$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QlLilFiNi8oLnDsuomt-ei02f0U.roa File: QlLilFiNi8oLnDsuomt-ei02f0U.roa (raw, json) Hash identifier: 3cf0eb1tPbmjM7INFb8cEGyE/HLvHZfgySRu+3uQcX4= Subject key identifier: 42:52:E2:94:58:8D:8B:CA:0B:9C:3B:2E:A2:6B:7E:7A:2D:36:7F:45 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 29B1 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QlLilFiNi8oLnDsuomt-ei02f0U.roa Signing time: Fri 01 Sep 2023 10:06:56 +0000 ROA not before: Fri 01 Sep 2023 10:06:56 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.232.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10673 (0x29b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:06:56 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=4252E294588D8BCA0B9C3B2EA26B7E7A2D367F45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5b:82:ef:f9:a6:ea:21:c8:7e:f6:55:72:7a: 34:f3:35:f5:d0:39:34:16:b9:c6:fc:45:3f:6a:4f: 5f:7f:2f:76:8f:80:9e:ee:39:5f:0f:32:16:e4:c3: 7d:0d:aa:0c:90:59:d6:87:63:03:43:be:a2:a7:81: 71:58:3b:bc:36:1d:48:80:f2:89:ad:32:9e:f5:ec: 2b:02:88:8c:10:10:c0:22:fc:e7:33:f6:6c:2b:66: 7f:9e:51:31:76:90:39:14:91:6a:55:e4:00:aa:c2: 3a:15:ca:dd:9d:c0:53:9d:78:9e:bb:c4:05:c4:a6: 89:bb:75:19:8c:b3:2a:c3:33:09:b9:0f:d0:43:16: c8:b6:02:51:9c:94:ac:39:14:96:45:47:d9:e4:d9: f3:88:9d:2a:43:5d:5c:cc:6a:4c:03:eb:8b:af:38: d2:dd:17:5a:28:c1:f6:ff:1d:03:eb:f6:5c:b4:71: bb:eb:68:1d:fa:6f:d1:ec:5a:40:c0:3b:9d:35:9a: d9:ce:f6:b0:79:92:20:54:37:c1:b8:0d:d5:71:58: 61:3e:79:1e:56:a7:13:2b:28:22:a4:b0:bb:12:d0: 52:b2:04:f1:a0:08:da:28:dd:8a:cc:74:14:cc:26: 96:c2:31:ba:c8:86:8d:99:57:fc:c6:dd:7a:13:a5: 32:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:52:E2:94:58:8D:8B:CA:0B:9C:3B:2E:A2:6B:7E:7A:2D:36:7F:45 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QlLilFiNi8oLnDsuomt-ei02f0U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.248.0/22 Signature Algorithm: sha256WithRSAEncryption 93:0c:a4:24:43:95:e2:28:1e:af:a7:39:18:cb:53:eb:cf:16: 8d:79:af:dc:66:c3:2a:30:ae:18:6b:60:6a:c5:12:c0:7c:62: af:f3:d6:5a:4d:e6:da:0f:70:53:61:10:f4:ec:86:83:53:a9: a8:3e:d9:86:ce:f0:9d:eb:bf:95:d1:81:76:c7:27:f7:a9:49: e6:2f:89:27:78:3f:16:6d:e7:14:82:e7:fb:88:0f:85:ce:b2: 25:7c:d7:57:c5:ed:e6:5a:b9:6d:74:bb:d2:2c:bb:1d:c9:0c: 84:12:17:e8:cc:8e:41:b5:17:4d:e4:b7:37:d1:9b:ff:60:73: de:50:7d:61:ae:af:f3:a5:9b:c3:24:c1:2f:ac:7e:db:fc:fe: b2:0e:f3:2e:a6:73:9a:e2:e3:6f:d8:e2:95:71:e1:8e:07:3f: a0:6d:d9:25:69:c9:f2:88:7a:7a:96:40:c1:b4:e2:e3:b6:11: 0a:68:8c:6c:05:f9:01:f0:61:eb:61:ad:79:48:4a:24:86:5b: 33:ef:cb:72:82:40:a4:4d:71:d4:5a:20:c1:30:21:3d:8c:94: 2a:4a:2b:d3:ad:45:12:dd:1b:cf:98:68:37:b2:21:fe:6e:9c: a5:69:41:ba:d6:9f:b2:da:49:ba:84:d0:06:7c:a3:59:ed:d9: d7:df:39:34 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKbEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA2NTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQyNTJFMjk0NTg4RDhC Q0EwQjlDM0IyRUEyNkI3RTdBMkQzNjdGNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPW4Lv+abqIch+9lVyejTzNfXQOTQWucb8RT9qT19/L3aPgJ7u OV8PMhbkw30NqgyQWdaHYwNDvqKngXFYO7w2HUiA8omtMp717CsCiIwQEMAi/Ocz 9mwrZn+eUTF2kDkUkWpV5ACqwjoVyt2dwFOdeJ67xAXEpom7dRmMsyrDMwm5D9BD Fsi2AlGclKw5FJZFR9nk2fOInSpDXVzMakwD64uvONLdF1oowfb/HQPr9ly0cbvr aB36b9HsWkDAO501mtnO9rB5kiBUN8G4DdVxWGE+eR5WpxMrKCKksLsS0FKyBPGg CNoo3YrMdBTMJpbCMbrIho2ZV/zG3XoTpTIvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUQlLilFiNi8oLnDsuomt+ei02f0UwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1FsTGlsRmlOaThvTG5Ec3Vv bXQtZWkwMmYwVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6PgwDQYJKoZIhvcNAQELBQADggEBAJMMpCRDleIoHq+nORjLU+vPFo15r9xmwyow rhhrYGrFEsB8Yq/z1lpN5toPcFNhEPTshoNTqag+2YbO8J3rv5XRgXbHJ/epSeYv iSd4PxZt5xSC5/uID4XOsiV811fF7eZauW10u9Isux3JDIQSF+jMjkG1F03ktzfR m/9gc95QfWGur/Olm8MkwS+sftv8/rIO8y6mc5ri42/Y4pVx4Y4HP6Bt2SVpyfKI enqWQMG04uO2EQpojGwF+QHwYethrXlISiSGWzPvy3KCQKRNcdRaIMEwIT2MlCpK K9OtRRLdG8+YaDeyIf5unKVpQbrWn7LaSbqE0AZ8o1nt2dffOTQ= -----END CERTIFICATE-----Generated at Mon Jun 3 10:15:30 2024 by rpki-client on console-fra.rpki-client.org