$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9IGuj9tv6lYtdhvkUlaW7F6rSVw.roa File: 9IGuj9tv6lYtdhvkUlaW7F6rSVw.roa (raw, json) Hash identifier: condLnRMUo3ARdA6ruqJAWJ432VrGKf6QSZXyQBIpNM= Subject key identifier: F4:81:AE:8F:DB:6F:EA:56:2D:76:1B:E4:52:56:96:EC:5E:AB:49:5C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2AF0 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9IGuj9tv6lYtdhvkUlaW7F6rSVw.roa Signing time: Fri 01 Sep 2023 10:08:27 +0000 ROA not before: Fri 01 Sep 2023 10:08:27 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.194.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10992 (0x2af0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:27 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F481AE8FDB6FEA562D761BE4525696EC5EAB495C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:1d:9f:9e:61:76:0b:f0:43:ac:61:22:90:32: b5:14:88:5b:9c:09:a8:e9:bd:c7:87:a7:b2:00:51: f9:06:3b:2c:8d:59:b5:d7:a0:cc:50:f4:00:04:a7: dc:47:2b:13:75:06:e5:0f:97:3e:d8:10:5e:6d:8b: a7:e0:d1:2a:bf:c1:b4:15:81:60:25:4d:37:c6:7b: d9:9c:f3:0e:95:dc:91:ad:47:3b:01:46:56:4d:7c: 7d:7e:f5:76:7f:f1:6c:a0:0e:99:a0:60:68:36:6f: 12:ae:cd:2c:b7:08:f1:69:45:46:82:ea:91:44:09: f0:ea:c4:e9:a8:f2:91:ac:4e:f8:8b:e9:11:c8:20: 71:c2:f9:ce:56:c5:df:dd:b3:53:81:38:4a:dd:46: f4:58:61:34:26:68:56:b7:3d:04:f0:77:1d:60:52: 82:51:50:66:ac:87:8b:59:41:e1:da:52:e8:98:4d: da:5a:fd:12:88:cb:41:b8:77:87:b0:21:55:97:92: bf:02:2f:2f:a4:be:d6:94:c9:9e:d6:2c:35:c1:c5: 44:60:e0:2e:36:2a:39:17:06:0e:a5:5d:6c:6e:eb: 68:bc:52:a8:99:ce:0a:4b:23:33:b4:45:1e:27:f9: 8e:9a:de:e8:22:e5:7e:9b:5a:05:44:52:21:3f:3c: d8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:81:AE:8F:DB:6F:EA:56:2D:76:1B:E4:52:56:96:EC:5E:AB:49:5C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9IGuj9tv6lYtdhvkUlaW7F6rSVw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.88.0/22 Signature Algorithm: sha256WithRSAEncryption 9e:3f:8d:ad:24:6a:6a:f4:d8:0d:42:97:47:dc:dd:3a:7d:1d: c4:d7:d9:55:e1:6a:52:af:7a:bf:29:b5:7f:b9:c0:a3:32:b4: 96:96:04:36:f3:0f:4e:59:b5:88:c8:77:96:63:9a:2e:a1:ab: cd:c2:af:27:8f:59:e1:d3:74:ac:17:27:9e:13:db:fc:ca:5d: c3:3c:1e:d7:06:82:f5:a7:8f:ce:59:de:48:1a:68:9d:90:36: 51:5a:5e:ab:65:bf:d8:b3:f8:78:b2:54:07:ef:18:cc:53:ca: 37:3e:79:e7:7b:43:7f:35:46:4e:9a:73:a2:0d:32:ff:eb:dd: 59:61:90:18:9f:cb:39:b6:27:50:53:88:61:9c:11:f2:66:62: 26:43:b0:27:cb:97:49:09:84:38:b5:70:21:67:a1:ad:03:37: a6:fd:02:3a:5e:fd:a7:23:cb:0f:28:aa:4a:01:7d:74:fb:bc: 7b:76:9f:41:bb:53:10:b4:b6:17:65:62:46:6a:f8:4a:33:8c: 46:d8:12:1e:46:c8:e5:19:c5:27:7b:c3:bf:d2:19:56:45:ad: 4e:1b:a4:b4:e1:90:5f:77:5a:8f:e2:ce:19:e7:8d:39:4b:97: 11:0e:32:83:f5:8e:8e:28:39:47:de:9b:87:eb:1e:55:ff:ef: e6:c8:ee:b4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKvAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MjdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY0ODFBRThGREI2RkVB NTYyRDc2MUJFNDUyNTY5NkVDNUVBQjQ5NUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbHZ+eYXYL8EOsYSKQMrUUiFucCajpvceHp7IAUfkGOyyNWbXX oMxQ9AAEp9xHKxN1BuUPlz7YEF5ti6fg0Sq/wbQVgWAlTTfGe9mc8w6V3JGtRzsB RlZNfH1+9XZ/8WygDpmgYGg2bxKuzSy3CPFpRUaC6pFECfDqxOmo8pGsTviL6RHI IHHC+c5Wxd/ds1OBOErdRvRYYTQmaFa3PQTwdx1gUoJRUGash4tZQeHaUuiYTdpa /RKIy0G4d4ewIVWXkr8CLy+kvtaUyZ7WLDXBxURg4C42KjkXBg6lXWxu62i8UqiZ zgpLIzO0RR4n+Y6a3ugi5X6bWgVEUiE/PNgHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU9IGuj9tv6lYtdhvkUlaW7F6rSVwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzlJR3VqOXR2NmxZdGRodmtV bGFXN0Y2clNWdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wlgwDQYJKoZIhvcNAQELBQADggEBAJ4/ja0kamr02A1Cl0fc3Tp9HcTX2VXhalKv er8ptX+5wKMytJaWBDbzD05ZtYjId5Zjmi6hq83CryePWeHTdKwXJ54T2/zKXcM8 HtcGgvWnj85Z3kgaaJ2QNlFaXqtlv9iz+HiyVAfvGMxTyjc+eed7Q381Rk6ac6IN Mv/r3VlhkBifyzm2J1BTiGGcEfJmYiZDsCfLl0kJhDi1cCFnoa0DN6b9Ajpe/acj yw8oqkoBfXT7vHt2n0G7UxC0thdlYkZq+EozjEbYEh5GyOUZxSd7w7/SGVZFrU4b pLThkF93Wo/izhnnjTlLlxEOMoP1jo4oOUfem4frHlX/7+bI7rQ= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:04 2024 by rpki-client on console-ams.rpki-client.org