$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PsVbvCnhLEoBXkfo9yEOfbhwEG4.roa File: PsVbvCnhLEoBXkfo9yEOfbhwEG4.roa (raw, json) Hash identifier: y0Er1Q66+vjewOssNXf+fosCdN5gRe6c+BF/nTZJFCs= Subject key identifier: 3E:C5:5B:BC:29:E1:2C:4A:01:5E:47:E8:F7:21:0E:7D:B8:70:10:6E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 309C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PsVbvCnhLEoBXkfo9yEOfbhwEG4.roa Signing time: Mon 26 Aug 2024 05:29:38 +0000 ROA not before: Mon 26 Aug 2024 05:29:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12444 (0x309c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3EC55BBC29E12C4A015E47E8F7210E7DB870106E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2c:63:b1:17:96:71:64:f9:f4:bc:9f:06:e0: 0d:21:6f:51:44:b4:df:2c:5b:96:5f:e8:1d:d6:2f: 33:9f:ec:23:61:f7:25:94:43:22:1c:59:67:1b:00: c7:42:66:69:fd:94:ab:a0:37:d7:96:35:b6:68:46: c1:32:a6:18:0f:9d:a0:cd:1b:a0:1d:49:51:b4:d7: 1c:07:28:84:44:a1:b8:16:6d:fb:fe:1b:49:49:2f: 5b:53:b9:e6:e9:ba:7e:40:0c:70:32:77:f7:3f:a9: 1e:3c:e9:d2:0d:2f:dd:19:8d:ea:36:4e:8f:35:27: e7:38:1f:df:ec:46:9f:15:04:b2:1b:e6:40:0d:80: be:b0:26:dd:57:9e:a5:29:f2:b0:b6:09:37:c2:3b: 94:cf:85:a3:66:93:19:2a:03:d6:57:66:ca:8c:02: 18:be:f3:89:50:79:9d:70:8b:38:c8:32:7d:a2:e2: d1:93:1d:82:95:65:92:6d:c2:5e:bb:e3:e5:67:9c: 9e:8d:2c:71:52:93:97:f4:09:a1:b9:82:b4:05:79: aa:e5:d2:bf:e4:cb:4c:42:67:a2:cc:f9:9c:e5:f4: 4e:cb:1a:04:e6:4f:86:1d:0e:85:99:ce:ad:9f:6c: be:ea:d1:1d:18:44:3c:46:ec:b2:4c:14:09:5c:7e: 79:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:C5:5B:BC:29:E1:2C:4A:01:5E:47:E8:F7:21:0E:7D:B8:70:10:6E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PsVbvCnhLEoBXkfo9yEOfbhwEG4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.98.0/24 Signature Algorithm: sha256WithRSAEncryption 86:40:39:08:46:4b:3b:2d:e7:f3:ac:62:19:46:8b:4c:8f:9b: fd:e7:ea:d4:e9:e0:28:4d:77:8b:38:14:54:0f:d1:4d:45:95: 14:6a:28:15:9e:72:e7:49:59:2d:b5:26:50:e9:20:b8:68:26: 8b:4d:7e:02:5f:55:01:20:82:db:d8:68:4c:46:07:2c:70:3e: dc:27:a6:04:3d:24:7b:c3:94:bd:02:60:70:c3:7b:75:32:e7: 3a:3e:e5:ea:5f:2b:d5:1b:9a:17:07:6b:bc:46:16:4e:38:4a: b5:d7:b3:4c:eb:a5:de:21:33:d3:89:4a:c5:4f:fb:89:16:71: 2c:01:f3:c2:0f:66:89:a2:c4:2f:62:f4:e9:34:53:27:88:da: 41:24:99:30:15:d5:c9:f8:a1:3d:89:a1:34:60:d5:a2:1c:10: 1d:08:b1:b6:bf:b8:c4:83:dc:3f:64:ae:35:34:ea:ad:f1:32: aa:64:fc:79:d5:89:84:8b:74:b4:e6:3f:bf:0c:b0:8c:26:4f: 3a:e9:d5:9d:57:c1:2a:18:e8:c1:c5:95:21:17:67:3e:f2:f5: 6c:98:91:96:53:06:dd:d6:cd:6c:40:e6:d9:7e:b4:7e:0d:26: a2:cb:d1:c9:fb:37:ef:53:5e:b8:97:ef:81:4d:04:07:74:58: 2a:42:75:d3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMJwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNFQzU1QkJDMjlFMTJD NEEwMTVFNDdFOEY3MjEwRTdEQjg3MDEwNkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdLGOxF5ZxZPn0vJ8G4A0hb1FEtN8sW5Zf6B3WLzOf7CNh9yWU QyIcWWcbAMdCZmn9lKugN9eWNbZoRsEyphgPnaDNG6AdSVG01xwHKIREobgWbfv+ G0lJL1tTuebpun5ADHAyd/c/qR486dINL90Zjeo2To81J+c4H9/sRp8VBLIb5kAN gL6wJt1XnqUp8rC2CTfCO5TPhaNmkxkqA9ZXZsqMAhi+84lQeZ1wizjIMn2i4tGT HYKVZZJtwl674+VnnJ6NLHFSk5f0CaG5grQFearl0r/ky0xCZ6LM+Zzl9E7LGgTm T4YdDoWZzq2fbL7q0R0YRDxG7LJMFAlcfnn7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUPsVbvCnhLEoBXkfo9yEOfbhwEG4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1BzVmJ2Q25oTEVvQlhrZm85 eUVPZmJod0VHNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AWIwDQYJKoZIhvcNAQELBQADggEBAIZAOQhGSzst5/OsYhlGi0yPm/3n6tTp4ChN d4s4FFQP0U1FlRRqKBWecudJWS21JlDpILhoJotNfgJfVQEggtvYaExGByxwPtwn pgQ9JHvDlL0CYHDDe3Uy5zo+5epfK9UbmhcHa7xGFk44SrXXs0zrpd4hM9OJSsVP +4kWcSwB88IPZomixC9i9Ok0UyeI2kEkmTAV1cn4oT2JoTRg1aIcEB0Isba/uMSD 3D9krjU06q3xMqpk/HnViYSLdLTmP78MsIwmTzrp1Z1XwSoY6MHFlSEXZz7y9WyY kZZTBt3WzWxA5tl+tH4NJqLL0cn7N+9TXriX74FNBAd0WCpCddM= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:52 2024 by rpki-client on console-fra.rpki-client.org