$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1Uk5lAUjj_Ot4e7TtTsejIXLzPQ.roa File: 1Uk5lAUjj_Ot4e7TtTsejIXLzPQ.roa (raw, json) Hash identifier: qWuDVvwyyfEdi+nKsQ7GB+PW1eeyy7FYqzFuyHleP/o= Subject key identifier: D5:49:39:94:05:23:8F:F3:AD:E1:EE:D3:B5:3B:1E:8C:85:CB:CC:F4 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A86 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1Uk5lAUjj_Ot4e7TtTsejIXLzPQ.roa Signing time: Fri 01 Sep 2023 10:08:01 +0000 ROA not before: Fri 01 Sep 2023 10:08:01 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 123.194.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10886 (0x2a86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:01 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D549399405238FF3ADE1EED3B53B1E8C85CBCCF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c9:07:83:71:33:c3:ef:b7:d5:0c:7a:8d:6f: 08:f6:d2:c6:7a:f0:83:0a:65:c0:aa:61:53:60:a6: c5:ea:8d:4a:0c:97:b9:8e:13:8c:72:b3:fb:d1:0c: 28:ad:53:0a:36:35:4a:fa:df:d3:41:d5:39:cc:9a: 99:ea:22:c1:ff:e3:a0:89:e8:e1:90:88:fe:c8:86: 64:03:8a:c0:51:1a:a7:9c:02:d2:27:05:65:5d:cc: 8d:3b:64:a6:38:58:45:86:3e:84:c6:06:3a:dc:c8: 93:30:d1:33:1e:b3:66:4f:44:7a:24:48:0b:fe:a5: a1:5b:87:06:2f:3c:5f:ad:16:3d:18:b8:82:79:9d: 3a:d1:9e:a1:df:40:b0:b7:fa:28:8a:64:a6:6f:8b: ff:6c:ac:46:27:06:4b:84:e2:cb:ef:c0:71:e7:1b: 91:66:3e:ff:e9:91:e0:29:52:48:4d:27:39:73:2f: 4c:0c:d7:03:50:fe:2e:db:e8:b6:87:3e:b8:c6:90: b2:5a:b6:a9:b1:b4:9b:10:79:fe:f0:ab:ac:66:95: 7f:70:fe:fd:d4:ac:b9:71:bf:2b:18:63:e4:26:0d: 26:6c:f3:c6:7f:7a:07:90:85:09:d3:90:f3:63:ac: c6:ff:f1:70:3a:35:25:12:30:ae:62:4f:90:65:d3: 51:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:49:39:94:05:23:8F:F3:AD:E1:EE:D3:B5:3B:1E:8C:85:CB:CC:F4 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1Uk5lAUjj_Ot4e7TtTsejIXLzPQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.232.0/22 Signature Algorithm: sha256WithRSAEncryption 71:9d:b7:8a:66:8e:4f:0f:23:e4:c9:41:58:06:8b:0a:17:be: 68:24:8f:aa:d7:98:c8:9a:03:4f:02:04:3e:5d:f7:97:e8:7f: 1c:b8:27:bb:6c:f3:90:97:9e:60:7d:1e:00:e0:3b:5a:da:9a: 9a:29:64:c1:2c:9f:6a:2f:e7:20:ac:91:22:6d:a3:38:cf:02: 71:3e:00:58:4d:1c:53:e6:4a:76:7c:d3:fb:18:40:12:cb:fd: d2:1d:37:79:b7:ce:78:60:94:c6:37:3c:d5:45:06:42:05:05: 69:b3:65:cb:8f:8b:b6:0e:c0:ee:27:73:07:71:e3:1e:ac:a9: d3:13:d0:bb:bd:bd:2e:09:1f:30:bd:ea:b8:68:88:64:99:77: de:71:d4:10:82:28:9c:41:20:8e:7e:83:22:de:70:1c:f5:5c: 4f:a6:04:a3:fa:5f:fb:64:2b:9f:d6:83:a5:14:09:c1:72:f2: 43:ec:50:b2:71:52:6e:30:89:1b:da:ee:1f:94:0a:42:6f:f0: f0:5e:1e:4d:38:4f:74:32:4d:41:7a:92:2a:cc:8c:e4:cd:40: be:62:ae:c3:a2:bb:6a:74:63:7e:cc:fd:96:c2:ad:67:94:48: 74:1a:1f:dc:51:a4:d0:0b:40:63:8d:8a:29:d4:61:a6:7b:08: c7:77:83:47 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKoYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ1NDkzOTk0MDUyMzhG RjNBREUxRUVEM0I1M0IxRThDODVDQkNDRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7yQeDcTPD77fVDHqNbwj20sZ68IMKZcCqYVNgpsXqjUoMl7mO E4xys/vRDCitUwo2NUr639NB1TnMmpnqIsH/46CJ6OGQiP7IhmQDisBRGqecAtIn BWVdzI07ZKY4WEWGPoTGBjrcyJMw0TMes2ZPRHokSAv+paFbhwYvPF+tFj0YuIJ5 nTrRnqHfQLC3+iiKZKZvi/9srEYnBkuE4svvwHHnG5FmPv/pkeApUkhNJzlzL0wM 1wNQ/i7b6LaHPrjGkLJatqmxtJsQef7wq6xmlX9w/v3UrLlxvysYY+QmDSZs88Z/ egeQhQnTkPNjrMb/8XA6NSUSMK5iT5Bl01FDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1Uk5lAUjj/Ot4e7TtTsejIXLzPQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzFVazVsQVVqal9PdDRlN1R0 VHNlaklYTHpQUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wugwDQYJKoZIhvcNAQELBQADggEBAHGdt4pmjk8PI+TJQVgGiwoXvmgkj6rXmMia A08CBD5d95fofxy4J7ts85CXnmB9HgDgO1rampopZMEsn2ov5yCskSJtozjPAnE+ AFhNHFPmSnZ80/sYQBLL/dIdN3m3znhglMY3PNVFBkIFBWmzZcuPi7YOwO4ncwdx 4x6sqdMT0Lu9vS4JHzC96rhoiGSZd95x1BCCKJxBII5+gyLecBz1XE+mBKP6X/tk K5/Wg6UUCcFy8kPsULJxUm4wiRva7h+UCkJv8PBeHk04T3QyTUF6kirMjOTNQL5i rsOiu2p0Y37M/ZbCrWeUSHQaH9xRpNALQGONiinUYaZ7CMd3g0c= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:03 2024 by rpki-client on console-ams.rpki-client.org