$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DYpR14vkCNm19NVludabDNHKKd4.roa File: DYpR14vkCNm19NVludabDNHKKd4.roa (raw, json) Hash identifier: nn+QoA2Vw5n6Fu+MbEz0QL85Pld2vV9fU+WlVsm/eMc= Subject key identifier: 0D:8A:51:D7:8B:E4:08:D9:B5:F4:D5:65:B9:D6:9B:0C:D1:CA:29:DE Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2B1E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DYpR14vkCNm19NVludabDNHKKd4.roa Signing time: Fri 01 Sep 2023 10:09:52 +0000 ROA not before: Fri 01 Sep 2023 10:09:52 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.194.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11038 (0x2b1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:09:52 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0D8A51D78BE408D9B5F4D565B9D69B0CD1CA29DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e8:f1:22:54:2d:db:a5:24:5b:2a:6a:e2:94: 10:69:26:62:18:7f:c6:da:e1:6a:7f:de:cc:66:85: e1:ac:a4:4c:18:67:7b:46:af:3d:1b:76:60:f7:1f: 08:e2:30:0d:43:b9:1d:bc:aa:ee:0e:b8:b5:43:08: 38:f6:7b:d0:19:06:73:3a:ab:0a:81:be:d9:08:57: 5e:f3:84:48:67:e2:5e:85:e2:3b:44:d0:b7:57:4b: 08:9f:58:c9:47:32:da:d2:ff:48:e9:b4:26:80:e0: 5f:2c:cb:42:e9:c3:1c:ce:8d:1c:92:65:bf:fa:02: 57:02:50:36:f9:4d:05:d7:91:61:49:2d:56:46:ad: 45:57:0b:c8:f2:b8:8f:02:f4:00:2c:87:9a:31:e2: a8:04:9d:f9:8e:9a:70:bb:29:12:4a:08:3c:f4:65: 74:16:9e:28:fa:24:1b:fb:65:26:f8:08:f1:83:51: a8:cf:e1:ed:b9:98:8f:d9:bf:3f:95:4b:62:67:68: 92:2e:73:c3:d1:c7:fc:5c:62:a9:99:cd:f2:1f:61: 82:2a:27:63:26:97:fe:37:42:26:bd:83:e1:a8:6b: 78:7e:54:a7:28:90:d9:d1:95:4d:5a:df:8a:e5:f1: 02:5a:32:8d:6b:a3:f3:9a:ad:5b:d5:e6:d1:14:d3: f0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:8A:51:D7:8B:E4:08:D9:B5:F4:D5:65:B9:D6:9B:0C:D1:CA:29:DE X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DYpR14vkCNm19NVludabDNHKKd4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.76.0/22 Signature Algorithm: sha256WithRSAEncryption 51:37:76:cc:ae:06:8d:db:58:e5:5a:a9:ac:b6:37:22:df:3d: 8d:d4:37:a3:5d:5f:31:a9:1d:a9:71:6a:25:a1:f6:0d:ad:f5: 21:18:bf:a2:95:50:8e:41:d6:e3:77:26:bb:04:ed:33:18:a9: b0:28:4f:9e:cc:72:ee:f5:f2:51:13:ee:3e:95:fb:4a:c7:23: 63:c4:8e:8b:86:32:7c:fb:f1:2c:83:22:e4:05:fb:3d:79:4c: 4a:f6:d6:2b:d5:bf:5d:70:70:2a:65:fc:37:31:29:3c:fa:96: ae:ed:5a:dd:4c:e1:2d:40:43:70:89:8f:62:1f:ba:f1:99:1a: 69:b9:a1:44:bf:7d:5c:7d:5e:b8:09:ac:98:d7:7c:b0:a3:4d: a0:ad:0a:a6:c6:68:34:53:af:f4:05:c9:bf:f6:f7:2f:24:b8: 20:0b:07:db:c8:c0:e5:43:cc:3d:11:f9:45:eb:1c:bf:ab:54: 27:1d:2f:dd:00:60:ac:76:d5:c1:f5:e6:8d:35:74:4e:fa:c2: e5:fb:b7:7d:41:79:d1:a1:95:3b:63:00:87:60:95:6c:9b:b3: 9c:a5:50:df:2d:84:2c:be:60:1e:32:23:73:d1:5f:5e:e4:c2: a8:07:34:74:1a:e4:36:ed:4a:f3:8e:07:df:dc:05:72:0b:b1: 42:8b:bb:42 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKx4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA5NTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBEOEE1MUQ3OEJFNDA4 RDlCNUY0RDU2NUI5RDY5QjBDRDFDQTI5REUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/6PEiVC3bpSRbKmrilBBpJmIYf8ba4Wp/3sxmheGspEwYZ3tG rz0bdmD3HwjiMA1DuR28qu4OuLVDCDj2e9AZBnM6qwqBvtkIV17zhEhn4l6F4jtE 0LdXSwifWMlHMtrS/0jptCaA4F8sy0LpwxzOjRySZb/6AlcCUDb5TQXXkWFJLVZG rUVXC8jyuI8C9AAsh5ox4qgEnfmOmnC7KRJKCDz0ZXQWnij6JBv7ZSb4CPGDUajP 4e25mI/Zvz+VS2JnaJIuc8PRx/xcYqmZzfIfYYIqJ2Mml/43Qia9g+Goa3h+VKco kNnRlU1a34rl8QJaMo1ro/OarVvV5tEU0/AhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUDYpR14vkCNm19NVludabDNHKKd4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0RZcFIxNHZrQ05tMTlOVmx1 ZGFiRE5IS0tkNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wkwwDQYJKoZIhvcNAQELBQADggEBAFE3dsyuBo3bWOVaqay2NyLfPY3UN6NdXzGp HalxaiWh9g2t9SEYv6KVUI5B1uN3JrsE7TMYqbAoT57Mcu718lET7j6V+0rHI2PE jouGMnz78SyDIuQF+z15TEr21ivVv11wcCpl/DcxKTz6lq7tWt1M4S1AQ3CJj2If uvGZGmm5oUS/fVx9XrgJrJjXfLCjTaCtCqbGaDRTr/QFyb/29y8kuCALB9vIwOVD zD0R+UXrHL+rVCcdL90AYKx21cH15o01dE76wuX7t31BedGhlTtjAIdglWybs5yl UN8thCy+YB4yI3PRX17kwqgHNHQa5DbtSvOOB9/cBXILsUKLu0I= -----END CERTIFICATE-----Generated at Mon Jun 3 10:15:29 2024 by rpki-client on console-fra.rpki-client.org