$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AnTZq60UEQ0XhbgdTADKYo2HicM.roa File: AnTZq60UEQ0XhbgdTADKYo2HicM.roa (raw, json) Hash identifier: 3WFlWX/gb2M5VjhUGOM0psSN2kp42XA2kDT6/VvnTKc= Subject key identifier: 02:74:D9:AB:AD:14:11:0D:17:85:B8:1D:4C:00:CA:62:8D:87:89:C3 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 312C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AnTZq60UEQ0XhbgdTADKYo2HicM.roa Signing time: Mon 26 Aug 2024 05:30:11 +0000 ROA not before: Mon 26 Aug 2024 05:30:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12588 (0x312c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0274D9ABAD14110D1785B81D4C00CA628D8789C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:05:f1:4e:7d:93:27:ec:9a:f8:c0:f4:34:30: ce:42:da:ab:22:82:2a:eb:55:e3:c2:2a:8a:7b:71: da:3e:b4:4e:62:17:30:2b:80:bf:c4:22:0e:7b:b2: 3f:ec:40:aa:c2:c8:f8:69:c7:52:79:9b:7c:6d:a2: eb:2c:7e:e2:96:07:a6:b0:52:ec:2f:4c:a2:37:c7: 5d:17:08:e9:86:af:23:d0:38:eb:73:c4:c4:f3:73: 0a:50:b7:c8:2e:5c:02:61:6d:90:d7:47:18:1d:b3: 84:e4:d1:48:ac:b4:a9:40:57:84:49:de:53:75:e1: b3:da:d7:c1:d0:e3:63:41:a0:39:7c:3d:63:cb:2b: 15:e0:aa:28:fd:71:df:e6:ee:df:0e:65:ad:7c:df: 0f:2d:7b:e6:08:a6:4d:6f:05:cd:64:f3:39:d0:bc: 55:e6:ba:b3:58:95:cc:c3:a7:17:20:b1:ba:9f:e5: 1a:d0:93:aa:73:06:79:1c:3b:5a:76:14:e5:84:00: 1d:ea:91:80:00:e3:78:23:1d:f9:39:07:4e:81:92: 76:78:5a:22:72:46:a4:b6:a9:79:95:a9:2f:82:5b: e5:b5:4e:0d:f0:9e:56:9a:cf:b6:e6:51:f2:34:5c: 39:04:cd:12:b3:bc:3d:bf:3e:b2:c9:32:ba:44:cc: 26:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:74:D9:AB:AD:14:11:0D:17:85:B8:1D:4C:00:CA:62:8D:87:89:C3 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/AnTZq60UEQ0XhbgdTADKYo2HicM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.68.0/24 Signature Algorithm: sha256WithRSAEncryption 64:d4:e8:78:ad:10:69:05:dc:70:e9:c2:a9:8f:93:4a:57:a6: 62:db:c4:6b:08:d2:b1:f1:69:56:55:c2:d3:98:42:53:9a:44: 6f:32:0e:3f:66:98:36:b7:c6:76:f2:4f:cb:a4:84:2e:8e:a3: 5f:ee:29:2e:40:7f:ac:01:d2:27:f2:16:1a:a3:e8:8f:95:28: c5:22:50:a9:58:cb:f2:0a:61:de:d3:b5:75:95:c3:92:0d:86: 69:5c:c3:10:19:50:36:78:cb:66:2b:b9:3c:f1:24:1e:77:26: 76:d9:2d:ce:aa:cc:6e:66:2a:f9:7e:77:98:73:02:c1:d6:1f: 10:92:e1:a1:e0:55:55:7b:19:16:e6:48:35:cf:45:bf:61:21: a8:9f:52:e5:c0:35:a6:70:eb:6b:aa:f0:85:c5:94:b2:d3:ea: 8b:f2:c7:f0:3d:08:3b:ca:88:7a:73:9f:00:39:bf:37:b1:6d: b8:36:f1:4f:8c:91:b7:9a:e4:90:c8:ff:02:5c:88:fc:88:dc: 19:bb:fe:67:78:8e:00:dd:d5:f9:0e:ec:58:c5:2d:34:23:94: 16:34:b6:69:ec:bc:7d:1b:d9:69:cd:d7:90:62:1b:a3:7e:64: 45:d0:79:9b:e6:5e:df:cf:50:84:7e:8f:d8:99:76:e1:84:bf: c9:7e:e6:37 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMSwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAyNzREOUFCQUQxNDEx MEQxNzg1QjgxRDRDMDBDQTYyOEQ4Nzg5QzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEBfFOfZMn7Jr4wPQ0MM5C2qsigirrVePCKop7cdo+tE5iFzAr gL/EIg57sj/sQKrCyPhpx1J5m3xtoussfuKWB6awUuwvTKI3x10XCOmGryPQOOtz xMTzcwpQt8guXAJhbZDXRxgds4Tk0UistKlAV4RJ3lN14bPa18HQ42NBoDl8PWPL KxXgqij9cd/m7t8OZa183w8te+YIpk1vBc1k8znQvFXmurNYlczDpxcgsbqf5RrQ k6pzBnkcO1p2FOWEAB3qkYAA43gjHfk5B06BknZ4WiJyRqS2qXmVqS+CW+W1Tg3w nlaaz7bmUfI0XDkEzRKzvD2/PrLJMrpEzCbZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAnTZq60UEQ0XhbgdTADKYo2HicMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0FuVFpxNjBVRVEwWGhiZ2RU QURLWW8ySGljTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AUQwDQYJKoZIhvcNAQELBQADggEBAGTU6HitEGkF3HDpwqmPk0pXpmLbxGsI0rHx aVZVwtOYQlOaRG8yDj9mmDa3xnbyT8ukhC6Oo1/uKS5Af6wB0ifyFhqj6I+VKMUi UKlYy/IKYd7TtXWVw5INhmlcwxAZUDZ4y2YruTzxJB53JnbZLc6qzG5mKvl+d5hz AsHWHxCS4aHgVVV7GRbmSDXPRb9hIaifUuXANaZw62uq8IXFlLLT6ovyx/A9CDvK iHpznwA5vzexbbg28U+Mkbea5JDI/wJciPyI3Bm7/md4jgDd1fkO7FjFLTQjlBY0 tmnsvH0b2WnN15BiG6N+ZEXQeZvmXt/PUIR+j9iZduGEv8l+5jc= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:50 2024 by rpki-client on console-fra.rpki-client.org