$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3A9IWJoxU3VKd-Nw5H4Zdx6zIpU.roa File: 3A9IWJoxU3VKd-Nw5H4Zdx6zIpU.roa (raw, json) Hash identifier: 7LN9AfC680I15amO1/PxtUllX+fFMJQNNO0j+rWrDH4= Subject key identifier: DC:0F:48:58:9A:31:53:75:4A:77:E3:70:E4:7E:19:77:1E:B3:22:95 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A85 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3A9IWJoxU3VKd-Nw5H4Zdx6zIpU.roa Signing time: Fri 01 Sep 2023 10:08:00 +0000 ROA not before: Fri 01 Sep 2023 10:08:00 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.195.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 18:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10885 (0x2a85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:00 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=DC0F48589A3153754A77E370E47E19771EB32295 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:f5:3a:41:38:7e:85:2f:a4:31:06:fb:dc:52: 31:81:10:e8:0d:e0:6f:a8:19:24:2b:f7:94:f8:6b: 35:92:49:0b:01:85:3e:6a:21:4a:4a:ff:2d:f3:2f: 2b:ba:fd:0d:4b:12:a7:ad:4f:ab:32:73:14:c6:65: 35:9f:e0:01:9f:ca:3c:ed:46:76:64:db:d3:4e:f4: 0a:e9:06:b2:32:40:3c:99:c0:77:87:dc:9a:90:e8: c8:5b:b6:e9:66:7c:22:70:c4:82:e3:2f:2e:d9:92: 08:b9:e0:fb:6c:ae:fd:d5:09:0f:8d:79:34:a4:6a: a8:7e:27:cf:cb:26:fc:da:92:50:ff:32:4f:6c:99: f9:a5:eb:77:5e:79:ee:38:ff:bc:d4:85:a9:6e:71: 9c:4e:3b:d9:d3:ff:be:b6:b8:76:f4:25:ae:7d:64: 7d:c0:69:24:8f:7a:82:f2:ac:19:77:73:f6:c7:77: 14:35:9c:39:47:03:ad:b6:e8:a2:39:d1:38:df:8c: c8:86:2d:02:cb:8c:f9:76:55:6c:c0:64:d3:85:a4: 48:0a:43:c3:cd:45:5a:88:4d:6c:9a:5c:05:39:0e: 6d:41:bd:1a:82:46:e0:b7:8b:7f:1b:c2:24:4f:5e: 14:d8:4f:b9:7c:64:e5:6e:a2:b7:f3:80:bc:ec:89: 94:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:0F:48:58:9A:31:53:75:4A:77:E3:70:E4:7E:19:77:1E:B3:22:95 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3A9IWJoxU3VKd-Nw5H4Zdx6zIpU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.160.0/21 Signature Algorithm: sha256WithRSAEncryption 32:2e:cf:d9:5b:5b:63:47:29:ab:17:83:0c:c6:92:8b:0d:80: e2:0f:a6:4a:5a:c3:73:c4:eb:14:48:75:1c:ed:3d:12:79:f0: e2:86:26:0f:80:e0:57:15:34:ca:ee:3c:1a:e0:ac:cd:eb:76: 05:9e:65:6a:ed:99:fb:55:4b:35:aa:60:0a:39:d9:72:0a:74: d7:c3:2b:35:e9:64:b1:cd:14:6e:45:19:5d:51:d2:c0:d6:d6: 40:92:8e:c2:1f:cb:60:5e:90:48:b9:d6:5c:85:d6:d0:cc:31: e8:a3:69:9c:5c:8e:af:ca:0b:9a:ec:7d:77:a8:b7:16:2a:4d: b6:8c:44:2a:20:3f:8c:ea:c1:b2:c0:80:86:84:28:f8:85:5f: eb:dd:a8:c6:86:63:61:9e:98:fe:32:80:3b:5a:89:e8:9a:be: ff:6e:89:4c:76:20:aa:36:fe:cd:a6:a7:dd:29:01:5f:ce:43: 28:bd:37:6a:db:91:59:7e:58:e3:bd:77:27:fe:db:8e:98:74: 90:4e:f5:77:6f:3f:5f:76:1d:37:a5:87:05:4f:9f:fb:94:e8: 6c:ac:d3:fa:1a:55:f0:e7:4f:6e:8b:cc:91:c9:30:be:04:e5: 7a:74:d5:66:aa:9d:2e:90:d5:96:11:4b:f5:ac:d6:65:3c:ad: 69:29:61:ea -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKoUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKERDMEY0ODU4OUEzMTUz NzU0QTc3RTM3MEU0N0UxOTc3MUVCMzIyOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCU9TpBOH6FL6QxBvvcUjGBEOgN4G+oGSQr95T4azWSSQsBhT5q IUpK/y3zLyu6/Q1LEqetT6sycxTGZTWf4AGfyjztRnZk29NO9ArpBrIyQDyZwHeH 3JqQ6MhbtulmfCJwxILjLy7Zkgi54Ptsrv3VCQ+NeTSkaqh+J8/LJvzaklD/Mk9s mfml63deee44/7zUhalucZxOO9nT/762uHb0Ja59ZH3AaSSPeoLyrBl3c/bHdxQ1 nDlHA6226KI50TjfjMiGLQLLjPl2VWzAZNOFpEgKQ8PNRVqITWyaXAU5Dm1BvRqC RuC3i38bwiRPXhTYT7l8ZOVuorfzgLzsiZQXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3A9IWJoxU3VKd+Nw5H4Zdx6zIpUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzNBOUlXSm94VTNWS2QtTnc1 SDRaZHg2eklwVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 w6AwDQYJKoZIhvcNAQELBQADggEBADIuz9lbW2NHKasXgwzGkosNgOIPpkpaw3PE 6xRIdRztPRJ58OKGJg+A4FcVNMruPBrgrM3rdgWeZWrtmftVSzWqYAo52XIKdNfD KzXpZLHNFG5FGV1R0sDW1kCSjsIfy2BekEi51lyF1tDMMeijaZxcjq/KC5rsfXeo txYqTbaMRCogP4zqwbLAgIaEKPiFX+vdqMaGY2GemP4ygDtaieiavv9uiUx2IKo2 /s2mp90pAV/OQyi9N2rbkVl+WOO9dyf+246YdJBO9XdvP192HTelhwVPn/uU6Gys 0/oaVfDnT26LzJHJML4E5Xp01WaqnS6Q1ZYRS/Ws1mU8rWkpYeo= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:54 2024 by rpki-client on console-ams.rpki-client.org