$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-wW83zLG4oQh6Wj4LZfdo_zkf5M.roa File: -wW83zLG4oQh6Wj4LZfdo_zkf5M.roa (raw, json) Hash identifier: fTKMQRXIkDVgGOJl5kziBJtJLpVPYVu3Z1wFd3vjkTE= Subject key identifier: FB:05:BC:DF:32:C6:E2:84:21:E9:68:F8:2D:97:DD:A3:FC:E4:7F:93 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2860 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-wW83zLG4oQh6Wj4LZfdo_zkf5M.roa Signing time: Fri 01 Sep 2023 10:05:16 +0000 ROA not before: Fri 01 Sep 2023 10:05:16 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 180.176.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10336 (0x2860) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:16 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=FB05BCDF32C6E28421E968F82D97DDA3FCE47F93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:54:ab:2e:14:05:c9:88:35:68:1d:a3:48:cc: a4:ec:93:8c:9d:c9:46:1d:95:9d:a4:43:12:98:9e: 07:96:3d:1f:1b:07:7f:97:0f:a9:f9:c1:d2:b7:db: 39:ea:ca:7a:1b:cc:9d:6f:06:6f:77:b4:21:78:eb: 20:20:97:7e:1e:f9:06:b0:1e:8c:ce:6f:dc:77:61: 77:7d:1e:a5:ed:bb:ac:c8:b2:6d:9a:7a:7f:d6:c1: 1e:94:01:1b:be:69:1f:af:f0:1b:4b:3a:02:d4:eb: 8f:b2:d6:a6:27:50:5b:a6:64:bf:0d:b5:5b:9d:4b: b4:71:68:a4:3c:31:5c:00:39:2a:42:67:7e:d7:a2: 9d:06:f3:92:cd:91:65:36:1a:51:28:08:f5:46:25: af:ec:21:89:3e:be:e7:30:f9:c8:1b:68:d5:a2:11: 9c:32:a7:3a:41:ad:6e:02:a6:3f:d5:e5:86:23:37: 47:79:10:61:54:4a:af:ec:41:3e:1b:43:d5:cd:b2: b2:d7:15:6f:44:dc:ed:49:e7:2a:74:4e:99:99:3b: f6:b6:38:d9:c1:3e:c4:e5:6d:b7:b9:fb:a6:b1:2a: 0d:0c:ab:83:be:fd:a9:ba:1d:94:56:3a:19:19:6e: 95:b8:d9:e9:a8:42:41:47:39:9e:17:e8:8e:25:cb: 00:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:05:BC:DF:32:C6:E2:84:21:E9:68:F8:2D:97:DD:A3:FC:E4:7F:93 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-wW83zLG4oQh6Wj4LZfdo_zkf5M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.176.0/21 Signature Algorithm: sha256WithRSAEncryption 52:93:90:ca:78:c6:43:a5:47:be:d8:a8:16:75:7b:aa:4e:9d: b4:81:8e:e1:44:10:9d:29:89:c3:c1:4c:64:14:59:87:48:28: 81:33:bd:93:9e:61:98:0f:42:74:f2:db:a0:20:90:42:de:54: 2b:26:a0:50:d0:95:46:3a:72:16:90:b5:82:98:b9:67:f8:b9: 3c:44:aa:fb:35:16:85:f8:03:5d:c2:dd:83:cb:ed:9d:eb:f2: 3d:cd:97:cf:4f:9a:27:13:a4:4d:44:6b:17:a5:d1:23:18:b8: a8:81:a9:95:70:26:a8:a1:8d:b5:a3:b3:d0:1f:12:e5:fa:23: dd:00:41:a3:e7:99:b2:f7:51:c2:8c:a3:ec:35:13:7d:bf:55: dd:87:2d:98:9c:94:3f:92:cd:0e:09:a9:8e:32:af:a7:e5:21: 80:49:8b:6f:f2:44:14:e9:94:97:ff:6a:71:0f:bd:8a:0f:71: 78:1c:ec:a7:bb:43:c6:1a:a5:e4:b4:3f:ee:cf:ea:c1:5c:91: 95:b3:05:cd:aa:7f:ea:73:df:03:5d:c6:2f:6b:83:f0:81:9a: 38:e1:9b:c4:cb:98:3f:83:a5:ef:5c:a4:60:6f:10:10:d2:f6: 6b:b0:55:0e:12:4b:d1:e9:c3:82:a7:35:d3:4d:82:38:c1:ad: f1:be:07:d2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKGAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1MTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZCMDVCQ0RGMzJDNkUy ODQyMUU5NjhGODJEOTdEREEzRkNFNDdGOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5VKsuFAXJiDVoHaNIzKTsk4ydyUYdlZ2kQxKYngeWPR8bB3+X D6n5wdK32znqynobzJ1vBm93tCF46yAgl34e+QawHozOb9x3YXd9HqXtu6zIsm2a en/WwR6UARu+aR+v8BtLOgLU64+y1qYnUFumZL8NtVudS7RxaKQ8MVwAOSpCZ37X op0G85LNkWU2GlEoCPVGJa/sIYk+vucw+cgbaNWiEZwypzpBrW4Cpj/V5YYjN0d5 EGFUSq/sQT4bQ9XNsrLXFW9E3O1J5yp0TpmZO/a2ONnBPsTlbbe5+6axKg0Mq4O+ /am6HZRWOhkZbpW42emoQkFHOZ4X6I4lywABAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+wW83zLG4oQh6Wj4LZfdo/zkf5MwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLy13VzgzekxHNG9RaDZXajRM WmZkb196a2Y1TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sLAwDQYJKoZIhvcNAQELBQADggEBAFKTkMp4xkOlR77YqBZ1e6pOnbSBjuFEEJ0p icPBTGQUWYdIKIEzvZOeYZgPQnTy26AgkELeVCsmoFDQlUY6chaQtYKYuWf4uTxE qvs1FoX4A13C3YPL7Z3r8j3Nl89PmicTpE1Eaxel0SMYuKiBqZVwJqihjbWjs9Af EuX6I90AQaPnmbL3UcKMo+w1E32/Vd2HLZiclD+SzQ4JqY4yr6flIYBJi2/yRBTp lJf/anEPvYoPcXgc7Ke7Q8YapeS0P+7P6sFckZWzBc2qf+pz3wNdxi9rg/CBmjjh m8TLmD+Dpe9cpGBvEBDS9muwVQ4SS9Hpw4KnNdNNgjjBrfG+B9I= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:03 2024 by rpki-client on console-ams.rpki-client.org