$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AMt_YEs-YBgwF0Wv8ioJemfXmPE.roa File: AMt_YEs-YBgwF0Wv8ioJemfXmPE.roa (raw, json) Hash identifier: GnuKVcQ08kEGGsXN5fsCiuV8UIS2Na8xbVye7DlLwW4= Subject key identifier: 00:CB:7F:60:4B:3E:60:18:30:17:45:AF:F2:2A:09:7A:67:D7:98:F1 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2800 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AMt_YEs-YBgwF0Wv8ioJemfXmPE.roa Signing time: Fri 01 Sep 2023 10:04:49 +0000 ROA not before: Fri 01 Sep 2023 10:04:49 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.195.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10240 (0x2800) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:04:49 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=00CB7F604B3E6018301745AFF22A097A67D798F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:5e:12:f4:7e:b9:68:70:9f:ef:6e:94:3a:3e: 04:f9:2a:aa:f0:c6:a2:64:df:d9:79:e6:46:70:84: 56:78:09:6a:07:93:50:0d:5d:8e:4d:b6:ae:7e:b8: 4e:1b:47:b7:16:3d:af:6f:18:f9:ac:5f:a4:57:3a: 7d:87:df:42:06:f3:7e:6f:84:d5:ff:97:b9:c6:43: 09:b5:36:fb:3a:b9:64:be:99:57:f3:b5:9b:ac:a9: 15:1d:06:5c:89:ab:91:c9:1c:31:d9:67:33:6e:d0: c3:b4:fa:a8:85:f5:9f:77:cc:84:e0:d8:4e:73:4d: c1:1f:30:07:34:17:a7:f7:f2:2f:70:af:3e:02:f6: 06:4f:4b:88:53:22:e6:5d:78:02:e8:64:0a:17:d0: 96:d0:15:b4:32:aa:a4:5e:62:b7:63:1f:40:93:6c: b1:aa:51:66:fe:12:08:7f:12:6b:81:34:a0:84:13: 0a:fa:83:a6:60:10:72:39:1c:8c:6f:5f:f9:e0:aa: 1a:7b:f6:4d:6f:e3:52:b9:9e:1c:da:bf:e0:40:3c: 58:a8:84:7b:06:c6:a7:54:fe:50:c0:b7:b5:b7:72: 05:47:9d:80:5c:17:24:b8:fa:76:53:18:1a:48:af: af:a0:32:cc:09:f0:06:6a:d6:70:75:d4:9d:92:8a: 62:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:CB:7F:60:4B:3E:60:18:30:17:45:AF:F2:2A:09:7A:67:D7:98:F1 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AMt_YEs-YBgwF0Wv8ioJemfXmPE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.72.0/21 Signature Algorithm: sha256WithRSAEncryption a5:e8:42:fc:28:77:8a:08:eb:dc:fe:84:2b:6e:63:d0:85:9e: 0a:5d:43:6f:93:c5:58:a4:f1:00:29:c7:bd:f5:f9:9d:9b:a0: 9f:a7:ab:59:b7:ff:8e:c4:7d:8f:92:63:a1:d3:62:36:93:72: 9b:e0:a3:3e:63:83:88:9d:41:ac:6f:55:b1:28:ca:23:d8:bd: ac:21:6c:b4:39:39:9f:48:7d:be:a3:2a:a1:df:f6:c4:60:c8: 3c:11:35:8b:81:04:21:3e:30:f3:86:b0:59:92:6c:35:32:c0: 6a:22:37:54:c6:77:eb:e7:68:96:b6:5b:51:f4:f8:47:a4:5d: 60:2f:73:a1:43:b6:07:d2:80:2f:e9:dd:de:11:54:b7:24:28: fd:11:47:2e:ba:a7:ff:c1:67:3c:4d:b4:22:09:3a:79:14:ca: f9:b1:97:c4:69:a1:f9:bb:28:fb:55:f9:16:04:b4:43:cf:c6: 89:a4:37:49:15:68:fe:81:c6:73:f6:b9:63:53:f4:b0:cc:b5: cb:70:f9:fb:b5:50:d7:15:44:c8:52:e4:ce:02:61:3a:18:f2: b4:d3:ce:bd:8c:48:a3:03:e1:61:c2:e5:02:e0:9d:bb:81:4b: 74:74:72:19:81:da:8d:db:fe:7f:a5:1d:41:88:07:f0:74:3d: 19:36:be:7c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKAAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA0NDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAwQ0I3RjYwNEIzRTYw MTgzMDE3NDVBRkYyMkEwOTdBNjdENzk4RjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtXhL0frlocJ/vbpQ6PgT5KqrwxqJk39l55kZwhFZ4CWoHk1AN XY5Ntq5+uE4bR7cWPa9vGPmsX6RXOn2H30IG835vhNX/l7nGQwm1Nvs6uWS+mVfz tZusqRUdBlyJq5HJHDHZZzNu0MO0+qiF9Z93zITg2E5zTcEfMAc0F6f38i9wrz4C 9gZPS4hTIuZdeALoZAoX0JbQFbQyqqReYrdjH0CTbLGqUWb+Egh/EmuBNKCEEwr6 g6ZgEHI5HIxvX/ngqhp79k1v41K5nhzav+BAPFiohHsGxqdU/lDAt7W3cgVHnYBc FyS4+nZTGBpIr6+gMswJ8AZq1nB11J2SimJPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAMt/YEs+YBgwF0Wv8ioJemfXmPEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0FNdF9ZRXMtWUJnd0YwV3Y4 aW9KZW1mWG1QRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 w0gwDQYJKoZIhvcNAQELBQADggEBAKXoQvwod4oI69z+hCtuY9CFngpdQ2+TxVik 8QApx731+Z2boJ+nq1m3/47EfY+SY6HTYjaTcpvgoz5jg4idQaxvVbEoyiPYvawh bLQ5OZ9Ifb6jKqHf9sRgyDwRNYuBBCE+MPOGsFmSbDUywGoiN1TGd+vnaJa2W1H0 +EekXWAvc6FDtgfSgC/p3d4RVLckKP0RRy66p//BZzxNtCIJOnkUyvmxl8Rpofm7 KPtV+RYEtEPPxomkN0kVaP6BxnP2uWNT9LDMtctw+fu1UNcVRMhS5M4CYToY8rTT zr2MSKMD4WHC5QLgnbuBS3R0chmB2o3b/n+lHUGIB/B0PRk2vnw= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:04 2024 by rpki-client on console-fra.rpki-client.org