$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5YxXnFRjdR0oPBtvcHcak9uAd7U.roa File: 5YxXnFRjdR0oPBtvcHcak9uAd7U.roa (raw, json) Hash identifier: dI03PdDM8DM+Tg+1HROOMWurLxbq1iqsci5xVNKQrV4= Subject key identifier: E5:8C:57:9C:54:63:75:1D:28:3C:1B:6F:70:77:1A:93:DB:80:77:B5 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2948 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5YxXnFRjdR0oPBtvcHcak9uAd7U.roa Signing time: Fri 01 Sep 2023 10:06:21 +0000 ROA not before: Fri 01 Sep 2023 10:06:21 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 123.194.204.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10568 (0x2948) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:06:21 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E58C579C5463751D283C1B6F70771A93DB8077B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:69:2d:06:fb:d5:ff:98:11:d7:e9:77:5e:e1: ed:8d:d2:66:c6:a1:21:18:e3:7a:93:2d:c6:32:04: 7e:eb:c4:e8:12:31:e4:74:65:ad:65:f8:04:53:46: 35:ce:02:c7:15:60:ee:25:73:b2:e5:0e:a9:bb:c3: e8:6c:80:0d:b2:2f:b9:11:19:05:4b:af:8a:2a:1c: bb:dc:5f:c8:39:1b:0e:48:ee:7b:b8:00:ae:9f:58: be:59:5d:18:0a:61:ba:4a:d2:e0:16:52:59:d9:48: 4d:33:6d:79:b9:cb:2f:f4:94:e6:6c:30:90:ce:7b: f0:da:81:87:e9:60:b6:c4:8c:eb:5d:e2:ff:59:f6: f4:44:7c:75:54:00:fa:52:5a:01:d3:5f:38:fa:84: 5d:7c:a0:55:1b:7f:8c:96:9c:bf:f2:45:9f:d6:59: d7:4c:da:21:63:52:40:49:52:17:39:f5:da:21:9a: 34:1e:35:29:1e:e2:73:47:dd:c1:db:1c:5d:a9:19: f7:ac:34:c6:85:b8:79:a0:11:5f:3a:ae:cc:7e:d7: 4d:03:fb:b4:c4:ee:ec:19:a4:cb:f7:d6:6b:da:e8: 23:63:f0:56:24:63:28:85:67:b5:4c:21:fb:34:fd: 86:db:2b:ed:75:78:7c:3c:5a:f3:17:fa:6f:6e:c7: ca:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:8C:57:9C:54:63:75:1D:28:3C:1B:6F:70:77:1A:93:DB:80:77:B5 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5YxXnFRjdR0oPBtvcHcak9uAd7U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.204.0/23 Signature Algorithm: sha256WithRSAEncryption 35:4e:56:6f:27:cf:d0:f4:87:bd:14:53:fc:8b:be:1b:78:c4: 12:1a:b6:a7:77:11:de:80:f8:e4:67:90:27:4f:59:d0:90:d9: 30:c1:99:99:88:f4:19:e9:15:e9:fb:56:11:90:54:5a:5f:a0: 43:be:29:3b:17:20:ef:72:d1:6d:89:5e:47:cc:0c:29:35:c0: 72:3a:55:70:43:b4:5c:fb:b8:83:9e:4f:6c:b2:ae:24:2d:ef: b6:2d:5c:95:1b:e8:6a:6a:d1:b3:b7:e6:df:1c:51:92:f5:b0: 30:e2:17:9a:41:a9:ca:d9:50:a0:e0:c6:e8:77:59:88:87:c0: 37:6d:88:e3:23:94:c9:d8:da:0c:21:e0:ac:e5:cb:a2:a1:0c: 07:27:f9:87:d2:d4:fc:ae:02:ea:f1:23:e9:11:31:a1:6e:f5: 52:15:2d:16:3c:9a:cb:d2:c8:7a:bb:65:51:1c:d0:26:76:5e: 7b:8c:42:14:23:97:bd:77:73:cc:46:d9:15:ff:0b:c7:ff:0f: ab:e5:57:40:45:cc:5a:3d:fe:ea:7f:24:ae:8f:ad:f1:f6:fe: 56:4c:ea:7a:35:6a:25:6b:9a:00:c7:7e:f5:4a:3b:cf:5f:49: 2d:ed:62:1c:c7:f7:9e:00:c8:d9:d8:7d:70:66:44:eb:6a:26: 0c:76:a9:fd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKUgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA2MjFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU1OEM1NzlDNTQ2Mzc1 MUQyODNDMUI2RjcwNzcxQTkzREI4MDc3QjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtaS0G+9X/mBHX6Xde4e2N0mbGoSEY43qTLcYyBH7rxOgSMeR0 Za1l+ARTRjXOAscVYO4lc7LlDqm7w+hsgA2yL7kRGQVLr4oqHLvcX8g5Gw5I7nu4 AK6fWL5ZXRgKYbpK0uAWUlnZSE0zbXm5yy/0lOZsMJDOe/DagYfpYLbEjOtd4v9Z 9vREfHVUAPpSWgHTXzj6hF18oFUbf4yWnL/yRZ/WWddM2iFjUkBJUhc59dohmjQe NSke4nNH3cHbHF2pGfesNMaFuHmgEV86rsx+100D+7TE7uwZpMv31mva6CNj8FYk YyiFZ7VMIfs0/YbbK+11eHw8WvMX+m9ux8rPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU5YxXnFRjdR0oPBtvcHcak9uAd7UwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzVZeFhuRlJqZFIwb1BCdHZj SGNhazl1QWQ3VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF7 wswwDQYJKoZIhvcNAQELBQADggEBADVOVm8nz9D0h70UU/yLvht4xBIatqd3Ed6A +ORnkCdPWdCQ2TDBmZmI9BnpFen7VhGQVFpfoEO+KTsXIO9y0W2JXkfMDCk1wHI6 VXBDtFz7uIOeT2yyriQt77YtXJUb6Gpq0bO35t8cUZL1sDDiF5pBqcrZUKDgxuh3 WYiHwDdtiOMjlMnY2gwh4Kzly6KhDAcn+YfS1PyuAurxI+kRMaFu9VIVLRY8msvS yHq7ZVEc0CZ2XnuMQhQjl713c8xG2RX/C8f/D6vlV0BFzFo9/up/JK6PrfH2/lZM 6no1aiVrmgDHfvVKO89fSS3tYhzH954AyNnYfXBmROtqJgx2qf0= -----END CERTIFICATE-----Generated at Mon Jun 3 10:15:29 2024 by rpki-client on console-fra.rpki-client.org