$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4jDETPQ43pEHGzfZ7SzlfcEnrww.roa File: 4jDETPQ43pEHGzfZ7SzlfcEnrww.roa (raw, json) Hash identifier: UafowLjszt3mdZXihyj45ue+iBEvxKE+KTjTb3dML6Q= Subject key identifier: E2:30:C4:4C:F4:38:DE:91:07:1B:37:D9:ED:2C:E5:7D:C1:27:AF:0C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 29A3 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4jDETPQ43pEHGzfZ7SzlfcEnrww.roa Signing time: Fri 01 Sep 2023 10:06:52 +0000 ROA not before: Fri 01 Sep 2023 10:06:52 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 123.193.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10659 (0x29a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:06:52 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E230C44CF438DE91071B37D9ED2CE57DC127AF0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:96:ff:53:d2:9d:fc:44:bc:6b:4d:2b:ff:35: f5:01:8b:55:be:be:b8:dd:c8:5a:4c:51:ad:54:a0: 5f:85:0c:98:c4:3a:4b:b7:a4:d0:15:cc:64:06:aa: da:63:30:e1:6e:42:19:7c:81:41:24:e2:e6:5a:33: f3:c7:ee:2e:ad:81:a6:0b:10:ae:f7:dd:e3:f7:e9: e4:f4:ff:ae:d2:f8:05:60:7e:3f:c5:61:bc:6f:ca: 2b:f3:73:5a:35:f1:47:dc:ee:51:31:aa:3d:8a:34: 27:6a:c0:42:f9:1f:82:07:1d:e1:e7:cc:bf:5b:ff: 3c:be:b4:cd:5d:70:96:a6:f7:c3:77:d3:08:35:39: 55:d6:ae:bc:cd:37:4b:72:fa:4e:ab:d2:d6:72:be: 3f:37:97:6d:a2:0a:05:fc:34:b1:76:d9:8f:72:8c: d5:7b:f6:d2:95:1b:7a:f7:cb:c3:e3:80:33:ec:b7: 75:bf:d8:1f:48:11:5c:44:7c:72:e9:0e:53:99:f6: cd:0a:81:2d:d7:c1:fc:1c:12:f0:2d:15:53:b5:1c: 70:12:e3:eb:c3:d9:d3:80:8e:48:45:f5:6a:29:61: e4:73:e6:0e:19:b9:eb:25:2e:f0:95:12:fe:70:f9: da:5c:ba:16:4b:03:95:d7:2f:8d:b0:ae:0f:4e:e4: b4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:30:C4:4C:F4:38:DE:91:07:1B:37:D9:ED:2C:E5:7D:C1:27:AF:0C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4jDETPQ43pEHGzfZ7SzlfcEnrww.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.32.0/19 Signature Algorithm: sha256WithRSAEncryption 38:66:41:17:87:c2:19:d4:7e:3c:1f:7d:67:3a:0d:9a:19:64: 44:f6:53:62:92:16:6d:47:6a:e6:58:a8:18:79:56:80:27:fc: c0:75:5a:88:87:41:00:f9:16:fa:49:ae:6d:75:1f:8b:0c:54: 67:ba:3a:2a:48:a3:2f:35:15:77:db:d1:84:fb:e2:e1:37:2a: c0:2b:3b:37:a8:6e:b0:db:c3:05:c6:ae:fa:e1:0b:5e:b4:81: 31:19:ab:56:9a:9a:db:43:7e:33:40:3f:74:7a:9c:1e:98:e6: 3e:63:61:17:d6:1f:48:18:c2:02:48:07:69:e8:28:15:96:e2: 78:bd:79:6e:0a:b6:f1:b4:47:de:e3:2f:16:0a:e8:ac:0d:c8: fc:06:1f:38:ad:78:51:32:9b:cd:0c:47:07:59:b7:f2:59:69: 29:b8:b0:40:ef:59:18:bf:ea:51:7f:34:17:58:07:95:99:0b: 38:b6:56:ea:d1:c8:97:d5:ba:c4:97:96:8b:c7:18:c4:ad:42: 85:e2:72:5f:4d:01:1b:71:b2:1e:6c:64:cc:c9:de:13:a5:6d: f4:86:e1:ba:ba:4f:69:f5:81:05:0f:54:34:27:d0:7e:cc:dd: 22:ac:aa:bf:d4:26:59:b4:5c:d1:0b:53:a8:c6:aa:52:56:bf: be:7e:ad:89 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKaMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA2NTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEUyMzBDNDRDRjQzOERF OTEwNzFCMzdEOUVEMkNFNTdEQzEyN0FGMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYlv9T0p38RLxrTSv/NfUBi1W+vrjdyFpMUa1UoF+FDJjEOku3 pNAVzGQGqtpjMOFuQhl8gUEk4uZaM/PH7i6tgaYLEK733eP36eT0/67S+AVgfj/F Ybxvyivzc1o18Ufc7lExqj2KNCdqwEL5H4IHHeHnzL9b/zy+tM1dcJam98N30wg1 OVXWrrzNN0ty+k6r0tZyvj83l22iCgX8NLF22Y9yjNV79tKVG3r3y8PjgDPst3W/ 2B9IEVxEfHLpDlOZ9s0KgS3XwfwcEvAtFVO1HHAS4+vD2dOAjkhF9WopYeRz5g4Z ueslLvCVEv5w+dpcuhZLA5XXL42wrg9O5LQ9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU4jDETPQ43pEHGzfZ7SzlfcEnrwwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzRqREVUUFE0M3BFSEd6Zlo3 U3psZmNFbnJ3dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV7 wSAwDQYJKoZIhvcNAQELBQADggEBADhmQReHwhnUfjwffWc6DZoZZET2U2KSFm1H auZYqBh5VoAn/MB1WoiHQQD5FvpJrm11H4sMVGe6OipIoy81FXfb0YT74uE3KsAr OzeobrDbwwXGrvrhC160gTEZq1aamttDfjNAP3R6nB6Y5j5jYRfWH0gYwgJIB2no KBWW4ni9eW4KtvG0R97jLxYK6KwNyPwGHziteFEym80MRwdZt/JZaSm4sEDvWRi/ 6lF/NBdYB5WZCzi2VurRyJfVusSXlovHGMStQoXicl9NARtxsh5sZMzJ3hOlbfSG 4bq6T2n1gQUPVDQn0H7M3SKsqr/UJlm0XNELU6jGqlJWv75+rYk= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:04 2024 by rpki-client on console-fra.rpki-client.org