$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/De4xsvCovQJrsh1KURgO0sv9_70.roa File: De4xsvCovQJrsh1KURgO0sv9_70.roa (raw, json) Hash identifier: 7Cjk7vB1z9pWJMjunW56jnQT/6pIpBR5mAPU3JAXzuk= Subject key identifier: 0D:EE:31:B2:F0:A8:BD:02:6B:B2:1D:4A:51:18:0E:D2:CB:FD:FF:BD Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2984 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/De4xsvCovQJrsh1KURgO0sv9_70.roa Signing time: Fri 01 Sep 2023 10:06:42 +0000 ROA not before: Fri 01 Sep 2023 10:06:42 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.194.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10628 (0x2984) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:06:42 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0DEE31B2F0A8BD026BB21D4A51180ED2CBFDFFBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b8:10:e5:c9:fa:c4:50:d3:73:25:32:e3:80: 7f:0f:b0:4c:63:5a:a5:67:94:ed:40:1b:db:79:d5: c8:eb:2a:f4:5d:47:bc:a4:47:0b:53:36:94:b0:37: 4d:d1:70:85:da:13:db:d1:d7:b3:be:f1:ad:19:34: 68:d7:57:db:e6:e7:57:dd:2e:28:69:cd:f5:06:1d: 02:1a:77:d4:c5:ed:f7:7a:41:f4:83:86:62:7b:1e: 75:99:f8:0a:05:3d:de:39:cf:8f:cd:43:5f:85:75: e8:89:b9:23:33:75:27:66:c4:7b:b4:a3:ac:da:7c: 12:09:58:68:3e:69:de:32:55:11:c2:e9:15:63:45: 9e:81:ac:66:6f:2d:63:90:54:fa:16:a8:2d:15:f9: ae:d2:7a:d7:a3:e0:34:91:5e:e2:36:63:e4:bc:98: 0c:a5:9f:bc:87:3a:1f:e2:69:5c:92:b4:b8:04:e3: f5:18:b5:c6:97:e0:b5:51:13:e1:ab:6d:23:c5:83: 7e:2a:29:4b:89:a2:9a:05:3f:5d:c6:d9:ef:e8:56: ce:1e:50:a4:72:e6:5d:a4:13:28:ba:88:9c:f8:2c: f4:a4:14:9a:7d:8e:7f:a7:67:65:35:9f:ea:c9:9d: 5b:7d:b3:e9:e5:7d:60:da:20:a9:1d:fc:87:f4:49: 0c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:EE:31:B2:F0:A8:BD:02:6B:B2:1D:4A:51:18:0E:D2:CB:FD:FF:BD X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/De4xsvCovQJrsh1KURgO0sv9_70.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.252.0/22 Signature Algorithm: sha256WithRSAEncryption 53:f8:aa:f5:d2:fd:9d:2c:c0:4e:61:3b:66:be:44:a4:bc:0f: 4b:bf:91:d7:10:32:fd:02:04:db:f5:a3:25:91:25:6a:07:2a: 43:78:1d:7e:91:43:1c:20:7f:10:3c:c8:5b:3e:4e:e3:11:cb: 47:b3:84:87:8c:d8:af:a8:8c:f9:a5:e0:a5:97:c9:c7:06:14: 9f:ab:bd:0c:02:4f:2f:cd:3e:22:aa:05:d5:79:c1:bf:79:26: 95:22:14:09:17:67:b2:41:8c:32:d8:1a:13:ee:7e:17:92:eb: cf:ca:1f:51:c2:60:25:4d:7e:4b:81:cc:7d:19:0f:a5:9c:8f: 54:51:83:ca:9f:b1:29:e7:49:bb:d2:7d:fe:63:4f:89:0a:11: 14:9e:a6:38:3e:66:13:57:8d:b4:47:17:d6:44:6d:bf:93:ce: b5:e7:b5:22:22:87:64:17:66:24:08:33:51:53:41:2a:86:42: 39:4d:49:66:ae:4a:ac:9c:3c:a6:7c:0c:49:de:1e:c9:df:db: 95:16:3e:d8:7c:eb:d8:29:e7:96:f3:37:ce:18:6c:ef:49:5e: 3e:45:3c:bf:c3:79:af:31:49:66:64:cb:7e:e6:7a:8b:0f:49: a3:1a:4d:6b:8b:90:c3:31:12:05:61:24:d5:f2:ec:47:3b:f0: 90:b0:4c:72 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKYQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA2NDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBERUUzMUIyRjBBOEJE MDI2QkIyMUQ0QTUxMTgwRUQyQ0JGREZGQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJuBDlyfrEUNNzJTLjgH8PsExjWqVnlO1AG9t51cjrKvRdR7yk RwtTNpSwN03RcIXaE9vR17O+8a0ZNGjXV9vm51fdLihpzfUGHQIad9TF7fd6QfSD hmJ7HnWZ+AoFPd45z4/NQ1+FdeiJuSMzdSdmxHu0o6zafBIJWGg+ad4yVRHC6RVj RZ6BrGZvLWOQVPoWqC0V+a7Setej4DSRXuI2Y+S8mAyln7yHOh/iaVyStLgE4/UY tcaX4LVRE+GrbSPFg34qKUuJopoFP13G2e/oVs4eUKRy5l2kEyi6iJz4LPSkFJp9 jn+nZ2U1n+rJnVt9s+nlfWDaIKkd/If0SQxlAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUDe4xsvCovQJrsh1KURgO0sv9/70wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0RlNHhzdkNvdlFKcnNoMUtV UmdPMHN2OV83MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wvwwDQYJKoZIhvcNAQELBQADggEBAFP4qvXS/Z0swE5hO2a+RKS8D0u/kdcQMv0C BNv1oyWRJWoHKkN4HX6RQxwgfxA8yFs+TuMRy0ezhIeM2K+ojPml4KWXyccGFJ+r vQwCTy/NPiKqBdV5wb95JpUiFAkXZ7JBjDLYGhPufheS68/KH1HCYCVNfkuBzH0Z D6Wcj1RRg8qfsSnnSbvSff5jT4kKERSepjg+ZhNXjbRHF9ZEbb+TzrXntSIih2QX ZiQIM1FTQSqGQjlNSWauSqycPKZ8DEneHsnf25UWPth869gp55bzN84YbO9JXj5F PL/Dea8xSWZky37meosPSaMaTWuLkMMxEgVhJNXy7Ec78JCwTHI= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:04 2024 by rpki-client on console-fra.rpki-client.org