$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UWf-yystjWwnCGXvIaIvkP3iBWg.roa File: UWf-yystjWwnCGXvIaIvkP3iBWg.roa (raw, json) Hash identifier: U9KuIXJcRBCtpegBLIfihM7A7cozuVUcvCSpRbMXnpQ= Subject key identifier: 51:67:FE:CB:2B:2D:8D:6C:27:08:65:EF:21:A2:2F:90:FD:E2:05:68 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3162 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UWf-yystjWwnCGXvIaIvkP3iBWg.roa Signing time: Mon 26 Aug 2024 05:30:24 +0000 ROA not before: Mon 26 Aug 2024 05:30:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.36.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12642 (0x3162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5167FECB2B2D8D6C270865EF21A22F90FDE20568 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:fa:3d:7a:a4:3f:fa:5c:24:d3:d0:af:1d:cc: bd:7a:87:c5:a8:ea:f9:e7:47:3b:e3:29:be:92:e8: 81:d9:21:30:19:37:57:df:f9:b0:67:6d:2a:e6:03: e7:82:d3:87:21:26:88:89:d1:59:46:95:24:96:c0: 95:5d:7a:c9:e5:26:a4:83:be:0e:ae:ec:da:eb:1d: a1:94:fb:eb:bf:0b:5f:fd:0c:90:cd:71:08:20:28: 80:5a:96:2f:18:19:d2:9a:b6:c9:1f:37:e7:fe:18: 60:ee:66:2e:46:23:b7:b0:dd:a6:93:e1:5b:f5:be: ef:ef:8f:7c:dd:c9:47:e7:39:6b:a9:fa:63:37:4d: 35:77:7f:ea:99:f0:86:01:e6:a9:39:51:b2:d2:b2: 52:59:fa:a2:8e:e6:b3:7b:76:40:76:fa:40:0b:df: db:f2:25:87:df:8e:df:d3:51:2b:a7:3a:bc:5a:e3: 39:84:e2:2e:a6:fb:5f:0e:d8:5c:d2:e4:c5:df:0b: c3:77:07:64:89:4f:cf:a7:8a:6a:b7:7f:ff:25:e5: a2:02:29:e4:97:5b:d5:73:7c:92:66:c3:dc:4c:7c: e4:6a:14:1e:23:d9:b5:41:53:0b:ec:0e:e8:6c:62: a2:26:79:49:b0:51:df:73:bd:5f:1d:2c:09:d7:f5: c0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:67:FE:CB:2B:2D:8D:6C:27:08:65:EF:21:A2:2F:90:FD:E2:05:68 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UWf-yystjWwnCGXvIaIvkP3iBWg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.36.0/22 Signature Algorithm: sha256WithRSAEncryption 12:ff:a6:6b:53:ef:a4:7c:65:db:9c:47:da:41:88:d4:ca:77: 63:00:f1:84:a5:5d:23:1c:a7:5b:1c:da:f2:ef:17:47:53:6f: 5f:78:5f:0f:de:bc:52:14:37:14:01:d0:21:e1:f8:51:45:ab: 9c:c8:f1:84:85:86:70:61:f0:2e:3e:87:c0:db:b4:37:08:57: 3c:70:58:06:33:54:c5:ac:52:cc:b3:d3:84:c8:5e:d2:0a:ed: 69:e3:ca:ff:55:72:ca:d8:3d:3a:76:da:6e:21:a3:13:6a:c5: 7f:8e:81:5b:cd:0f:a7:01:62:2e:e0:35:57:fd:dd:41:8b:0f: 5f:a6:74:0f:0f:72:e5:a9:0c:56:95:83:11:d6:13:d7:09:24: a5:c2:dd:b5:5a:c3:2e:d0:5a:5d:86:71:e5:72:00:09:90:6c: 2f:87:64:15:4f:7d:db:7e:61:b3:7d:e6:16:43:73:bf:38:f7: 36:74:24:69:f4:ba:f5:24:f2:fe:eb:fa:9d:78:4d:3d:60:27: b5:e6:78:aa:ef:31:21:5f:6e:27:5e:9e:83:31:bf:37:84:3c: f9:19:8b:90:dd:d3:d9:d5:52:a3:3f:d5:b5:00:46:47:56:16: f1:65:95:0c:47:61:15:fb:5b:37:70:39:9a:e0:8c:5d:4b:8f: 13:41:79:66 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMWIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUxNjdGRUNCMkIyRDhE NkMyNzA4NjVFRjIxQTIyRjkwRkRFMjA1NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCb+j16pD/6XCTT0K8dzL16h8Wo6vnnRzvjKb6S6IHZITAZN1ff +bBnbSrmA+eC04chJoiJ0VlGlSSWwJVdesnlJqSDvg6u7NrrHaGU++u/C1/9DJDN cQggKIBali8YGdKatskfN+f+GGDuZi5GI7ew3aaT4Vv1vu/vj3zdyUfnOWup+mM3 TTV3f+qZ8IYB5qk5UbLSslJZ+qKO5rN7dkB2+kAL39vyJYffjt/TUSunOrxa4zmE 4i6m+18O2FzS5MXfC8N3B2SJT8+nimq3f/8l5aICKeSXW9VzfJJmw9xMfORqFB4j 2bVBUwvsDuhsYqImeUmwUd9zvV8dLAnX9cArAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUUWf+yystjWwnCGXvIaIvkP3iBWgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1VXZi15eXN0ald3bkNHWHZJ YUl2a1AzaUJXZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6SQwDQYJKoZIhvcNAQELBQADggEBABL/pmtT76R8ZducR9pBiNTKd2MA8YSlXSMc p1sc2vLvF0dTb194Xw/evFIUNxQB0CHh+FFFq5zI8YSFhnBh8C4+h8DbtDcIVzxw WAYzVMWsUsyz04TIXtIK7Wnjyv9VcsrYPTp22m4hoxNqxX+OgVvND6cBYi7gNVf9 3UGLD1+mdA8PcuWpDFaVgxHWE9cJJKXC3bVawy7QWl2GceVyAAmQbC+HZBVPfdt+ YbN95hZDc7849zZ0JGn0uvUk8v7r+p14TT1gJ7XmeKrvMSFfbidenoMxvzeEPPkZ i5Dd09nVUqM/1bUARkdWFvFllQxHYRX7WzdwOZrgjF1LjxNBeWY= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org