$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9tjFlp8s7KT2SetB5Q4EQ3eoPUo.roa File: 9tjFlp8s7KT2SetB5Q4EQ3eoPUo.roa (raw, json) Hash identifier: 0DBgAqaK5+1NqZxxrX2P+acAARQe4qmxW9IwVRsc7GU= Subject key identifier: F6:D8:C5:96:9F:2C:EC:A4:F6:49:EB:41:E5:0E:04:43:77:A8:3D:4A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A9D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9tjFlp8s7KT2SetB5Q4EQ3eoPUo.roa Signing time: Fri 01 Sep 2023 10:08:06 +0000 ROA not before: Fri 01 Sep 2023 10:08:06 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.232.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10909 (0x2a9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:06 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F6D8C5969F2CECA4F649EB41E50E044377A83D4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5c:01:5e:aa:88:68:04:62:93:36:2e:fb:ca: b1:0d:8f:50:a0:37:a7:65:e1:ab:4d:78:86:54:4a: cd:f9:b7:0b:09:3e:4e:5b:91:69:c6:6e:ad:17:72: ee:af:2a:48:38:dc:2c:2f:be:15:78:10:8e:70:a4: be:e2:6a:2a:eb:a7:e1:e3:3a:b0:0a:0a:2d:34:f3: 9d:42:0d:ad:87:aa:e3:49:ce:c5:f2:5b:d1:c2:6d: ee:21:d3:1a:cf:3c:52:a8:90:f2:a1:6f:c2:87:2a: 80:89:6d:4b:f0:2a:bd:97:26:f3:17:69:36:2f:32: e9:b3:19:58:dd:90:fa:ea:a9:3c:e9:45:7c:9c:37: 44:db:5d:88:c7:84:5f:d8:9d:10:22:c2:bd:e5:cd: e3:c7:c6:d9:76:d9:4d:23:7b:22:95:6e:71:1f:84: fc:3f:9d:77:4a:33:40:26:32:16:bb:cf:7b:1f:db: 52:58:02:12:39:72:fe:ed:89:1b:dd:d8:a1:64:22: 3f:df:85:9d:9a:ab:07:23:06:76:03:8b:00:2a:73: 20:14:a7:4a:64:fc:ba:d1:52:17:e8:52:4e:04:fc: 8e:20:64:58:84:18:72:20:26:ab:57:dd:1f:48:96: 8c:28:6b:ac:50:53:ba:2a:20:6e:b3:2e:4b:dd:d6: 23:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:D8:C5:96:9F:2C:EC:A4:F6:49:EB:41:E5:0E:04:43:77:A8:3D:4A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/9tjFlp8s7KT2SetB5Q4EQ3eoPUo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.184.0/21 Signature Algorithm: sha256WithRSAEncryption 9d:83:47:c4:b9:09:bf:1f:2e:db:98:7a:fe:60:33:8b:11:bc: c4:dc:91:ba:32:ed:b9:5a:dc:7c:63:1c:5d:21:00:1f:ee:99: 22:56:dc:05:94:12:9e:56:64:68:29:18:50:63:37:60:99:d1: 00:b8:60:cc:50:7e:c1:80:d8:1f:c3:66:cd:44:d3:86:48:13: b9:61:e9:24:c7:2e:7c:05:e3:6a:ad:44:e0:99:29:2e:e9:82: 2f:31:d9:b2:6c:8b:cf:05:19:82:df:63:fa:1a:78:8c:a4:db: cb:60:10:73:c7:34:bb:2d:bc:fa:41:1b:a2:e0:bd:53:27:17: 94:87:73:2f:84:78:fd:51:10:fc:b8:23:ed:42:ed:56:d4:bc: c8:bc:12:8a:ef:b0:e6:24:db:8a:03:51:9a:f2:dc:9d:d9:b4: 7b:a8:4f:c9:04:9f:82:ed:81:45:eb:df:d7:33:b4:44:06:bc: ce:db:4e:57:d4:e9:8c:be:9a:c2:71:a7:2a:23:a0:a2:4b:99: 03:b5:7f:cd:bc:98:f8:e9:5f:33:9a:f3:35:96:21:ac:41:69: e4:72:e2:1c:7f:a2:36:6f:d2:8b:98:2a:3e:ab:02:c0:10:e9: fe:d7:71:c9:58:86:44:b2:25:06:47:10:c0:ad:5d:01:fc:c6: 41:3b:b2:e4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKp0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY2RDhDNTk2OUYyQ0VD QTRGNjQ5RUI0MUU1MEUwNDQzNzdBODNENEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4XAFeqohoBGKTNi77yrENj1CgN6dl4atNeIZUSs35twsJPk5b kWnGbq0Xcu6vKkg43CwvvhV4EI5wpL7iairrp+HjOrAKCi00851CDa2HquNJzsXy W9HCbe4h0xrPPFKokPKhb8KHKoCJbUvwKr2XJvMXaTYvMumzGVjdkPrqqTzpRXyc N0TbXYjHhF/YnRAiwr3lzePHxtl22U0jeyKVbnEfhPw/nXdKM0AmMha7z3sf21JY AhI5cv7tiRvd2KFkIj/fhZ2aqwcjBnYDiwAqcyAUp0pk/LrRUhfoUk4E/I4gZFiE GHIgJqtX3R9Ilowoa6xQU7oqIG6zLkvd1iP3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU9tjFlp8s7KT2SetB5Q4EQ3eoPUowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzl0akZscDhzN0tUMlNldEI1 UTRFUTNlb1BVby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6LgwDQYJKoZIhvcNAQELBQADggEBAJ2DR8S5Cb8fLtuYev5gM4sRvMTckboy7bla 3HxjHF0hAB/umSJW3AWUEp5WZGgpGFBjN2CZ0QC4YMxQfsGA2B/DZs1E04ZIE7lh 6STHLnwF42qtROCZKS7pgi8x2bJsi88FGYLfY/oaeIyk28tgEHPHNLstvPpBG6Lg vVMnF5SHcy+EeP1REPy4I+1C7VbUvMi8EorvsOYk24oDUZry3J3ZtHuoT8kEn4Lt gUXr39cztEQGvM7bTlfU6Yy+msJxpyojoKJLmQO1f828mPjpXzOa8zWWIaxBaeRy 4hx/ojZv0ouYKj6rAsAQ6f7XcclYhkSyJQZHEMCtXQH8xkE7suQ= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:04 2024 by rpki-client on console-fra.rpki-client.org