$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6Gg97Q0fW4ZRofXYnE6WcSq4-nQ.roa File: 6Gg97Q0fW4ZRofXYnE6WcSq4-nQ.roa (raw, json) Hash identifier: QBDWbg9KBgJ4ovfrQVUtL+sRlePn3Jq5q8ouv0OGk4E= Subject key identifier: E8:68:3D:ED:0D:1F:5B:86:51:A1:F5:D8:9C:4E:96:71:2A:B8:FA:74 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 285D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6Gg97Q0fW4ZRofXYnE6WcSq4-nQ.roa Signing time: Fri 01 Sep 2023 10:05:15 +0000 ROA not before: Fri 01 Sep 2023 10:05:15 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 106.1.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10333 (0x285d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:15 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E8683DED0D1F5B8651A1F5D89C4E96712AB8FA74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:52:6f:4d:4d:4b:32:3e:5e:ce:d9:66:d4:e7: ae:9b:6c:57:86:03:a2:0b:63:91:71:9d:7a:5c:b0: c8:35:1f:a1:c7:7a:f2:71:80:0c:3a:77:5c:a2:0f: 63:b1:1b:4e:2f:a7:48:fa:59:5e:9f:4b:8b:1e:e7: 75:2a:c7:f5:d4:4c:e9:4b:2e:45:3e:92:69:e4:9a: bd:59:a4:9b:7e:20:01:1f:df:60:dd:57:39:e8:39: d2:0b:06:fe:00:ab:7e:de:70:31:1a:85:c0:27:6d: e5:42:60:e0:b5:47:0a:9d:de:bd:bf:22:0d:a8:97: 20:8e:e0:3e:75:d0:a7:15:75:9f:a1:b3:b6:7b:2a: ec:c0:f3:18:9c:3b:2e:7e:1b:1b:0d:ab:2a:b6:dc: 66:64:fd:9c:0f:a0:92:a5:0e:84:9e:a7:3c:7f:03: 3b:d0:17:6a:f4:9d:56:7c:8a:b4:26:14:97:30:73: 60:09:eb:f3:bc:9f:fd:9c:31:b4:ff:fe:68:84:40: 18:66:38:fb:a8:91:43:db:b2:33:7a:7f:89:14:67: ea:30:70:dd:d6:2b:39:39:33:ce:58:b6:c5:23:ac: 5c:b4:87:e2:90:b8:f7:68:81:64:d2:a5:19:9f:ea: fe:50:43:eb:a5:45:6b:86:65:63:f9:8d:8a:2b:84: 90:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:68:3D:ED:0D:1F:5B:86:51:A1:F5:D8:9C:4E:96:71:2A:B8:FA:74 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6Gg97Q0fW4ZRofXYnE6WcSq4-nQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.72.0/21 Signature Algorithm: sha256WithRSAEncryption a1:3f:54:b7:92:9c:cb:8c:2e:94:52:a3:b4:11:2a:25:04:79: da:59:f8:f6:76:26:b7:a5:5d:47:7d:2f:a1:dd:f6:aa:90:33: b8:47:c3:06:d6:7e:86:32:3f:14:53:da:17:df:23:d3:61:eb: 55:28:bb:5a:9d:c1:fe:41:e6:62:10:de:68:75:56:41:11:10: 55:1d:1c:e0:3a:ef:16:a7:76:64:07:6f:d0:49:01:9d:a7:ef: 46:a2:b9:e3:8a:f9:41:a9:dc:89:0b:61:66:20:d3:62:56:c2: 87:32:cc:54:83:a7:ab:3b:27:62:5f:9e:92:35:f6:71:41:dc: 64:2d:0b:fe:98:4d:de:3b:d5:53:8d:71:68:15:22:e0:e8:37: 7d:4d:8b:27:92:02:3d:f8:49:01:3c:53:02:7c:c0:fb:db:ad: 32:3c:25:9f:d4:0f:78:14:1d:e8:36:f5:7c:5e:41:a0:4c:b6: 37:51:22:a8:8c:75:f9:c8:ec:e3:ea:49:7f:57:cb:bf:cb:44: c8:7b:a7:5b:fc:a4:b7:dd:87:ab:e8:fc:6e:2c:71:d3:89:e5: 01:d1:65:9f:2b:5c:8f:9c:0e:88:2e:4f:af:d4:34:12:10:43: 1c:0c:f6:c1:1d:9a:aa:ed:a0:ea:0f:e2:b5:7d:a2:93:6d:f4: 8e:09:4c:e6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKF0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU4NjgzREVEMEQxRjVC ODY1MUExRjVEODlDNEU5NjcxMkFCOEZBNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgUm9NTUsyPl7O2WbU566bbFeGA6ILY5FxnXpcsMg1H6HHevJx gAw6d1yiD2OxG04vp0j6WV6fS4se53Uqx/XUTOlLLkU+kmnkmr1ZpJt+IAEf32Dd VznoOdILBv4Aq37ecDEahcAnbeVCYOC1Rwqd3r2/Ig2olyCO4D510KcVdZ+hs7Z7 KuzA8xicOy5+GxsNqyq23GZk/ZwPoJKlDoSepzx/AzvQF2r0nVZ8irQmFJcwc2AJ 6/O8n/2cMbT//miEQBhmOPuokUPbsjN6f4kUZ+owcN3WKzk5M85YtsUjrFy0h+KQ uPdogWTSpRmf6v5QQ+ulRWuGZWP5jYorhJChAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU6Gg97Q0fW4ZRofXYnE6WcSq4+nQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzZHZzk3UTBmVzRaUm9mWFlu RTZXY1NxNC1uUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANq AUgwDQYJKoZIhvcNAQELBQADggEBAKE/VLeSnMuMLpRSo7QRKiUEedpZ+PZ2Jrel XUd9L6Hd9qqQM7hHwwbWfoYyPxRT2hffI9Nh61Uou1qdwf5B5mIQ3mh1VkEREFUd HOA67xandmQHb9BJAZ2n70aiueOK+UGp3IkLYWYg02JWwocyzFSDp6s7J2JfnpI1 9nFB3GQtC/6YTd471VONcWgVIuDoN31NiyeSAj34SQE8UwJ8wPvbrTI8JZ/UD3gU Heg29XxeQaBMtjdRIqiMdfnI7OPqSX9Xy7/LRMh7p1v8pLfdh6vo/G4scdOJ5QHR ZZ8rXI+cDoguT6/UNBIQQxwM9sEdmqrtoOoP4rV9opNt9I4JTOY= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:04 2024 by rpki-client on console-ams.rpki-client.org