$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/85Nb80TnWmFmdoYJnU5Qvxslq_8.roa File: 85Nb80TnWmFmdoYJnU5Qvxslq_8.roa (raw, json) Hash identifier: Sg5EKj0B8woIIzgDe4a6TelxuNMSZ1VEEqsVCht+95s= Subject key identifier: F3:93:5B:F3:44:E7:5A:61:66:76:86:09:9D:4E:50:BF:1B:25:AB:FF Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2B04 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/85Nb80TnWmFmdoYJnU5Qvxslq_8.roa Signing time: Fri 01 Sep 2023 10:09:45 +0000 ROA not before: Fri 01 Sep 2023 10:09:45 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 45.64.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11012 (0x2b04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:09:45 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F3935BF344E75A61667686099D4E50BF1B25ABFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d8:f0:3e:a5:83:f6:ce:15:1a:8f:39:2a:c1: a5:37:64:42:c7:c7:26:c7:33:7f:a7:b5:34:79:6b: 02:4c:97:b3:49:78:3f:5a:00:d9:63:e6:1a:49:72: e5:78:93:07:6d:d0:cf:e7:0a:93:a9:9d:fb:4b:09: 26:29:88:44:b3:83:08:d7:e4:85:45:e8:df:28:13: 18:98:8e:18:c5:8e:da:77:f0:31:dc:31:a6:42:5a: 8d:e8:7e:5d:4b:24:c4:25:93:2a:b4:d1:a1:25:60: f6:df:d6:c7:4e:ad:e9:a5:6e:18:a6:53:2e:9f:ce: db:58:f5:42:ce:b8:a9:f2:0d:bc:93:cb:90:ee:8d: 92:c2:d0:40:a8:ba:42:b3:80:f5:e0:7c:80:ee:a6: 19:49:a2:f1:22:da:7a:11:59:2f:22:ea:59:d4:9c: c7:aa:0f:1c:60:4e:08:eb:0d:c6:c2:fb:2e:07:94: 98:55:e8:0d:2b:3a:e6:58:27:72:df:78:77:84:48: 61:f9:82:50:a2:da:d8:61:c8:c9:5b:79:56:ff:7a: c2:b2:ca:f7:09:d8:77:97:60:af:fa:54:c7:7a:8d: cd:af:6c:1b:e3:64:fd:ff:b9:e8:aa:bc:65:67:22: c7:35:2f:67:32:2e:ea:e0:b8:0b:e2:a5:d6:dd:60: 4b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:93:5B:F3:44:E7:5A:61:66:76:86:09:9D:4E:50:BF:1B:25:AB:FF X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/85Nb80TnWmFmdoYJnU5Qvxslq_8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.64.28.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:ce:a7:24:ca:eb:12:e5:1e:f7:03:88:36:1a:4c:65:bf:a8: 4d:bb:01:33:eb:cf:a3:88:02:9f:69:a1:c5:22:08:b2:e2:19: e5:91:9e:6a:55:46:52:5b:ed:43:df:7d:ef:93:a0:4c:d6:25: 34:a6:60:48:09:25:41:77:b8:90:76:55:c4:e1:c6:7c:ee:90: 41:35:fe:49:fe:57:cc:59:7c:9f:a8:83:01:b6:81:6e:94:79: c1:8b:ec:cc:dd:59:5f:d7:32:3f:60:76:d2:0d:70:7f:2d:b5: 34:52:a7:3a:33:71:0c:2d:6d:58:56:07:69:a7:0f:cb:0b:c2: ff:51:fa:17:86:9e:18:0f:d8:8f:1c:d7:ea:d9:ae:db:fa:38: 54:5a:5d:f0:79:ba:84:86:f5:6e:72:6d:a4:0c:da:68:0e:c4: a6:81:c2:f0:35:96:b2:d7:1f:2e:08:9f:a3:28:5b:16:e4:16: e3:69:27:5d:1a:0d:be:03:32:6d:3f:a1:12:7c:f4:2f:3b:73: fa:5a:d1:61:25:01:0c:dd:49:0a:8d:53:b6:6a:35:4e:0b:cf: 69:de:5b:28:f3:2d:28:cd:b5:31:af:5a:82:79:43:e4:73:60: 74:3c:c3:a5:18:b2:4f:f4:3f:fd:d3:7e:9a:6f:c5:6a:8d:9d: 21:d2:98:0f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKwQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA5NDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEYzOTM1QkYzNDRFNzVB NjE2Njc2ODYwOTlENEU1MEJGMUIyNUFCRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC52PA+pYP2zhUajzkqwaU3ZELHxybHM3+ntTR5awJMl7NJeD9a ANlj5hpJcuV4kwdt0M/nCpOpnftLCSYpiESzgwjX5IVF6N8oExiYjhjFjtp38DHc MaZCWo3ofl1LJMQlkyq00aElYPbf1sdOremlbhimUy6fzttY9ULOuKnyDbyTy5Du jZLC0ECoukKzgPXgfIDuphlJovEi2noRWS8i6lnUnMeqDxxgTgjrDcbC+y4HlJhV 6A0rOuZYJ3LfeHeESGH5glCi2thhyMlbeVb/esKyyvcJ2HeXYK/6VMd6jc2vbBvj ZP3/ueiqvGVnIsc1L2cyLurguAvipdbdYEutAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU85Nb80TnWmFmdoYJnU5Qvxslq/8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzg1TmI4MFRuV21GbWRvWUpu VTVRdnhzbHFfOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIt QBwwDQYJKoZIhvcNAQELBQADggEBAC7OpyTK6xLlHvcDiDYaTGW/qE27ATPrz6OI Ap9pocUiCLLiGeWRnmpVRlJb7UPffe+ToEzWJTSmYEgJJUF3uJB2VcThxnzukEE1 /kn+V8xZfJ+ogwG2gW6UecGL7MzdWV/XMj9gdtINcH8ttTRSpzozcQwtbVhWB2mn D8sLwv9R+heGnhgP2I8c1+rZrtv6OFRaXfB5uoSG9W5ybaQM2mgOxKaBwvA1lrLX Hy4In6MoWxbkFuNpJ10aDb4DMm0/oRJ89C87c/pa0WElAQzdSQqNU7ZqNU4Lz2ne WyjzLSjNtTGvWoJ5Q+RzYHQ8w6UYsk/0P/3TfppvxWqNnSHSmA8= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:04 2024 by rpki-client on console-ams.rpki-client.org