFGQTY4QTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZZPCfAi94nk16lAWDGJXHz/YDZYE+9pWrsnwyFGgHXsUCcss1 yzQGXi+KYKYJSedj45HTeLhfKSsmfI13nlDbqkAFXAzw5lXyNwBby+RqL7+w5v6n /HuDqoEPwOpd61nZjxtwEA2h2WIKaMXICvWdIgc9P5Ihw2dW6Y1ZS7iU4QwQZCg/ WEivWwEQnXCy4B+F9AzVU7V3QOEQwn53PlPh3FlwqUyjIhE9CiyhRtyJuI6MaZWb 0H7w0qzvdKeX5tiUBeXLCl7DvoVMQAZg1G85gb4uCC/hQ/u63kwaptm4dm2EYW8j ukekEdWEwwQSJ5mV1OzRhviQZq9LA2GAyDDFAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUZOZh/GEnT6v1pXHTCc08puH6aKMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWk9aaF9HRW5UNnYxcFhIVENjMDhw dUg2YUtNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHBpCDAN BgkqhkiG9w0BAQsFAAOCAQEAe7SJDjmWa5wYxFwdBleMMJFs8kwAI+JTi0ws++ub 7HcIsAbs8u+NFiXnn/5EREA8vgWM+xLXQ80tA0yl1Bw7Z+iquomaj+ZCFHPvvsjm 803ZYJSi8pQmhxvGYSv3Z8ZAkJqyBH5RhbRHFnlJlGE8kmtCxTtetQ8qSgdf8h8+ PrXaDnbscfik42hzOisXwHrF47QzbyOXAQaTl/ejxgInhTV17DxrMBotKLLV6PQk /69sDD9AvKpmTa8Vni3XO0TdAYxtZRGHpY9pdDwCDRp9xgBDAWyyjeC4I439hC3D PAJ797/vyAM8HsytdiGjkGjx7/9bTXb2TIYTb9bX0PEvBQ== -----END CERTIFICATE-----Generated at Sun Jun 2 09:37:18 2024 by rpki-client on console-ams.rpki-client.org