$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AJmH_1KaOpJ42tjM22xBEHgO_3w.roa File: AJmH_1KaOpJ42tjM22xBEHgO_3w.roa (raw, json) Hash identifier: yAFMtwmoQUZB3L3sYzE7LuljODQ1KGKHjvgROlrY/Lw= Subject key identifier: 00:99:87:FF:52:9A:3A:92:78:DA:D8:CC:DB:6C:41:10:78:0E:FF:7C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2895 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AJmH_1KaOpJ42tjM22xBEHgO_3w.roa Signing time: Fri 01 Sep 2023 10:05:32 +0000 ROA not before: Fri 01 Sep 2023 10:05:32 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18429 IP address blocks: 118.232.199.0/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10389 (0x2895) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:32 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=009987FF529A3A9278DAD8CCDB6C4110780EFF7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:98:1f:ee:34:df:29:17:d3:f7:18:91:75:e3: 52:60:85:a6:20:a2:9d:03:6f:17:62:a7:53:2b:55: 03:77:6c:0b:83:12:5d:0a:65:6a:63:05:11:1f:e2: e9:d2:51:5b:c8:09:f4:95:56:d0:d3:41:0e:b5:77: e7:5b:b5:8b:0f:2c:94:37:d5:ce:e3:2e:88:23:a4: 00:44:aa:a8:6f:68:03:2b:c0:a8:46:ea:94:42:30: c7:88:28:23:f2:c9:30:6f:b4:5c:38:aa:d1:67:84: 74:70:df:84:7a:5f:17:43:4e:33:17:55:42:9d:be: 0c:39:95:83:fd:96:8f:5e:c6:1a:90:98:c8:9f:a6: 04:24:66:83:26:cd:cb:8d:c9:ec:5d:ee:86:c6:fe: 60:64:51:43:f8:cf:f5:58:cd:c7:b9:ba:7d:85:d7: 29:17:c7:da:b0:4d:ec:c4:56:cd:97:33:94:6c:ca: ab:7e:31:49:cb:2d:a7:29:aa:cb:1b:5d:f2:e1:c2: 8a:12:c5:2d:b6:46:ef:2a:31:3b:a8:23:15:0d:24: a0:44:73:d5:60:b9:b9:9a:d9:4f:28:ef:fe:24:e6: 25:cb:7e:99:4a:36:91:63:30:bc:af:90:89:76:91: d6:bd:8c:0e:bb:79:d3:4d:a5:fc:eb:64:e4:06:14: 10:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:99:87:FF:52:9A:3A:92:78:DA:D8:CC:DB:6C:41:10:78:0E:FF:7C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AJmH_1KaOpJ42tjM22xBEHgO_3w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.199.0/26 Signature Algorithm: sha256WithRSAEncryption 36:40:a2:43:fa:d8:00:fa:37:db:cf:79:56:6b:63:25:cb:50: ea:7b:37:c2:e9:9d:94:e5:2f:36:17:e8:06:38:0d:07:36:00: 3f:a5:2c:3c:49:bb:65:6f:45:c9:55:65:c0:cc:b2:c1:61:ea: f1:36:76:3a:35:57:13:6e:a3:0b:ea:c7:d2:f7:d7:d8:4e:51: ce:81:6d:0a:29:df:0e:80:bf:69:9b:bb:16:89:d2:d1:e5:90: 9d:c5:09:b9:82:67:d7:b9:1a:24:88:06:0d:88:b5:d9:8f:52: 8f:0c:a4:10:5a:f7:8a:15:69:2d:e3:b9:ab:62:0c:37:47:c1: 84:bf:c1:c4:f1:98:71:87:63:5f:02:0d:0f:ef:5a:f7:a8:6b: 7b:a0:26:d9:97:48:c6:f6:0a:50:f2:ab:66:14:da:19:2c:8b: 7f:11:7e:30:49:d5:3b:ec:77:4b:64:e0:30:78:5d:c3:61:99: ec:fa:a0:9b:7d:f1:30:0a:53:a6:5a:eb:69:38:c3:86:7a:e5: 86:9c:34:15:71:67:c9:e7:e9:d6:4c:fc:5a:c5:54:6f:48:42: 8a:d1:dc:18:40:c8:2e:1c:8c:04:d2:37:43:1c:b7:2e:b0:72: 3c:35:e7:2a:f2:03:33:3d:75:25:e8:07:e6:3a:84:db:59:06: 9f:a7:21:67 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICKJUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1MzJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAwOTk4N0ZGNTI5QTNB OTI3OERBRDhDQ0RCNkM0MTEwNzgwRUZGN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKmB/uNN8pF9P3GJF141JghaYgop0Dbxdip1MrVQN3bAuDEl0K ZWpjBREf4unSUVvICfSVVtDTQQ61d+dbtYsPLJQ31c7jLogjpABEqqhvaAMrwKhG 6pRCMMeIKCPyyTBvtFw4qtFnhHRw34R6XxdDTjMXVUKdvgw5lYP9lo9exhqQmMif pgQkZoMmzcuNyexd7obG/mBkUUP4z/VYzce5un2F1ykXx9qwTezEVs2XM5Rsyqt+ MUnLLacpqssbXfLhwooSxS22Ru8qMTuoIxUNJKBEc9Vgubma2U8o7/4k5iXLfplK NpFjMLyvkIl2kda9jA67edNNpfzrZOQGFBCJAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUAJmH/1KaOpJ42tjM22xBEHgO/3wwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0FKbUhfMUthT3BKNDJ0ak0y MnhCRUhnT18zdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQZ2 6McAMA0GCSqGSIb3DQEBCwUAA4IBAQA2QKJD+tgA+jfbz3lWa2Mly1DqezfC6Z2U 5S82F+gGOA0HNgA/pSw8Sbtlb0XJVWXAzLLBYerxNnY6NVcTbqML6sfS99fYTlHO gW0KKd8OgL9pm7sWidLR5ZCdxQm5gmfXuRokiAYNiLXZj1KPDKQQWveKFWkt47mr Ygw3R8GEv8HE8Zhxh2NfAg0P71r3qGt7oCbZl0jG9gpQ8qtmFNoZLIt/EX4wSdU7 7HdLZOAweF3DYZns+qCbffEwClOmWutpOMOGeuWGnDQVcWfJ5+nWTPxaxVRvSEKK 0dwYQMguHIwE0jdDHLcusHI8Necq8gMzPXUl6AfmOoTbWQafpyFn -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:04 2024 by rpki-client on console-ams.rpki-client.org