$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XwXgI4gZr5GWgqE1ZsofFq841qQ.roa File: XwXgI4gZr5GWgqE1ZsofFq841qQ.roa (raw, json) Hash identifier: 3+bpg0bs2vQ71L/A8dBAVHihh/jet+wGzPJVpkmpciQ= Subject key identifier: 5F:05:E0:23:88:19:AF:91:96:82:A1:35:66:CA:1F:16:AF:38:D6:A4 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 29BD Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XwXgI4gZr5GWgqE1ZsofFq841qQ.roa Signing time: Fri 01 Sep 2023 10:07:01 +0000 ROA not before: Fri 01 Sep 2023 10:07:01 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.193.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10685 (0x29bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:01 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5F05E0238819AF919682A13566CA1F16AF38D6A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d1:05:6c:30:87:90:d9:1a:5a:8d:b8:3b:e8: 6e:65:de:26:6f:2f:ae:95:a4:52:ee:61:b0:4f:56: e6:b2:f5:36:dc:d5:f1:bd:71:e2:1c:60:bd:e4:63: c3:b2:91:0e:3f:36:6b:a4:a1:89:7f:8b:05:06:a4: 87:b5:be:d3:13:38:1b:a2:07:f4:e1:c5:2f:61:a5: 9c:fe:8f:8a:95:2b:c4:ac:7c:6d:09:ce:b6:5f:15: 6e:84:4d:5b:a5:71:f2:f4:b7:f8:46:53:2f:16:76: b1:06:a6:e4:e8:56:46:e9:b2:23:10:63:42:93:07: 7e:04:ae:8f:d8:0d:b1:83:28:fc:ae:b3:5c:c9:0c: 6a:63:9e:55:13:8e:f6:c7:66:a8:91:fa:00:3a:ac: 3f:4b:0e:df:37:9c:ce:c8:52:e5:6c:d0:e8:ea:bc: fa:43:cf:3e:24:c2:d3:87:08:66:3f:f7:3b:5c:48: e0:da:9a:9b:f3:fc:6a:14:bd:83:fd:0f:70:6c:4b: 73:17:24:dc:5a:0d:42:e2:65:05:eb:c4:1d:3e:df: 7f:23:fe:a4:49:11:4b:6e:eb:0f:74:5f:8b:7c:e6: 38:77:96:93:6f:35:8f:21:ca:bf:ff:e6:dc:6d:2e: f0:1e:db:ec:87:63:61:e0:d5:a7:1d:cc:8d:94:f7: 0a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:05:E0:23:88:19:AF:91:96:82:A1:35:66:CA:1F:16:AF:38:D6:A4 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/XwXgI4gZr5GWgqE1ZsofFq841qQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.95.0/24 Signature Algorithm: sha256WithRSAEncryption 07:5d:38:11:aa:5e:69:5f:f8:6f:4f:54:88:eb:ee:c0:1c:29: b4:a6:69:74:a7:0d:0f:dc:8d:0e:8c:38:78:c9:25:a3:0c:9a: 59:e6:3c:55:97:82:2d:07:1f:14:8d:41:66:26:9a:e6:9a:3c: a2:16:e9:0b:d7:3e:17:16:a3:f1:3a:94:69:28:73:b9:55:4c: 0c:82:9d:d8:32:29:dc:7c:24:10:71:4b:87:25:55:44:ec:87: 50:f5:b7:7d:5b:41:c9:ed:8c:a4:f9:90:37:a2:ba:11:f0:22: 90:7b:23:3a:ad:57:84:48:5e:7e:65:76:13:04:c6:1c:a0:65: 12:f7:2b:05:4b:a5:0f:76:a0:8b:71:e1:41:22:07:8f:ee:8d: da:84:8c:8c:17:de:b6:f9:77:06:7d:d1:80:06:04:c2:2d:e9: b6:e1:0b:0c:fa:a8:f8:ad:94:c9:f3:0a:27:ac:e7:2a:77:54: 2d:c8:4f:67:e8:1e:50:f1:b6:37:b3:0c:11:72:65:43:16:31: eb:72:f3:f1:eb:27:1c:6c:91:cb:d7:0f:c0:66:15:c2:b0:82: a6:ec:1c:ef:b7:6d:9d:21:c7:ec:e2:b5:b3:e9:c2:b6:ac:2a: 08:2d:d9:42:de:f3:80:4f:34:0f:dc:71:46:93:32:28:ed:6e: ce:2e:94:76 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKb0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3MDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVGMDVFMDIzODgxOUFG OTE5NjgyQTEzNTY2Q0ExRjE2QUYzOEQ2QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCs0QVsMIeQ2Rpajbg76G5l3iZvL66VpFLuYbBPVuay9Tbc1fG9 ceIcYL3kY8OykQ4/NmukoYl/iwUGpIe1vtMTOBuiB/ThxS9hpZz+j4qVK8SsfG0J zrZfFW6ETVulcfL0t/hGUy8WdrEGpuToVkbpsiMQY0KTB34Ero/YDbGDKPyus1zJ DGpjnlUTjvbHZqiR+gA6rD9LDt83nM7IUuVs0OjqvPpDzz4kwtOHCGY/9ztcSODa mpvz/GoUvYP9D3BsS3MXJNxaDULiZQXrxB0+338j/qRJEUtu6w90X4t85jh3lpNv NY8hyr//5txtLvAe2+yHY2Hg1acdzI2U9wpPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXwXgI4gZr5GWgqE1ZsofFq841qQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1h3WGdJNGdacjVHV2dxRTFa c29mRnE4NDFxUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 wV8wDQYJKoZIhvcNAQELBQADggEBAAddOBGqXmlf+G9PVIjr7sAcKbSmaXSnDQ/c jQ6MOHjJJaMMmlnmPFWXgi0HHxSNQWYmmuaaPKIW6QvXPhcWo/E6lGkoc7lVTAyC ndgyKdx8JBBxS4clVUTsh1D1t31bQcntjKT5kDeiuhHwIpB7IzqtV4RIXn5ldhME xhygZRL3KwVLpQ92oItx4UEiB4/ujdqEjIwX3rb5dwZ90YAGBMIt6bbhCwz6qPit lMnzCies5yp3VC3IT2foHlDxtjezDBFyZUMWMety8/HrJxxskcvXD8BmFcKwgqbs HO+3bZ0hx+zitbPpwrasKggt2ULe84BPNA/ccUaTMijtbs4ulHY= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:05 2024 by rpki-client on console-fra.rpki-client.org