$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/G-TnQE5r9-KAe7SiM2DNbh4lph4.roa File: G-TnQE5r9-KAe7SiM2DNbh4lph4.roa (raw, json) Hash identifier: EY14d47E5MANFAbuVYx7joLjp0ZpRVeUQjEZiDz80tU= Subject key identifier: 1B:E4:E7:40:4E:6B:F7:E2:80:7B:B4:A2:33:60:CD:6E:1E:25:A6:1E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 290E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/G-TnQE5r9-KAe7SiM2DNbh4lph4.roa Signing time: Fri 01 Sep 2023 10:06:06 +0000 ROA not before: Fri 01 Sep 2023 10:06:06 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.195.180.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 18:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10510 (0x290e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:06:06 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=1BE4E7404E6BF7E2807BB4A23360CD6E1E25A61E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e6:fe:68:93:13:8e:11:77:c8:38:41:d2:03: 8a:54:ea:d8:41:b7:6c:c6:14:96:83:18:84:97:f3: 4e:24:d1:d7:f6:18:64:c7:e6:21:91:c1:2b:ec:5e: ae:33:24:73:99:8c:b1:73:9d:9c:5a:e6:36:04:85: d5:f6:06:57:7b:db:79:fc:f8:e8:bd:d5:90:32:19: ed:d2:41:96:72:f2:7b:15:5d:40:c1:e2:59:6d:17: 3e:79:5a:61:86:9e:a8:23:32:10:7a:3f:a6:18:44: 01:cc:f3:fd:61:e5:a4:c9:05:1d:9f:cd:16:fc:a7: a4:d2:c5:b6:ab:4a:7e:7a:0b:f5:78:46:cb:a9:03: 23:99:a4:fc:06:70:f2:f5:dd:70:05:33:4c:32:27: 13:af:07:13:c0:48:46:2d:f3:a3:d1:39:93:3c:11: d1:6f:14:ba:5c:cd:60:e5:df:c2:d9:d3:47:ac:6d: dc:7f:35:64:44:d2:a4:98:84:8a:0b:0c:e9:7b:1b: 06:2b:98:54:fd:61:72:e4:53:9d:bf:2a:71:60:09: 58:c5:3c:a5:1d:53:ff:40:91:87:07:63:48:83:1d: 83:02:be:0a:a7:e2:00:de:dd:13:ae:6a:15:dc:24: b9:af:7f:87:bc:38:91:b6:d9:4c:f0:ca:3a:32:4b: 51:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E4:E7:40:4E:6B:F7:E2:80:7B:B4:A2:33:60:CD:6E:1E:25:A6:1E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/G-TnQE5r9-KAe7SiM2DNbh4lph4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.180.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:03:20:f5:ae:71:d2:82:44:57:96:af:0b:0f:da:35:7d:59: da:76:fa:0d:51:c5:f5:6f:c6:fb:b8:a5:e8:e5:ba:98:73:a6: a7:3d:d8:19:0f:81:b6:f9:39:45:3d:07:23:61:98:b1:68:82: fe:3f:26:1b:bd:03:43:77:b6:ba:f6:81:79:1f:46:fd:29:8c: 24:7a:5f:d5:d9:a8:fb:2c:07:3d:6c:c9:f6:81:97:06:ec:0e: fc:31:13:f8:06:68:73:18:0f:e8:1a:fb:fd:78:c5:a5:a1:79: 98:e5:f0:89:19:84:59:31:41:d0:3c:d4:b3:67:1c:cb:4c:b0: 22:a5:05:3c:e4:07:48:10:e7:99:c8:e8:5a:9e:2d:1b:b3:ef: 99:65:c2:62:e9:f7:6d:52:b7:53:b3:56:24:4d:a2:f0:22:38: d8:24:91:e9:2a:7c:cd:89:c3:aa:db:6b:57:d6:d2:28:a7:c8: 66:13:ee:06:81:90:49:06:db:48:e3:3a:b9:87:c4:89:f1:5a: da:d2:6b:9d:31:f4:93:2c:53:7a:59:de:88:67:91:90:ec:d5: f1:80:a3:d5:5d:90:7b:0d:e3:d2:ef:44:c9:e2:c8:ea:0f:00: 15:ed:69:46:a1:5b:08:ec:42:ce:d4:c6:db:9b:2a:ca:3e:6a: 09:b0:7b:5a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKQ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA2MDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFCRTRFNzQwNEU2QkY3 RTI4MDdCQjRBMjMzNjBDRDZFMUUyNUE2MUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDe5v5okxOOEXfIOEHSA4pU6thBt2zGFJaDGISX804k0df2GGTH 5iGRwSvsXq4zJHOZjLFznZxa5jYEhdX2Bld723n8+Oi91ZAyGe3SQZZy8nsVXUDB 4lltFz55WmGGnqgjMhB6P6YYRAHM8/1h5aTJBR2fzRb8p6TSxbarSn56C/V4Rsup AyOZpPwGcPL13XAFM0wyJxOvBxPASEYt86PROZM8EdFvFLpczWDl38LZ00esbdx/ NWRE0qSYhIoLDOl7GwYrmFT9YXLkU52/KnFgCVjFPKUdU/9AkYcHY0iDHYMCvgqn 4gDe3ROuahXcJLmvf4e8OJG22UzwyjoyS1FBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUG+TnQE5r9+KAe7SiM2DNbh4lph4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0ctVG5RRTVyOS1LQWU3U2lN MkROYmg0bHBoNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF7 w7QwDQYJKoZIhvcNAQELBQADggEBAC4DIPWucdKCRFeWrwsP2jV9Wdp2+g1RxfVv xvu4pejluphzpqc92BkPgbb5OUU9ByNhmLFogv4/Jhu9A0N3trr2gXkfRv0pjCR6 X9XZqPssBz1syfaBlwbsDvwxE/gGaHMYD+ga+/14xaWheZjl8IkZhFkxQdA81LNn HMtMsCKlBTzkB0gQ55nI6FqeLRuz75llwmLp921St1OzViRNovAiONgkkekqfM2J w6rba1fW0iinyGYT7gaBkEkG20jjOrmHxInxWtrSa50x9JMsU3pZ3ohnkZDs1fGA o9VdkHsN49LvRMniyOoPABXtaUahWwjsQs7UxtubKso+agmwe1o= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:55 2024 by rpki-client on console-ams.rpki-client.org