$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/I8EdQo4Ahn7geDBZ1-hLsQ3gnOY.roa File: I8EdQo4Ahn7geDBZ1-hLsQ3gnOY.roa (raw, json) Hash identifier: 0WpLd/CThEORAdS46TReVabWcnMVbm+tNtSakO/S09s= Subject key identifier: 23:C1:1D:42:8E:00:86:7E:E0:78:30:59:D7:E8:4B:B1:0D:E0:9C:E6 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3120 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/I8EdQo4Ahn7geDBZ1-hLsQ3gnOY.roa Signing time: Mon 26 Aug 2024 05:30:08 +0000 ROA not before: Mon 26 Aug 2024 05:30:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12576 (0x3120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=23C11D428E00867EE0783059D7E84BB10DE09CE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5c:6a:ff:95:f0:26:2a:37:c5:58:01:18:92: 94:24:b0:c1:0d:fb:38:73:b5:3e:65:56:4d:78:32: 96:1e:d2:fd:60:0c:25:90:3d:51:65:0d:8f:74:16: 85:4d:17:9a:95:e5:c8:9e:b1:e7:bc:dd:4a:46:9e: 76:27:78:1c:1d:21:48:86:48:b5:12:65:f0:e1:8f: 1a:22:3e:50:f1:b9:6f:06:9a:7d:5b:eb:89:0a:df: d2:8e:75:93:1c:19:89:a3:15:ca:38:ce:db:f6:3e: d8:f5:d6:f4:4f:f0:f2:69:15:d0:cf:0c:b5:54:d6: 3a:da:7d:6f:e1:47:61:e8:cb:6b:ff:32:14:05:26: 51:a9:8f:86:5b:a7:4d:fb:19:60:83:16:07:6b:dd: 25:9f:3a:bd:7e:18:01:97:b4:05:26:d9:ce:c5:39: 48:3b:65:d6:31:d2:c6:34:5a:17:d9:07:7c:ac:2a: 4b:1c:96:13:ff:79:af:98:ce:05:53:ba:82:80:6b: a7:cd:d7:d7:34:08:d2:e9:f2:f7:79:16:73:69:57: 16:9f:81:15:6a:ef:24:e4:35:63:cd:b9:5c:17:01: 65:3d:3d:d0:0f:e0:68:3e:cf:f6:f3:3e:28:80:a6: fa:73:a9:0d:f6:d3:ba:64:bc:1e:04:1c:89:df:4f: 79:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:C1:1D:42:8E:00:86:7E:E0:78:30:59:D7:E8:4B:B1:0D:E0:9C:E6 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/I8EdQo4Ahn7geDBZ1-hLsQ3gnOY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.128.0/20 Signature Algorithm: sha256WithRSAEncryption 8c:40:47:fa:4a:0b:89:06:61:29:d5:32:5e:dd:71:49:4c:bf: 23:6f:d6:0a:60:9c:18:f9:35:11:51:e4:b0:8a:b8:4f:a0:fb: b7:ad:46:c8:1b:bb:f0:03:8a:16:dd:36:c5:06:55:3a:bf:a5: 71:8b:b7:51:74:ad:40:91:06:e4:20:ea:e0:d0:7a:4d:b3:77: 6d:89:53:a3:67:cf:a6:7d:05:6f:e5:80:47:2d:cc:f7:f7:98: d1:ae:11:01:4c:81:c0:77:67:c3:56:e3:66:f0:85:67:ce:22: c9:d2:bb:0f:b5:28:40:ca:45:96:68:ff:03:67:21:5c:84:cb: 01:b1:0f:06:c1:65:90:0e:85:c4:48:47:fa:4c:81:ef:8a:18: d8:45:b5:71:0f:1e:03:f0:31:81:7d:a8:a0:72:20:a0:e6:39: 49:39:e8:7d:a3:f2:e8:cc:46:67:0c:fe:42:c6:85:92:3e:9e: 00:64:fd:de:e4:ec:ea:9e:0e:48:f7:ae:b9:0f:1e:f8:3f:e1: f1:6d:c0:0f:b2:4b:55:69:1f:5f:a4:24:62:6b:a5:dd:08:59: be:d4:9a:fb:b9:49:f2:6f:95:52:62:21:6b:d6:9b:8f:cf:ed: 8e:33:64:88:42:36:01:5d:de:d0:b4:60:7d:1f:cc:6f:88:8b: 48:bc:8d:2c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMSAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIzQzExRDQyOEUwMDg2 N0VFMDc4MzA1OUQ3RTg0QkIxMERFMDlDRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/XGr/lfAmKjfFWAEYkpQksMEN+zhztT5lVk14MpYe0v1gDCWQ PVFlDY90FoVNF5qV5ciesee83UpGnnYneBwdIUiGSLUSZfDhjxoiPlDxuW8Gmn1b 64kK39KOdZMcGYmjFco4ztv2Ptj11vRP8PJpFdDPDLVU1jrafW/hR2Hoy2v/MhQF JlGpj4Zbp037GWCDFgdr3SWfOr1+GAGXtAUm2c7FOUg7ZdYx0sY0WhfZB3ysKksc lhP/ea+YzgVTuoKAa6fN19c0CNLp8vd5FnNpVxafgRVq7yTkNWPNuVwXAWU9PdAP 4Gg+z/bzPiiApvpzqQ3207pkvB4EHInfT3mhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUI8EdQo4Ahn7geDBZ1+hLsQ3gnOYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0k4RWRRbzRBaG43Z2VEQlox LWhMc1EzZ25PWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 woAwDQYJKoZIhvcNAQELBQADggEBAIxAR/pKC4kGYSnVMl7dcUlMvyNv1gpgnBj5 NRFR5LCKuE+g+7etRsgbu/ADihbdNsUGVTq/pXGLt1F0rUCRBuQg6uDQek2zd22J U6Nnz6Z9BW/lgEctzPf3mNGuEQFMgcB3Z8NW42bwhWfOIsnSuw+1KEDKRZZo/wNn IVyEywGxDwbBZZAOhcRIR/pMge+KGNhFtXEPHgPwMYF9qKByIKDmOUk56H2j8ujM RmcM/kLGhZI+ngBk/d7k7OqeDkj3rrkPHvg/4fFtwA+yS1VpH1+kJGJrpd0IWb7U mvu5SfJvlVJiIWvWm4/P7Y4zZIhCNgFd3tC0YH0fzG+Ii0i8jSw= -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:38 2024 by rpki-client on console-fra.rpki-client.org