$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1UT9lSL1_kDsO3g-T8ZYil4XRR0.roa File: 1UT9lSL1_kDsO3g-T8ZYil4XRR0.roa (raw, json) Hash identifier: 7AumY7bVX3Swa4svS9KpnWBCVo82JBHJUeoZgvRTqg0= Subject key identifier: D5:44:FD:95:22:F5:FE:40:EC:3B:78:3E:4F:C6:58:8A:5E:17:45:1D Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A52 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1UT9lSL1_kDsO3g-T8ZYil4XRR0.roa Signing time: Fri 01 Sep 2023 10:07:46 +0000 ROA not before: Fri 01 Sep 2023 10:07:46 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.232.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10834 (0x2a52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:46 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D544FD9522F5FE40EC3B783E4FC6588A5E17451D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:16:b3:cf:0b:2f:5f:7a:a8:1a:f3:2b:14:ee: c7:35:d8:d2:b2:c7:5c:d4:ea:ed:fe:6f:40:16:88: 34:11:c0:a1:90:9d:70:24:6f:63:d5:d0:9d:cb:ad: 2f:33:d4:b5:c2:15:70:b9:ce:05:c9:16:e7:5e:b7: 61:7a:2e:da:87:6d:e3:20:1d:8d:db:3f:09:52:51: 63:90:4d:5d:07:0c:c3:91:36:b7:c6:fc:e4:96:3a: f0:e5:20:35:e1:ad:1b:1b:5f:8d:65:e4:15:d3:0b: de:f2:73:0c:35:95:08:fe:4e:14:82:e9:a1:7a:39: db:74:e6:b5:9a:51:f5:43:ff:7d:fa:79:52:8b:b0: 4e:3d:e3:47:b4:37:26:94:85:04:a2:50:50:fe:68: bb:91:b2:ac:45:53:d6:3d:ce:5b:e2:13:ea:e3:b4: c4:55:18:77:4f:15:dd:26:8a:01:30:cf:3f:ad:b9: bd:31:a5:6c:fc:58:17:62:c5:15:2f:91:19:2f:69: e0:11:44:4a:6e:e2:fc:ee:00:f9:0f:35:f6:c6:d8: 7d:d3:41:08:25:bf:a8:d1:84:10:cf:e5:00:5d:a3: 64:20:06:c2:35:c8:73:03:a1:f9:08:c2:bc:6d:fc: f4:57:7c:ef:a5:17:93:c7:e1:7a:01:21:e9:30:79: 97:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:44:FD:95:22:F5:FE:40:EC:3B:78:3E:4F:C6:58:8A:5E:17:45:1D X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1UT9lSL1_kDsO3g-T8ZYil4XRR0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.176.0/21 Signature Algorithm: sha256WithRSAEncryption 26:0e:ea:c5:27:f6:c8:e4:f8:a5:d8:9d:a2:0c:f8:87:df:de: 88:ae:07:7e:e8:42:f1:c5:ae:c7:56:a4:57:0a:0b:5c:72:2a: 08:7c:ee:f0:38:51:47:4a:10:6c:77:b9:1b:85:32:54:c0:f7: 5b:f2:d2:05:36:65:fa:d5:7b:4e:1c:10:85:94:d9:2b:1b:e6: da:a3:4b:e6:26:9f:95:fa:97:22:b0:3d:14:d6:52:46:bc:3d: e0:e8:9b:07:70:78:a1:80:59:55:f0:e7:e5:10:5d:b7:0f:87: a6:9a:08:64:4c:fa:89:c5:84:66:05:ad:6c:c3:5d:a2:f9:8b: 1b:a5:be:03:6c:b9:39:12:4e:00:e1:0e:85:c4:ed:8d:47:81: 47:26:d3:d5:63:04:ea:9f:c0:d1:bf:9c:21:88:bf:5e:a7:30: 1c:d7:38:dc:6f:d3:2f:54:29:bf:d2:04:5c:54:c7:0e:27:aa: e5:b9:fe:b8:70:5b:f7:cc:94:0e:35:ed:82:70:fa:32:1c:ff: 9a:b3:e5:15:5e:84:ee:36:75:27:b4:af:a6:21:b4:58:dc:ad: bd:c6:5c:b3:8f:af:63:f9:ec:56:1f:95:35:a0:d8:aa:c1:14: a4:37:2b:13:5b:5f:5e:7e:af:f3:e1:ff:9d:83:1c:16:39:7d: 2d:13:ea:01 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKlIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3NDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ1NDRGRDk1MjJGNUZF NDBFQzNCNzgzRTRGQzY1ODhBNUUxNzQ1MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8FrPPCy9feqga8ysU7sc12NKyx1zU6u3+b0AWiDQRwKGQnXAk b2PV0J3LrS8z1LXCFXC5zgXJFudet2F6LtqHbeMgHY3bPwlSUWOQTV0HDMORNrfG /OSWOvDlIDXhrRsbX41l5BXTC97ycww1lQj+ThSC6aF6Odt05rWaUfVD/336eVKL sE4940e0NyaUhQSiUFD+aLuRsqxFU9Y9zlviE+rjtMRVGHdPFd0migEwzz+tub0x pWz8WBdixRUvkRkvaeARREpu4vzuAPkPNfbG2H3TQQglv6jRhBDP5QBdo2QgBsI1 yHMDofkIwrxt/PRXfO+lF5PH4XoBIekweZexAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1UT9lSL1/kDsO3g+T8ZYil4XRR0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzFVVDlsU0wxX2tEc08zZy1U OFpZaWw0WFJSMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6LAwDQYJKoZIhvcNAQELBQADggEBACYO6sUn9sjk+KXYnaIM+Iff3oiuB37oQvHF rsdWpFcKC1xyKgh87vA4UUdKEGx3uRuFMlTA91vy0gU2ZfrVe04cEIWU2Ssb5tqj S+Ymn5X6lyKwPRTWUka8PeDomwdweKGAWVXw5+UQXbcPh6aaCGRM+onFhGYFrWzD XaL5ixulvgNsuTkSTgDhDoXE7Y1HgUcm09VjBOqfwNG/nCGIv16nMBzXONxv0y9U Kb/SBFxUxw4nquW5/rhwW/fMlA417YJw+jIc/5qz5RVehO42dSe0r6YhtFjcrb3G XLOPr2P57FYflTWg2KrBFKQ3KxNbX15+r/Ph/52DHBY5fS0T6gE= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:03 2024 by rpki-client on console-fra.rpki-client.org