$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LaD_O9N3xxJXSeUDAitCgbgi4_0.roa File: LaD_O9N3xxJXSeUDAitCgbgi4_0.roa (raw, json) Hash identifier: mPTtFeSmzr4bef24IkyAza5iUmHpDJwMdM8lytLLDLM= Subject key identifier: 2D:A0:FF:3B:D3:77:C7:12:57:49:E5:03:02:2B:42:81:B8:22:E3:FD Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A7C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LaD_O9N3xxJXSeUDAitCgbgi4_0.roa Signing time: Fri 01 Sep 2023 10:07:57 +0000 ROA not before: Fri 01 Sep 2023 10:07:57 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 180.177.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10876 (0x2a7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:57 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2DA0FF3BD377C7125749E503022B4281B822E3FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9b:12:ff:62:5a:e6:0d:7f:f0:f9:65:45:47: 8e:a9:2d:73:89:47:cb:e9:84:e7:35:ae:d7:99:07: 7f:af:33:ef:c6:f5:82:e2:a8:76:81:c0:84:7e:0a: 7e:25:ac:43:32:12:4d:12:43:37:43:9a:c1:6b:96: 91:f8:e2:f4:60:a8:79:89:f8:3e:d9:cc:62:1f:cd: 2e:8f:31:31:18:e3:12:26:45:40:1b:0c:7b:dc:24: 04:cd:a9:57:ef:f5:9c:53:ae:48:c0:97:61:9c:33: f8:17:60:93:6c:cf:d6:ad:13:3a:00:ed:76:ff:1b: a4:0c:5e:14:49:ac:a6:59:b8:5b:c3:4b:7f:17:dd: 27:61:c5:d1:ad:05:1d:8a:72:4b:59:ba:34:c5:9c: 1f:5b:6c:7a:bf:96:86:98:e7:e1:07:9d:03:a1:77: 71:c4:72:05:65:f1:86:7a:99:81:96:ff:c7:40:06: 1d:08:60:bc:38:57:c5:cd:08:16:b9:bd:e8:21:3b: 87:8f:6c:00:c2:8a:5c:9a:20:7c:95:41:0a:51:81: 14:15:45:ff:b0:2b:57:03:a3:2a:4d:74:18:77:08: 1c:a6:3c:73:f3:a0:01:5e:d2:06:ec:27:96:e7:1d: 18:f9:44:8a:6d:b2:d9:f0:98:a0:5f:e5:04:d1:2b: c8:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:A0:FF:3B:D3:77:C7:12:57:49:E5:03:02:2B:42:81:B8:22:E3:FD X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LaD_O9N3xxJXSeUDAitCgbgi4_0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.168.0/21 Signature Algorithm: sha256WithRSAEncryption 1a:5f:1a:a0:21:77:b0:f8:6d:71:24:56:71:d3:c8:9e:fc:92: a1:a2:80:b6:64:68:8a:b5:ac:87:e5:2b:0d:20:ad:09:3b:cd: 73:0b:40:d6:ee:6b:09:be:c1:3b:a2:a3:a7:7b:be:91:6b:84: 2b:0c:cb:a2:b0:e0:8b:f3:e4:1b:d1:09:84:d6:5b:b7:50:3a: 75:5b:40:be:cd:a4:b6:a3:cb:e2:b2:1e:d6:6c:00:90:08:19: 06:68:43:11:17:98:78:48:0b:88:48:d0:69:74:c9:4d:a2:4a: fd:e5:9f:00:7e:18:e6:2b:98:95:52:7f:32:cc:41:16:af:34: ff:d7:8c:e5:65:14:89:58:18:e1:fc:51:46:98:37:4f:13:f8: 0b:00:be:34:99:8b:5e:13:ea:49:b2:87:b0:de:aa:2c:5b:e4: e8:e5:5a:e9:17:01:f5:4b:17:e0:20:2a:4a:38:34:94:a3:82: c1:39:54:68:e7:e8:04:8e:0e:10:09:8c:53:fe:3b:d4:26:80: 36:ae:65:d5:e7:3b:37:2c:86:16:ed:d1:1c:e7:4a:fc:d9:1b: 2f:c1:c6:1b:f2:74:11:ef:11:b5:ad:29:f2:9e:9d:76:09:76: fa:fb:6c:10:21:0a:58:59:6f:49:db:42:70:aa:0e:4d:85:ee: 58:8b:49:10 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKnwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3NTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJEQTBGRjNCRDM3N0M3 MTI1NzQ5RTUwMzAyMkI0MjgxQjgyMkUzRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6mxL/YlrmDX/w+WVFR46pLXOJR8vphOc1rteZB3+vM+/G9YLi qHaBwIR+Cn4lrEMyEk0SQzdDmsFrlpH44vRgqHmJ+D7ZzGIfzS6PMTEY4xImRUAb DHvcJATNqVfv9ZxTrkjAl2GcM/gXYJNsz9atEzoA7Xb/G6QMXhRJrKZZuFvDS38X 3SdhxdGtBR2KcktZujTFnB9bbHq/loaY5+EHnQOhd3HEcgVl8YZ6mYGW/8dABh0I YLw4V8XNCBa5veghO4ePbADCilyaIHyVQQpRgRQVRf+wK1cDoypNdBh3CBymPHPz oAFe0gbsJ5bnHRj5RIptstnwmKBf5QTRK8jFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULaD/O9N3xxJXSeUDAitCgbgi4/0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0xhRF9POU4zeHhKWFNlVURB aXRDZ2JnaTRfMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sagwDQYJKoZIhvcNAQELBQADggEBABpfGqAhd7D4bXEkVnHTyJ78kqGigLZkaIq1 rIflKw0grQk7zXMLQNbuawm+wTuio6d7vpFrhCsMy6Kw4Ivz5BvRCYTWW7dQOnVb QL7NpLajy+KyHtZsAJAIGQZoQxEXmHhIC4hI0Gl0yU2iSv3lnwB+GOYrmJVSfzLM QRavNP/XjOVlFIlYGOH8UUaYN08T+AsAvjSZi14T6kmyh7Deqixb5OjlWukXAfVL F+AgKko4NJSjgsE5VGjn6ASODhAJjFP+O9QmgDauZdXnOzcshhbt0RznSvzZGy/B xhvydBHvEbWtKfKenXYJdvr7bBAhClhZb0nbQnCqDk2F7liLSRA= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:04 2024 by rpki-client on console-ams.rpki-client.org