$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/S4jEZE8eX0zdIs9UPpt_aeFSSV4.roa File: S4jEZE8eX0zdIs9UPpt_aeFSSV4.roa (raw, json) Hash identifier: JgiKLu+xsoRFnRnKI7U1MXbytwN1H3titF1VuU5FX7s= Subject key identifier: 4B:88:C4:64:4F:1E:5F:4C:DD:22:CF:54:3E:9B:7F:69:E1:52:49:5E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 27D9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/S4jEZE8eX0zdIs9UPpt_aeFSSV4.roa Signing time: Fri 01 Sep 2023 10:04:38 +0000 ROA not before: Fri 01 Sep 2023 10:04:38 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 211.76.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10201 (0x27d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:04:38 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=4B88C4644F1E5F4CDD22CF543E9B7F69E152495E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f0:a9:64:04:f9:4f:cb:e4:2b:cf:2b:27:c4: 16:28:32:5a:85:e9:ff:32:ef:3a:64:43:c7:33:f2: b4:9d:50:05:48:d7:82:ca:35:39:b3:88:d1:3c:8b: c0:69:df:63:d3:22:25:b1:e2:9f:90:00:73:9e:2f: be:50:79:ca:86:ac:79:37:9c:3a:86:1b:df:1b:ed: 33:0c:66:0e:da:45:58:49:d8:40:3a:71:c9:f5:38: cc:fd:8b:9a:ab:d2:45:e6:d5:43:5e:43:ea:ed:17: d7:83:1a:bf:10:df:90:a3:1f:c4:30:fe:aa:40:3a: 7e:19:29:7c:db:73:e6:3f:80:9a:09:76:53:55:13: 67:d0:ff:00:e2:84:ee:40:d6:b6:aa:f2:d6:e7:cf: ba:ff:23:0a:2e:8c:d7:6f:e8:53:7d:c8:99:6f:69: e0:31:15:44:28:38:58:f3:39:b1:40:1e:fb:ce:7c: 4c:03:76:d3:c7:ae:b3:13:dc:34:cf:f5:a0:44:ac: 91:6b:1d:62:41:78:98:e1:71:14:bf:34:f9:5e:8f: 93:fc:2f:94:ec:67:af:3d:e2:b9:64:c0:b8:7b:e6: f9:3c:63:41:aa:97:75:4c:3c:3a:27:0d:5f:b2:e0: 72:1a:33:67:4c:b5:9a:82:5d:ae:36:45:86:88:5e: 1d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:88:C4:64:4F:1E:5F:4C:DD:22:CF:54:3E:9B:7F:69:E1:52:49:5E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/S4jEZE8eX0zdIs9UPpt_aeFSSV4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.121.0/24 Signature Algorithm: sha256WithRSAEncryption b0:9d:ae:8f:65:95:32:1a:05:7b:b2:76:d4:a0:a2:e9:4c:84: 11:15:c5:f9:9c:90:e0:ad:55:4c:17:96:d5:7d:54:bc:7c:0a: 2c:41:29:27:fa:44:66:e2:ae:d7:0b:2e:46:50:66:8a:c8:64: 72:03:b1:5a:95:d8:dc:13:5f:b2:18:71:d1:3e:37:76:ff:f9: 2d:6a:43:d4:46:30:0d:fb:d4:91:ea:f6:e3:ee:d6:b9:5d:47: 4b:55:f5:4b:a4:87:1c:0e:6d:f5:37:b9:a8:a7:9e:37:19:f0: 11:c3:05:44:66:75:9a:1b:e4:ec:44:ea:b5:d0:54:44:b8:cb: e3:6b:94:34:bc:14:5d:17:50:3b:0d:7e:91:1e:18:ca:0a:08: ed:6b:56:49:2c:82:ad:0b:06:2c:21:0e:21:7f:da:9b:66:76: 70:93:49:19:5c:b9:86:dc:e6:4b:24:14:b3:3d:de:8f:ea:73: 10:7b:7a:e6:e0:70:5b:24:7c:8e:46:6c:a4:c5:18:20:39:f0: e4:3b:58:88:e2:38:98:a6:d1:e3:ee:ea:86:45:c0:8e:50:d7: e5:17:ef:85:bc:29:99:e6:ea:f4:4c:84:54:a0:87:f7:9c:fb: cf:f5:cc:1e:0d:99:81:25:f2:8e:9a:b4:c0:04:51:2d:e2:99: df:fb:8e:de -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJ9kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA0MzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDRCODhDNDY0NEYxRTVG NENERDIyQ0Y1NDNFOUI3RjY5RTE1MjQ5NUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCl8KlkBPlPy+QrzysnxBYoMlqF6f8y7zpkQ8cz8rSdUAVI14LK NTmziNE8i8Bp32PTIiWx4p+QAHOeL75QecqGrHk3nDqGG98b7TMMZg7aRVhJ2EA6 ccn1OMz9i5qr0kXm1UNeQ+rtF9eDGr8Q35CjH8Qw/qpAOn4ZKXzbc+Y/gJoJdlNV E2fQ/wDihO5A1raq8tbnz7r/IwoujNdv6FN9yJlvaeAxFUQoOFjzObFAHvvOfEwD dtPHrrMT3DTP9aBErJFrHWJBeJjhcRS/NPlej5P8L5TsZ6894rlkwLh75vk8Y0Gq l3VMPDonDV+y4HIaM2dMtZqCXa42RYaIXh2bAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUS4jEZE8eX0zdIs9UPpt/aeFSSV4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1M0akVaRThlWDB6ZElzOVVQ cHRfYWVGU1NWNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT THkwDQYJKoZIhvcNAQELBQADggEBALCdro9llTIaBXuydtSgoulMhBEVxfmckOCt VUwXltV9VLx8CixBKSf6RGbirtcLLkZQZorIZHIDsVqV2NwTX7IYcdE+N3b/+S1q Q9RGMA371JHq9uPu1rldR0tV9UukhxwObfU3uainnjcZ8BHDBURmdZob5OxE6rXQ VES4y+NrlDS8FF0XUDsNfpEeGMoKCO1rVkksgq0LBiwhDiF/2ptmdnCTSRlcuYbc 5kskFLM93o/qcxB7eubgcFskfI5GbKTFGCA58OQ7WIjiOJim0ePu6oZFwI5Q1+UX 74W8KZnm6vRMhFSgh/ec+8/1zB4NmYEl8o6atMAEUS3imd/7jt4= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:05 2024 by rpki-client on console-ams.rpki-client.org