$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MJqy8wxnaN_RINWqLXMAw237a0E.roa File: MJqy8wxnaN_RINWqLXMAw237a0E.roa (raw, json) Hash identifier: gNnMdlZlg4DbEKFbX00umKOCFG9MtISf9hh/zFd7NLA= Subject key identifier: 30:9A:B2:F3:0C:67:68:DF:D1:20:D5:AA:2D:73:00:C3:6D:FB:6B:41 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 27EA Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MJqy8wxnaN_RINWqLXMAw237a0E.roa Signing time: Fri 01 Sep 2023 10:04:43 +0000 ROA not before: Fri 01 Sep 2023 10:04:43 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 45.64.28.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10218 (0x27ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:04:43 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=309AB2F30C6768DFD120D5AA2D7300C36DFB6B41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7e:e4:46:34:8b:f1:81:6f:cb:45:57:b3:93: af:66:20:d3:1d:ae:a1:0c:d8:2b:08:e3:26:0d:ed: 6a:8f:f1:12:8f:71:59:fe:79:30:c5:79:1b:71:a7: 6e:9a:ef:f1:b6:0a:c9:f5:ee:c9:3b:fa:f3:07:f2: 18:65:08:de:48:fd:e7:f2:90:ab:04:4e:55:42:9d: 4c:9c:5b:4b:b7:16:ea:c3:33:69:03:9c:ea:68:c6: dd:31:90:87:08:90:1d:21:0a:e5:13:fc:fe:45:9b: 86:1b:27:2b:96:e4:dd:f7:5b:78:39:50:6d:20:9a: 64:8b:4d:8c:0d:6a:0b:7b:3a:9a:86:eb:f9:f1:e3: 30:a7:b9:07:85:eb:13:53:76:ae:43:1d:f0:b2:04: 61:1d:16:21:95:be:96:16:7f:54:2e:66:d9:4b:c3: 30:67:0f:d4:8c:0a:9e:16:ec:96:fa:a9:ff:28:e8: aa:01:df:ec:be:77:c7:06:b5:d5:a4:7a:8d:3e:26: 66:19:c3:1e:96:81:c8:1b:bc:8b:d6:4e:1d:44:89: e2:5c:b2:df:92:40:9f:b2:5c:2f:79:95:7a:16:e0: f2:cd:ff:d0:19:0c:33:a2:b2:d0:21:5b:82:53:d8: 5b:9f:53:84:b9:34:69:b3:04:4a:cd:db:3a:cc:e4: 83:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:9A:B2:F3:0C:67:68:DF:D1:20:D5:AA:2D:73:00:C3:6D:FB:6B:41 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/MJqy8wxnaN_RINWqLXMAw237a0E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.64.28.0/22 Signature Algorithm: sha256WithRSAEncryption a6:67:75:dc:fa:8c:8c:0d:4e:04:72:41:a7:b2:b1:6f:96:24: 36:0f:3a:62:c4:7b:e4:13:b3:1c:ba:d4:65:66:e9:e3:2f:48: a0:48:47:e1:99:9c:15:47:3d:f3:8c:90:67:65:97:18:24:5f: 4b:03:c4:ec:f4:a4:29:02:d8:9b:94:df:a7:19:c5:a2:c8:17: 71:fe:3c:3f:ef:c5:72:37:14:ba:19:cb:05:9e:1b:b4:1b:ae: 6d:3b:5b:e3:80:ac:06:4b:2d:f4:b7:40:cf:ae:b6:ec:d7:6e: e4:77:8b:34:8d:95:e0:ec:14:f7:9c:f2:fa:b9:32:2a:59:32: b0:ac:03:b3:42:2d:37:52:8a:21:24:d0:6c:27:e2:02:8d:63: cb:8a:24:04:fb:dc:38:e5:85:68:e3:ad:b3:cb:df:62:44:32: 3b:89:a4:c1:86:54:63:18:8e:f8:2d:42:81:c7:32:bb:99:c6: 32:71:44:81:b5:9c:04:30:9f:9b:3e:fe:e7:ca:18:73:70:3e: c0:45:bd:90:0b:05:f6:32:33:38:62:c6:1a:a7:4c:f6:14:3f: 51:27:84:97:f0:68:5f:5e:58:99:8e:54:12:9c:36:9d:09:2a: 93:2d:4a:fe:60:da:93:a3:ec:9e:e2:75:d8:aa:a0:2a:6a:1d: a1:2b:43:04 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJ+owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA0NDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDMwOUFCMkYzMEM2NzY4 REZEMTIwRDVBQTJENzMwMEMzNkRGQjZCNDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrfuRGNIvxgW/LRVezk69mINMdrqEM2CsI4yYN7WqP8RKPcVn+ eTDFeRtxp26a7/G2Csn17sk7+vMH8hhlCN5I/efykKsETlVCnUycW0u3FurDM2kD nOpoxt0xkIcIkB0hCuUT/P5Fm4YbJyuW5N33W3g5UG0gmmSLTYwNagt7OpqG6/nx 4zCnuQeF6xNTdq5DHfCyBGEdFiGVvpYWf1QuZtlLwzBnD9SMCp4W7Jb6qf8o6KoB 3+y+d8cGtdWkeo0+JmYZwx6WgcgbvIvWTh1EieJcst+SQJ+yXC95lXoW4PLN/9AZ DDOistAhW4JT2FufU4S5NGmzBErN2zrM5IPNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUMJqy8wxnaN/RINWqLXMAw237a0EwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL01KcXk4d3huYU5fUklOV3FM WE1BdzIzN2EwRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIt QBwwDQYJKoZIhvcNAQELBQADggEBAKZnddz6jIwNTgRyQaeysW+WJDYPOmLEe+QT sxy61GVm6eMvSKBIR+GZnBVHPfOMkGdllxgkX0sDxOz0pCkC2JuU36cZxaLIF3H+ PD/vxXI3FLoZywWeG7Qbrm07W+OArAZLLfS3QM+utuzXbuR3izSNleDsFPec8vq5 MipZMrCsA7NCLTdSiiEk0Gwn4gKNY8uKJAT73DjlhWjjrbPL32JEMjuJpMGGVGMY jvgtQoHHMruZxjJxRIG1nAQwn5s+/ufKGHNwPsBFvZALBfYyMzhixhqnTPYUP1En hJfwaF9eWJmOVBKcNp0JKpMtSv5g2pOj7J7iddiqoCpqHaErQwQ= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:05 2024 by rpki-client on console-ams.rpki-client.org