$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Iei7hOApQc269VWBcEZQzSFzD8A.roa File: Iei7hOApQc269VWBcEZQzSFzD8A.roa (raw, json) Hash identifier: mk4VxzJKd79Vi9Q2S0X93QM5MSzXVosahJC3e6dKxus= Subject key identifier: 21:E8:BB:84:E0:29:41:CD:BA:F5:55:81:70:46:50:CD:21:73:0F:C0 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2AEA Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Iei7hOApQc269VWBcEZQzSFzD8A.roa Signing time: Fri 01 Sep 2023 10:08:26 +0000 ROA not before: Fri 01 Sep 2023 10:08:26 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.193.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10986 (0x2aea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:26 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=21E8BB84E02941CDBAF55581704650CD21730FC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a4:f0:94:35:2c:cc:46:61:12:55:c1:cf:34: a7:21:37:e2:5f:94:1e:e7:89:fd:6f:e3:cd:bd:3f: 3c:03:ca:14:b2:e7:39:f9:cc:ca:d9:7b:8d:38:d6: b9:9a:fb:9b:1d:c5:1b:b5:03:9c:75:10:d9:49:6c: cb:bb:8a:47:d9:e4:ed:14:74:79:7a:a8:52:c9:ff: e6:09:de:b2:01:24:1a:28:3c:f5:61:9d:8a:b0:56: ca:63:5a:4e:fa:e2:ac:0d:0f:32:5c:f6:fc:99:5c: d7:09:bf:cf:6e:9f:27:86:80:68:2d:e0:64:52:17: 33:54:ef:c6:45:05:4b:2a:4e:7c:29:2a:10:67:4f: c2:1e:49:45:ca:b0:26:eb:61:c2:fc:15:4e:49:2e: 88:c7:ec:76:b0:54:48:ca:e9:d9:c0:13:9d:d3:a8: 13:fa:e3:a1:9e:d3:7c:2a:72:37:33:8c:d5:d3:75: ea:d0:e4:8c:8b:80:b7:68:53:b3:25:6e:a9:c0:92: 5a:32:76:c3:f3:22:0a:50:ea:f3:3a:b9:4d:c4:66: e7:de:69:ec:49:8a:a3:ea:75:1b:85:bb:99:84:52: 95:da:2d:3b:8d:4b:29:a9:c4:55:f6:55:2f:e0:35: 57:fe:13:a0:0b:26:77:61:bb:ec:36:e3:3c:25:cc: 5b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E8:BB:84:E0:29:41:CD:BA:F5:55:81:70:46:50:CD:21:73:0F:C0 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Iei7hOApQc269VWBcEZQzSFzD8A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.20.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:aa:b8:6b:64:4b:85:23:74:27:ae:cc:2b:de:2c:36:a0:77: c2:f5:75:17:33:98:66:26:6b:0b:27:ba:c1:98:65:71:4a:0a: 8a:03:d0:05:02:88:f9:56:fe:43:35:a6:bf:c3:96:43:c2:c7: af:0e:70:22:1a:e0:1a:0e:60:26:c3:d2:c4:68:8e:9b:f3:6b: b0:2d:64:48:2f:b9:82:f8:95:37:86:4f:03:3d:a8:e1:60:77: 1c:18:b8:f7:52:6f:f8:6c:43:e2:60:f0:f1:ca:56:d5:0a:49: 1b:73:6a:67:bc:d3:52:ff:c7:91:d1:e9:3f:ad:16:45:df:a1: 23:9c:b8:d2:14:cc:9f:f7:dc:67:65:5c:68:16:08:8e:ea:25: b0:72:c8:94:29:cf:ff:2a:c7:51:f4:a5:2f:72:6d:a7:59:48: 90:ac:95:e1:99:5d:0f:7e:c6:41:3c:0e:b0:f9:d8:90:bf:5d: 47:bc:1e:99:83:ce:7b:8c:3f:ef:d3:12:8f:7a:43:e2:22:28: ed:e1:bb:fe:43:07:dd:ed:ab:2e:27:7b:ba:54:19:ca:c1:d4: 2c:c6:f5:0e:4d:e4:4d:50:05:9d:4c:44:37:ed:c1:d8:08:f5: 2b:89:71:dd:d7:74:3b:b0:2b:fa:b0:59:75:c2:80:16:55:59: 13:6c:9f:23 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKuowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MjZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDIxRThCQjg0RTAyOTQx Q0RCQUY1NTU4MTcwNDY1MENEMjE3MzBGQzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXpPCUNSzMRmESVcHPNKchN+JflB7nif1v4829PzwDyhSy5zn5 zMrZe4041rma+5sdxRu1A5x1ENlJbMu7ikfZ5O0UdHl6qFLJ/+YJ3rIBJBooPPVh nYqwVspjWk764qwNDzJc9vyZXNcJv89unyeGgGgt4GRSFzNU78ZFBUsqTnwpKhBn T8IeSUXKsCbrYcL8FU5JLojH7HawVEjK6dnAE53TqBP646Ge03wqcjczjNXTderQ 5IyLgLdoU7MlbqnAkloydsPzIgpQ6vM6uU3EZufeaexJiqPqdRuFu5mEUpXaLTuN SympxFX2VS/gNVf+E6ALJndhu+w24zwlzFurAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUIei7hOApQc269VWBcEZQzSFzD8AwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0llaTdoT0FwUWMyNjlWV0Jj RVpRelNGekQ4QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wRQwDQYJKoZIhvcNAQELBQADggEBAG+quGtkS4UjdCeuzCveLDagd8L1dRczmGYm awsnusGYZXFKCooD0AUCiPlW/kM1pr/DlkPCx68OcCIa4BoOYCbD0sRojpvza7At ZEgvuYL4lTeGTwM9qOFgdxwYuPdSb/hsQ+Jg8PHKVtUKSRtzame801L/x5HR6T+t FkXfoSOcuNIUzJ/33GdlXGgWCI7qJbByyJQpz/8qx1H0pS9ybadZSJCsleGZXQ9+ xkE8DrD52JC/XUe8HpmDznuMP+/TEo96Q+IiKO3hu/5DB93tqy4ne7pUGcrB1CzG 9Q5N5E1QBZ1MRDftwdgI9SuJcd3XdDuwK/qwWXXCgBZVWRNsnyM= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:04 2024 by rpki-client on console-ams.rpki-client.org