$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3fLF5oLapkcNRH8L3oYilSI64oA.roa File: 3fLF5oLapkcNRH8L3oYilSI64oA.roa (raw, json) Hash identifier: ou3uaRP8wYzoQgUFId9f74pNyeODO+NlEMw2t0FbV1I= Subject key identifier: DD:F2:C5:E6:82:DA:A6:47:0D:44:7F:0B:DE:86:22:95:22:3A:E2:80 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2AB6 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3fLF5oLapkcNRH8L3oYilSI64oA.roa Signing time: Fri 01 Sep 2023 10:08:13 +0000 ROA not before: Fri 01 Sep 2023 10:08:13 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 211.76.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10934 (0x2ab6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:13 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=DDF2C5E682DAA6470D447F0BDE862295223AE280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bf:6e:4e:5c:94:39:51:e7:c9:a2:81:75:57: e8:11:ed:79:b8:f3:d9:33:42:9a:0c:de:97:46:66: 10:25:e1:32:c4:05:a8:ec:f7:51:c8:17:04:7b:48: c9:c7:ea:b4:32:29:41:61:44:4c:28:2c:59:51:4f: b0:9c:f9:62:57:d8:0b:40:b4:26:b7:23:8f:be:d6: 8b:5d:e2:1f:89:7a:82:63:7e:3e:22:59:67:e9:64: c4:fc:87:f0:bb:7c:2b:5f:f0:c2:9c:9b:09:11:69: 3b:64:3e:14:68:81:1e:b8:bd:a5:26:8e:a2:cd:f3: 2b:c5:f6:35:4e:e1:08:aa:f0:bd:9c:fe:f1:a2:63: 0a:ce:90:36:1d:d6:3f:87:3d:f5:ab:43:9d:f3:bb: 9c:a4:75:5d:e6:29:ee:d9:54:ce:b6:21:aa:93:cd: 48:0c:90:a3:4b:af:8e:69:1e:27:60:4e:2c:fe:e8: aa:d0:1f:b5:f0:3e:ab:3e:01:2d:e0:28:18:af:45: 1a:19:4f:32:5e:c0:00:d7:1d:c6:40:93:08:cf:c6: fc:c2:63:a7:3d:c0:65:dc:81:e1:14:f7:81:95:da: 60:76:46:e7:ac:e1:a2:48:4f:32:f6:11:d2:f9:b8: a1:75:df:d3:75:a3:5b:96:7f:88:2b:51:c4:9d:ca: 90:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:F2:C5:E6:82:DA:A6:47:0D:44:7F:0B:DE:86:22:95:22:3A:E2:80 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/3fLF5oLapkcNRH8L3oYilSI64oA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.116.0/24 Signature Algorithm: sha256WithRSAEncryption 12:c4:b5:94:af:0c:0d:d9:f9:87:ca:c2:38:74:8d:7a:dd:3c: 9c:36:ce:18:7a:82:fd:d8:d9:bf:29:a1:cc:b1:bd:cf:6d:eb: 05:1a:82:13:5a:94:32:87:0a:ee:99:ba:69:de:35:e5:c0:5d: 1b:b5:7a:06:d8:a3:4f:4e:03:2c:df:f2:14:99:60:92:54:c0: b0:50:a7:fa:1a:16:85:d5:50:0c:c3:6b:93:a7:8d:c0:60:78: 31:d5:fb:49:20:3d:89:45:a1:4f:ae:85:c9:d3:48:fd:70:9d: 09:04:c5:6a:f6:c1:fb:d0:12:2a:65:cc:36:46:00:e6:f1:0f: 0f:10:95:66:f9:df:c0:41:dd:13:5f:58:98:d0:ef:15:47:09: b5:65:37:e5:23:e9:96:43:eb:37:17:f7:b8:6b:a6:3e:4f:2b: 5d:ca:b8:91:ef:f7:65:7e:93:c5:6a:2d:02:48:2d:d7:34:81: a0:05:8c:a3:24:40:49:45:00:8b:f7:cb:56:de:90:85:f9:e7: 06:3b:44:f9:f7:92:d5:eb:21:89:1d:5b:55:0c:93:e0:5a:17: 85:c1:89:69:2f:e1:e4:d5:1a:c8:ee:af:b6:df:0a:b0:6f:bb: e3:70:be:dc:74:f1:01:73:ec:35:cc:ca:23:5b:42:f4:3e:2a: ab:3e:34:10 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKrYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKERERjJDNUU2ODJEQUE2 NDcwRDQ0N0YwQkRFODYyMjk1MjIzQUUyODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9v25OXJQ5UefJooF1V+gR7Xm489kzQpoM3pdGZhAl4TLEBajs 91HIFwR7SMnH6rQyKUFhREwoLFlRT7Cc+WJX2AtAtCa3I4++1otd4h+JeoJjfj4i WWfpZMT8h/C7fCtf8MKcmwkRaTtkPhRogR64vaUmjqLN8yvF9jVO4Qiq8L2c/vGi YwrOkDYd1j+HPfWrQ53zu5ykdV3mKe7ZVM62IaqTzUgMkKNLr45pHidgTiz+6KrQ H7XwPqs+AS3gKBivRRoZTzJewADXHcZAkwjPxvzCY6c9wGXcgeEU94GV2mB2Rues 4aJITzL2EdL5uKF139N1o1uWf4grUcSdypCTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3fLF5oLapkcNRH8L3oYilSI64oAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzNmTEY1b0xhcGtjTlJIOEwz b1lpbFNJNjRvQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT THQwDQYJKoZIhvcNAQELBQADggEBABLEtZSvDA3Z+YfKwjh0jXrdPJw2zhh6gv3Y 2b8pocyxvc9t6wUaghNalDKHCu6ZumneNeXAXRu1egbYo09OAyzf8hSZYJJUwLBQ p/oaFoXVUAzDa5OnjcBgeDHV+0kgPYlFoU+uhcnTSP1wnQkExWr2wfvQEiplzDZG AObxDw8QlWb538BB3RNfWJjQ7xVHCbVlN+Uj6ZZD6zcX97hrpj5PK13KuJHv92V+ k8VqLQJILdc0gaAFjKMkQElFAIv3y1bekIX55wY7RPn3ktXrIYkdW1UMk+BaF4XB iWkv4eTVGsjur7bfCrBvu+Nwvtx08QFz7DXMyiNbQvQ+Kqs+NBA= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:03 2024 by rpki-client on console-ams.rpki-client.org