$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZSHHQF6iIbkot_Jg3YLq4a0kZ3c.roa File: ZSHHQF6iIbkot_Jg3YLq4a0kZ3c.roa (raw, json) Hash identifier: Vj2Pk3VTbQulUOSHT7jl0ni4lbw8hQHWEc7JrFYhFuM= Subject key identifier: 65:21:C7:40:5E:A2:21:B9:28:B7:F2:60:DD:82:EA:E1:AD:24:67:77 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1337 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZSHHQF6iIbkot_Jg3YLq4a0kZ3c.roa Signing time: Fri 01 Sep 2023 09:24:38 +0000 ROA not before: Fri 01 Sep 2023 09:24:38 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38851 IP address blocks: 122.147.160.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4919 (0x1337) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:38 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6521C7405EA221B928B7F260DD82EAE1AD246777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:3c:4a:d2:f1:d5:69:8d:2d:7b:5d:73:e8:e0: ac:d3:95:10:ef:5c:e5:9a:cb:0a:75:55:cf:2e:fc: 79:a4:f4:bf:2f:9f:47:a0:bd:5a:22:dd:4b:ea:26: 4d:b3:28:ff:ce:38:fe:67:82:c2:6f:ba:81:92:7a: 5a:6d:a9:91:6e:cb:aa:6a:f1:45:4e:70:24:13:49: e3:59:e2:5e:0c:e4:57:1b:85:84:fc:dd:5c:d2:bc: 63:fb:14:a8:ff:c1:55:fb:08:51:23:80:72:fe:f3: 1b:11:7e:07:98:01:68:74:44:3b:66:96:8d:d1:15: 7d:7c:7a:ed:95:f3:6e:f5:ca:1c:0d:9c:bc:14:0e: 3f:b8:43:d3:55:09:35:b6:7b:69:cc:a4:e8:02:da: ef:37:3f:a6:f4:bb:f4:f1:9d:34:8a:4e:53:61:70: 02:0f:89:14:42:6f:30:21:37:a1:e0:c6:ac:3e:f1: f0:da:04:35:ae:f4:1c:49:bd:f6:84:0c:ec:ea:36: ec:59:27:c3:67:79:77:95:ca:84:3d:e3:51:d8:6a: 5b:90:b8:3e:0c:62:9a:6d:40:bd:bb:98:2b:46:bc: 63:81:f7:fb:4a:3a:0c:8d:03:57:d1:c0:3b:88:72: 2c:8d:3b:e4:33:d5:41:b8:4d:31:09:eb:a8:65:c1: b7:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:21:C7:40:5E:A2:21:B9:28:B7:F2:60:DD:82:EA:E1:AD:24:67:77 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZSHHQF6iIbkot_Jg3YLq4a0kZ3c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.160.0/22 Signature Algorithm: sha256WithRSAEncryption 50:d5:85:2f:5b:f2:8f:56:05:b8:f1:31:1c:50:b9:73:62:3d: 4e:72:3d:33:14:d6:e5:92:3b:a6:e8:a8:3d:32:8e:2c:6a:64: c2:ba:96:7c:df:cb:42:9a:71:51:bc:38:72:1f:ce:d0:4a:bd: 29:bf:ba:c3:e6:db:13:40:ca:22:1a:d7:97:1c:a7:e7:ff:9c: 39:1d:b3:30:cd:6c:ab:4b:a2:00:b7:7e:2b:0b:ac:62:ff:a9: 5a:56:2c:47:2d:fc:e4:4b:9b:bf:e5:b7:0a:ba:a2:d3:98:10: d8:71:cd:7c:c1:0d:11:c8:11:8e:33:4e:af:2b:20:0b:2d:76: 1e:7d:f2:1f:a1:ed:ea:b9:a2:1f:fb:8f:f1:49:21:74:a9:1b: 64:09:a4:4a:8f:07:87:75:a3:25:ed:67:d1:e5:ca:a5:71:b4: 6d:4d:48:64:33:09:11:a1:20:a6:9f:a9:14:21:33:80:08:76: 7c:aa:c9:02:86:50:cc:cb:ef:91:91:d9:6d:35:7f:45:08:b8: 82:63:50:41:de:bb:bc:86:17:84:d6:ab:95:ab:3d:dd:56:08: 8f:67:37:31:5e:9a:28:69:2b:6e:cd:97:f4:d9:38:9f:39:16: 71:1d:7b:ce:b3:71:e2:2f:bd:4e:c5:d2:e4:d0:e3:8d:4b:f8: 26:2f:cc:5b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEzcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY1MjFDNzQwNUVBMjIx QjkyOEI3RjI2MEREODJFQUUxQUQyNDY3NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxPErS8dVpjS17XXPo4KzTlRDvXOWaywp1Vc8u/Hmk9L8vn0eg vVoi3UvqJk2zKP/OOP5ngsJvuoGSelptqZFuy6pq8UVOcCQTSeNZ4l4M5FcbhYT8 3VzSvGP7FKj/wVX7CFEjgHL+8xsRfgeYAWh0RDtmlo3RFX18eu2V8271yhwNnLwU Dj+4Q9NVCTW2e2nMpOgC2u83P6b0u/TxnTSKTlNhcAIPiRRCbzAhN6Hgxqw+8fDa BDWu9BxJvfaEDOzqNuxZJ8NneXeVyoQ941HYaluQuD4MYpptQL27mCtGvGOB9/tK OgyNA1fRwDuIciyNO+Qz1UG4TTEJ66hlwbc7AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUZSHHQF6iIbkot/Jg3YLq4a0kZ3cwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWlNISFFGNmlJYmtvdF9KZzNZTHE0 YTBrWjNjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnqToDAN BgkqhkiG9w0BAQsFAAOCAQEAUNWFL1vyj1YFuPExHFC5c2I9TnI9MxTW5ZI7puio PTKOLGpkwrqWfN/LQppxUbw4ch/O0Eq9Kb+6w+bbE0DKIhrXlxyn5/+cOR2zMM1s q0uiALd+KwusYv+pWlYsRy385Eubv+W3Crqi05gQ2HHNfMENEcgRjjNOrysgCy12 Hn3yH6Ht6rmiH/uP8UkhdKkbZAmkSo8Hh3WjJe1n0eXKpXG0bU1IZDMJEaEgpp+p FCEzgAh2fKrJAoZQzMvvkZHZbTV/RQi4gmNQQd67vIYXhNarlas93VYIj2c3MV6a KGkrbs2X9Nk4nzkWcR17zrNx4i+9TsXS5NDjjUv4Ji/MWw== -----END CERTIFICATE-----Generated at Mon May 20 11:12:52 2024 by rpki-client on console-ams.rpki-client.org