$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NW0KeibDhRfGg8fXuQjZq5FRjGQ.roa File: NW0KeibDhRfGg8fXuQjZq5FRjGQ.roa (raw, json) Hash identifier: G+50zcRJWoscNKja0+dWU66sAzvRbNtCPROXrlMixBA= Subject key identifier: 35:6D:0A:7A:26:C3:85:17:C6:83:C7:D7:B9:08:D9:AB:91:51:8C:64 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 28CD Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NW0KeibDhRfGg8fXuQjZq5FRjGQ.roa Signing time: Fri 01 Sep 2023 10:05:47 +0000 ROA not before: Fri 01 Sep 2023 10:05:47 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.195.8.192/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10445 (0x28cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:47 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=356D0A7A26C38517C683C7D7B908D9AB91518C64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f9:60:9e:4c:dc:8f:9c:93:8e:11:0b:15:0f: 3a:42:5b:59:19:01:88:cc:aa:eb:ce:bd:64:d2:66: b3:e7:d8:6d:34:7d:d8:a9:12:46:b2:47:52:ab:b5: 48:30:42:9e:f3:0b:9d:ab:23:0e:ff:e6:f0:8c:2f: 59:54:48:54:14:a4:37:23:8b:3a:17:1b:68:a3:05: c4:6c:6f:6b:3b:31:87:46:be:ee:a4:e9:21:52:cc: 6f:56:cb:12:8a:94:79:b6:de:a5:01:e7:56:13:78: fd:1d:84:5c:ec:97:b1:30:10:44:34:07:36:13:38: 6e:de:6a:c2:43:be:38:d6:d7:8b:ef:88:5d:fe:b7: e3:25:7b:80:fa:be:6c:fe:36:ff:9e:5e:a2:22:3d: 45:16:2a:4f:63:5e:86:ab:c8:ee:07:cb:56:39:45: e4:94:17:40:44:7c:e2:42:89:ed:6d:5b:dd:46:a9: bf:14:64:3f:86:0e:a0:91:36:c0:98:ff:23:23:37: 17:79:6d:80:8e:fa:8d:60:a8:d8:df:f7:75:4a:fb: 46:12:d7:40:8b:2f:19:e3:f7:73:8a:ae:f1:82:3a: 8f:97:9c:be:67:b5:de:87:d4:c0:38:11:75:fe:e6: 81:f9:d1:7b:a3:72:58:47:10:dd:1d:7b:bf:86:78: 7f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:6D:0A:7A:26:C3:85:17:C6:83:C7:D7:B9:08:D9:AB:91:51:8C:64 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NW0KeibDhRfGg8fXuQjZq5FRjGQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.8.192/26 Signature Algorithm: sha256WithRSAEncryption 6a:48:9f:47:25:71:ab:51:49:93:bf:6c:60:01:18:18:ea:35: 76:f1:d6:55:6b:a4:cf:80:d1:57:b9:42:54:47:ed:06:74:72: e1:d0:aa:70:b7:c3:76:7c:ec:43:a4:22:24:16:2b:c7:0c:3d: a7:d8:50:82:5e:39:55:2a:79:fc:e7:80:2e:5e:2d:8a:4f:4e: 9f:07:39:ed:9e:c2:77:e5:f8:32:24:73:e2:8a:7d:21:6c:da: 6e:55:06:17:48:fe:63:87:20:c1:c2:d6:ee:60:3e:3d:92:86: 8d:f5:4c:e4:07:4b:69:7e:23:6c:c3:66:70:c1:95:2d:74:f5: 8b:5d:7a:ba:74:5d:83:2b:d6:99:77:0f:77:0f:69:02:fa:db: 68:cf:f6:fa:08:92:5e:d4:33:63:fa:06:45:2c:5b:e6:05:10: 7f:8f:6c:39:be:6f:4e:24:8c:1e:67:5d:55:97:37:74:25:87: 90:fe:7c:25:58:16:98:d6:03:41:ad:b1:6e:3c:e3:56:0e:03: 34:b9:f9:f2:4d:5f:df:e6:2c:77:77:ac:34:38:3b:00:d4:1c: 15:a5:11:ab:62:c8:57:90:bb:69:1c:7a:cc:23:52:55:09:38: 17:63:79:d3:4b:76:d6:b8:71:25:46:71:d4:18:cc:79:0f:e5: bf:fe:e4:b3 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICKM0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1NDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM1NkQwQTdBMjZDMzg1 MTdDNjgzQzdEN0I5MDhEOUFCOTE1MThDNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDL+WCeTNyPnJOOEQsVDzpCW1kZAYjMquvOvWTSZrPn2G00fdip EkayR1KrtUgwQp7zC52rIw7/5vCML1lUSFQUpDcjizoXG2ijBcRsb2s7MYdGvu6k 6SFSzG9WyxKKlHm23qUB51YTeP0dhFzsl7EwEEQ0BzYTOG7easJDvjjW14vviF3+ t+Mle4D6vmz+Nv+eXqIiPUUWKk9jXoaryO4Hy1Y5ReSUF0BEfOJCie1tW91Gqb8U ZD+GDqCRNsCY/yMjNxd5bYCO+o1gqNjf93VK+0YS10CLLxnj93OKrvGCOo+XnL5n td6H1MA4EXX+5oH50XujclhHEN0de7+GeH/RAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUNW0KeibDhRfGg8fXuQjZq5FRjGQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL05XMEtlaWJEaFJmR2c4Zlh1 UWpacTVGUmpHUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQZ7 wwjAMA0GCSqGSIb3DQEBCwUAA4IBAQBqSJ9HJXGrUUmTv2xgARgY6jV28dZVa6TP gNFXuUJUR+0GdHLh0Kpwt8N2fOxDpCIkFivHDD2n2FCCXjlVKnn854AuXi2KT06f BzntnsJ35fgyJHPiin0hbNpuVQYXSP5jhyDBwtbuYD49koaN9UzkB0tpfiNsw2Zw wZUtdPWLXXq6dF2DK9aZdw93D2kC+ttoz/b6CJJe1DNj+gZFLFvmBRB/j2w5vm9O JIweZ11Vlzd0JYeQ/nwlWBaY1gNBrbFuPONWDgM0ufnyTV/f5ix3d6w0ODsA1BwV pRGrYshXkLtpHHrMI1JVCTgXY3nTS3bWuHElRnHUGMx5D+W//uSz -----END CERTIFICATE-----Generated at Mon Jun 3 10:15:30 2024 by rpki-client on console-fra.rpki-client.org