$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/d9iw1y_XHUqk_fDe0watiiKLM8M.roa File: d9iw1y_XHUqk_fDe0watiiKLM8M.roa (raw, json) Hash identifier: tbfj5vshuXIUjXRl2EHbXB91bhsXdQ8fK1YL6JWsiFc= Subject key identifier: 77:D8:B0:D7:2F:D7:1D:4A:A4:FD:F0:DE:D3:06:AD:8A:22:8B:33:C3 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 12E2 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/d9iw1y_XHUqk_fDe0watiiKLM8M.roa Signing time: Fri 01 Sep 2023 09:24:13 +0000 ROA not before: Fri 01 Sep 2023 09:24:13 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9919 IP address blocks: 122.147.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 09:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4834 (0x12e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 1 09:24:13 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=77D8B0D72FD71D4AA4FDF0DED306AD8A228B33C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f9:31:16:7f:3a:51:d6:3a:7f:c5:3c:fd:18: 79:2c:40:67:f1:f4:89:57:4b:56:ff:4a:fe:c4:0b: 2a:72:98:65:50:b9:ff:08:70:14:ec:27:2f:1d:eb: 04:9a:7b:61:72:66:00:46:29:71:21:0b:1c:87:ad: c3:02:af:68:1d:d7:02:eb:78:ae:c6:bf:e4:4c:81: ac:b3:a2:d3:0c:5d:02:93:dc:b3:b4:72:a2:97:eb: 92:fe:99:d2:27:59:81:7f:24:d0:ce:69:f6:29:cc: 1a:d6:ba:d3:f7:78:a1:b9:55:42:8e:26:3c:b2:54: 5a:a2:d7:3c:25:1f:5a:51:6c:72:46:70:84:a5:00: 15:13:e0:97:51:71:cc:87:5f:f9:3f:84:99:35:2c: b8:ef:36:5e:cf:c4:bf:89:d4:d0:ca:68:55:7e:15: c5:98:d3:10:06:d4:d3:bb:2f:95:54:75:de:97:88: c8:95:21:b6:87:c9:d7:fc:a8:a3:f8:a9:29:ab:fe: d8:e4:2b:fb:a2:2e:e4:5e:9b:76:d5:4c:bb:5e:0b: 38:2c:cb:49:7f:8f:fe:f8:6c:76:c6:ac:2a:f6:a0: c6:cd:b0:04:7a:02:05:cc:0b:9f:82:1c:52:be:83: 3d:24:27:b9:88:63:d8:de:46:34:c9:8f:87:c3:ad: 07:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:D8:B0:D7:2F:D7:1D:4A:A4:FD:F0:DE:D3:06:AD:8A:22:8B:33:C3 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/d9iw1y_XHUqk_fDe0watiiKLM8M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.176.0/20 Signature Algorithm: sha256WithRSAEncryption 21:18:e5:49:cb:f8:94:d5:4e:8f:ea:ec:11:77:00:19:9d:36: 90:38:c6:a3:ca:7a:6c:0d:43:69:45:6c:e9:27:92:75:4e:90: 27:7a:0c:30:34:3d:4d:96:5e:ab:b7:23:3f:0f:6e:65:c0:da: b7:28:c9:4c:a7:a1:b3:3f:a7:ee:53:d3:29:db:1d:f9:32:a6: 09:5a:ac:df:95:d5:ca:23:1f:94:5e:b2:2e:a1:e6:b1:02:26: 60:60:82:ca:5b:85:9c:41:f1:e6:de:fd:cc:b9:cc:92:fa:bc: 62:0b:98:c5:a6:33:a5:84:4b:12:59:7c:eb:1d:b4:b1:00:a5: fe:6a:66:5a:de:14:65:4e:d4:06:56:3c:21:ee:bc:b3:83:59: fb:7c:6d:25:8a:13:fe:57:b1:10:d7:9d:38:0c:c3:30:7d:3c: 2a:7e:52:74:3a:13:94:bf:b2:a3:c5:a1:8c:18:b4:f6:ff:4d: 5b:b5:98:67:41:9a:72:4d:aa:31:b2:22:79:50:fa:09:8e:9b: 31:10:96:9f:de:0b:2b:12:43:03:3b:78:d4:ee:d6:04:9d:ae: 95:f5:09:7b:c5:46:61:3f:ba:e1:87:4b:c1:fc:6d:98:5f:55: 05:ef:98:34:b1:04:f5:f5:05:54:43:7c:ab:4d:ef:2e:c1:6d: ff:38:a8:5f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEuIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yMzA5MDEw OTI0MTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc3RDhCMEQ3MkZENzFE NEFBNEZERjBERUQzMDZBRDhBMjI4QjMzQzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5+TEWfzpR1jp/xTz9GHksQGfx9IlXS1b/Sv7ECypymGVQuf8I cBTsJy8d6wSae2FyZgBGKXEhCxyHrcMCr2gd1wLreK7Gv+RMgayzotMMXQKT3LO0 cqKX65L+mdInWYF/JNDOafYpzBrWutP3eKG5VUKOJjyyVFqi1zwlH1pRbHJGcISl ABUT4JdRccyHX/k/hJk1LLjvNl7PxL+J1NDKaFV+FcWY0xAG1NO7L5VUdd6XiMiV IbaHydf8qKP4qSmr/tjkK/uiLuRem3bVTLteCzgsy0l/j/74bHbGrCr2oMbNsAR6 AgXMC5+CHFK+gz0kJ7mIY9jeRjTJj4fDrQejAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUd9iw1y/XHUqk/fDe0watiiKLM8MwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZDlpdzF5X1hIVXFrX2ZEZTB3YXRp aUtMTThNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBHqTsDAN BgkqhkiG9w0BAQsFAAOCAQEAIRjlScv4lNVOj+rsEXcAGZ02kDjGo8p6bA1DaUVs 6SeSdU6QJ3oMMDQ9TZZeq7cjPw9uZcDatyjJTKehsz+n7lPTKdsd+TKmCVqs35XV yiMflF6yLqHmsQImYGCCyluFnEHx5t79zLnMkvq8YguYxaYzpYRLEll86x20sQCl /mpmWt4UZU7UBlY8Ie68s4NZ+3xtJYoT/lexENedOAzDMH08Kn5SdDoTlL+yo8Wh jBi09v9NW7WYZ0Gack2qMbIieVD6CY6bMRCWn94LKxJDAzt41O7WBJ2ulfUJe8VG YT+64YdLwfxtmF9VBe+YNLEE9fUFVEN8q03vLsFt/zioXw== -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:38 2024 by rpki-client on console-ams.rpki-client.org