$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/C5_tF7NTG3PO9OvuaL1beL8iUFk.roa File: C5_tF7NTG3PO9OvuaL1beL8iUFk.roa (raw, json) Hash identifier: fPGTY/PQsKtMK3oxh6tLJHMp8JFCstT4pzNaXHvU+ro= Subject key identifier: 0B:9F:ED:17:B3:53:1B:73:CE:F4:EB:EE:68:BD:5B:78:BF:22:50:59 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 30DB Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/C5_tF7NTG3PO9OvuaL1beL8iUFk.roa Signing time: Mon 26 Aug 2024 05:29:53 +0000 ROA not before: Mon 26 Aug 2024 05:29:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.232.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12507 (0x30db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:53 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0B9FED17B3531B73CEF4EBEE68BD5B78BF225059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e4:f2:46:be:57:9a:c6:99:c8:5f:91:bc:ac: eb:b6:f2:14:87:81:d8:06:2f:08:17:d6:cb:83:08: 91:bf:e3:cd:ce:9e:ec:00:cf:8f:9c:15:56:28:40: 74:07:f6:a2:77:2e:d7:08:58:26:f7:28:f8:a9:e3: 00:b7:f2:49:b9:8c:70:c9:e9:52:82:30:61:18:8c: b9:d4:6e:14:8d:d9:fa:f4:37:db:9e:64:be:01:25: 54:2e:e5:7d:8a:df:41:d4:50:32:b0:aa:d2:b2:d1: 43:e5:b6:6d:5f:06:8f:62:e3:01:18:10:51:71:9e: c4:c3:85:ff:8c:48:fa:24:e1:1f:8a:5a:51:f6:79: 75:24:07:c1:10:e3:17:40:5b:dc:3b:b8:ec:f1:a7: 08:5d:28:bb:98:6d:1d:01:c4:2d:9b:35:cc:c8:ad: 76:c3:de:bf:c6:d9:f6:37:7d:e4:38:33:0e:94:91: 07:07:24:3f:e6:7e:bf:49:bc:a5:c7:23:d2:5d:6a: d5:36:df:e1:67:80:5f:61:ed:e7:ae:6d:be:fa:44: 5c:0e:5b:69:56:b1:0f:13:b5:d7:75:7b:c8:4b:4d: 7c:4b:7b:14:a4:32:6c:15:35:51:86:d7:60:7d:8b: 7c:3c:32:b4:3a:cd:0d:44:fc:42:05:b4:89:5b:3c: d4:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:9F:ED:17:B3:53:1B:73:CE:F4:EB:EE:68:BD:5B:78:BF:22:50:59 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/C5_tF7NTG3PO9OvuaL1beL8iUFk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.116.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:66:aa:3d:65:dd:a2:66:5f:e0:9d:f5:5c:f6:11:08:99:77: e5:e6:e5:00:3d:ca:b2:7d:6e:c9:ba:6f:ea:52:a7:81:7a:a9: 98:05:5b:2a:25:52:34:8b:3f:dd:43:3a:d3:3e:8e:3c:3e:32: 70:8d:2b:d0:5f:f5:41:74:bf:91:42:15:a6:2b:3a:c3:22:6d: 35:dd:fe:c8:76:72:a7:0b:81:dd:80:e6:2f:2c:ae:12:5d:84: 16:95:73:df:f2:87:fd:75:4d:71:24:0e:67:2e:2d:ec:bd:c7: 6c:03:ab:f2:7c:59:df:ea:5a:4b:a5:64:ec:c5:5d:43:ce:44: b1:c7:2e:12:f5:e8:eb:3b:64:5e:13:94:54:d6:7a:27:f9:8b: 59:bd:88:d1:e4:cd:ad:c9:b7:5e:6e:9a:2f:a6:86:85:23:c9: de:47:4f:6c:85:b7:55:89:6a:98:62:4b:b2:36:f5:a0:50:9c: 2a:87:1c:87:5e:05:14:a1:7f:b7:f7:e2:59:55:ae:a4:d3:2e: a9:a4:27:05:3a:d0:5c:49:11:eb:86:93:e3:4b:cd:1f:43:c2: fa:0d:bf:7d:a6:0a:37:44:da:52:cc:ff:a5:56:7c:d0:9f:34: 9d:71:df:11:89:11:ca:14:36:07:12:58:8d:26:b5:37:bf:20: e8:d7:df:7a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMNswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5NTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBCOUZFRDE3QjM1MzFC NzNDRUY0RUJFRTY4QkQ1Qjc4QkYyMjUwNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC65PJGvleaxpnIX5G8rOu28hSHgdgGLwgX1suDCJG/483OnuwA z4+cFVYoQHQH9qJ3LtcIWCb3KPip4wC38km5jHDJ6VKCMGEYjLnUbhSN2fr0N9ue ZL4BJVQu5X2K30HUUDKwqtKy0UPltm1fBo9i4wEYEFFxnsTDhf+MSPok4R+KWlH2 eXUkB8EQ4xdAW9w7uOzxpwhdKLuYbR0BxC2bNczIrXbD3r/G2fY3feQ4Mw6UkQcH JD/mfr9JvKXHI9JdatU23+FngF9h7eeubb76RFwOW2lWsQ8Ttdd1e8hLTXxLexSk MmwVNVGG12B9i3w8MrQ6zQ1E/EIFtIlbPNQtAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUC5/tF7NTG3PO9OvuaL1beL8iUFkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0M1X3RGN05URzNQTzlPdnVh TDFiZUw4aVVGay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6HQwDQYJKoZIhvcNAQELBQADggEBAE9mqj1l3aJmX+Cd9Vz2EQiZd+Xm5QA9yrJ9 bsm6b+pSp4F6qZgFWyolUjSLP91DOtM+jjw+MnCNK9Bf9UF0v5FCFaYrOsMibTXd /sh2cqcLgd2A5i8srhJdhBaVc9/yh/11TXEkDmcuLey9x2wDq/J8Wd/qWkulZOzF XUPORLHHLhL16Os7ZF4TlFTWeif5i1m9iNHkza3Jt15umi+mhoUjyd5HT2yFt1WJ aphiS7I29aBQnCqHHIdeBRShf7f34llVrqTTLqmkJwU60FxJEeuGk+NLzR9DwvoN v32mCjdE2lLM/6VWfNCfNJ1x3xGJEcoUNgcSWI0mtTe/IOjX33o= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:51 2024 by rpki-client on console-ams.rpki-client.org