$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UeAOxEZbnqQyfkBTgVY42LQCikU.roa File: UeAOxEZbnqQyfkBTgVY42LQCikU.roa (raw, json) Hash identifier: ZUa9O0QLkGL+YU+FqJ4JoCxDiYRbjieMrJWWktO5xD4= Subject key identifier: 51:E0:0E:C4:46:5B:9E:A4:32:7E:40:53:81:56:38:D8:B4:02:8A:45 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 27D7 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UeAOxEZbnqQyfkBTgVY42LQCikU.roa Signing time: Fri 01 Sep 2023 10:04:37 +0000 ROA not before: Fri 01 Sep 2023 10:04:37 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.193.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10199 (0x27d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:04:37 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=51E00EC4465B9EA4327E4053815638D8B4028A45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:9a:87:f3:2f:b0:11:19:ed:1b:7f:0b:c1:5f: d3:25:b6:bc:69:43:ae:af:00:21:f5:1c:1b:77:3f: ef:0e:e9:cc:21:f8:39:69:51:dc:67:2f:02:c5:bc: 55:93:32:3f:58:c1:bb:ca:ec:ed:1b:50:34:4a:29: 25:b5:0b:08:e6:ca:17:d9:43:2d:06:8b:f9:4a:e9: 25:3b:05:fe:71:0f:08:b7:3b:03:ad:c5:fc:30:b3: 93:19:4e:f5:34:ac:2e:e5:a6:70:65:e7:37:d2:5b: 1b:a1:66:26:1d:ba:88:03:46:5f:98:57:1b:af:49: 13:7b:f1:c9:12:e3:ef:1c:e4:4a:fb:23:9c:c5:72: 95:b3:69:93:b2:b7:83:f6:b6:12:8a:d2:dc:61:59: 28:28:58:f5:46:0b:52:a3:df:01:11:41:78:5c:e6: c1:0a:50:08:7f:bc:f7:d9:e9:ec:e0:84:b6:c1:aa: 48:93:f2:b4:46:fe:19:45:9b:71:53:de:fb:1c:09: f4:16:8a:d2:90:e4:9e:c3:4b:75:44:7c:e6:c0:98: 0b:cd:e0:39:6a:e9:d2:a6:39:b2:34:87:3d:a3:1b: 53:bb:33:fb:a5:23:eb:cc:40:03:aa:4a:41:65:b8: 57:28:dd:d9:8d:75:16:b7:5d:4f:5c:4e:15:3a:92: f6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:E0:0E:C4:46:5B:9E:A4:32:7E:40:53:81:56:38:D8:B4:02:8A:45 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UeAOxEZbnqQyfkBTgVY42LQCikU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.40.0/21 Signature Algorithm: sha256WithRSAEncryption 6c:71:60:ac:7d:ef:0d:ee:64:a9:55:ce:60:ac:e2:b5:8c:1d: 3e:82:02:1d:10:4d:c2:65:21:c4:0b:41:03:17:aa:d9:6b:0d: 77:1c:5c:71:22:30:92:8b:68:41:03:c4:c1:aa:2a:cd:ba:be: b6:af:03:34:20:7e:17:8e:d5:75:fa:c4:da:21:a5:92:41:61: ca:8e:43:fc:52:66:2f:96:60:b9:9e:a9:b0:03:4a:fe:04:43: 6e:7e:b9:53:d5:0f:08:4a:f4:e9:ca:ca:5c:1c:cd:0e:58:46: c9:6a:98:cf:ac:b7:9d:ee:f8:c2:6a:0d:d7:25:15:4e:5c:03: 9f:78:c7:20:e8:f5:a2:f7:c0:13:c7:04:c4:a0:85:f9:95:b5: de:47:b8:07:40:62:6a:de:00:70:32:9f:69:58:05:d2:2c:12: 2d:20:b7:0a:6b:85:aa:42:97:98:97:a3:8b:ed:3e:19:0d:30: c0:de:96:81:e1:51:7d:0a:43:9d:48:e8:84:c3:e6:be:35:f9: 84:2b:88:9a:b0:46:ad:28:e9:5f:bb:f9:a2:0c:58:d2:69:11: 5c:04:a3:ad:b8:07:3f:c1:61:80:3a:3c:a7:f7:06:22:b1:02: 37:b7:ab:db:ee:2b:64:e7:45:a9:42:8c:65:80:e2:1d:86:e9: 59:4f:a7:f3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJ9cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA0MzdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDUxRTAwRUM0NDY1QjlF QTQzMjdFNDA1MzgxNTYzOEQ4QjQwMjhBNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjmofzL7ARGe0bfwvBX9MltrxpQ66vACH1HBt3P+8O6cwh+Dlp UdxnLwLFvFWTMj9YwbvK7O0bUDRKKSW1CwjmyhfZQy0Gi/lK6SU7Bf5xDwi3OwOt xfwws5MZTvU0rC7lpnBl5zfSWxuhZiYduogDRl+YVxuvSRN78ckS4+8c5Er7I5zF cpWzaZOyt4P2thKK0txhWSgoWPVGC1Kj3wERQXhc5sEKUAh/vPfZ6ezghLbBqkiT 8rRG/hlFm3FT3vscCfQWitKQ5J7DS3VEfObAmAvN4Dlq6dKmObI0hz2jG1O7M/ul I+vMQAOqSkFluFco3dmNdRa3XU9cThU6kvbTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUUeAOxEZbnqQyfkBTgVY42LQCikUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1VlQU94RVpibnFReWZrQlRn Vlk0MkxRQ2lrVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wSgwDQYJKoZIhvcNAQELBQADggEBAGxxYKx97w3uZKlVzmCs4rWMHT6CAh0QTcJl IcQLQQMXqtlrDXccXHEiMJKLaEEDxMGqKs26vravAzQgfheO1XX6xNohpZJBYcqO Q/xSZi+WYLmeqbADSv4EQ25+uVPVDwhK9OnKylwczQ5YRslqmM+st53u+MJqDdcl FU5cA594xyDo9aL3wBPHBMSghfmVtd5HuAdAYmreAHAyn2lYBdIsEi0gtwprhapC l5iXo4vtPhkNMMDeloHhUX0KQ51I6ITD5r41+YQriJqwRq0o6V+7+aIMWNJpEVwE o624Bz/BYYA6PKf3BiKxAje3q9vuK2TnRalCjGWA4h2G6VlPp/M= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:05 2024 by rpki-client on console-ams.rpki-client.org