$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LgndhjrbXflfhFgFBr-hdpvjd88.roa File: LgndhjrbXflfhFgFBr-hdpvjd88.roa (raw, json) Hash identifier: TplSP1gKVv/AwsnGPOCklrtHG6utSOE3mmTz3+RZSlU= Subject key identifier: 2E:09:DD:86:3A:DB:5D:F9:5F:84:58:05:06:BF:A1:76:9B:E3:77:CF Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2834 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LgndhjrbXflfhFgFBr-hdpvjd88.roa Signing time: Fri 01 Sep 2023 10:05:04 +0000 ROA not before: Fri 01 Sep 2023 10:05:04 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 106.1.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 18:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10292 (0x2834) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:04 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2E09DD863ADB5DF95F84580506BFA1769BE377CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ee:a1:f5:25:57:5b:7a:9d:24:04:71:5a:05: 65:80:f7:35:c0:25:82:69:65:9e:40:ac:84:29:5d: 05:49:f4:ce:7e:fb:b0:6c:a9:58:50:99:2f:be:5d: ab:98:16:d2:a5:bc:d5:37:c7:ee:1f:46:7e:55:63: 36:0f:3f:26:be:4d:9d:19:85:e1:2d:95:eb:6a:af: d6:8f:d0:b5:cc:c9:3a:92:da:f8:74:ec:a2:65:59: 7f:ed:7a:24:9a:98:7c:c4:13:c5:36:c9:20:3f:77: c5:43:88:7a:a7:57:bc:d2:7c:d6:e5:2a:83:2b:3a: c2:02:01:69:09:3f:47:de:e0:68:6a:6e:2f:66:8c: 06:45:8a:e1:4f:63:89:26:4a:23:e9:42:b5:c4:c3: e4:0a:62:46:bf:e9:5d:c6:a1:d0:a1:12:21:28:7a: 16:c0:f6:50:96:75:a2:fc:ef:22:e5:5a:31:62:4d: f4:a8:26:b6:1a:0d:93:d3:8d:1d:9c:cf:2a:f3:73: db:22:f7:46:b0:da:9c:a5:b1:aa:eb:dd:53:22:a2: ee:e5:08:da:06:67:18:5b:43:83:bb:0b:58:c8:cb: 22:7b:57:a3:17:22:69:f1:9b:a0:8d:4b:13:6f:33: a9:04:da:39:75:4f:da:6f:2e:90:1e:fa:d7:62:63: 4b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:09:DD:86:3A:DB:5D:F9:5F:84:58:05:06:BF:A1:76:9B:E3:77:CF X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LgndhjrbXflfhFgFBr-hdpvjd88.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.221.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:d1:2c:b9:7f:c6:0a:27:ea:52:e3:3e:1b:6a:c3:9f:ed:78: 94:c6:42:38:5f:bb:c1:87:ef:bb:49:13:0a:27:8e:11:73:ee: 74:66:26:5e:4c:29:f4:cd:d2:68:1b:ee:60:2e:08:d8:b8:af: e1:d7:ce:a5:00:bd:f0:5c:6a:31:ff:5e:19:0a:55:7f:0b:1e: b7:93:21:1c:31:48:5c:47:5a:a3:ae:f0:1c:9f:c2:95:72:cd: 6c:04:69:df:9e:d0:6e:0e:bd:1e:ec:9e:76:4e:45:59:03:86: da:fc:8d:38:e4:62:24:df:99:2f:60:cf:60:30:f0:ef:89:a8: 53:f3:70:e0:be:70:44:2a:a4:b5:83:78:9e:bd:09:6e:6e:be: dd:ad:16:39:ce:b1:55:12:6b:a2:04:71:69:d9:3b:eb:e9:a0: e8:b1:03:fc:be:f7:c6:c0:ec:78:47:e9:5e:7c:f0:da:99:2d: c3:86:64:98:f0:e0:b2:f7:2e:52:74:7a:0e:94:5b:dc:ad:ef: 53:a0:75:8e:fa:d0:20:78:60:4f:27:ca:7b:4e:87:4a:62:0c: 10:8c:dc:53:93:b1:bf:4b:33:dd:aa:35:69:da:37:10:df:a8: a1:a0:66:e1:d9:f3:e2:53:3b:0e:70:a6:54:40:5d:23:c2:bd: cc:d7:78:38 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKDQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1MDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJFMDlERDg2M0FEQjVE Rjk1Rjg0NTgwNTA2QkZBMTc2OUJFMzc3Q0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw7qH1JVdbep0kBHFaBWWA9zXAJYJpZZ5ArIQpXQVJ9M5++7Bs qVhQmS++XauYFtKlvNU3x+4fRn5VYzYPPya+TZ0ZheEtletqr9aP0LXMyTqS2vh0 7KJlWX/teiSamHzEE8U2ySA/d8VDiHqnV7zSfNblKoMrOsICAWkJP0fe4Ghqbi9m jAZFiuFPY4kmSiPpQrXEw+QKYka/6V3GodChEiEoehbA9lCWdaL87yLlWjFiTfSo JrYaDZPTjR2czyrzc9si90aw2pylsarr3VMiou7lCNoGZxhbQ4O7C1jIyyJ7V6MX Imnxm6CNSxNvM6kE2jl1T9pvLpAe+tdiY0sfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULgndhjrbXflfhFgFBr+hdpvjd88wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0xnbmRoanJiWGZsZmhGZ0ZC ci1oZHB2amQ4OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq Ad0wDQYJKoZIhvcNAQELBQADggEBAH3RLLl/xgon6lLjPhtqw5/teJTGQjhfu8GH 77tJEwonjhFz7nRmJl5MKfTN0mgb7mAuCNi4r+HXzqUAvfBcajH/XhkKVX8LHreT IRwxSFxHWqOu8ByfwpVyzWwEad+e0G4OvR7snnZORVkDhtr8jTjkYiTfmS9gz2Aw 8O+JqFPzcOC+cEQqpLWDeJ69CW5uvt2tFjnOsVUSa6IEcWnZO+vpoOixA/y+98bA 7HhH6V588NqZLcOGZJjw4LL3LlJ0eg6UW9yt71OgdY760CB4YE8nyntOh0piDBCM 3FOTsb9LM92qNWnaNxDfqKGgZuHZ8+JTOw5wplRAXSPCvczXeDg= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:56 2024 by rpki-client on console-ams.rpki-client.org