$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/R0MJRzFkUSA0UowmOIbJD6xU_xo.roa File: R0MJRzFkUSA0UowmOIbJD6xU_xo.roa (raw, json) Hash identifier: wTay/Zld42p2KwYaMDFkiOHiUgHYn7ElozPbIhFxX1I= Subject key identifier: 47:43:09:47:31:64:51:20:34:52:8C:26:38:86:C9:0F:AC:54:FF:1A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31AB Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/R0MJRzFkUSA0UowmOIbJD6xU_xo.roa Signing time: Mon 26 Aug 2024 05:30:49 +0000 ROA not before: Mon 26 Aug 2024 05:30:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12715 (0x31ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=474309473164512034528C263886C90FAC54FF1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:16:b3:a8:63:c9:24:cc:b9:eb:22:b0:db:c6: 26:8a:10:bc:db:44:fd:d3:f3:cf:94:2b:8b:0e:2a: 0e:d1:6a:4d:4d:a0:49:55:98:9d:af:64:12:c1:a0: 4d:a6:4c:ac:68:1c:90:55:88:7b:3e:62:4d:9d:83: 43:c9:48:af:f8:11:5c:5e:86:d0:56:7b:6e:62:c4: b8:da:52:33:9c:55:49:e0:24:12:7e:00:b9:a0:3b: a4:11:3a:a3:78:ae:08:cf:61:52:3c:62:91:2a:f7: 49:b4:df:40:e8:6e:1a:7f:71:e9:4e:07:2c:25:4a: 21:58:6f:5e:10:1d:0e:4e:0e:7f:f0:94:05:45:c8: 12:a2:3e:8d:9d:96:7c:c5:a3:84:74:31:bc:ec:a6: 80:ed:7c:3d:04:3e:7c:cc:0f:df:e5:18:fd:35:8b: ca:2b:a6:dd:59:24:79:d8:38:39:80:10:4e:09:d9: ee:87:89:94:22:7e:d3:92:fc:a2:75:dd:38:92:55: 23:3e:74:41:8d:04:d2:1b:e0:22:88:63:c7:e8:79: ce:0e:16:59:c3:62:28:ac:9a:b7:06:8b:2c:a3:fa: 35:9d:3f:e3:97:e2:6d:ea:84:03:45:aa:93:6f:00: fc:f8:93:a7:81:f5:73:23:c0:a8:e7:f4:df:59:e6: 6d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:43:09:47:31:64:51:20:34:52:8C:26:38:86:C9:0F:AC:54:FF:1A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/R0MJRzFkUSA0UowmOIbJD6xU_xo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.192.0/22 Signature Algorithm: sha256WithRSAEncryption 22:6f:b8:75:ca:2d:c6:7e:db:a9:0a:32:b9:c7:30:7c:05:0e: 3e:29:30:c9:7f:96:ab:a7:2d:94:b9:1c:d5:34:5e:2e:09:6d: 3b:e8:af:e2:73:23:5b:6e:70:eb:eb:04:89:c9:d9:1b:37:66: 72:c1:9e:a0:d2:8c:b0:ba:8f:c4:a5:d8:68:c4:4d:c6:2f:05: 62:4c:e3:c9:97:d4:e2:a4:45:aa:cc:a2:36:b9:c7:0c:f2:0f: fc:61:03:f1:f8:29:07:a0:7a:ff:db:2c:0b:5d:7c:c3:3c:c4: 57:03:6c:60:9f:ea:6c:93:57:69:19:39:d7:27:f0:f5:07:58: a2:d3:57:14:bb:5d:e7:17:5a:f2:05:c4:54:1d:82:aa:7c:3f: fc:17:07:d5:2a:fe:3c:47:29:cf:f0:13:94:4c:3e:58:2e:ae: a7:ca:37:d3:2f:f4:cc:98:9a:15:07:a7:e2:d1:f7:c1:c7:bf: 60:fc:4b:fb:4e:5d:f0:57:aa:f5:7e:5d:ae:e9:ea:2e:7a:0d: a8:fa:b1:37:d0:d2:71:69:14:47:80:eb:33:82:d2:cb:c8:f4: c9:30:2a:25:82:e0:a8:57:71:fd:ab:75:25:21:9e:ac:7d:60: 8e:bd:b1:95:7a:a8:83:14:c0:33:11:94:20:46:f1:da:42:fc: e9:2b:1e:bc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMaswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ3NDMwOTQ3MzE2NDUx MjAzNDUyOEMyNjM4ODZDOTBGQUM1NEZGMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqFrOoY8kkzLnrIrDbxiaKELzbRP3T88+UK4sOKg7Rak1NoElV mJ2vZBLBoE2mTKxoHJBViHs+Yk2dg0PJSK/4EVxehtBWe25ixLjaUjOcVUngJBJ+ ALmgO6QROqN4rgjPYVI8YpEq90m030Dobhp/celOBywlSiFYb14QHQ5ODn/wlAVF yBKiPo2dlnzFo4R0MbzspoDtfD0EPnzMD9/lGP01i8orpt1ZJHnYODmAEE4J2e6H iZQiftOS/KJ13TiSVSM+dEGNBNIb4CKIY8foec4OFlnDYiismrcGiyyj+jWdP+OX 4m3qhANFqpNvAPz4k6eB9XMjwKjn9N9Z5m0LAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUR0MJRzFkUSA0UowmOIbJD6xU/xowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1IwTUpSekZrVVNBMFVvd21P SWJKRDZ4VV94by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wsAwDQYJKoZIhvcNAQELBQADggEBACJvuHXKLcZ+26kKMrnHMHwFDj4pMMl/lqun LZS5HNU0Xi4JbTvor+JzI1tucOvrBInJ2Rs3ZnLBnqDSjLC6j8Sl2GjETcYvBWJM 48mX1OKkRarMoja5xwzyD/xhA/H4KQegev/bLAtdfMM8xFcDbGCf6myTV2kZOdcn 8PUHWKLTVxS7XecXWvIFxFQdgqp8P/wXB9Uq/jxHKc/wE5RMPlgurqfKN9Mv9MyY mhUHp+LR98HHv2D8S/tOXfBXqvV+Xa7p6i56Daj6sTfQ0nFpFEeA6zOC0svI9Mkw KiWC4KhXcf2rdSUhnqx9YI69sZV6qIMUwDMRlCBG8dpC/OkrHrw= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org