$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XXgl11ta7RGguFVRq2Qig6TB0TI.roa File: XXgl11ta7RGguFVRq2Qig6TB0TI.roa (raw, json) Hash identifier: IGbC233oFUwpovbRpNouhVZuoS82SMubUCrep2GYC5E= Subject key identifier: 5D:78:25:D7:5B:5A:ED:11:A0:B8:55:51:AB:64:22:83:A4:C1:D1:32 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 29BA Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XXgl11ta7RGguFVRq2Qig6TB0TI.roa Signing time: Fri 01 Sep 2023 10:06:59 +0000 ROA not before: Fri 01 Sep 2023 10:06:59 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.233.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10682 (0x29ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:06:59 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5D7825D75B5AED11A0B85551AB642283A4C1D132 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f1:fe:c2:e6:a3:2e:ea:a7:93:4f:61:59:ba: a2:3e:9b:a1:99:e0:ad:0a:b1:eb:c1:95:ec:53:da: d5:3f:dd:26:d7:6d:e1:8c:6d:d3:18:a3:cb:5c:48: 48:c1:5a:b4:4d:d1:30:37:67:07:3b:df:25:19:8a: 60:fb:8d:70:81:9a:bb:3c:41:f9:f6:46:5f:65:11: 14:7f:a2:46:05:a9:3f:79:62:ce:e6:a9:52:dc:c7: d8:69:2a:8c:0d:50:84:07:49:7b:cd:42:cd:40:a9: 13:ec:8f:b2:5f:24:d4:c2:b1:54:3a:32:0c:75:09: 78:be:25:9d:93:5d:4f:85:16:7c:c2:8d:15:cd:89: 69:82:b3:31:33:c9:e0:bd:6a:65:91:81:54:1b:cf: 17:35:7b:f7:b2:ba:b7:e6:e6:f5:26:e2:bb:df:c7: 94:b5:67:96:1c:ce:3a:3e:42:11:9b:e3:9f:b7:d8: be:32:5f:c3:c2:b2:e2:8c:9c:ab:d4:22:0d:ca:a0: 2a:41:cd:e0:05:3a:77:41:f7:f9:3e:27:48:7d:91: 98:6d:1c:12:bc:18:3d:1c:73:68:1d:09:cc:55:d1: fe:40:93:3e:fb:f5:da:28:1f:ad:f8:b7:86:29:06: 50:8d:63:ed:42:cb:66:75:74:ed:e0:58:67:ad:05: 25:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:78:25:D7:5B:5A:ED:11:A0:B8:55:51:AB:64:22:83:A4:C1:D1:32 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XXgl11ta7RGguFVRq2Qig6TB0TI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.72.0/21 Signature Algorithm: sha256WithRSAEncryption 48:db:64:0c:e2:27:ba:96:25:1b:a9:0b:f0:29:19:4c:7a:58: 34:9a:fc:a1:e2:5e:2f:2d:b3:0a:82:70:d0:a6:5d:76:4f:de: 8d:e3:70:18:97:3c:00:fb:19:5a:62:c7:7a:84:74:9f:7b:26: 71:71:85:0e:7b:89:4f:c0:8b:8e:0c:08:ba:0d:a2:b1:66:a6: 44:23:05:4d:d8:8b:76:98:24:a7:b7:7d:c0:ad:81:f9:29:e8: 1f:86:2b:ef:07:86:f2:b3:a2:05:50:f9:de:02:5d:10:f7:96: 89:7b:8d:9a:f0:e3:16:7f:1e:34:5b:94:b4:f1:94:5f:98:fd: f5:18:ed:be:c9:7f:49:54:69:21:d4:46:26:b0:c7:8b:ee:40: 3f:35:33:fe:79:c9:a1:bc:f9:38:6d:94:86:eb:da:09:26:2f: f8:4c:38:5c:f0:e5:c9:db:4a:7f:88:c0:20:7a:fb:88:46:88: a7:3c:59:50:df:cc:a5:e6:93:4c:af:a7:c2:bc:df:84:cb:52: b7:88:14:a0:a4:5c:ac:6b:5d:59:ce:3e:ae:f7:4e:2b:36:16: 7c:b6:09:68:34:43:f6:d0:48:d5:8c:03:f2:59:87:e1:95:05: ea:66:cd:a6:6e:43:23:3c:49:19:ba:bd:0a:08:6f:e3:86:8a: ea:8e:13:d1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKbowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA2NTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVENzgyNUQ3NUI1QUVE MTFBMEI4NTU1MUFCNjQyMjgzQTRDMUQxMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC78f7C5qMu6qeTT2FZuqI+m6GZ4K0KsevBlexT2tU/3SbXbeGM bdMYo8tcSEjBWrRN0TA3Zwc73yUZimD7jXCBmrs8Qfn2Rl9lERR/okYFqT95Ys7m qVLcx9hpKowNUIQHSXvNQs1AqRPsj7JfJNTCsVQ6Mgx1CXi+JZ2TXU+FFnzCjRXN iWmCszEzyeC9amWRgVQbzxc1e/eyurfm5vUm4rvfx5S1Z5Yczjo+QhGb45+32L4y X8PCsuKMnKvUIg3KoCpBzeAFOndB9/k+J0h9kZhtHBK8GD0cc2gdCcxV0f5Akz77 9dooH634t4YpBlCNY+1Cy2Z1dO3gWGetBSU1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXXgl11ta7RGguFVRq2Qig6TB0TIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1hYZ2wxMXRhN1JHZ3VGVlJx MlFpZzZUQjBUSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6UgwDQYJKoZIhvcNAQELBQADggEBAEjbZAziJ7qWJRupC/ApGUx6WDSa/KHiXi8t swqCcNCmXXZP3o3jcBiXPAD7GVpix3qEdJ97JnFxhQ57iU/Ai44MCLoNorFmpkQj BU3Yi3aYJKe3fcCtgfkp6B+GK+8HhvKzogVQ+d4CXRD3lol7jZrw4xZ/HjRblLTx lF+Y/fUY7b7Jf0lUaSHURiawx4vuQD81M/55yaG8+ThtlIbr2gkmL/hMOFzw5cnb Sn+IwCB6+4hGiKc8WVDfzKXmk0yvp8K834TLUreIFKCkXKxrXVnOPq73Tis2Fny2 CWg0Q/bQSNWMA/JZh+GVBepmzaZuQyM8SRm6vQoIb+OGiuqOE9E= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:05 2024 by rpki-client on console-ams.rpki-client.org