$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OO5mKeNmgiQ00lwBAfmTjkfFwfw.roa File: OO5mKeNmgiQ00lwBAfmTjkfFwfw.roa (raw, json) Hash identifier: LkT0kxupnUqG6rqvFqOfLOxyWA1UIibtGYJrIfEXZWY= Subject key identifier: 38:EE:66:29:E3:66:82:24:34:D2:5C:01:01:F9:93:8E:47:C5:C1:FC Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A5E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OO5mKeNmgiQ00lwBAfmTjkfFwfw.roa Signing time: Fri 01 Sep 2023 10:07:49 +0000 ROA not before: Fri 01 Sep 2023 10:07:49 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.233.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10846 (0x2a5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:49 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=38EE6629E366822434D25C0101F9938E47C5C1FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7f:be:5f:1b:a4:1e:65:0c:2b:d6:84:b3:7e: f0:95:fb:c4:ca:33:42:89:f1:91:f4:02:2d:77:07: 99:d5:0e:fb:1b:1c:76:ab:a4:97:2e:19:6b:43:43: 90:a6:39:5d:f2:e8:c7:33:b0:54:63:09:f2:38:de: 99:40:39:a7:fa:13:21:f9:52:25:16:d5:46:cc:57: 56:bf:36:2b:88:f9:09:05:40:91:8b:55:6a:19:a1: de:29:24:9d:5e:5c:59:cf:7f:9a:24:d9:21:38:25: a6:4c:6b:c4:47:65:ad:50:eb:d0:8c:dc:c8:81:21: fd:f0:5f:ff:a3:ab:10:6d:63:14:4b:bf:76:18:2a: 16:e1:77:77:42:7e:da:87:51:d7:45:c7:75:0e:0e: ae:da:5c:28:b2:fa:ae:ee:ce:e5:51:4d:19:cf:e5: 64:b7:c7:0b:ba:c3:b0:c3:51:bb:25:2e:4d:77:be: c3:a5:83:e5:73:32:8a:48:f4:cc:60:2f:40:e1:51: 7e:4c:46:89:e4:98:3c:a5:1b:eb:cc:05:4e:50:d7: cb:1a:02:e7:f0:cd:0c:ab:96:9b:36:4a:11:40:f9: 4c:2b:47:46:f7:99:04:08:09:88:b8:28:b4:24:7e: a2:34:b5:22:a9:af:16:c0:be:5c:a8:1a:c5:8c:bb: d9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:EE:66:29:E3:66:82:24:34:D2:5C:01:01:F9:93:8E:47:C5:C1:FC X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OO5mKeNmgiQ00lwBAfmTjkfFwfw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.60.0/22 Signature Algorithm: sha256WithRSAEncryption 69:ea:39:64:86:ae:43:f2:31:a2:78:53:f3:b7:6b:c1:a1:44: b5:25:22:90:45:3b:d6:4b:a6:73:35:cc:c8:85:26:5d:2b:c5: fa:33:4b:82:6f:11:e9:b7:28:90:23:81:05:06:c4:04:16:46: ce:2d:ca:02:79:fa:d5:8b:23:4a:df:c2:40:84:57:ab:cb:29: 89:aa:e4:95:87:f0:30:39:8c:8b:fe:d7:c9:b3:28:22:1d:37: 84:66:83:96:bd:18:e2:8c:a7:6d:f2:e8:44:75:46:39:42:40: 8a:77:0a:ba:b8:d9:f7:c4:a7:e3:24:49:91:ef:4f:14:9a:38: 2b:a7:1d:d7:e3:00:ca:61:1c:45:61:10:82:5b:c7:68:95:d1: ba:56:71:e8:95:15:c3:64:d6:42:47:62:7a:dd:d2:89:d5:08: a9:57:74:ff:4a:e9:44:01:06:9e:51:c7:26:61:d5:73:02:3c: 31:f8:d3:e4:d5:28:e4:09:49:5b:4f:ad:59:70:40:36:b7:d9: 8d:6f:68:b1:6c:9f:48:e3:03:a7:a8:3e:af:ed:a1:9d:91:0f: 0b:69:40:24:a4:50:bd:9f:b6:97:ff:d7:02:b4:de:38:07:ba: 99:ed:04:1a:30:ac:ae:bc:30:68:5b:0a:df:61:e3:7c:f0:b2: 24:fb:02:b0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKl4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3NDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM4RUU2NjI5RTM2Njgy MjQzNEQyNUMwMTAxRjk5MzhFNDdDNUMxRkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChf75fG6QeZQwr1oSzfvCV+8TKM0KJ8ZH0Ai13B5nVDvsbHHar pJcuGWtDQ5CmOV3y6MczsFRjCfI43plAOaf6EyH5UiUW1UbMV1a/NiuI+QkFQJGL VWoZod4pJJ1eXFnPf5ok2SE4JaZMa8RHZa1Q69CM3MiBIf3wX/+jqxBtYxRLv3YY Khbhd3dCftqHUddFx3UODq7aXCiy+q7uzuVRTRnP5WS3xwu6w7DDUbslLk13vsOl g+VzMopI9MxgL0DhUX5MRonkmDylG+vMBU5Q18saAufwzQyrlps2ShFA+UwrR0b3 mQQICYi4KLQkfqI0tSKprxbAvlyoGsWMu9mBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOO5mKeNmgiQ00lwBAfmTjkfFwfwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL09PNW1LZU5tZ2lRMDBsd0JB Zm1UamtmRndmdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6TwwDQYJKoZIhvcNAQELBQADggEBAGnqOWSGrkPyMaJ4U/O3a8GhRLUlIpBFO9ZL pnM1zMiFJl0rxfozS4JvEem3KJAjgQUGxAQWRs4tygJ5+tWLI0rfwkCEV6vLKYmq 5JWH8DA5jIv+18mzKCIdN4Rmg5a9GOKMp23y6ER1RjlCQIp3Crq42ffEp+MkSZHv TxSaOCunHdfjAMphHEVhEIJbx2iV0bpWceiVFcNk1kJHYnrd0onVCKlXdP9K6UQB Bp5RxyZh1XMCPDH40+TVKOQJSVtPrVlwQDa32Y1vaLFsn0jjA6eoPq/toZ2RDwtp QCSkUL2ftpf/1wK03jgHupntBBowrK68MGhbCt9h43zwsiT7ArA= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:05 2024 by rpki-client on console-fra.rpki-client.org