$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-WFdBfCeBx4iSbPofHTzUC6whhg.roa File: -WFdBfCeBx4iSbPofHTzUC6whhg.roa (raw, json) Hash identifier: VYCdZG4ASz94ujwvLWr1Y3tz0l51RWxrvC+Lxc1OHpg= Subject key identifier: F9:61:5D:05:F0:9E:07:1E:22:49:B3:E8:7C:74:F3:50:2E:B0:86:18 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2878 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-WFdBfCeBx4iSbPofHTzUC6whhg.roa Signing time: Fri 01 Sep 2023 10:05:23 +0000 ROA not before: Fri 01 Sep 2023 10:05:23 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 106.1.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10360 (0x2878) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:23 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F9615D05F09E071E2249B3E87C74F3502EB08618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d5:5c:3f:67:3f:12:74:bd:5d:e9:23:f3:5c: 80:41:e6:8c:53:70:64:2a:2d:f3:fb:13:0e:ab:1a: 86:61:c9:6e:74:0e:86:5f:b0:e0:db:a5:1c:1f:45: 7c:6a:ec:c7:d4:e3:71:38:d1:56:75:eb:60:07:e5: f1:df:a2:1d:b6:ca:2e:ef:94:f2:53:cd:22:d6:d1: b6:77:42:14:9c:a7:4c:c9:c2:47:3a:8f:25:8a:9a: ef:18:73:54:e8:88:01:79:9c:93:28:18:61:38:ba: f8:73:80:20:20:0a:55:f4:fa:48:10:3c:f8:82:fc: 67:15:d1:ab:9b:1f:64:e7:b3:57:2e:51:ce:bc:3f: b0:41:43:d5:1f:ce:ec:0f:3e:48:be:50:98:a1:a9: e0:5c:16:ab:f5:33:fa:60:b5:34:90:6b:c5:56:08: a8:a5:a8:c4:68:41:68:e2:c1:66:c8:b9:4b:18:33: cc:15:f7:72:03:81:7d:42:6d:a0:2d:42:a3:16:7f: b2:ea:c8:67:bc:b8:52:07:ca:1d:d8:d7:dc:97:a4: 58:b4:5f:af:a1:0f:67:0c:d3:f8:a1:6c:8e:cd:a1: ac:73:6a:b1:ba:68:1a:b4:a6:ca:6e:f3:a2:c7:30: 89:8d:ff:6f:fc:75:29:1a:16:15:52:43:fc:d1:27: b1:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:61:5D:05:F0:9E:07:1E:22:49:B3:E8:7C:74:F3:50:2E:B0:86:18 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-WFdBfCeBx4iSbPofHTzUC6whhg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.205.0/24 Signature Algorithm: sha256WithRSAEncryption a8:3e:33:4c:e1:03:5b:d8:15:e6:b5:8a:65:7d:0f:77:17:cc: 20:d4:a3:a7:c1:5d:12:96:26:07:54:7a:6a:44:f2:d7:c0:5d: 61:06:60:24:48:92:cc:88:84:79:df:2e:81:1d:25:0d:17:0a: 65:66:61:78:7f:75:0a:d6:bc:d3:6d:89:92:8b:5f:f6:87:86: 61:f4:35:20:b6:e7:cc:83:75:ea:f8:fe:7e:49:b6:38:51:3b: d4:c1:ac:4f:f8:b1:9d:e6:b4:d4:1e:fe:c7:0c:76:90:0a:6c: 6a:aa:ac:bb:f2:6f:9a:1d:bc:67:cd:42:d9:7b:e9:d0:97:47: 09:a7:f5:e9:5b:89:b3:03:85:61:f5:d5:6d:9a:49:e3:b8:ac: bf:40:b0:21:a7:47:47:45:73:c0:3a:3f:f6:1e:ce:2a:23:09: 9b:6d:6e:7d:d0:92:c4:c8:56:37:92:8f:94:6b:d3:ac:d8:31: 91:af:ff:72:97:fd:15:e3:a2:67:8a:9e:a2:96:e3:5e:3b:4b: 68:c8:06:d4:8f:a1:99:62:b0:72:52:49:05:3a:2b:3d:0b:46: 99:cb:ec:ee:91:55:5b:4f:f1:df:f1:f0:75:d7:27:0b:c6:97: 2b:26:a5:df:87:a9:3c:07:fb:44:b2:c3:34:be:20:b2:4d:6a: f6:63:32:08 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKHgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1MjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY5NjE1RDA1RjA5RTA3 MUUyMjQ5QjNFODdDNzRGMzUwMkVCMDg2MTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCg1Vw/Zz8SdL1d6SPzXIBB5oxTcGQqLfP7Ew6rGoZhyW50DoZf sODbpRwfRXxq7MfU43E40VZ162AH5fHfoh22yi7vlPJTzSLW0bZ3QhScp0zJwkc6 jyWKmu8Yc1ToiAF5nJMoGGE4uvhzgCAgClX0+kgQPPiC/GcV0aubH2Tns1cuUc68 P7BBQ9UfzuwPPki+UJihqeBcFqv1M/pgtTSQa8VWCKilqMRoQWjiwWbIuUsYM8wV 93IDgX1CbaAtQqMWf7LqyGe8uFIHyh3Y19yXpFi0X6+hD2cM0/ihbI7NoaxzarG6 aBq0pspu86LHMImN/2/8dSkaFhVSQ/zRJ7EpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+WFdBfCeBx4iSbPofHTzUC6whhgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLy1XRmRCZkNlQng0aVNiUG9m SFR6VUM2d2hoZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq Ac0wDQYJKoZIhvcNAQELBQADggEBAKg+M0zhA1vYFea1imV9D3cXzCDUo6fBXRKW JgdUempE8tfAXWEGYCRIksyIhHnfLoEdJQ0XCmVmYXh/dQrWvNNtiZKLX/aHhmH0 NSC258yDder4/n5JtjhRO9TBrE/4sZ3mtNQe/scMdpAKbGqqrLvyb5odvGfNQtl7 6dCXRwmn9elbibMDhWH11W2aSeO4rL9AsCGnR0dFc8A6P/YeziojCZttbn3QksTI VjeSj5Rr06zYMZGv/3KX/RXjomeKnqKW4147S2jIBtSPoZlisHJSSQU6Kz0LRpnL 7O6RVVtP8d/x8HXXJwvGlysmpd+HqTwH+0SywzS+ILJNavZjMgg= -----END CERTIFICATE-----Generated at Mon Jun 3 10:15:28 2024 by rpki-client on console-fra.rpki-client.org