$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DJdgTk-d_xCkD0srtClrh3Vk9a8.roa File: DJdgTk-d_xCkD0srtClrh3Vk9a8.roa (raw, json) Hash identifier: SVY+kQuAmSOAkkbTOIjUsAIstIQVq35EAF/VH7SaKKQ= Subject key identifier: 0C:97:60:4E:4F:9D:FF:10:A4:0F:4B:2B:B4:29:6B:87:75:64:F5:AF Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 29FF Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DJdgTk-d_xCkD0srtClrh3Vk9a8.roa Signing time: Fri 01 Sep 2023 10:07:21 +0000 ROA not before: Fri 01 Sep 2023 10:07:21 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 180.176.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10751 (0x29ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:21 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0C97604E4F9DFF10A40F4B2BB4296B877564F5AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:53:fe:2d:54:4b:b4:26:66:69:5f:6e:5d:6c: 89:ad:a1:13:48:42:20:6e:40:7b:0f:b2:3a:c7:17: 52:80:08:d8:56:d7:f4:bd:9d:17:fb:79:1e:a2:f7: db:1b:3e:4c:3e:06:86:2c:f4:ac:1a:28:8e:2f:c3: 7c:f0:df:7d:b6:7b:ef:73:c3:c5:53:d7:85:66:6b: 7f:48:9a:07:07:62:66:9a:b4:67:2e:ea:57:0a:4d: 50:53:54:0a:e5:95:b9:43:42:9a:4e:40:25:4a:60: 57:e5:cf:ce:45:55:ab:fa:90:86:aa:f0:e4:42:39: b1:10:10:17:51:a0:77:c3:7f:4c:83:8f:86:96:e4: e1:38:3b:37:16:7f:15:92:22:0b:82:5b:c1:08:e5: dd:1c:91:c6:f1:3c:74:31:a3:3f:69:58:68:46:bc: 1a:fd:24:99:5f:51:1f:cb:0c:2a:88:b7:83:41:5c: e1:46:d4:35:15:f3:88:28:c7:33:50:5e:28:cb:38: 4f:b3:d6:a8:3a:e2:62:1a:f8:36:4d:d8:af:57:ef: e3:77:a3:8f:fe:06:fd:9c:e4:69:d2:81:ba:65:44: c7:a5:0a:21:6c:c5:37:cb:ae:67:1a:e4:c1:f3:8d: 68:a9:9b:46:70:ca:3a:40:02:95:23:1b:7d:fe:c7: 3c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:97:60:4E:4F:9D:FF:10:A4:0F:4B:2B:B4:29:6B:87:75:64:F5:AF X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DJdgTk-d_xCkD0srtClrh3Vk9a8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.68.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:e2:78:cc:6e:a9:d7:46:5b:50:83:8b:9d:c7:cd:71:29:ef: 2e:ee:57:ee:40:21:43:61:ad:b3:fe:c3:9c:ef:1e:2d:2e:70: 00:13:4f:d4:f9:8f:cf:aa:72:de:95:26:d8:80:12:85:ed:ff: 62:18:ea:02:e0:4a:93:f0:bf:f3:c2:97:4a:cc:d2:69:1d:ea: a7:a3:31:d5:55:a4:59:f2:1c:26:e2:29:0a:d7:c0:70:b5:e0: 69:81:d3:3a:78:b3:de:4e:12:bd:60:91:6f:04:8b:35:8d:30: cc:27:2d:c8:6a:2a:7a:4c:20:0c:83:6b:c6:0a:f7:0e:a1:db: 45:4b:8b:a8:78:1c:e3:76:78:fa:cd:ad:6e:c6:45:27:e2:12: ae:d0:b5:ef:91:83:f0:d6:55:35:16:55:cc:47:19:89:40:5b: 0c:0c:42:3c:c0:65:2e:20:b0:b2:ae:5a:c3:16:43:e4:70:1b: bf:00:d1:45:e9:7d:7c:e0:7e:5b:a6:f8:9e:f6:f3:2c:e3:43: b1:54:57:82:d6:66:3d:a3:14:8e:9a:d3:21:b7:98:2b:89:70: f0:ce:f7:8a:c7:28:1b:7a:99:c8:1d:48:a3:a5:71:fe:54:6f: 98:ec:80:70:7d:d8:7c:ba:09:be:77:7e:72:cb:1f:50:f0:1e: f2:a9:eb:76 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKf8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3MjFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBDOTc2MDRFNEY5REZG MTBBNDBGNEIyQkI0Mjk2Qjg3NzU2NEY1QUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVU/4tVEu0JmZpX25dbImtoRNIQiBuQHsPsjrHF1KACNhW1/S9 nRf7eR6i99sbPkw+BoYs9KwaKI4vw3zw3322e+9zw8VT14Vma39ImgcHYmaatGcu 6lcKTVBTVArllblDQppOQCVKYFflz85FVav6kIaq8ORCObEQEBdRoHfDf0yDj4aW 5OE4OzcWfxWSIguCW8EI5d0ckcbxPHQxoz9pWGhGvBr9JJlfUR/LDCqIt4NBXOFG 1DUV84goxzNQXijLOE+z1qg64mIa+DZN2K9X7+N3o4/+Bv2c5GnSgbplRMelCiFs xTfLrmca5MHzjWipm0ZwyjpAApUjG33+xzxDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUDJdgTk+d/xCkD0srtClrh3Vk9a8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0RKZGdUay1kX3hDa0Qwc3J0 Q2xyaDNWazlhOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 sEQwDQYJKoZIhvcNAQELBQADggEBADvieMxuqddGW1CDi53HzXEp7y7uV+5AIUNh rbP+w5zvHi0ucAATT9T5j8+qct6VJtiAEoXt/2IY6gLgSpPwv/PCl0rM0mkd6qej MdVVpFnyHCbiKQrXwHC14GmB0zp4s95OEr1gkW8EizWNMMwnLchqKnpMIAyDa8YK 9w6h20VLi6h4HON2ePrNrW7GRSfiEq7Qte+Rg/DWVTUWVcxHGYlAWwwMQjzAZS4g sLKuWsMWQ+RwG78A0UXpfXzgflum+J728yzjQ7FUV4LWZj2jFI6a0yG3mCuJcPDO 94rHKBt6mcgdSKOlcf5Ub5jsgHB92Hy6Cb53fnLLH1DwHvKp63Y= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:04 2024 by rpki-client on console-fra.rpki-client.org