$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Xn38OFdcMGI8O5wZi6q-Tw7psXk.roa File: Xn38OFdcMGI8O5wZi6q-Tw7psXk.roa (raw, json) Hash identifier: xjM1IyH/xKPvuVOANn13lz18fvMGutYLRcZF5VW1j5E= Subject key identifier: 5E:7D:FC:38:57:5C:30:62:3C:3B:9C:19:8B:AA:BE:4F:0E:E9:B1:79 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2824 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Xn38OFdcMGI8O5wZi6q-Tw7psXk.roa Signing time: Fri 01 Sep 2023 10:05:00 +0000 ROA not before: Fri 01 Sep 2023 10:05:00 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.232.48.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10276 (0x2824) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:00 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5E7DFC38575C30623C3B9C198BAABE4F0EE9B179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:22:ab:88:d1:73:45:08:05:2e:ad:08:01:04: d7:82:bb:4f:d0:9d:a5:8a:8f:c9:5a:f1:7a:94:8c: 2f:04:e6:11:f2:c8:57:cb:3d:f4:61:6a:43:77:26: c0:86:83:b8:b7:70:e3:7a:00:d0:fe:5b:c7:e6:33: 0a:1a:97:34:64:91:a2:7b:7e:71:4c:39:be:73:59: 40:6c:a7:50:f5:53:e7:b7:70:87:02:f4:92:50:32: 73:6f:18:52:d9:76:60:8e:9e:d8:f7:ec:e4:e4:db: 98:b7:f6:5d:2d:99:4a:5c:19:cc:3e:a5:37:c0:92: 98:22:63:8b:ad:e8:97:0e:2a:12:a2:48:a8:69:ff: 05:ef:ec:26:22:d4:81:87:08:0a:63:0b:a6:72:c5: 9a:4d:1d:0b:4f:ed:3c:dd:de:3c:d0:75:cf:11:3c: 74:b1:05:ac:4e:83:c2:b0:3a:d0:fc:39:03:85:e6: a9:a7:ec:2a:48:64:c3:d8:eb:61:fa:98:5e:93:60: 16:66:c0:2e:e8:39:ca:27:75:2f:6e:e2:80:c9:df: ce:57:36:56:5d:2d:28:59:e8:ba:7b:a3:d2:34:41: 6d:47:18:d5:cb:13:52:6b:a6:53:4c:a5:1e:7f:f5: bb:24:84:94:43:fd:d1:06:79:0d:93:59:d3:b8:47: 94:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:7D:FC:38:57:5C:30:62:3C:3B:9C:19:8B:AA:BE:4F:0E:E9:B1:79 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Xn38OFdcMGI8O5wZi6q-Tw7psXk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.48.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:3a:93:ba:30:ac:b6:b6:ef:6d:d0:a0:ee:2a:de:45:bb:02: e2:03:cd:3f:62:d2:fd:63:14:f8:bf:da:47:42:af:c6:24:e4: c1:c2:47:3b:f0:be:55:79:f0:e3:86:50:d4:f8:44:d8:a4:a8: 48:74:23:1b:e7:4c:be:1e:7e:9c:3e:55:a8:9e:4f:bf:d8:78: 57:64:7a:3a:12:eb:a0:da:ea:f0:71:44:35:ad:b3:cd:8d:11: 13:da:26:12:27:b5:57:0c:ac:8b:03:36:f0:c1:25:88:df:02: 1f:27:18:de:6c:a3:39:d3:c6:60:e0:38:52:39:9e:12:67:da: cc:20:0c:4f:74:fc:20:d9:83:9c:c4:f3:b8:6d:69:b0:22:77: 0c:e7:a8:e3:ec:62:f7:84:04:09:0f:4a:45:0f:34:23:28:65: a1:db:16:30:73:5d:8a:4a:34:96:f0:32:df:8d:6b:2c:3d:99: da:25:79:e5:1a:92:2d:f8:1b:71:10:ec:02:f2:90:6d:23:46: 83:f2:10:ab:76:ed:f7:78:a1:64:69:4d:f6:bf:35:6b:70:88: a1:dc:25:8c:b8:07:2d:38:d4:92:23:30:4b:54:9f:68:60:80: a3:24:80:39:28:f7:14:90:4b:59:74:17:44:e5:fb:bc:9e:f2: 54:21:87:a4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKCQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1MDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVFN0RGQzM4NTc1QzMw NjIzQzNCOUMxOThCQUFCRTRGMEVFOUIxNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFIquI0XNFCAUurQgBBNeCu0/QnaWKj8la8XqUjC8E5hHyyFfL PfRhakN3JsCGg7i3cON6AND+W8fmMwoalzRkkaJ7fnFMOb5zWUBsp1D1U+e3cIcC 9JJQMnNvGFLZdmCOntj37OTk25i39l0tmUpcGcw+pTfAkpgiY4ut6JcOKhKiSKhp /wXv7CYi1IGHCApjC6ZyxZpNHQtP7Tzd3jzQdc8RPHSxBaxOg8KwOtD8OQOF5qmn 7CpIZMPY62H6mF6TYBZmwC7oOcondS9u4oDJ385XNlZdLShZ6Lp7o9I0QW1HGNXL E1JrplNMpR5/9bskhJRD/dEGeQ2TWdO4R5RzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXn38OFdcMGI8O5wZi6q+Tw7psXkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1huMzhPRmRjTUdJOE81d1pp NnEtVHc3cHNYay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6DAwDQYJKoZIhvcNAQELBQADggEBAIo6k7owrLa2723QoO4q3kW7AuIDzT9i0v1j FPi/2kdCr8Yk5MHCRzvwvlV58OOGUNT4RNikqEh0IxvnTL4efpw+VaieT7/YeFdk ejoS66Da6vBxRDWts82NERPaJhIntVcMrIsDNvDBJYjfAh8nGN5soznTxmDgOFI5 nhJn2swgDE90/CDZg5zE87htabAidwznqOPsYveEBAkPSkUPNCMoZaHbFjBzXYpK NJbwMt+Nayw9mdoleeUaki34G3EQ7ALykG0jRoPyEKt27fd4oWRpTfa/NWtwiKHc JYy4By041JIjMEtUn2hggKMkgDko9xSQS1l0F0Tl+7ye8lQhh6Q= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:05 2024 by rpki-client on console-fra.rpki-client.org