$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5ubv1l3QnRjjjjV-4Kb9zcVCX-A.roa File: 5ubv1l3QnRjjjjV-4Kb9zcVCX-A.roa (raw, json) Hash identifier: PoifSM0zFxNqca124RfrTVYLsVmFrs00HCk3jK7ioT4= Subject key identifier: E6:E6:EF:D6:5D:D0:9D:18:E3:8E:35:7E:E0:A6:FD:CD:C5:42:5F:E0 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2941 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5ubv1l3QnRjjjjV-4Kb9zcVCX-A.roa Signing time: Fri 01 Sep 2023 10:06:19 +0000 ROA not before: Fri 01 Sep 2023 10:06:19 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 106.1.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10561 (0x2941) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:06:19 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E6E6EFD65DD09D18E38E357EE0A6FDCDC5425FE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d8:14:2a:d6:db:b7:a9:33:74:2a:f4:f3:46: 41:1e:40:74:61:81:a9:65:21:eb:af:28:d1:ea:78: b6:8d:ca:f5:3b:1b:c2:63:28:21:04:58:98:c2:c6: ef:93:3e:28:ae:02:5a:c7:54:b4:43:c2:60:1b:df: 88:35:5d:c2:0d:12:93:30:c9:c1:3b:34:eb:f8:10: 7f:49:9e:2e:40:06:3f:76:90:d8:79:08:07:1d:be: 71:ec:49:bb:51:e1:47:1b:c1:6f:84:c7:10:33:82: 12:09:30:47:17:43:67:6c:32:83:6e:82:96:e7:2a: 15:7a:56:b6:a8:25:2c:73:6f:aa:41:13:b8:43:aa: d4:95:8e:0a:60:c7:96:08:98:76:7f:a3:11:db:dc: 3d:89:87:fe:92:5b:35:b5:ac:2c:8b:82:43:e6:cf: 84:fa:42:6c:83:8f:63:76:ae:88:4c:3f:13:07:93: 6a:60:fb:05:37:3b:4a:7f:8a:12:d0:48:05:93:68: 72:e7:47:80:ee:57:18:dc:0a:24:c3:d1:1d:53:b0: 3e:86:7d:38:fe:0d:67:c4:00:58:9d:b6:85:14:0d: d3:53:6a:04:29:77:a1:72:98:d8:9a:cd:f0:18:99: 57:1d:a7:b1:c6:55:89:3f:c9:1a:e8:36:bc:51:d8: 7c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:E6:EF:D6:5D:D0:9D:18:E3:8E:35:7E:E0:A6:FD:CD:C5:42:5F:E0 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5ubv1l3QnRjjjjV-4Kb9zcVCX-A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.204.0/24 Signature Algorithm: sha256WithRSAEncryption a3:98:b3:a2:91:b5:88:d8:39:9c:69:eb:7d:f6:d9:de:4c:75: 98:b9:64:56:0e:70:e2:58:6e:61:5e:d1:3d:e8:f0:f0:21:81: 19:19:d4:61:e1:03:49:a3:65:85:4f:8b:ab:34:35:48:ca:46: 48:74:b5:88:46:3e:a9:11:3a:6a:f3:fb:55:e3:90:93:ea:37: a4:a2:81:f2:7f:76:42:cb:3e:1c:bb:8e:b3:2b:60:e5:01:6e: 1e:93:96:dd:66:1f:bf:9f:fe:6a:d8:d5:50:2f:9d:10:36:bc: ee:b7:3e:3b:58:e2:64:b0:1b:9d:b4:2e:ad:aa:2b:8c:9a:04: dd:79:ac:3b:39:45:81:7e:bb:00:f3:cb:04:31:ff:5d:2b:8f: dd:c0:66:3d:84:22:c9:33:58:e4:e6:cc:65:80:70:fe:92:59: ba:58:e2:b3:26:e7:28:34:46:09:2d:61:9a:57:e6:03:6d:ba: 0f:46:a9:9f:f2:ae:70:3a:66:a4:e6:8e:19:8f:40:5d:fc:8c: 34:12:f0:57:4a:ad:47:d3:e5:79:28:ec:c3:f8:b8:14:33:86: 7a:fd:72:f5:54:8c:11:d1:6e:58:54:4f:81:96:0c:61:e5:9e: f8:f8:78:b3:23:52:4b:f0:42:87:e8:45:b0:42:91:b1:21:ba: dd:a6:b8:6d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKUEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA2MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU2RTZFRkQ2NUREMDlE MThFMzhFMzU3RUUwQTZGRENEQzU0MjVGRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC2BQq1tu3qTN0KvTzRkEeQHRhgallIeuvKNHqeLaNyvU7G8Jj KCEEWJjCxu+TPiiuAlrHVLRDwmAb34g1XcINEpMwycE7NOv4EH9Jni5ABj92kNh5 CAcdvnHsSbtR4UcbwW+ExxAzghIJMEcXQ2dsMoNugpbnKhV6VraoJSxzb6pBE7hD qtSVjgpgx5YImHZ/oxHb3D2Jh/6SWzW1rCyLgkPmz4T6QmyDj2N2rohMPxMHk2pg +wU3O0p/ihLQSAWTaHLnR4DuVxjcCiTD0R1TsD6GfTj+DWfEAFidtoUUDdNTagQp d6FymNiazfAYmVcdp7HGVYk/yRroNrxR2HzzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU5ubv1l3QnRjjjjV+4Kb9zcVCX+AwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzV1YnYxbDNRblJqampqVi00 S2I5emNWQ1gtQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AcwwDQYJKoZIhvcNAQELBQADggEBAKOYs6KRtYjYOZxp63322d5MdZi5ZFYOcOJY bmFe0T3o8PAhgRkZ1GHhA0mjZYVPi6s0NUjKRkh0tYhGPqkROmrz+1XjkJPqN6Si gfJ/dkLLPhy7jrMrYOUBbh6Tlt1mH7+f/mrY1VAvnRA2vO63PjtY4mSwG520Lq2q K4yaBN15rDs5RYF+uwDzywQx/10rj93AZj2EIskzWOTmzGWAcP6SWbpY4rMm5yg0 RgktYZpX5gNtug9GqZ/yrnA6ZqTmjhmPQF38jDQS8FdKrUfT5Xko7MP4uBQzhnr9 cvVUjBHRblhUT4GWDGHlnvj4eLMjUkvwQofoRbBCkbEhut2muG0= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:03 2024 by rpki-client on console-ams.rpki-client.org