$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2J1zURWHXSCUGHKlGAylq-Rj7Rc.roa File: 2J1zURWHXSCUGHKlGAylq-Rj7Rc.roa (raw, json) Hash identifier: SHmTW2KtypEbNVR1+RGL2Pg5Jj/tC5n+Umr9AwsE/NI= Subject key identifier: D8:9D:73:51:15:87:5D:20:94:18:72:A5:18:0C:A5:AB:E4:63:ED:17 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 287B Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2J1zURWHXSCUGHKlGAylq-Rj7Rc.roa Signing time: Fri 01 Sep 2023 10:05:24 +0000 ROA not before: Fri 01 Sep 2023 10:05:24 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.233.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10363 (0x287b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:24 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D89D735115875D20941872A5180CA5ABE463ED17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:93:d6:07:6f:0d:7c:a1:6e:c6:7d:e5:21:7b: 68:02:e5:77:5d:bc:28:dd:2b:a5:e0:5e:8c:5d:17: f4:bf:e9:a2:17:5f:7a:d0:43:f8:8a:ed:05:bf:be: 85:e7:00:9d:90:16:d8:50:52:88:85:cb:6a:09:f2: 90:7c:bb:8f:6d:3b:b1:ab:d1:b8:81:c2:6d:bf:1a: 2a:cd:6c:e6:03:15:f5:0b:4c:af:b3:9d:e3:be:05: 6d:a7:71:8a:d9:ac:47:29:36:4e:d7:cb:76:42:7e: 6d:f5:1d:6f:6d:16:ff:b7:ef:d8:4a:b0:37:92:ab: 25:f4:3c:bd:b8:76:01:9c:7a:73:11:7d:d2:1f:44: f5:1e:cc:cd:6f:dd:e6:d3:0b:d8:17:0d:10:7a:a5: 4c:10:f8:f0:c7:83:5a:76:98:0c:b6:de:84:ac:a3: 3d:8b:e0:e8:65:df:ea:59:0b:d6:c0:c3:07:12:ff: a2:3a:d4:7a:e2:95:dc:18:c6:eb:d7:fe:7f:2b:0a: bf:d2:6a:30:02:0a:b9:71:1c:34:20:0e:8e:4d:de: 16:2e:42:67:be:a7:52:2a:aa:fa:ef:3c:2c:76:67: 5d:11:e7:03:62:9e:26:46:b3:83:69:b4:0e:3b:59: e8:f5:5f:2f:ea:f1:26:3e:5c:8f:eb:1c:71:76:10: f8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:9D:73:51:15:87:5D:20:94:18:72:A5:18:0C:A5:AB:E4:63:ED:17 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/2J1zURWHXSCUGHKlGAylq-Rj7Rc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.180.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:e3:01:00:77:cd:cd:16:f8:eb:05:d2:7d:51:b4:f0:34:36: 3e:99:a0:6b:65:5f:7a:c9:a7:b8:96:fc:89:52:e7:9f:4e:28: 7d:1b:d0:99:30:dc:8f:a6:18:5b:e1:de:1a:a1:99:3e:1e:ad: 46:67:c7:17:c5:27:7f:b0:d3:cc:54:b8:d4:4d:bc:d0:1a:70: 1f:53:2b:ce:29:49:58:2f:a3:c9:4b:f5:6e:51:d2:b4:a8:b9: 96:2d:f6:81:00:e2:1b:d4:97:06:2d:7d:c7:6c:75:2c:ea:0c: 04:96:81:de:74:dd:f4:0f:5b:a0:92:b1:76:4e:a8:c1:27:a0: 14:e8:9f:80:04:01:98:51:ae:4a:69:de:db:28:c3:ef:17:47: c1:49:4f:49:4e:4d:cb:34:6e:5b:e5:3d:52:fd:22:6d:d7:ef: 41:d5:95:46:af:fe:86:1d:f1:29:dd:13:73:31:02:70:48:68: 38:68:74:f6:08:7e:04:08:72:f2:9c:26:e2:b6:b2:8e:19:4f: bf:19:b7:2c:19:2b:a0:4f:d9:a1:ef:08:3d:87:6d:7f:97:37: aa:1b:91:16:aa:c3:43:2b:d3:cb:0d:43:0e:45:78:75:63:0f: 5a:97:a9:9a:74:d6:32:cf:82:fd:2b:68:20:22:26:3c:78:dc: 39:34:93:07 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKHswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1MjRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ4OUQ3MzUxMTU4NzVE MjA5NDE4NzJBNTE4MENBNUFCRTQ2M0VEMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJk9YHbw18oW7GfeUhe2gC5XddvCjdK6XgXoxdF/S/6aIXX3rQ Q/iK7QW/voXnAJ2QFthQUoiFy2oJ8pB8u49tO7Gr0biBwm2/GirNbOYDFfULTK+z neO+BW2ncYrZrEcpNk7Xy3ZCfm31HW9tFv+379hKsDeSqyX0PL24dgGcenMRfdIf RPUezM1v3ebTC9gXDRB6pUwQ+PDHg1p2mAy23oSsoz2L4Ohl3+pZC9bAwwcS/6I6 1HrildwYxuvX/n8rCr/SajACCrlxHDQgDo5N3hYuQme+p1IqqvrvPCx2Z10R5wNi niZGs4NptA47Wej1Xy/q8SY+XI/rHHF2EPhZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU2J1zURWHXSCUGHKlGAylq+Rj7RcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzJKMXpVUldIWFNDVUdIS2xH QXlscS1SajdSYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6bQwDQYJKoZIhvcNAQELBQADggEBAG/jAQB3zc0W+OsF0n1RtPA0Nj6ZoGtlX3rJ p7iW/IlS559OKH0b0Jkw3I+mGFvh3hqhmT4erUZnxxfFJ3+w08xUuNRNvNAacB9T K84pSVgvo8lL9W5R0rSouZYt9oEA4hvUlwYtfcdsdSzqDASWgd503fQPW6CSsXZO qMEnoBTon4AEAZhRrkpp3tsow+8XR8FJT0lOTcs0blvlPVL9Im3X70HVlUav/oYd 8SndE3MxAnBIaDhodPYIfgQIcvKcJuK2so4ZT78ZtywZK6BP2aHvCD2HbX+XN6ob kRaqw0Mr08sNQw5FeHVjD1qXqZp01jLPgv0raCAiJjx43Dk0kwc= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:03 2024 by rpki-client on console-fra.rpki-client.org