$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ak30DtjkKqQfhrOcpXESFW5QN6k.roa File: Ak30DtjkKqQfhrOcpXESFW5QN6k.roa (raw, json) Hash identifier: H2n1sd//yXT2O/BPul8MQxUi0+UPiUyTq40tTodlGv4= Subject key identifier: 02:4D:F4:0E:D8:E4:2A:A4:1F:86:B3:9C:A5:71:12:15:6E:50:37:A9 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2AB4 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ak30DtjkKqQfhrOcpXESFW5QN6k.roa Signing time: Fri 01 Sep 2023 10:08:12 +0000 ROA not before: Fri 01 Sep 2023 10:08:12 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.233.160.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10932 (0x2ab4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:12 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=024DF40ED8E42AA41F86B39CA57112156E5037A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1e:0b:8d:f3:0a:d1:67:4f:50:13:72:a0:15: f4:2e:4d:bd:5f:78:2f:cf:8c:f5:10:3d:f5:16:7b: 02:ed:17:7b:25:5e:e1:bc:c0:03:f9:c8:0d:60:6d: 53:da:9a:5d:ca:46:2e:8f:ce:17:d9:4c:84:a2:98: 57:f8:92:0e:62:5d:d7:9c:45:1b:41:13:0e:f4:36: 8a:97:e9:38:03:32:18:21:26:29:60:cb:4d:08:8f: 55:b3:08:db:7a:fc:b6:b9:0e:68:39:c2:ea:82:9d: d3:a8:f6:56:91:ef:6e:80:e1:b0:59:ff:af:b2:7e: 7d:2e:89:8b:bf:df:51:6b:de:9f:07:95:94:d7:6f: ec:67:48:af:46:04:88:ed:7e:cd:d2:79:45:6b:47: dd:60:ad:08:5d:38:1f:a0:39:c7:47:ee:f9:07:56: ff:e7:97:88:5a:99:27:a4:2e:90:40:0a:bd:fc:80: 6a:6c:eb:b4:51:07:88:51:64:17:bf:46:2d:2d:73: 88:63:75:e6:06:27:51:cd:bb:bc:88:37:1b:99:61: d1:46:dd:5d:a9:59:e7:ba:f4:28:1b:fd:a5:78:51: 3d:95:97:8b:19:e7:b4:00:f9:f6:e9:9f:d4:37:f3: 43:40:02:ab:60:02:fc:4a:8e:e3:cc:e7:a0:07:00: e0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:4D:F4:0E:D8:E4:2A:A4:1F:86:B3:9C:A5:71:12:15:6E:50:37:A9 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ak30DtjkKqQfhrOcpXESFW5QN6k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.160.0/22 Signature Algorithm: sha256WithRSAEncryption 14:96:34:ba:12:67:c4:2b:da:79:6c:b7:e4:31:e2:50:5b:ec: 8a:22:8c:27:75:14:ac:88:9a:9c:3c:ed:1f:7e:d6:3d:51:e2: 96:0f:20:80:67:65:30:3a:23:a0:29:a7:ed:38:b3:8c:af:65: 2d:3a:3f:08:08:97:a2:b3:28:4b:a2:33:02:99:ac:f1:a3:c1: 54:16:e1:29:b0:da:16:8c:53:fd:29:10:1b:b9:6a:7f:de:76: c7:5d:29:85:59:32:74:c7:56:39:8b:c3:fb:ba:0a:50:34:77: 04:4c:b5:8d:75:cf:fd:9f:c6:e3:fa:db:32:af:b6:fb:62:28: 4a:71:ce:84:af:84:1d:89:ac:64:fd:dc:2e:37:3c:d0:33:0c: fc:52:bb:bd:f4:6b:22:fd:04:bc:3a:05:95:f3:31:d7:31:51: 52:93:dd:09:df:e4:66:47:b7:eb:93:f9:f9:33:87:8c:82:e5: 4b:7f:0a:fb:6a:d8:c3:fd:0e:80:eb:d6:80:68:a0:41:95:bc: cb:aa:15:ce:54:3d:e1:ee:7c:2e:f3:df:0d:2f:2f:c4:91:bc: 6d:47:97:1c:a3:34:8f:4d:f4:91:20:51:67:f0:43:4f:2b:25: 50:0f:74:c7:36:f6:01:6b:f4:1d:bf:fa:45:37:c7:88:39:8e: 51:c7:e2:d9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKrQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAyNERGNDBFRDhFNDJB QTQxRjg2QjM5Q0E1NzExMjE1NkU1MDM3QTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjHguN8wrRZ09QE3KgFfQuTb1feC/PjPUQPfUWewLtF3slXuG8 wAP5yA1gbVPaml3KRi6PzhfZTISimFf4kg5iXdecRRtBEw70NoqX6TgDMhghJilg y00Ij1WzCNt6/La5Dmg5wuqCndOo9laR726A4bBZ/6+yfn0uiYu/31Fr3p8HlZTX b+xnSK9GBIjtfs3SeUVrR91grQhdOB+gOcdH7vkHVv/nl4hamSekLpBACr38gGps 67RRB4hRZBe/Ri0tc4hjdeYGJ1HNu7yINxuZYdFG3V2pWee69Cgb/aV4UT2Vl4sZ 57QA+fbpn9Q380NAAqtgAvxKjuPM56AHAOB5AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAk30DtjkKqQfhrOcpXESFW5QN6kwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0FrMzBEdGprS3FRZmhyT2Nw WEVTRlc1UU42ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6aAwDQYJKoZIhvcNAQELBQADggEBABSWNLoSZ8Qr2nlst+Qx4lBb7IoijCd1FKyI mpw87R9+1j1R4pYPIIBnZTA6I6App+04s4yvZS06PwgIl6KzKEuiMwKZrPGjwVQW 4Smw2haMU/0pEBu5an/edsddKYVZMnTHVjmLw/u6ClA0dwRMtY11z/2fxuP62zKv tvtiKEpxzoSvhB2JrGT93C43PNAzDPxSu730ayL9BLw6BZXzMdcxUVKT3Qnf5GZH t+uT+fkzh4yC5Ut/Cvtq2MP9DoDr1oBooEGVvMuqFc5UPeHufC7z3w0vL8SRvG1H lxyjNI9N9JEgUWfwQ08rJVAPdMc29gFr9B2/+kU3x4g5jlHH4tk= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:04 2024 by rpki-client on console-ams.rpki-client.org