$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4ujWsOXpXliUJJbkkaYk8tt-UdU.roa File: 4ujWsOXpXliUJJbkkaYk8tt-UdU.roa (raw, json) Hash identifier: SoJZlrJtjby+OIo3x329hVAKtTzKyEK2qtS3lFtUZQU= Subject key identifier: E2:E8:D6:B0:E5:E9:5E:58:94:24:96:E4:91:A6:24:F2:DB:7E:51:D5 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2868 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4ujWsOXpXliUJJbkkaYk8tt-UdU.roa Signing time: Fri 01 Sep 2023 10:05:18 +0000 ROA not before: Fri 01 Sep 2023 10:05:18 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.195.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10344 (0x2868) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:18 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E2E8D6B0E5E95E58942496E491A624F2DB7E51D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:25:89:85:d4:e6:67:dc:ad:e4:df:cf:b8:97: f7:5e:58:d4:30:8e:e4:04:7a:4f:61:d5:0e:2a:1b: e9:88:50:d6:d0:6b:d7:de:b8:a5:85:e7:aa:e6:14: 6e:78:3d:43:e1:f9:6f:f5:b8:5a:b4:0a:26:09:10: 9a:1c:5c:fd:7f:62:04:5c:b4:a9:da:11:ab:e3:e8: ac:d6:70:63:94:85:66:a4:f2:c0:6b:0c:76:9d:7f: 50:3e:00:41:30:1c:38:cb:9b:2d:99:a8:5b:e9:d8: 9d:79:15:78:ae:3d:80:0f:be:07:65:46:e2:5f:18: c2:d3:fa:83:1c:27:b2:4b:4d:ce:4e:71:41:86:c0: f4:ba:e1:11:02:44:75:61:21:19:71:fd:c2:2d:5f: 27:38:dc:0b:2d:84:c8:69:ad:b9:e9:c2:f7:3e:96: d4:14:1e:f5:d0:59:0e:74:f3:1d:94:9c:c4:6c:2e: bc:2f:d4:f6:ef:cc:8a:e3:56:2a:a7:82:d1:64:12: 32:90:8b:3d:4d:70:08:39:8c:ac:24:55:6d:4a:83: 8c:b8:4a:a1:ea:f2:f0:c1:64:49:66:5c:59:cb:88: f9:35:c8:3c:6b:0e:99:fc:f4:65:bf:7f:ba:9d:57: ea:3c:8a:01:90:f6:d0:6f:54:9f:cb:d8:63:0c:94: f8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E8:D6:B0:E5:E9:5E:58:94:24:96:E4:91:A6:24:F2:DB:7E:51:D5 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4ujWsOXpXliUJJbkkaYk8tt-UdU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.72.0/22 Signature Algorithm: sha256WithRSAEncryption 02:60:5f:f3:b5:32:75:7d:4d:e9:57:f2:f5:c5:a8:bb:4c:4b: 7e:29:ff:f3:64:63:cc:f8:2f:1b:5e:33:fa:7e:78:e5:26:84: 9d:a6:31:9b:c7:9a:14:0c:cc:ec:34:7d:68:7b:25:99:4b:09: 00:c6:be:15:fe:e5:ab:d1:54:5c:8e:fb:01:d4:24:fb:84:e2: c9:d1:97:3d:bb:cb:fd:f4:70:d1:03:99:de:ee:88:3b:ef:97: af:a0:0e:f8:9b:6c:cd:2c:69:0c:62:77:cb:4f:fe:bc:71:44: 50:ed:d9:4f:8f:16:39:56:d6:65:2f:2c:ed:41:b8:0f:53:b1: 36:d6:0c:c1:f7:02:af:dd:a7:cc:2d:d0:bb:42:12:ef:fc:14: 3c:7a:66:16:34:0e:56:25:38:c8:65:88:91:a8:5c:36:23:d3: 9a:f0:07:47:f0:26:d3:db:cf:0c:a7:04:19:cc:aa:a2:1b:4b: 77:67:48:eb:18:2c:09:13:10:5f:4f:95:b1:73:1b:c8:58:f3: 55:17:08:c2:4f:e4:18:5d:89:7a:32:de:a4:9a:40:39:9a:b1: b0:dd:20:18:a8:6e:39:3d:fb:4f:c2:eb:45:d9:e2:c6:45:d5: 65:87:44:14:7f:f8:ab:95:6e:df:c8:72:ad:1e:48:b4:96:c5: 1f:97:b4:a9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKGgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1MThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEUyRThENkIwRTVFOTVF NTg5NDI0OTZFNDkxQTYyNEYyREI3RTUxRDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAJYmF1OZn3K3k38+4l/deWNQwjuQEek9h1Q4qG+mIUNbQa9fe uKWF56rmFG54PUPh+W/1uFq0CiYJEJocXP1/YgRctKnaEavj6KzWcGOUhWak8sBr DHadf1A+AEEwHDjLmy2ZqFvp2J15FXiuPYAPvgdlRuJfGMLT+oMcJ7JLTc5OcUGG wPS64RECRHVhIRlx/cItXyc43AsthMhprbnpwvc+ltQUHvXQWQ508x2UnMRsLrwv 1PbvzIrjViqngtFkEjKQiz1NcAg5jKwkVW1Kg4y4SqHq8vDBZElmXFnLiPk1yDxr Dpn89GW/f7qdV+o8igGQ9tBvVJ/L2GMMlPipAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU4ujWsOXpXliUJJbkkaYk8tt+UdUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzR1aldzT1hwWGxpVUpKYmtr YVlrOHR0LVVkVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 w0gwDQYJKoZIhvcNAQELBQADggEBAAJgX/O1MnV9TelX8vXFqLtMS34p//NkY8z4 LxteM/p+eOUmhJ2mMZvHmhQMzOw0fWh7JZlLCQDGvhX+5avRVFyO+wHUJPuE4snR lz27y/30cNEDmd7uiDvvl6+gDvibbM0saQxid8tP/rxxRFDt2U+PFjlW1mUvLO1B uA9TsTbWDMH3Aq/dp8wt0LtCEu/8FDx6ZhY0DlYlOMhliJGoXDYj05rwB0fwJtPb zwynBBnMqqIbS3dnSOsYLAkTEF9PlbFzG8hY81UXCMJP5BhdiXoy3qSaQDmasbDd IBiobjk9+0/C60XZ4sZF1WWHRBR/+KuVbt/Icq0eSLSWxR+XtKk= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:03 2024 by rpki-client on console-ams.rpki-client.org