$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YAAOXpSSca_GgR50lPP0xrCqBZE.roa File: YAAOXpSSca_GgR50lPP0xrCqBZE.roa (raw, json) Hash identifier: 5RyLietaHcNJ6pJJlHvgyr93ZSy8UMdb8mUwJAV3woY= Subject key identifier: 60:00:0E:5E:94:92:71:AF:C6:81:1E:74:94:F3:F4:C6:B0:AA:05:91 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32EE Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YAAOXpSSca_GgR50lPP0xrCqBZE.roa Signing time: Mon 26 Aug 2024 05:32:08 +0000 ROA not before: Mon 26 Aug 2024 05:32:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.48.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13038 (0x32ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:32:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=60000E5E949271AFC6811E7494F3F4C6B0AA0591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:30:dc:ee:a7:2a:7f:7a:eb:0c:c0:8d:9a:10: 81:19:a0:b6:f7:5d:a3:c6:a0:28:c4:d7:ca:01:69: 51:c4:85:a6:4b:32:88:a5:5f:eb:46:81:cb:ec:1b: e3:f4:6a:2e:5c:ef:17:a4:b1:70:d5:b1:df:d9:0c: 3c:23:38:88:3e:8c:af:9c:2b:b7:d5:10:75:eb:71: 78:8d:1a:38:89:cf:7d:f7:b0:e4:ed:32:79:e0:3c: ed:4c:d0:e5:25:8c:c2:a1:15:6b:98:4c:d7:e4:2f: 01:1a:78:ee:dd:16:00:9f:3e:4a:51:0c:a9:85:3c: 2d:bf:69:f5:5f:c0:80:9c:21:e9:ef:f3:52:88:99: fe:6a:9c:52:7b:60:61:6e:41:27:e7:63:16:31:6a: 63:ba:85:af:21:02:4f:fa:52:6d:1b:ad:c3:6d:79: 6c:cd:eb:d2:52:31:ea:03:28:95:ac:56:5f:c4:f4: eb:74:23:57:30:ab:df:fe:8a:41:3d:6d:a7:23:82: 68:5f:7e:cf:d8:d3:95:c7:42:cf:ba:fd:e8:ed:63: b3:f2:49:ce:68:fa:19:18:a4:de:d6:37:bb:1d:0c: 6b:a0:b5:24:1e:1e:17:f4:f4:b7:f5:fc:4b:be:35: 70:ed:35:c3:81:dc:6c:66:06:b2:49:28:b3:2e:4e: bc:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:00:0E:5E:94:92:71:AF:C6:81:1E:74:94:F3:F4:C6:B0:AA:05:91 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YAAOXpSSca_GgR50lPP0xrCqBZE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.48.0/23 Signature Algorithm: sha256WithRSAEncryption 40:05:0e:a4:df:69:df:f3:71:ef:d9:37:08:cd:ab:89:a3:dc: 18:77:9d:6c:f9:f2:02:60:d8:25:64:b8:0f:27:9d:af:35:9a: 7c:87:7f:e2:23:90:f4:a5:27:87:8a:e9:bf:39:41:02:38:42: f1:76:07:4c:6a:38:a2:85:8c:9d:54:e2:c3:14:ea:6a:dd:47: 0f:ec:49:2d:05:6e:b3:62:82:9e:fa:9a:3a:61:68:33:d9:f2: 79:ac:7a:45:8e:8d:d0:af:80:a5:a9:bd:79:3e:63:e9:73:aa: bd:13:43:5b:d0:c1:2d:68:29:e4:35:a5:f7:76:cf:20:98:cd: 49:50:a9:43:6a:71:7f:cc:71:af:ca:01:71:cc:38:0d:c2:a8: 81:37:03:17:aa:81:0d:c1:83:ea:d4:8a:29:33:30:fc:43:9a: 89:1c:b6:9d:65:54:88:8a:c6:d5:98:57:6c:e7:6a:a9:07:8e: e8:52:c8:47:30:1b:e1:ce:f5:80:05:f0:0c:6c:14:d0:ae:0e: 83:95:31:70:59:36:21:38:ea:c5:75:54:60:95:75:82:73:14: de:8b:ad:f5:ec:86:e4:fd:51:7f:b2:34:49:93:46:dd:d1:73: d9:da:d4:bf:03:ee:2d:22:d0:59:6f:ec:f7:e1:41:cf:2f:a5: b5:e3:77:48 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMu4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMyMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYwMDAwRTVFOTQ5Mjcx QUZDNjgxMUU3NDk0RjNGNEM2QjBBQTA1OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDyMNzupyp/eusMwI2aEIEZoLb3XaPGoCjE18oBaVHEhaZLMoil X+tGgcvsG+P0ai5c7xeksXDVsd/ZDDwjOIg+jK+cK7fVEHXrcXiNGjiJz333sOTt MnngPO1M0OUljMKhFWuYTNfkLwEaeO7dFgCfPkpRDKmFPC2/afVfwICcIenv81KI mf5qnFJ7YGFuQSfnYxYxamO6ha8hAk/6Um0brcNteWzN69JSMeoDKJWsVl/E9Ot0 I1cwq9/+ikE9bacjgmhffs/Y05XHQs+6/ejtY7PySc5o+hkYpN7WN7sdDGugtSQe Hhf09Lf1/Eu+NXDtNcOB3GxmBrJJKLMuTrxtAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUYAAOXpSSca/GgR50lPP0xrCqBZEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1lBQU9YcFNTY2FfR2dSNTBs UFAweHJDcUJaRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF2 6TAwDQYJKoZIhvcNAQELBQADggEBAEAFDqTfad/zce/ZNwjNq4mj3Bh3nWz58gJg 2CVkuA8nna81mnyHf+IjkPSlJ4eK6b85QQI4QvF2B0xqOKKFjJ1U4sMU6mrdRw/s SS0FbrNigp76mjphaDPZ8nmsekWOjdCvgKWpvXk+Y+lzqr0TQ1vQwS1oKeQ1pfd2 zyCYzUlQqUNqcX/Mca/KAXHMOA3CqIE3AxeqgQ3Bg+rUiikzMPxDmokctp1lVIiK xtWYV2znaqkHjuhSyEcwG+HO9YAF8AxsFNCuDoOVMXBZNiE46sV1VGCVdYJzFN6L rfXshuT9UX+yNEmTRt3Rc9na1L8D7i0i0Flv7PfhQc8vpbXjd0g= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org