$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q4ndsa13vkrM0yQJhMarmu3b-k8.roa File: Q4ndsa13vkrM0yQJhMarmu3b-k8.roa (raw, json) Hash identifier: n/fbqThkBEJmpneWGuUCm2istQ1r/emCVvZsdrrtJFY= Subject key identifier: 43:89:DD:B1:AD:77:BE:4A:CC:D3:24:09:84:C6:AB:9A:ED:DB:FA:4F Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2997 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q4ndsa13vkrM0yQJhMarmu3b-k8.roa Signing time: Fri 01 Sep 2023 10:06:47 +0000 ROA not before: Fri 01 Sep 2023 10:06:47 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 118.232.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10647 (0x2997) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:06:47 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=4389DDB1AD77BE4ACCD3240984C6AB9AEDDBFA4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:38:c3:2f:76:b9:15:71:f7:be:49:6a:01:d1: a7:0d:9b:9d:ef:19:59:df:b8:a7:fb:cd:37:b2:78: cf:f4:7d:fa:6b:aa:31:fd:2c:75:53:27:e7:0e:80: 28:dd:4e:d2:af:a4:ee:41:7d:92:7d:93:54:e1:79: 8e:b0:76:51:8e:e4:05:59:34:24:82:3b:48:6e:07: 80:63:1b:c4:65:ce:0d:de:b5:73:e2:0d:38:15:8c: fd:b0:8e:21:8d:4f:59:fc:88:a7:b4:e1:0b:d3:c7: c3:b7:6e:5b:e2:07:dd:6b:a9:80:1b:ec:56:b2:ca: 38:a9:e4:b7:62:dc:5e:99:ce:72:c3:6e:5e:27:6e: 9a:95:5e:30:90:4e:f3:fa:d7:0c:55:51:18:a4:d3: a2:3d:dc:b6:13:14:75:aa:9d:39:79:45:af:38:10: b8:06:77:45:5d:b3:0f:fd:e2:ea:6b:f0:34:19:c4: e2:65:8a:d5:26:93:80:2c:07:44:c7:80:a7:08:ca: 1b:52:5c:4e:77:2a:37:1b:10:72:47:4d:df:63:d8: af:14:65:e5:4a:13:30:22:5d:fa:e7:82:a8:90:96: 82:38:f0:e1:f5:49:57:46:07:18:ed:23:e4:36:94: 82:3f:02:d8:36:23:05:ca:8d:d2:09:46:e6:c6:7d: df:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:89:DD:B1:AD:77:BE:4A:CC:D3:24:09:84:C6:AB:9A:ED:DB:FA:4F X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q4ndsa13vkrM0yQJhMarmu3b-k8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.0.0/18 Signature Algorithm: sha256WithRSAEncryption 6c:e2:03:86:5f:be:e2:18:e5:46:c1:3b:6e:68:48:4a:26:eb: b0:42:b1:19:e9:33:90:4c:a0:d1:d8:c2:78:a2:a2:c6:ee:18: c3:7c:ba:29:76:ca:6e:09:a2:bb:82:fe:b2:e9:36:80:e4:1a: bb:79:21:8d:7d:1e:9c:17:11:2c:61:48:71:f4:f5:16:86:b4: 14:c2:61:af:98:c0:b1:36:41:33:98:87:89:e6:36:4e:93:9c: 38:1b:5f:c2:03:59:a0:7e:f4:aa:20:e6:33:51:e5:4b:d2:f6: 9b:89:3f:0c:7b:1e:71:80:68:65:be:79:f2:ce:68:1a:85:a2: f9:12:d2:14:6f:6e:17:35:2f:09:5c:59:22:64:d9:f2:dc:18: 90:35:7e:f2:b5:dc:50:27:19:37:0f:ce:27:d1:2c:6a:be:d2: 63:99:c3:d5:e2:57:94:02:02:17:42:78:a6:dd:d4:5b:e2:4f: f0:0d:3a:58:e5:cd:da:8e:e4:33:59:29:be:d2:d9:5e:98:f6: 34:d0:c2:2c:c2:b4:4e:ec:d2:ef:0a:4b:02:55:18:fc:fa:f5: 2e:f1:f9:6a:0b:b4:7e:19:ee:e5:25:1b:b5:aa:99:6c:bf:8a: f7:21:c3:46:2f:0c:58:00:38:5b:78:35:56:19:e8:c9:e6:e9: f8:4d:4a:0e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKZcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA2NDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQzODlEREIxQUQ3N0JF NEFDQ0QzMjQwOTg0QzZBQjlBRUREQkZBNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiOMMvdrkVcfe+SWoB0acNm53vGVnfuKf7zTeyeM/0ffprqjH9 LHVTJ+cOgCjdTtKvpO5BfZJ9k1TheY6wdlGO5AVZNCSCO0huB4BjG8Rlzg3etXPi DTgVjP2wjiGNT1n8iKe04QvTx8O3blviB91rqYAb7Fayyjip5Ldi3F6ZznLDbl4n bpqVXjCQTvP61wxVURik06I93LYTFHWqnTl5Ra84ELgGd0Vdsw/94upr8DQZxOJl itUmk4AsB0THgKcIyhtSXE53KjcbEHJHTd9j2K8UZeVKEzAiXfrngqiQloI48OH1 SVdGBxjtI+Q2lII/Atg2IwXKjdIJRubGfd9JAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUQ4ndsa13vkrM0yQJhMarmu3b+k8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1E0bmRzYTEzdmtyTTB5UUpo TWFybXUzYi1rOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ2 6AAwDQYJKoZIhvcNAQELBQADggEBAGziA4ZfvuIY5UbBO25oSEom67BCsRnpM5BM oNHYwniiosbuGMN8uil2ym4JoruC/rLpNoDkGrt5IY19HpwXESxhSHH09RaGtBTC Ya+YwLE2QTOYh4nmNk6TnDgbX8IDWaB+9Kog5jNR5UvS9puJPwx7HnGAaGW+efLO aBqFovkS0hRvbhc1LwlcWSJk2fLcGJA1fvK13FAnGTcPzifRLGq+0mOZw9XiV5QC AhdCeKbd1FviT/ANOljlzdqO5DNZKb7S2V6Y9jTQwizCtE7s0u8KSwJVGPz69S7x +WoLtH4Z7uUlG7WqmWy/ivchw0YvDFgAOFt4NVYZ6Mnm6fhNSg4= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:05 2024 by rpki-client on console-fra.rpki-client.org