$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NaUd6D0I4AibXDkThKGESawg3iQ.roa File: NaUd6D0I4AibXDkThKGESawg3iQ.roa (raw, json) Hash identifier: dHSP0W4IM7LZQX6JzTTGJzPhxg5gHmYdWT5w+hgRMMg= Subject key identifier: 35:A5:1D:E8:3D:08:E0:08:9B:5C:39:13:84:A1:84:49:AC:20:DE:24 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 28CA Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NaUd6D0I4AibXDkThKGESawg3iQ.roa Signing time: Fri 01 Sep 2023 10:05:45 +0000 ROA not before: Fri 01 Sep 2023 10:05:45 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 180.176.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10442 (0x28ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:45 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=35A51DE83D08E0089B5C391384A18449AC20DE24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ea:67:6b:cc:a2:d1:e5:24:5b:65:fa:3f:b6: 91:67:db:70:ee:af:62:85:be:03:1a:37:02:77:80: b5:4f:eb:f5:db:10:2b:ec:e1:ad:86:4f:41:70:fa: b2:40:31:2a:b7:7b:ce:5e:62:85:b4:8b:e0:3b:12: f5:38:01:0a:51:35:b5:16:14:19:d2:ba:0e:8b:64: fe:c0:70:37:1e:34:7e:e0:ed:9d:7d:61:e4:c1:3f: ef:4f:d4:66:80:41:d8:06:ba:cf:bb:03:97:49:82: cc:98:fc:97:94:56:be:dd:ff:49:2f:f4:b6:59:a2: db:00:86:44:d6:53:f6:dd:d2:5a:7c:2d:41:d6:ca: 99:bd:31:3e:2f:6f:08:52:5e:b9:b8:8c:08:ad:bd: 81:ec:d6:ec:de:1c:d6:ec:ea:75:bc:14:60:1a:01: 2c:a7:40:dc:2f:91:2e:16:4d:6f:b4:54:fb:5d:a4: 57:ab:c7:47:f0:25:43:be:a4:c4:de:3e:c6:68:dc: df:93:eb:3e:00:77:67:9a:8b:46:1b:b4:2c:33:b2: 87:c6:27:4c:33:55:09:42:98:89:88:9d:3d:c7:d0: 24:d2:40:44:cd:6b:ae:13:80:b7:dd:dd:6c:79:26: 27:46:45:4d:aa:e8:73:6d:60:2b:78:12:83:23:5b: 96:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:A5:1D:E8:3D:08:E0:08:9B:5C:39:13:84:A1:84:49:AC:20:DE:24 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NaUd6D0I4AibXDkThKGESawg3iQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.23.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:67:f8:ae:3e:ea:39:d5:0e:31:92:5e:58:af:8d:dd:15:13: f4:6a:8b:06:d7:b2:a9:d3:19:11:c2:11:0a:01:06:b3:bc:37: 97:04:07:89:38:1c:b7:e2:80:db:7c:57:85:ec:c6:e6:f3:55: cd:02:9a:c7:44:8d:9f:fe:e8:40:62:7b:05:d8:a0:18:38:0e: a7:59:16:26:f9:d4:38:21:27:e5:8a:06:ce:b8:de:96:ee:ee: 6b:47:4b:7b:e0:6a:e2:48:b2:8c:fe:df:72:b2:84:0b:33:41: e1:3b:32:6c:82:51:34:df:d2:47:c3:ae:6b:ac:24:da:59:69: 35:94:27:1d:c0:39:2f:3e:10:77:a7:ea:ed:f6:07:c6:8d:24: c1:9d:e8:bd:f1:81:53:e0:97:c6:2c:7b:aa:e4:1b:e2:95:47: 0a:6f:f1:94:ec:d6:80:14:91:a7:c2:15:0f:83:dd:6a:0f:eb: f5:6a:29:22:da:d8:7c:70:78:2f:be:80:7f:0b:65:82:8b:02: 2c:70:af:f6:88:d9:62:db:77:02:7f:16:f4:ea:62:fe:79:c4: b3:1a:ac:fc:8f:3f:e3:52:d3:ec:d7:d4:27:4c:b7:14:dd:87: ea:41:c6:40:e4:a7:ea:8c:31:ec:61:e0:a2:1c:3d:c7:37:d7: b5:1a:67:c2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKMowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1NDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM1QTUxREU4M0QwOEUw MDg5QjVDMzkxMzg0QTE4NDQ5QUMyMERFMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCj6mdrzKLR5SRbZfo/tpFn23Dur2KFvgMaNwJ3gLVP6/XbECvs 4a2GT0Fw+rJAMSq3e85eYoW0i+A7EvU4AQpRNbUWFBnSug6LZP7AcDceNH7g7Z19 YeTBP+9P1GaAQdgGus+7A5dJgsyY/JeUVr7d/0kv9LZZotsAhkTWU/bd0lp8LUHW ypm9MT4vbwhSXrm4jAitvYHs1uzeHNbs6nW8FGAaASynQNwvkS4WTW+0VPtdpFer x0fwJUO+pMTePsZo3N+T6z4Ad2eai0YbtCwzsofGJ0wzVQlCmImInT3H0CTSQETN a64TgLfd3Wx5JidGRU2q6HNtYCt4EoMjW5ZbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUNaUd6D0I4AibXDkThKGESawg3iQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL05hVWQ2RDBJNEFpYlhEa1Ro S0dFU2F3ZzNpUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0 sBcwDQYJKoZIhvcNAQELBQADggEBAG9n+K4+6jnVDjGSXlivjd0VE/RqiwbXsqnT GRHCEQoBBrO8N5cEB4k4HLfigNt8V4XsxubzVc0CmsdEjZ/+6EBiewXYoBg4DqdZ Fib51DghJ+WKBs643pbu7mtHS3vgauJIsoz+33KyhAszQeE7MmyCUTTf0kfDrmus JNpZaTWUJx3AOS8+EHen6u32B8aNJMGd6L3xgVPgl8Yse6rkG+KVRwpv8ZTs1oAU kafCFQ+D3WoP6/VqKSLa2HxweC++gH8LZYKLAixwr/aI2WLbdwJ/FvTqYv55xLMa rPyPP+NS0+zX1CdMtxTdh+pBxkDkp+qMMexh4KIcPcc317UaZ8I= -----END CERTIFICATE-----Generated at Mon Jun 3 10:15:30 2024 by rpki-client on console-fra.rpki-client.org