$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LxT-rjGUPb5-WlQNJ5THh0GC0Wo.roa File: LxT-rjGUPb5-WlQNJ5THh0GC0Wo.roa (raw, json) Hash identifier: L+7xV3V2+84xEXjz5tkyeUvkJa9HPwOS7QWk6YDZJXQ= Subject key identifier: 2F:14:FE:AE:31:94:3D:BE:7E:5A:54:0D:27:94:C7:87:41:82:D1:6A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A07 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LxT-rjGUPb5-WlQNJ5THh0GC0Wo.roa Signing time: Fri 01 Sep 2023 10:07:24 +0000 ROA not before: Fri 01 Sep 2023 10:07:24 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 180.176.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10759 (0x2a07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:24 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2F14FEAE31943DBE7E5A540D2794C7874182D16A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:47:75:7c:ac:4c:46:5b:03:43:89:eb:4a:29: 49:6b:99:92:22:71:2b:b2:3a:c3:4a:d8:48:16:11: 32:90:5b:46:a6:f7:20:bb:38:ea:fb:62:d8:3f:59: 08:0c:c9:81:48:be:09:00:2c:53:66:8e:62:08:b8: 27:c3:ae:08:ed:42:0c:c6:c2:eb:ab:d3:e4:7a:d2: 7c:e7:42:6e:df:cc:b8:13:94:bf:0e:94:29:84:27: a1:b2:b6:a2:f3:16:86:73:8a:89:fd:ad:8c:08:a2: 0a:46:31:e0:0f:08:ba:7e:a6:da:1b:46:1f:b9:71: 61:d6:95:c1:ef:ee:14:fc:fa:3d:c2:f7:7c:6f:b2: 40:53:59:42:f8:d1:80:7c:f7:c4:3c:bf:fe:78:66: 74:70:08:9a:39:13:b1:a5:87:30:c2:c9:96:9c:20: 07:38:7d:bd:4a:bf:2a:7d:48:74:a7:67:fb:c5:ac: 56:01:8d:32:0c:4e:a5:5a:77:d7:b7:92:32:ca:2a: a8:57:ee:98:7b:81:ea:32:3f:db:b2:db:74:e5:27: 4d:2d:d0:f1:ff:00:ec:be:c7:5f:dd:6b:db:8b:ae: 30:f5:c0:01:ca:9c:ef:93:7c:6b:59:44:4e:71:a7: 8b:21:6b:a2:c6:2b:76:67:f8:db:2c:65:e9:26:db: 87:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:14:FE:AE:31:94:3D:BE:7E:5A:54:0D:27:94:C7:87:41:82:D1:6A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/LxT-rjGUPb5-WlQNJ5THh0GC0Wo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.222.0/24 Signature Algorithm: sha256WithRSAEncryption 40:a1:20:07:4a:a1:87:9b:ba:15:13:89:c4:f2:96:1b:af:4e: a8:f9:bb:a1:4b:28:04:de:6d:7c:15:d1:3d:1b:8f:b3:b2:fa: bb:5a:1e:b5:c3:03:d4:84:4f:36:a4:13:8b:a9:f6:fc:63:a3: c2:b3:be:33:16:ab:35:82:e2:b2:dd:e9:ca:06:dd:a2:35:e8: 04:26:12:72:84:d1:ba:3c:72:8a:b8:2c:c0:ee:31:6e:dc:e0: b6:0e:73:43:f1:19:38:5c:c9:4d:d8:3e:49:66:4c:1b:1e:5b: 9a:31:df:3d:0c:ad:37:8d:10:d7:50:6b:d1:70:b8:4f:58:b7: c2:cd:e8:49:7d:3b:b0:36:8c:40:ed:71:00:f2:60:98:9a:95: e5:f7:57:1f:e3:e1:9c:8c:6c:56:69:4b:cb:a8:7d:85:2a:49: aa:e9:6e:c3:c4:84:1f:76:5c:b5:52:08:8a:35:5e:40:76:87: ef:66:51:66:26:a0:1b:66:8d:ca:b1:7b:22:80:c8:33:12:77: 8c:3d:cb:a4:b3:fe:ce:76:1a:c6:07:f6:e0:29:75:3c:9f:58: cb:33:dc:64:ac:9d:54:2b:f1:78:6a:42:8a:8a:b1:ae:29:19: 13:85:9c:77:d0:4a:71:f4:e2:ef:c4:1f:88:12:61:ec:16:89: 69:3e:a6:c1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKgcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3MjRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJGMTRGRUFFMzE5NDNE QkU3RTVBNTQwRDI3OTRDNzg3NDE4MkQxNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCR3V8rExGWwNDietKKUlrmZIicSuyOsNK2EgWETKQW0am9yC7 OOr7Ytg/WQgMyYFIvgkALFNmjmIIuCfDrgjtQgzGwuur0+R60nznQm7fzLgTlL8O lCmEJ6GytqLzFoZzion9rYwIogpGMeAPCLp+ptobRh+5cWHWlcHv7hT8+j3C93xv skBTWUL40YB898Q8v/54ZnRwCJo5E7GlhzDCyZacIAc4fb1Kvyp9SHSnZ/vFrFYB jTIMTqVad9e3kjLKKqhX7ph7geoyP9uy23TlJ00t0PH/AOy+x1/da9uLrjD1wAHK nO+TfGtZRE5xp4sha6LGK3Zn+NssZekm24cXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULxT+rjGUPb5+WlQNJ5THh0GC0WowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0x4VC1yakdVUGI1LVdsUU5K NVRIaDBHQzBXby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0 sN4wDQYJKoZIhvcNAQELBQADggEBAEChIAdKoYebuhUTicTylhuvTqj5u6FLKATe bXwV0T0bj7Oy+rtaHrXDA9SETzakE4up9vxjo8KzvjMWqzWC4rLd6coG3aI16AQm EnKE0bo8coq4LMDuMW7c4LYOc0PxGThcyU3YPklmTBseW5ox3z0MrTeNENdQa9Fw uE9Yt8LN6El9O7A2jEDtcQDyYJialeX3Vx/j4ZyMbFZpS8uofYUqSarpbsPEhB92 XLVSCIo1XkB2h+9mUWYmoBtmjcqxeyKAyDMSd4w9y6Sz/s52GsYH9uApdTyfWMsz 3GSsnVQr8XhqQoqKsa4pGROFnHfQSnH04u/EH4gSYewWiWk+psE= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:05 2024 by rpki-client on console-fra.rpki-client.org