$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D9dv1vc6on24C7ta5L1Vgsn3RLA.roa File: D9dv1vc6on24C7ta5L1Vgsn3RLA.roa (raw, json) Hash identifier: WPD9qKL2fGjsIuue8hBHSWjqe6+2mKbkkSQHEkiBZ7g= Subject key identifier: 0F:D7:6F:D6:F7:3A:A2:7D:B8:0B:BB:5A:E4:BD:55:82:C9:F7:44:B0 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2ADD Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D9dv1vc6on24C7ta5L1Vgsn3RLA.roa Signing time: Fri 01 Sep 2023 10:08:22 +0000 ROA not before: Fri 01 Sep 2023 10:08:22 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.192.240.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10973 (0x2add) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:22 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0FD76FD6F73AA27DB80BBB5AE4BD5582C9F744B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:16:10:6a:ed:2a:50:81:f8:84:1d:e9:51:9f: fa:6e:e1:e3:43:3b:c6:a6:2a:fb:6a:d8:e0:fa:0d: 87:6c:26:ee:fb:4f:c6:d1:c3:fb:1f:ad:aa:bf:b6: 36:5b:fa:b2:6d:0c:82:62:d4:f2:73:02:00:76:28: 69:6e:9c:7f:fc:cd:cf:43:55:21:fb:01:b2:8b:b3: 2c:3f:7f:7d:8c:4b:dc:f4:d0:ac:ba:91:26:48:54: 3b:3d:12:61:3c:85:10:37:da:39:81:80:d1:fd:72: ee:a5:36:54:02:08:3b:72:db:e8:29:80:4a:9e:52: 47:2c:b4:53:c5:d6:1c:3a:6c:c1:d0:b8:6a:8d:6c: 03:43:3a:e2:75:6d:c8:d6:66:7b:a8:da:22:e6:89: 4d:43:54:9e:b5:b9:f7:f5:5d:de:a6:a3:61:13:da: c7:dc:04:02:81:67:18:04:61:5c:7f:b4:58:eb:29: cf:07:e6:8a:b6:13:31:26:37:ad:2b:68:2d:c4:39: b4:a1:c8:32:4d:7f:9b:6a:d7:37:80:be:34:7a:91: ac:15:e2:55:9a:5e:16:da:35:ec:26:31:c4:92:46: 0a:98:30:78:b2:2d:c7:cd:3f:de:2b:87:b4:60:b1: 5a:24:62:a6:5f:6a:9f:fc:9f:e4:64:f3:36:60:f2: ca:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:D7:6F:D6:F7:3A:A2:7D:B8:0B:BB:5A:E4:BD:55:82:C9:F7:44:B0 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D9dv1vc6on24C7ta5L1Vgsn3RLA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.240.0/21 Signature Algorithm: sha256WithRSAEncryption 13:6f:ce:f5:02:8f:e1:1d:87:5d:87:e2:b7:ae:be:28:3c:3f: c8:c9:72:0e:2a:96:d9:4b:25:68:23:f3:8e:6c:e5:92:48:28: e7:72:bf:da:25:a9:9e:17:9a:82:38:c2:5d:49:d2:bc:7d:24: 5f:c3:6c:cd:52:db:48:6e:cb:aa:9c:28:96:bd:b1:82:1e:17: 7d:58:04:16:14:81:24:d5:e1:55:63:9b:6a:b9:cb:8d:af:dc: 2c:92:ac:34:8d:51:16:68:ce:03:5c:0a:58:d2:58:e5:b4:f8: 42:78:81:ac:55:5d:05:83:ba:0d:4d:d2:46:29:76:99:a4:30: f7:21:6d:52:e6:e3:d7:26:3c:4b:09:e1:15:79:83:de:33:35: 7e:7f:8c:46:68:14:2a:82:10:af:99:8a:84:a5:2a:60:e8:88: 5d:86:1e:8d:32:47:83:ae:1f:dd:a2:eb:01:09:86:ab:c6:cc: dc:53:02:7d:66:5f:b4:27:31:e9:13:39:20:e4:78:73:39:99: e9:9d:2c:03:ee:4b:62:2b:cb:40:fa:45:0b:e2:02:43:29:4b: e9:6d:0a:f6:b4:76:21:85:d7:ee:aa:0a:c7:74:c6:95:7a:73: 2d:2d:d3:07:a1:db:b2:55:ee:d7:d8:f8:a2:df:bd:31:b6:83: 15:61:fd:27 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKt0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MjJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBGRDc2RkQ2RjczQUEy N0RCODBCQkI1QUU0QkQ1NTgyQzlGNzQ0QjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFFhBq7SpQgfiEHelRn/pu4eNDO8amKvtq2OD6DYdsJu77T8bR w/sfraq/tjZb+rJtDIJi1PJzAgB2KGlunH/8zc9DVSH7AbKLsyw/f32MS9z00Ky6 kSZIVDs9EmE8hRA32jmBgNH9cu6lNlQCCDty2+gpgEqeUkcstFPF1hw6bMHQuGqN bANDOuJ1bcjWZnuo2iLmiU1DVJ61uff1Xd6mo2ET2sfcBAKBZxgEYVx/tFjrKc8H 5oq2EzEmN60raC3EObShyDJNf5tq1zeAvjR6kawV4lWaXhbaNewmMcSSRgqYMHiy LcfNP94rh7RgsVokYqZfap/8n+Rk8zZg8spxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUD9dv1vc6on24C7ta5L1Vgsn3RLAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0Q5ZHYxdmM2b24yNEM3dGE1 TDFWZ3NuM1JMQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wPAwDQYJKoZIhvcNAQELBQADggEBABNvzvUCj+Edh12H4reuvig8P8jJcg4qltlL JWgj845s5ZJIKOdyv9olqZ4XmoI4wl1J0rx9JF/DbM1S20huy6qcKJa9sYIeF31Y BBYUgSTV4VVjm2q5y42v3CySrDSNURZozgNcCljSWOW0+EJ4gaxVXQWDug1N0kYp dpmkMPchbVLm49cmPEsJ4RV5g94zNX5/jEZoFCqCEK+ZioSlKmDoiF2GHo0yR4Ou H92i6wEJhqvGzNxTAn1mX7QnMekTOSDkeHM5memdLAPuS2Iry0D6RQviAkMpS+lt Cva0diGF1+6qCsd0xpV6cy0t0weh27JV7tfY+KLfvTG2gxVh/Sc= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:04 2024 by rpki-client on console-ams.rpki-client.org