$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Iksjuhr7WD1c6Zy9kFHarR5Io3g.roa File: Iksjuhr7WD1c6Zy9kFHarR5Io3g.roa (raw, json) Hash identifier: vA5fyrIpJ0WyOHNJeIf71QOPsPXqZ5W08TpLyeFiVmk= Subject key identifier: 22:4B:23:BA:1A:FB:58:3D:5C:E9:9C:BD:90:51:DA:AD:1E:48:A3:78 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 28C9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Iksjuhr7WD1c6Zy9kFHarR5Io3g.roa Signing time: Fri 01 Sep 2023 10:05:45 +0000 ROA not before: Fri 01 Sep 2023 10:05:45 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.233.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10441 (0x28c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:45 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=224B23BA1AFB583D5CE99CBD9051DAAD1E48A378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8a:e9:7c:4f:a3:5b:3d:53:29:e5:57:e5:c4: a8:6a:ec:5a:99:1e:0a:e5:7f:ac:c7:88:99:cd:34: ee:ca:43:3b:f6:82:ed:bb:9a:e7:d1:5b:bb:e2:ff: 5c:4f:03:1a:96:27:91:21:cf:0b:54:2a:39:28:52: 0a:c8:7b:be:04:bd:29:48:d1:cc:de:85:13:70:85: f1:ad:01:83:20:19:2c:ed:ec:09:91:91:b0:27:63: fb:72:df:a0:e1:2a:93:c5:31:02:7c:3f:0c:3c:a4: 4d:b9:11:20:ab:f0:e4:02:05:2c:5b:9b:95:fb:5a: d3:06:06:20:fb:85:2b:61:1c:f6:ad:3b:a5:71:9c: 3c:6b:a7:b1:2a:ec:d1:ca:26:11:5b:cb:77:17:1e: e2:96:72:73:f0:c6:d5:ab:1a:ae:89:0c:4b:84:55: 47:da:e8:99:63:e9:95:bb:4d:e4:72:80:cd:e8:82: e8:d1:44:5e:09:ee:cd:7e:58:d2:9d:bd:99:08:ac: a8:a9:00:89:c0:56:85:00:99:13:98:cc:39:3d:bc: a9:13:9b:56:f5:69:ea:67:92:18:c8:0a:f9:fd:23: a9:65:7d:9e:8e:3f:42:dd:b2:cc:e0:c6:2d:46:23: 3f:d9:e4:1e:cf:bd:81:a0:bb:a9:ab:18:08:64:2a: b7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:4B:23:BA:1A:FB:58:3D:5C:E9:9C:BD:90:51:DA:AD:1E:48:A3:78 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Iksjuhr7WD1c6Zy9kFHarR5Io3g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.164.0/22 Signature Algorithm: sha256WithRSAEncryption ba:86:3d:74:f3:8f:1d:f6:8a:81:71:d1:df:dd:fd:3e:41:a6: 1d:dd:70:62:73:10:12:86:1b:4e:f1:46:1b:42:a7:7a:aa:78: a8:b2:04:c8:1d:66:ce:3a:06:07:ac:4b:15:e2:46:ee:1b:d1: 09:42:1f:7a:45:79:42:f0:9e:49:9e:a9:2b:29:7a:48:b3:60: 65:62:a3:06:47:a9:f3:22:43:43:be:9b:9f:75:65:53:5f:69: 4e:af:d6:ca:97:d4:6d:5a:87:c1:4d:2a:81:8b:a2:d3:5e:00: e6:eb:63:07:87:d6:3a:8b:51:24:43:18:93:74:bc:12:51:9a: 0c:12:d9:f4:1c:41:09:a0:dc:e0:1d:76:3c:88:7a:3c:1a:54: 6e:ab:f4:98:99:c6:09:4d:54:81:76:d2:93:3b:22:b7:23:b4: 9e:53:e0:9d:df:aa:af:f0:83:40:78:08:7d:d6:ba:53:bb:c7: 4a:a4:32:00:0b:ae:29:56:48:e9:2c:b0:a1:1e:30:88:ac:b7: c9:a9:c4:e5:83:1a:54:73:51:1b:fb:27:d5:9b:d3:fe:16:e8: 7f:d8:74:56:f3:3d:61:50:89:27:75:e8:57:c6:25:9e:a0:12: 33:fe:34:65:58:55:37:71:11:69:f9:37:5a:18:d0:55:38:f9: f4:bb:7a:71 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKMkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1NDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDIyNEIyM0JBMUFGQjU4 M0Q1Q0U5OUNCRDkwNTFEQUFEMUU0OEEzNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXiul8T6NbPVMp5VflxKhq7FqZHgrlf6zHiJnNNO7KQzv2gu27 mufRW7vi/1xPAxqWJ5EhzwtUKjkoUgrIe74EvSlI0czehRNwhfGtAYMgGSzt7AmR kbAnY/ty36DhKpPFMQJ8Pww8pE25ESCr8OQCBSxbm5X7WtMGBiD7hSthHPatO6Vx nDxrp7Eq7NHKJhFby3cXHuKWcnPwxtWrGq6JDEuEVUfa6Jlj6ZW7TeRygM3ogujR RF4J7s1+WNKdvZkIrKipAInAVoUAmROYzDk9vKkTm1b1aepnkhjICvn9I6llfZ6O P0Ldsszgxi1GIz/Z5B7PvYGgu6mrGAhkKrfNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUIksjuhr7WD1c6Zy9kFHarR5Io3gwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0lrc2p1aHI3V0QxYzZaeTlr RkhhclI1SW8zZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6aQwDQYJKoZIhvcNAQELBQADggEBALqGPXTzjx32ioFx0d/d/T5Bph3dcGJzEBKG G07xRhtCp3qqeKiyBMgdZs46BgesSxXiRu4b0QlCH3pFeULwnkmeqSspekizYGVi owZHqfMiQ0O+m591ZVNfaU6v1sqX1G1ah8FNKoGLotNeAObrYweH1jqLUSRDGJN0 vBJRmgwS2fQcQQmg3OAddjyIejwaVG6r9JiZxglNVIF20pM7IrcjtJ5T4J3fqq/w g0B4CH3WulO7x0qkMgALrilWSOkssKEeMIist8mpxOWDGlRzURv7J9Wb0/4W6H/Y dFbzPWFQiSd16FfGJZ6gEjP+NGVYVTdxEWn5N1oY0FU4+fS7enE= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:04 2024 by rpki-client on console-ams.rpki-client.org