$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NGV6Gd0welHH6uRL_VVdZoVowTE.roa File: NGV6Gd0welHH6uRL_VVdZoVowTE.roa (raw, json) Hash identifier: YcGHWvI9P9963chY38lf0urCyMz8RUkYG7BTiobYoK4= Subject key identifier: 34:65:7A:19:DD:30:7A:51:C7:EA:E4:4B:FD:55:5D:66:85:68:C1:31 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2AE8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NGV6Gd0welHH6uRL_VVdZoVowTE.roa Signing time: Fri 01 Sep 2023 10:08:26 +0000 ROA not before: Fri 01 Sep 2023 10:08:26 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.233.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10984 (0x2ae8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:26 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=34657A19DD307A51C7EAE44BFD555D668568C131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:83:5c:3f:eb:d3:d0:53:dc:2c:e7:69:79:98: 2f:c1:db:e5:5a:31:b0:17:cb:f8:d1:e2:40:0f:91: 74:e5:26:41:c3:ca:23:80:81:fc:14:cb:58:98:61: d9:da:48:26:f4:9e:c9:3e:8c:10:f3:24:d1:3d:91: 40:74:d2:53:2d:d5:0e:6e:f0:f7:f9:6e:40:49:ff: ef:c0:c7:0a:37:1f:79:14:94:83:c4:77:cd:fe:57: 8d:26:8d:d7:30:26:fd:e7:14:fe:ef:b9:db:2b:81: f2:d9:d6:05:1b:d7:7c:10:c9:40:f3:2c:da:f0:9d: 1a:15:43:c9:7b:ec:ff:e5:7a:29:43:36:9f:96:08: 82:c0:a3:21:9a:cc:c1:fb:98:94:c4:18:99:a6:98: b8:63:b4:5d:e3:27:0f:71:6c:61:88:bd:f8:0a:e9: 54:38:5e:99:94:73:85:43:f2:fe:8d:e1:b3:90:bf: 72:db:56:84:84:8c:c7:f0:aa:de:f7:3d:74:74:73: 69:88:bd:0c:7e:d9:78:4e:1b:b1:9e:c1:a3:07:88: 18:67:36:8e:33:a9:37:61:24:69:10:31:77:78:90: f9:9f:5e:62:8d:3a:71:36:aa:53:7a:d9:3a:2a:44: db:d4:ef:fa:51:cd:fe:86:20:55:59:28:3f:7c:88: 5e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:65:7A:19:DD:30:7A:51:C7:EA:E4:4B:FD:55:5D:66:85:68:C1:31 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NGV6Gd0welHH6uRL_VVdZoVowTE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.132.0/22 Signature Algorithm: sha256WithRSAEncryption a0:53:d3:63:9b:bf:26:20:15:aa:f9:60:90:ed:21:1d:ad:40: 48:f9:aa:ae:22:f1:53:db:6b:92:b8:32:6d:94:44:33:42:17: f2:32:db:46:37:67:6b:f0:c4:c3:81:c1:2b:ce:8f:07:ec:f1: 8a:04:ea:5a:7f:e1:13:75:e8:f2:ec:4a:e6:3a:11:25:1c:53: 5f:64:f3:b2:8f:ca:01:e8:e0:ce:e1:5c:a7:69:b3:38:77:11: 5f:83:ba:d4:39:d4:a8:58:bd:ef:a9:ee:23:01:53:2d:8c:63: bb:55:c9:8e:89:bb:a9:1a:f2:a9:b2:6c:3d:c8:ba:77:86:5d: cd:cc:0b:6f:f4:36:11:a1:9a:fd:65:2a:07:a9:5f:fc:b7:4e: 15:66:2a:b5:01:46:2f:4e:e7:58:66:31:b9:40:77:18:3a:18: ed:3a:00:73:7a:49:c1:e8:55:ef:63:cb:89:ca:b0:9a:49:e2: ab:35:90:1d:d7:83:4e:87:dd:d3:35:98:3d:93:29:0e:8c:e2: d8:72:8c:b9:8a:e4:4c:ad:e4:22:5d:b6:3f:ff:f5:16:de:8d: ee:4f:16:47:24:5c:75:9d:42:57:db:f9:47:c3:df:88:51:f8: 57:2b:bf:89:a7:be:81:22:b9:17:55:4b:21:13:41:cc:75:91: bd:3e:94:d9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKugwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MjZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM0NjU3QTE5REQzMDdB NTFDN0VBRTQ0QkZENTU1RDY2ODU2OEMxMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIg1w/69PQU9ws52l5mC/B2+VaMbAXy/jR4kAPkXTlJkHDyiOA gfwUy1iYYdnaSCb0nsk+jBDzJNE9kUB00lMt1Q5u8Pf5bkBJ/+/Axwo3H3kUlIPE d83+V40mjdcwJv3nFP7vudsrgfLZ1gUb13wQyUDzLNrwnRoVQ8l77P/leilDNp+W CILAoyGazMH7mJTEGJmmmLhjtF3jJw9xbGGIvfgK6VQ4XpmUc4VD8v6N4bOQv3Lb VoSEjMfwqt73PXR0c2mIvQx+2XhOG7GewaMHiBhnNo4zqTdhJGkQMXd4kPmfXmKN OnE2qlN62ToqRNvU7/pRzf6GIFVZKD98iF4lAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUNGV6Gd0welHH6uRL/VVdZoVowTEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL05HVjZHZDB3ZWxISDZ1Ukxf VlZkWm9Wb3dURS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6YQwDQYJKoZIhvcNAQELBQADggEBAKBT02ObvyYgFar5YJDtIR2tQEj5qq4i8VPb a5K4Mm2URDNCF/Iy20Y3Z2vwxMOBwSvOjwfs8YoE6lp/4RN16PLsSuY6ESUcU19k 87KPygHo4M7hXKdpszh3EV+DutQ51KhYve+p7iMBUy2MY7tVyY6Ju6ka8qmybD3I uneGXc3MC2/0NhGhmv1lKgepX/y3ThVmKrUBRi9O51hmMblAdxg6GO06AHN6ScHo Ve9jy4nKsJpJ4qs1kB3Xg06H3dM1mD2TKQ6M4thyjLmK5Eyt5CJdtj//9Rbeje5P FkckXHWdQlfb+UfD34hR+Fcrv4mnvoEiuRdVSyETQcx1kb0+lNk= -----END CERTIFICATE-----Generated at Mon Jun 3 10:15:30 2024 by rpki-client on console-fra.rpki-client.org