$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/N1rUlR6MCKyinrDeDv1VLWEoGrw.roa File: N1rUlR6MCKyinrDeDv1VLWEoGrw.roa (raw, json) Hash identifier: KgB2B5gPpiWAZ6a3O4PZ8T8l5yiCLJkGfznc4U8Ilx0= Subject key identifier: 37:5A:D4:95:1E:8C:08:AC:A2:9E:B0:DE:0E:FD:55:2D:61:28:1A:BC Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 30E2 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/N1rUlR6MCKyinrDeDv1VLWEoGrw.roa Signing time: Mon 26 Aug 2024 05:29:55 +0000 ROA not before: Mon 26 Aug 2024 05:29:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12514 (0x30e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=375AD4951E8C08ACA29EB0DE0EFD552D61281ABC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:68:9c:94:44:b9:64:d8:d5:74:69:7a:23:1a: 9f:64:94:fd:53:2a:9f:7f:af:77:9a:5b:20:41:84: e5:45:15:f8:28:7b:e3:84:57:15:23:fe:d0:d5:7f: 86:e7:1d:a7:5a:d1:72:ba:1c:df:01:33:62:fc:33: c7:12:47:11:6e:a7:44:61:da:51:7c:07:83:59:a5: 42:9b:11:02:29:bb:6b:fc:86:42:49:a1:e7:e4:f7: ea:2d:bb:19:d6:5e:37:48:31:28:f4:84:e2:49:4d: 40:62:e3:9d:46:a6:ca:70:0f:49:c6:cc:82:a0:64: 74:e2:d2:23:36:9b:b2:d6:8b:c6:b0:fc:14:30:20: c1:11:a8:ca:9d:47:64:2d:69:a4:37:27:8d:ab:00: 04:ad:be:c9:8e:68:fe:aa:c5:b4:aa:ff:a2:c3:8e: 78:f8:c6:e4:62:5c:42:4b:1b:bf:20:e4:81:46:97: ce:60:cb:85:47:6d:8d:90:d2:1f:e9:32:33:78:ee: 48:19:ac:34:ec:6e:7e:31:f9:2e:13:fe:f6:98:f3: 25:04:a9:1f:42:77:f2:c1:b5:39:79:be:eb:a6:56: 4f:ed:38:e0:a5:ef:e6:a1:63:af:d7:28:92:be:0f: d6:df:a7:2b:66:65:cc:f9:1d:02:45:3a:0a:e8:a2: 73:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:5A:D4:95:1E:8C:08:AC:A2:9E:B0:DE:0E:FD:55:2D:61:28:1A:BC X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/N1rUlR6MCKyinrDeDv1VLWEoGrw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.152.0/21 Signature Algorithm: sha256WithRSAEncryption 12:de:91:fb:75:b9:9f:7a:08:29:f1:3e:32:6e:70:f6:a7:4d: be:bf:e2:55:db:08:2f:d0:b6:45:f7:c1:1c:c3:a1:d3:50:f6: aa:13:ca:74:ec:dc:57:da:9f:74:a6:21:31:e6:09:91:01:99: 1e:a5:2e:58:f1:1b:87:6a:58:8e:15:61:52:a1:7c:32:77:2c: 3d:bc:f2:9c:10:cb:f4:40:17:ab:6e:ef:33:ba:a4:00:24:1e: 70:ff:d9:e2:43:32:60:62:74:ad:3c:5e:cd:3e:f9:cb:5b:70: 69:0a:a6:d6:55:da:79:33:5d:e6:47:ed:c2:60:04:a8:fc:14: ea:48:a0:14:23:fb:1c:88:8b:94:04:aa:a1:da:7d:a6:19:a9: f3:d1:e3:aa:39:39:d6:b5:48:c7:9e:71:1c:94:4e:9c:c8:0f: 6b:86:9f:d5:d0:20:cc:b3:5a:5c:61:14:fb:23:79:d5:02:cc: c1:54:87:9b:08:8e:9e:bb:44:12:08:91:f9:14:f6:97:c2:30: 3c:2e:68:44:10:5d:7b:be:d7:8b:4c:1d:3f:51:84:1f:c7:32: 55:6a:e2:f2:77:28:80:6f:5a:91:06:1e:c3:bb:ea:e3:fd:a6: 2b:27:b1:89:54:24:d1:b5:81:d0:c5:f1:e2:bf:7f:6b:99:26: d2:23:5e:80 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMOIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM3NUFENDk1MUU4QzA4 QUNBMjlFQjBERTBFRkQ1NTJENjEyODFBQkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdaJyURLlk2NV0aXojGp9klP1TKp9/r3eaWyBBhOVFFfgoe+OE VxUj/tDVf4bnHada0XK6HN8BM2L8M8cSRxFup0Rh2lF8B4NZpUKbEQIpu2v8hkJJ oefk9+otuxnWXjdIMSj0hOJJTUBi451GpspwD0nGzIKgZHTi0iM2m7LWi8aw/BQw IMERqMqdR2QtaaQ3J42rAAStvsmOaP6qxbSq/6LDjnj4xuRiXEJLG78g5IFGl85g y4VHbY2Q0h/pMjN47kgZrDTsbn4x+S4T/vaY8yUEqR9Cd/LBtTl5vuumVk/tOOCl 7+ahY6/XKJK+D9bfpytmZcz5HQJFOgroonNRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUN1rUlR6MCKyinrDeDv1VLWEoGrwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL04xclVsUjZNQ0t5aW5yRGVE djFWTFdFb0dydy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 w5gwDQYJKoZIhvcNAQELBQADggEBABLekft1uZ96CCnxPjJucPanTb6/4lXbCC/Q tkX3wRzDodNQ9qoTynTs3Ffan3SmITHmCZEBmR6lLljxG4dqWI4VYVKhfDJ3LD28 8pwQy/RAF6tu7zO6pAAkHnD/2eJDMmBidK08Xs0++ctbcGkKptZV2nkzXeZH7cJg BKj8FOpIoBQj+xyIi5QEqqHafaYZqfPR46o5Oda1SMeecRyUTpzID2uGn9XQIMyz WlxhFPsjedUCzMFUh5sIjp67RBIIkfkU9pfCMDwuaEQQXXu+14tMHT9RhB/HMlVq 4vJ3KIBvWpEGHsO76uP9pisnsYlUJNG1gdDF8eK/f2uZJtIjXoA= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:51 2024 by rpki-client on console-ams.rpki-client.org