$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8tkW-urrJdT86q-dzhaJeClzdzU.roa File: 8tkW-urrJdT86q-dzhaJeClzdzU.roa (raw, json) Hash identifier: Z+dUriYSys6OwknAzcsLfxDQB6aezG0NSfqNhvXxXvY= Subject key identifier: F2:D9:16:FA:EA:EB:25:D4:FC:EA:AF:9D:CE:16:89:78:29:73:77:35 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A14 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8tkW-urrJdT86q-dzhaJeClzdzU.roa Signing time: Fri 01 Sep 2023 10:07:28 +0000 ROA not before: Fri 01 Sep 2023 10:07:28 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.193.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10772 (0x2a14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:28 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F2D916FAEAEB25D4FCEAAF9DCE16897829737735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:23:85:47:63:ce:c5:9c:e5:2f:6a:da:13:d3: ec:df:e8:84:8d:87:32:2d:c7:09:02:b4:83:5a:4c: 4f:0b:bc:94:4e:e7:3f:a9:45:ef:bd:2d:41:e9:ee: a5:cf:f5:76:d6:ce:b4:f7:48:4d:75:87:ea:49:f3: f3:eb:0c:73:39:32:8c:a4:00:57:f0:45:cb:cc:21: 38:40:73:91:47:25:c9:e1:85:ff:98:02:8d:75:91: 4f:50:9e:7d:52:b9:a7:2a:1f:16:d8:f6:ce:4e:65: 2c:d5:b9:0b:68:a9:47:0d:4a:db:13:9e:29:ae:00: ec:1a:40:cd:2a:db:8b:4a:76:d7:51:c1:ea:3b:61: 31:4f:56:11:41:3f:20:9e:2f:38:78:c0:6e:7b:8b: a8:d9:8e:24:5d:46:35:2d:84:c1:0e:f5:b3:06:03: b3:c5:fa:f5:37:c0:9d:a9:d1:ce:9d:db:61:33:61: 7e:f1:d1:87:64:10:29:d6:14:cf:5e:b3:85:d0:e4: 2d:35:a6:ec:d8:32:ec:f9:34:44:b9:aa:14:55:b8: f2:58:aa:d6:2f:01:2f:30:9c:40:f6:cc:95:ba:44: 6b:d5:21:bb:0f:4b:ef:21:99:83:85:3b:db:bf:4e: 12:12:56:0b:3e:b6:8a:3f:1a:70:1c:9c:30:a4:9d: 95:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:D9:16:FA:EA:EB:25:D4:FC:EA:AF:9D:CE:16:89:78:29:73:77:35 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8tkW-urrJdT86q-dzhaJeClzdzU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.4.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:ec:12:77:b0:9f:65:5f:75:71:a8:8a:e0:ea:00:4f:db:68: 00:9b:98:f5:16:92:a4:57:5d:ff:da:3d:f3:69:46:af:a2:9b: 8f:93:d8:b5:7c:cd:9e:8b:a7:77:1a:22:60:a8:eb:b4:d2:1d: 6d:e5:55:8e:d0:23:67:cf:48:cb:98:9f:1a:75:f1:8f:d0:75: 4a:e3:11:d8:68:32:bf:ca:37:32:37:e0:e6:65:d8:34:8b:28: c9:bf:2d:33:64:7b:d8:7d:e4:66:de:d7:3d:34:ef:3c:9b:a7: e8:6f:88:c7:ef:4f:be:a3:b2:1c:a8:99:df:45:31:d5:81:40: 10:6f:35:1a:d6:27:46:ff:ff:29:1f:18:fb:76:08:ac:44:c1: cc:ac:6c:87:e1:66:2c:3b:03:be:95:26:c2:bd:62:15:c1:dc: 7f:fe:34:3f:9f:5e:90:44:76:7b:9f:76:2c:2b:77:75:89:0c: f5:55:48:46:d1:2d:a1:73:4c:f6:55:d4:15:c0:88:ee:db:b8: 57:00:9c:00:76:b8:3a:7a:0b:c6:c2:57:29:1c:83:11:0d:08: 3f:42:32:7f:ab:62:88:e5:a1:3d:a0:e9:46:a2:47:bb:18:cf: 8f:60:43:55:c9:57:46:33:ee:c9:c4:93:12:0d:d4:bd:cc:8f: da:61:1c:9a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKhQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3MjhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEYyRDkxNkZBRUFFQjI1 RDRGQ0VBQUY5RENFMTY4OTc4Mjk3Mzc3MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvI4VHY87FnOUvatoT0+zf6ISNhzItxwkCtINaTE8LvJRO5z+p Re+9LUHp7qXP9XbWzrT3SE11h+pJ8/PrDHM5MoykAFfwRcvMIThAc5FHJcnhhf+Y Ao11kU9Qnn1SuacqHxbY9s5OZSzVuQtoqUcNStsTnimuAOwaQM0q24tKdtdRweo7 YTFPVhFBPyCeLzh4wG57i6jZjiRdRjUthMEO9bMGA7PF+vU3wJ2p0c6d22EzYX7x 0YdkECnWFM9es4XQ5C01puzYMuz5NES5qhRVuPJYqtYvAS8wnED2zJW6RGvVIbsP S+8hmYOFO9u/ThISVgs+too/GnAcnDCknZXhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU8tkW+urrJdT86q+dzhaJeClzdzUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzh0a1ctdXJySmRUODZxLWR6 aGFKZUNsemR6VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wQQwDQYJKoZIhvcNAQELBQADggEBAGrsEnewn2VfdXGoiuDqAE/baACbmPUWkqRX Xf/aPfNpRq+im4+T2LV8zZ6Lp3caImCo67TSHW3lVY7QI2fPSMuYnxp18Y/QdUrj EdhoMr/KNzI34OZl2DSLKMm/LTNke9h95Gbe1z007zybp+hviMfvT76jshyomd9F MdWBQBBvNRrWJ0b//ykfGPt2CKxEwcysbIfhZiw7A76VJsK9YhXB3H/+ND+fXpBE dnufdiwrd3WJDPVVSEbRLaFzTPZV1BXAiO7buFcAnAB2uDp6C8bCVykcgxENCD9C Mn+rYojloT2g6UaiR7sYz49gQ1XJV0Yz7snEkxIN1L3Mj9phHJo= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:04 2024 by rpki-client on console-ams.rpki-client.org