$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6whrnh0x3Iqu-TGkzb_OAA3Ir8Y.roa File: 6whrnh0x3Iqu-TGkzb_OAA3Ir8Y.roa (raw, json) Hash identifier: 22nWlXGqY4gMY7lQlCp8zrjRwBImbn/xzQBXaabwYkU= Subject key identifier: EB:08:6B:9E:1D:31:DC:8A:AE:F9:31:A4:CD:BF:CE:00:0D:C8:AF:C6 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 27C8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6whrnh0x3Iqu-TGkzb_OAA3Ir8Y.roa Signing time: Fri 01 Sep 2023 10:04:32 +0000 ROA not before: Fri 01 Sep 2023 10:04:32 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.195.237.0/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10184 (0x27c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:04:32 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=EB086B9E1D31DC8AAEF931A4CDBFCE000DC8AFC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7b:b0:41:c7:b2:e5:b2:96:79:25:16:2d:0a: b8:b2:2c:d3:f0:a6:0a:83:c8:b6:52:29:6e:c2:f0: 18:55:b0:d2:10:b3:e5:f7:c3:52:a0:33:6b:12:f5: 18:e3:2a:6c:e8:43:af:32:e3:6c:66:1f:83:4f:d2: 16:b0:fa:71:ec:83:b2:d2:e3:6e:b0:90:0a:b4:69: 6f:f3:df:c9:fb:c8:27:32:33:c2:10:4e:4f:1d:7f: 6a:82:5e:2b:6a:02:dc:fc:d4:da:1a:26:45:40:b8: a9:a4:ad:df:15:c6:c5:ef:39:22:9f:08:c1:f2:e7: 3a:97:d7:b1:15:76:69:45:50:5b:48:9e:21:e2:e7: d6:64:45:05:ca:6f:b9:3f:aa:df:49:f9:ca:3d:8d: eb:86:c5:25:0d:85:8a:e2:1f:3a:e9:e7:94:f7:09: 79:83:e7:dd:7c:69:9b:c8:56:ff:50:89:ae:f0:be: 53:ef:9e:36:d9:44:10:f9:db:ea:4f:f2:f5:e1:b4: ef:bf:4e:81:ab:f4:c0:0b:27:8e:e9:49:f7:48:08: 1e:60:e0:11:9b:0a:47:05:51:11:b6:45:7d:f9:d8: 40:f9:56:dc:f2:55:3f:80:70:41:d3:a1:7d:45:fd: 8d:6e:2c:10:85:5a:58:d7:ee:bc:1f:d8:6b:eb:ad: a2:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:08:6B:9E:1D:31:DC:8A:AE:F9:31:A4:CD:BF:CE:00:0D:C8:AF:C6 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/6whrnh0x3Iqu-TGkzb_OAA3Ir8Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.237.0/25 Signature Algorithm: sha256WithRSAEncryption ae:14:5d:36:dd:6c:04:43:85:ad:fd:52:9a:2f:78:5c:68:24: 41:de:90:14:bb:d3:d8:e5:88:58:61:1b:77:c7:29:17:41:78: cb:9a:02:6d:cc:cd:1b:f1:94:f7:8d:b5:44:27:57:be:fd:71: 79:67:df:20:c5:a8:59:00:f0:f9:27:63:36:d2:ec:d2:7d:50: c3:16:22:67:98:db:d0:b3:9d:18:48:4f:50:15:c3:b6:2a:9c: b1:a3:95:c2:6a:b8:bc:7a:28:2b:e2:9b:e5:08:3d:ba:d6:e1: 4d:6d:e9:21:8b:34:4b:11:ed:56:d9:87:37:91:52:4e:25:1a: 46:04:61:0b:e8:88:a6:0c:fe:c5:6d:42:8c:2e:77:ae:78:b9: 05:f2:b2:a0:45:a6:31:9d:f7:72:38:a7:86:b1:33:94:12:a5: ea:e3:7e:42:89:6d:e3:c0:08:5e:28:dc:80:dc:5a:26:9c:be: 67:2a:74:12:55:9e:73:7b:1c:b9:74:f4:2e:6a:23:9c:a4:59: 2a:f8:5f:04:49:8b:0d:32:47:bf:ea:46:8a:29:6a:44:0e:c0: 38:64:4c:13:eb:24:f1:87:8b:a7:f3:c1:d7:79:48:1c:c9:9b: 85:1e:dc:8f:f5:cb:37:75:58:f9:96:56:e8:75:60:a6:04:33: e7:42:26:fb -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICJ8gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA0MzJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVCMDg2QjlFMUQzMURD OEFBRUY5MzFBNENEQkZDRTAwMERDOEFGQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/e7BBx7LlspZ5JRYtCriyLNPwpgqDyLZSKW7C8BhVsNIQs+X3 w1KgM2sS9RjjKmzoQ68y42xmH4NP0haw+nHsg7LS426wkAq0aW/z38n7yCcyM8IQ Tk8df2qCXitqAtz81NoaJkVAuKmkrd8VxsXvOSKfCMHy5zqX17EVdmlFUFtIniHi 59ZkRQXKb7k/qt9J+co9jeuGxSUNhYriHzrp55T3CXmD5918aZvIVv9Qia7wvlPv njbZRBD52+pP8vXhtO+/ToGr9MALJ47pSfdICB5g4BGbCkcFURG2RX352ED5Vtzy VT+AcEHToX1F/Y1uLBCFWljX7rwf2GvrraIhAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQU6whrnh0x3Iqu+TGkzb/OAA3Ir8YwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzZ3aHJuaDB4M0lxdS1UR2t6 Yl9PQUEzSXI4WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQd7 w+0AMA0GCSqGSIb3DQEBCwUAA4IBAQCuFF023WwEQ4Wt/VKaL3hcaCRB3pAUu9PY 5YhYYRt3xykXQXjLmgJtzM0b8ZT3jbVEJ1e+/XF5Z98gxahZAPD5J2M20uzSfVDD FiJnmNvQs50YSE9QFcO2Kpyxo5XCari8eigr4pvlCD261uFNbekhizRLEe1W2Yc3 kVJOJRpGBGEL6IimDP7FbUKMLneueLkF8rKgRaYxnfdyOKeGsTOUEqXq435CiW3j wAheKNyA3FomnL5nKnQSVZ5zexy5dPQuaiOcpFkq+F8ESYsNMke/6kaKKWpEDsA4 ZEwT6yTxh4un88HXeUgcyZuFHtyP9cs3dVj5llbodWCmBDPnQib7 -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:04 2024 by rpki-client on console-fra.rpki-client.org