$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9CzEx4u7IvbtPt2QokGfF58u86o.roa File: 9CzEx4u7IvbtPt2QokGfF58u86o.roa (raw, json) Hash identifier: Ubc0dQ/v6LZzI8cdTF5Fp6t10cLJ5arSbXM7pB3m+do= Subject key identifier: F4:2C:C4:C7:8B:BB:22:F6:ED:3E:DD:90:A2:41:9F:17:9F:2E:F3:AA Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A2F Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9CzEx4u7IvbtPt2QokGfF58u86o.roa Signing time: Fri 01 Sep 2023 10:07:36 +0000 ROA not before: Fri 01 Sep 2023 10:07:36 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.195.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10799 (0x2a2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:36 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F42CC4C78BBB22F6ED3EDD90A2419F179F2EF3AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:92:0c:fd:7c:08:9a:71:9b:5a:5b:38:d9:e1: e7:9b:1f:97:bd:ef:3d:83:e4:3f:4b:b2:1a:55:ef: e1:28:9d:82:38:5c:1e:29:fd:e1:06:a3:e0:a2:80: f0:22:ca:56:61:18:b6:07:0a:69:de:b4:f4:41:0a: 34:ab:25:29:94:fc:81:53:7e:19:31:f8:d0:e8:29: ba:4c:4d:71:f9:d4:c6:a0:97:c9:0b:cd:44:5e:1d: ce:bd:01:86:0f:29:45:46:a4:8e:64:4d:f8:b0:81: 59:30:21:5a:bf:cc:22:84:af:da:ed:0a:4e:30:d7: ad:49:47:e1:b4:96:92:56:a2:e2:d3:5e:b9:2c:17: 81:af:a5:07:50:15:88:a4:e8:1a:9c:c3:c3:5e:e8: f8:e4:0d:79:da:b4:e6:c1:fe:b9:c6:64:5b:78:ec: 2a:36:10:c2:a4:12:4d:68:29:82:49:f2:7d:e4:b5: 41:ac:2b:f8:a2:19:bc:ac:cd:c7:d8:b8:ae:11:3c: 5d:e4:a5:17:8b:ca:a8:6c:7d:cb:3e:d8:44:eb:57: cc:3d:d8:b8:ff:69:7b:ee:9f:72:f6:46:2d:09:82: 75:e5:03:f5:d3:49:7a:bf:90:17:17:ff:ed:6e:2c: 04:d2:dc:85:49:bb:12:3b:40:8b:66:8d:22:45:f4: ef:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:2C:C4:C7:8B:BB:22:F6:ED:3E:DD:90:A2:41:9F:17:9F:2E:F3:AA X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9CzEx4u7IvbtPt2QokGfF58u86o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.96.0/21 Signature Algorithm: sha256WithRSAEncryption 3c:25:5b:55:28:e3:19:f8:d8:9c:8c:28:72:15:2e:4d:c0:53: 50:25:cd:3e:c2:af:fc:aa:39:c9:e5:0d:b0:f2:97:1a:36:d2: 42:52:3a:e3:fb:55:51:2d:d4:7a:50:1e:a6:95:f0:73:e0:02: ef:74:e0:eb:be:73:3b:50:f9:0c:86:61:dc:9c:51:c3:9b:81: 41:1b:1a:9a:ce:25:c5:7d:82:4b:90:27:9d:0f:de:82:bb:f5: b8:27:be:02:95:ff:38:58:cb:ae:34:95:48:d9:9b:63:fd:05: 89:0b:1a:24:24:68:a0:25:2b:2b:43:bd:d4:3a:05:85:70:f4: 87:94:b1:5c:07:11:e1:b9:4f:4b:75:ac:f0:01:69:ef:0c:95: 42:6e:8e:59:8c:0f:e3:61:a4:b3:39:95:44:45:c8:a1:b5:a8: 94:1d:c9:72:90:76:26:e2:36:ef:13:44:69:80:97:9f:6f:f2: 15:d9:16:7d:66:14:6e:a8:b9:a9:e8:60:f0:f3:a1:34:19:04: 96:fb:c3:f7:6f:5f:be:6f:21:83:88:ca:0f:6a:ca:a6:49:24: 5c:31:c1:7c:f5:42:e5:7d:db:ae:11:8f:4c:0c:08:6d:d2:74: 41:a5:b9:b8:52:20:fc:91:04:03:6a:66:44:75:65:85:75:3e: dc:1b:21:75 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKi8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3MzZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY0MkNDNEM3OEJCQjIy RjZFRDNFREQ5MEEyNDE5RjE3OUYyRUYzQUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVkgz9fAiacZtaWzjZ4eebH5e97z2D5D9LshpV7+EonYI4XB4p /eEGo+CigPAiylZhGLYHCmnetPRBCjSrJSmU/IFTfhkx+NDoKbpMTXH51Magl8kL zUReHc69AYYPKUVGpI5kTfiwgVkwIVq/zCKEr9rtCk4w161JR+G0lpJWouLTXrks F4GvpQdQFYik6Bqcw8Ne6PjkDXnatObB/rnGZFt47Co2EMKkEk1oKYJJ8n3ktUGs K/iiGbyszcfYuK4RPF3kpReLyqhsfcs+2ETrV8w92Lj/aXvun3L2Ri0JgnXlA/XT SXq/kBcX/+1uLATS3IVJuxI7QItmjSJF9O8DAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU9CzEx4u7IvbtPt2QokGfF58u86owHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzlDekV4NHU3SXZidFB0MlFv a0dmRjU4dTg2by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 w2AwDQYJKoZIhvcNAQELBQADggEBADwlW1Uo4xn42JyMKHIVLk3AU1AlzT7Cr/yq OcnlDbDylxo20kJSOuP7VVEt1HpQHqaV8HPgAu904Ou+cztQ+QyGYdycUcObgUEb GprOJcV9gkuQJ50P3oK79bgnvgKV/zhYy640lUjZm2P9BYkLGiQkaKAlKytDvdQ6 BYVw9IeUsVwHEeG5T0t1rPABae8MlUJujlmMD+NhpLM5lURFyKG1qJQdyXKQdibi Nu8TRGmAl59v8hXZFn1mFG6ouanoYPDzoTQZBJb7w/dvX75vIYOIyg9qyqZJJFwx wXz1QuV9264Rj0wMCG3SdEGlubhSIPyRBANqZkR1ZYV1PtwbIXU= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:04 2024 by rpki-client on console-ams.rpki-client.org