$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HnFZ4hwiIiq0ySMDGELNbChAFzs.roa File: HnFZ4hwiIiq0ySMDGELNbChAFzs.roa (raw, json) Hash identifier: n6AGxyZXQqu4i2VKNuit1p0SfOcDCp4+Y49hVD0Huxw= Subject key identifier: 1E:71:59:E2:1C:22:22:2A:B4:C9:23:03:18:42:CD:6C:28:40:17:3B Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 313D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HnFZ4hwiIiq0ySMDGELNbChAFzs.roa Signing time: Mon 26 Aug 2024 05:30:15 +0000 ROA not before: Mon 26 Aug 2024 05:30:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12605 (0x313d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1E7159E21C22222AB4C923031842CD6C2840173B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5c:83:27:63:6d:8f:a7:9f:71:c4:62:f3:8e: 82:9d:4d:8a:61:ab:bf:ac:0d:05:6f:ce:f6:46:70: bb:58:df:53:11:57:43:19:52:b1:92:30:07:51:c9: 78:cf:07:a2:fe:64:d1:2b:86:3f:8d:ea:b5:e5:2b: fb:74:72:49:fd:bd:88:2a:ac:a4:42:b1:4e:c1:53: 1e:b5:e5:0b:43:99:26:68:c6:40:a5:c1:c5:7f:36: 6a:f1:b1:19:5c:6d:b7:25:2f:0c:b7:33:b9:fa:69: 2c:d5:9e:7a:0e:ab:69:c9:f8:6c:8a:13:a4:d4:8b: ff:f4:c7:fd:42:dd:83:f0:06:5f:44:52:da:7c:40: a0:36:76:30:dc:71:05:40:6f:dd:e0:a1:a6:c6:83: d1:43:9f:4c:94:86:3f:87:e6:66:3a:99:ed:c8:3d: cc:78:ca:30:0a:6d:e5:9f:3e:79:97:ab:f8:97:d1: 1f:12:f8:4b:1f:51:00:10:9d:12:9d:fb:56:e1:7a: ee:cf:11:40:3a:ea:f1:68:26:e8:9b:30:bc:9a:65: 88:e1:7a:34:9a:96:78:77:14:6a:50:87:be:f1:aa: 6f:b1:16:48:96:67:7b:57:59:37:9d:4d:5c:cf:07: bd:c9:e9:d6:ec:71:3d:2e:9d:0a:85:3b:41:af:5b: ff:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:71:59:E2:1C:22:22:2A:B4:C9:23:03:18:42:CD:6C:28:40:17:3B X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/HnFZ4hwiIiq0ySMDGELNbChAFzs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.156.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:02:99:c5:80:83:b3:35:0e:5f:ad:65:9a:df:26:e8:e2:36: 42:4d:57:be:e7:3e:9a:ba:97:10:f2:fd:96:6d:c5:90:9f:93: 4c:b7:97:e5:bd:69:54:9a:59:c4:8a:29:94:85:6f:ee:03:de: f7:f5:be:89:89:e3:be:c8:05:4c:c2:c7:0e:47:1f:c6:35:54: 2b:26:9b:18:13:f1:b8:ee:bf:27:33:50:27:25:ab:24:fb:76: 82:9b:07:12:96:c6:64:be:8a:2d:0c:c4:17:10:9b:9f:d6:84: 08:e0:e0:18:14:30:eb:fb:75:19:98:2f:31:96:10:0a:79:72: eb:fe:8e:d7:2a:f8:f9:fa:da:e4:d6:7f:4d:fd:0c:fe:0b:82: bf:7b:6a:33:c0:48:f2:b9:bc:60:9c:b8:12:8e:f0:a1:bb:f9: 81:13:84:b4:0a:44:1f:93:f5:48:d2:ce:e0:38:ff:e7:c8:ed: 3d:fb:ce:6d:50:35:65:ff:25:5e:90:42:9a:1f:4e:5f:36:21: aa:52:34:bd:02:68:2a:e9:f1:6e:c0:f9:81:cc:87:a2:e9:f9: 6f:c3:a2:67:07:77:96:86:e7:cf:1e:ab:9d:f8:ac:f5:41:f7: e3:82:c0:18:cf:81:b3:ea:c5:80:bb:68:bc:cf:fb:9a:2c:7c: 25:3b:95:51 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMT0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFFNzE1OUUyMUMyMjIy MkFCNEM5MjMwMzE4NDJDRDZDMjg0MDE3M0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwXIMnY22Pp59xxGLzjoKdTYphq7+sDQVvzvZGcLtY31MRV0MZ UrGSMAdRyXjPB6L+ZNErhj+N6rXlK/t0ckn9vYgqrKRCsU7BUx615QtDmSZoxkCl wcV/NmrxsRlcbbclLwy3M7n6aSzVnnoOq2nJ+GyKE6TUi//0x/1C3YPwBl9EUtp8 QKA2djDccQVAb93goabGg9FDn0yUhj+H5mY6me3IPcx4yjAKbeWfPnmXq/iX0R8S +EsfUQAQnRKd+1bheu7PEUA66vFoJuibMLyaZYjhejSalnh3FGpQh77xqm+xFkiW Z3tXWTedTVzPB73J6dbscT0unQqFO0GvW/+BAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUHnFZ4hwiIiq0ySMDGELNbChAFzswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0huRlo0aHdpSWlxMHlTTURH RUxOYkNoQUZ6cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6ZwwDQYJKoZIhvcNAQELBQADggEBAFoCmcWAg7M1Dl+tZZrfJujiNkJNV77nPpq6 lxDy/ZZtxZCfk0y3l+W9aVSaWcSKKZSFb+4D3vf1vomJ477IBUzCxw5HH8Y1VCsm mxgT8bjuvyczUCclqyT7doKbBxKWxmS+ii0MxBcQm5/WhAjg4BgUMOv7dRmYLzGW EAp5cuv+jtcq+Pn62uTWf039DP4Lgr97ajPASPK5vGCcuBKO8KG7+YEThLQKRB+T 9UjSzuA4/+fI7T37zm1QNWX/JV6QQpofTl82IapSNL0CaCrp8W7A+YHMh6Lp+W/D omcHd5aG588eq534rPVB9+OCwBjPgbPqxYC7aLzP+5osfCU7lVE= -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:38 2024 by rpki-client on console-fra.rpki-client.org