$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/J7e2TFohzivMC3pamKqjPkIDVvQ.roa File: J7e2TFohzivMC3pamKqjPkIDVvQ.roa (raw, json) Hash identifier: BQIqhGygW3G1lvqM+cLKkEW5pJLbeY6Yh+weeR31YjE= Subject key identifier: 27:B7:B6:4C:5A:21:CE:2B:CC:0B:7A:5A:98:AA:A3:3E:42:03:56:F4 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 28D3 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/J7e2TFohzivMC3pamKqjPkIDVvQ.roa Signing time: Fri 01 Sep 2023 10:05:49 +0000 ROA not before: Fri 01 Sep 2023 10:05:49 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.192.0.0/17 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10451 (0x28d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:49 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=27B7B64C5A21CE2BCC0B7A5A98AAA33E420356F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ca:02:09:9f:6c:40:78:2a:1c:83:73:6d:2b: ed:4d:24:af:c4:93:6f:68:11:4e:33:40:c9:55:64: 50:90:ee:b2:a1:0e:94:03:d6:cb:2f:8c:5c:91:56: 84:ff:82:5b:ba:d4:53:f0:d8:f7:bc:4e:0b:1f:44: c4:b3:42:5e:76:cc:d0:50:92:37:d2:89:c3:fa:24: aa:15:36:14:f6:da:e4:bb:91:86:d9:d4:02:08:aa: 7f:e7:a0:84:1a:bd:bd:cd:06:b8:23:de:6c:53:f4: 4d:83:82:2b:52:f0:41:97:eb:ea:83:c7:48:64:7a: c7:70:57:5e:53:9f:55:1b:cf:dc:20:f4:64:af:7d: 24:ea:79:f8:07:46:62:7c:c3:16:08:cb:a6:dc:3f: ba:a4:18:09:0b:54:2e:28:ee:0b:d2:25:72:97:a2: 55:00:ea:18:da:e8:5f:5b:42:f1:78:6c:af:fe:74: b1:50:80:c7:81:f9:a8:ac:bc:cb:ce:fd:11:8b:73: fd:9d:c8:cf:e4:68:a5:4a:38:ac:66:9f:37:3e:1e: 53:8e:ca:09:1f:5d:b8:41:1d:79:6c:78:4f:99:55: 29:ab:f1:87:27:5c:ea:58:72:20:1d:b3:ac:a7:49: 07:bf:31:d4:4d:1a:f9:8f:f7:90:65:f9:e9:4e:ed: 88:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:B7:B6:4C:5A:21:CE:2B:CC:0B:7A:5A:98:AA:A3:3E:42:03:56:F4 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/J7e2TFohzivMC3pamKqjPkIDVvQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.0.0/17 Signature Algorithm: sha256WithRSAEncryption af:88:d2:1e:12:17:ce:b9:df:7a:89:93:36:c3:87:dc:63:4c: 9d:9e:f4:ca:94:d2:57:5d:69:63:2a:01:1e:04:8b:a3:02:c3: 79:36:1c:7d:44:98:96:33:c1:ec:6a:53:c4:bd:3e:ee:82:94: 78:bd:7e:a8:3b:d5:ff:f6:6d:07:07:53:7f:85:19:12:d7:de: bb:46:4f:60:cb:e9:27:e6:d2:1f:4a:0d:a9:7e:c1:e4:74:a7: 18:59:f9:69:18:47:c7:93:17:10:df:f1:1d:f4:27:a8:89:6b: 1d:95:0a:ac:4a:88:c3:11:ad:29:3c:cf:0b:99:a4:7a:a2:9a: 93:eb:04:4c:fa:7d:38:20:f0:fe:65:08:79:e4:9b:24:f5:b3: f8:81:5c:ce:ad:a9:2d:37:fa:b4:91:39:c9:fc:b6:55:66:14: 68:d6:e7:25:87:1c:06:89:7a:d1:06:fd:b5:09:42:4e:d5:eb: a4:77:4f:22:ef:db:da:3e:03:98:ed:60:1b:68:32:75:b9:8f: 47:ab:18:bf:9f:04:05:ee:88:95:79:e3:ee:83:ff:a1:8b:9f: b3:9a:45:da:07:e7:99:e9:91:3c:3a:4a:f8:d6:9f:3d:c9:d7: 2f:72:cc:3a:22:00:69:e7:cf:9b:5d:ac:75:e8:0e:a3:6c:84: 94:15:a4:ab -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKNMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1NDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI3QjdCNjRDNUEyMUNF MkJDQzBCN0E1QTk4QUFBMzNFNDIwMzU2RjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrygIJn2xAeCocg3NtK+1NJK/Ek29oEU4zQMlVZFCQ7rKhDpQD 1ssvjFyRVoT/glu61FPw2Pe8TgsfRMSzQl52zNBQkjfSicP6JKoVNhT22uS7kYbZ 1AIIqn/noIQavb3NBrgj3mxT9E2DgitS8EGX6+qDx0hkesdwV15Tn1Ubz9wg9GSv fSTqefgHRmJ8wxYIy6bcP7qkGAkLVC4o7gvSJXKXolUA6hja6F9bQvF4bK/+dLFQ gMeB+aisvMvO/RGLc/2dyM/kaKVKOKxmnzc+HlOOygkfXbhBHXlseE+ZVSmr8Ycn XOpYciAds6ynSQe/MdRNGvmP95Bl+elO7YhrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJ7e2TFohzivMC3pamKqjPkIDVvQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0o3ZTJURm9oeml2TUMzcGFt S3FqUGtJRFZ2US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAd7 wAAwDQYJKoZIhvcNAQELBQADggEBAK+I0h4SF86533qJkzbDh9xjTJ2e9MqU0ldd aWMqAR4Ei6MCw3k2HH1EmJYzwexqU8S9Pu6ClHi9fqg71f/2bQcHU3+FGRLX3rtG T2DL6Sfm0h9KDal+weR0pxhZ+WkYR8eTFxDf8R30J6iJax2VCqxKiMMRrSk8zwuZ pHqimpPrBEz6fTgg8P5lCHnkmyT1s/iBXM6tqS03+rSROcn8tlVmFGjW5yWHHAaJ etEG/bUJQk7V66R3TyLv29o+A5jtYBtoMnW5j0erGL+fBAXuiJV54+6D/6GLn7Oa RdoH55npkTw6SvjWnz3J1y9yzDoiAGnnz5tdrHXoDqNshJQVpKs= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:04 2024 by rpki-client on console-ams.rpki-client.org