$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/24UG9b7hFOtTUyDyMu1mRskgiO4.roa File: 24UG9b7hFOtTUyDyMu1mRskgiO4.roa (raw, json) Hash identifier: keC33Ru3LkfQJFdp1+f5AT2hnlQAcSh0J4mzL97f9JA= Subject key identifier: DB:85:06:F5:BE:E1:14:EB:53:53:20:F2:32:ED:66:46:C9:20:88:EE Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A7D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/24UG9b7hFOtTUyDyMu1mRskgiO4.roa Signing time: Fri 01 Sep 2023 10:07:57 +0000 ROA not before: Fri 01 Sep 2023 10:07:57 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.194.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10877 (0x2a7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:57 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=DB8506F5BEE114EB535320F232ED6646C92088EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ed:16:06:54:0f:1e:b3:68:eb:25:c4:bb:a1: df:1f:9b:62:e4:fa:43:eb:82:02:64:d9:ae:47:06: 94:d3:ff:c8:af:cc:a1:1c:15:a5:a6:b4:2a:e9:7d: c1:b3:d1:07:ff:5e:ac:ee:f7:3f:8e:e6:cb:c7:72: 3e:a0:5d:72:cd:64:36:89:f5:d7:c5:e0:2a:ca:ba: 00:15:11:50:7b:0d:1e:d9:9f:e4:bc:27:81:66:75: ba:67:80:f2:67:37:db:c1:2a:1a:cb:55:e4:4b:73: 05:c5:0c:30:79:48:4c:e5:db:15:af:e0:03:06:58: 7a:10:e3:b2:60:89:08:7f:43:7d:0f:1a:71:e4:37: 31:ff:c3:6d:87:43:70:07:09:3b:c3:99:f8:78:c3: ce:01:51:67:75:51:fd:65:dd:64:d6:90:35:d0:54: e8:b2:cb:a9:e5:a9:b3:6d:b8:93:ef:c4:d1:8d:29: a5:af:1c:b9:dd:b4:c6:16:15:7b:7c:43:b9:54:c4: dc:7e:74:6f:83:f9:15:30:94:2a:96:62:72:6a:0d: 89:54:97:7c:4e:5e:55:6c:59:9f:11:12:eb:2d:b2: b0:8e:8e:5d:8e:a9:77:32:5b:b2:49:d8:a7:ac:26: 0e:03:f0:44:b2:ae:d8:c4:ac:06:fd:06:de:b5:21: dc:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:85:06:F5:BE:E1:14:EB:53:53:20:F2:32:ED:66:46:C9:20:88:EE X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/24UG9b7hFOtTUyDyMu1mRskgiO4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.80.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:82:e0:6a:09:79:50:8a:23:1c:2a:ad:a0:a0:46:26:5f:b9: d5:2c:5f:11:1f:51:c7:3d:1e:71:74:cd:8a:63:d6:db:72:10: bc:5d:df:73:b6:eb:72:a3:98:15:f2:03:9d:a7:d9:ce:73:85: fe:dc:34:f6:00:75:9d:76:d3:39:b7:34:ab:75:b6:5f:71:79: 09:ea:60:1c:ef:b2:7d:07:c0:06:88:50:f0:10:23:9c:5d:6b: c6:9e:a5:79:da:76:b1:d7:53:87:5e:43:0c:cd:e0:22:c3:ad: 7b:d4:6e:b7:31:1b:69:66:19:ff:c2:94:ab:af:0d:9b:a5:0c: 6e:2f:09:84:a0:58:79:0f:a9:f8:3a:bc:4e:dc:ff:3d:32:78: 7a:8d:21:2a:24:ef:ce:8f:d0:c7:42:80:1b:9e:81:d6:c3:a1: b1:44:f3:42:6a:c2:02:63:2f:fe:ce:90:3d:4f:85:a5:3e:f8: 57:b8:e2:ed:1b:43:78:1c:db:c6:45:68:0c:14:ed:ca:4d:92: 7c:09:7e:5f:36:7b:84:69:61:5c:ab:64:bc:3d:4e:8b:50:9e: 1f:95:65:ec:87:ec:08:7e:11:ba:d9:65:6e:87:e4:50:6f:9d: 89:c3:79:84:9c:3e:fd:3c:f5:1e:bd:f7:77:b8:3b:7b:b6:81: 78:d2:14:74 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKn0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3NTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKERCODUwNkY1QkVFMTE0 RUI1MzUzMjBGMjMyRUQ2NjQ2QzkyMDg4RUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO7RYGVA8es2jrJcS7od8fm2Lk+kPrggJk2a5HBpTT/8ivzKEc FaWmtCrpfcGz0Qf/Xqzu9z+O5svHcj6gXXLNZDaJ9dfF4CrKugAVEVB7DR7Zn+S8 J4FmdbpngPJnN9vBKhrLVeRLcwXFDDB5SEzl2xWv4AMGWHoQ47JgiQh/Q30PGnHk NzH/w22HQ3AHCTvDmfh4w84BUWd1Uf1l3WTWkDXQVOiyy6nlqbNtuJPvxNGNKaWv HLndtMYWFXt8Q7lUxNx+dG+D+RUwlCqWYnJqDYlUl3xOXlVsWZ8REustsrCOjl2O qXcyW7JJ2KesJg4D8ESyrtjErAb9Bt61IdyfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU24UG9b7hFOtTUyDyMu1mRskgiO4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzI0VUc5YjdoRk90VFV5RHlN dTFtUnNrZ2lPNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wlAwDQYJKoZIhvcNAQELBQADggEBABuC4GoJeVCKIxwqraCgRiZfudUsXxEfUcc9 HnF0zYpj1ttyELxd33O263KjmBXyA52n2c5zhf7cNPYAdZ120zm3NKt1tl9xeQnq YBzvsn0HwAaIUPAQI5xda8aepXnadrHXU4deQwzN4CLDrXvUbrcxG2lmGf/ClKuv DZulDG4vCYSgWHkPqfg6vE7c/z0yeHqNISok786P0MdCgBuegdbDobFE80JqwgJj L/7OkD1PhaU++Fe44u0bQ3gc28ZFaAwU7cpNknwJfl82e4RpYVyrZLw9TotQnh+V ZeyH7Ah+EbrZZW6H5FBvnYnDeYScPv089R6993e4O3u2gXjSFHQ= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:03 2024 by rpki-client on console-ams.rpki-client.org