$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YOUS0mWeFYYAwN3_8RKfsJMpqgA.roa File: YOUS0mWeFYYAwN3_8RKfsJMpqgA.roa (raw, json) Hash identifier: Y0z6Zz1BK8YCkybk8qv5gwZDd3JFfjgW9f/DrgPSHuw= Subject key identifier: 60:E5:12:D2:65:9E:15:86:00:C0:DD:FF:F1:12:9F:B0:93:29:AA:00 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A50 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YOUS0mWeFYYAwN3_8RKfsJMpqgA.roa Signing time: Fri 01 Sep 2023 10:07:45 +0000 ROA not before: Fri 01 Sep 2023 10:07:45 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.233.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10832 (0x2a50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:45 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=60E512D2659E158600C0DDFFF1129FB09329AA00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:62:0b:d5:62:43:8c:16:f4:39:1f:b8:e9:af: 88:98:e4:ac:c9:44:99:97:9f:0e:e1:ed:e0:30:bd: 14:af:bd:5b:da:a8:08:d0:3e:e8:21:6a:1b:30:0f: 63:44:52:be:8c:23:0a:a9:aa:9c:1b:24:74:95:92: d6:34:91:4c:c8:51:c0:12:c0:f7:20:38:47:4e:a3: d2:0e:57:ae:c3:a0:a8:14:5d:86:5d:55:cc:62:0a: 89:33:d9:62:0e:16:be:e9:05:de:88:ff:f5:2e:06: 46:09:0d:29:3c:05:99:4c:a4:30:6c:2c:b1:bf:3e: 08:2e:4c:0e:de:ec:82:25:63:c9:d0:a7:fd:10:7a: 73:f2:15:8d:da:7e:11:e7:13:fe:c9:1c:bc:4c:e5: a8:0b:b4:e4:9b:fb:96:77:3d:9c:11:7e:7c:91:f4: 3f:05:8d:ef:0b:2b:02:aa:fd:29:f2:87:8d:0a:5d: 97:85:d1:9c:6b:27:3d:a5:c6:ec:b3:a2:be:f0:0c: 72:7d:a7:dc:b9:b1:06:1a:14:65:f2:97:e9:ba:8b: 6e:e2:3e:5b:f4:08:26:b1:c9:5b:a1:23:80:ec:37: fe:07:34:d3:db:4c:f3:f1:64:ec:1c:c7:ad:5a:70: 1e:a3:e5:c7:c6:10:2f:89:9a:f7:e1:3e:ac:ca:8e: 34:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:E5:12:D2:65:9E:15:86:00:C0:DD:FF:F1:12:9F:B0:93:29:AA:00 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YOUS0mWeFYYAwN3_8RKfsJMpqgA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.96.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:11:d7:a6:07:a3:e7:22:a7:b1:7c:38:9d:43:c0:cc:ca:02: 23:4d:80:54:6d:13:c7:b8:f9:ce:03:53:10:df:0f:02:04:a5: f4:2b:1c:83:94:50:a9:1f:c2:c0:e7:e4:3a:b0:0c:c9:3f:38: 48:74:ee:01:18:64:09:7b:87:46:88:09:fc:99:17:77:48:be: f9:3d:d8:fc:ec:23:23:27:73:87:84:be:ea:fe:4c:69:5a:88: a3:20:73:07:8b:95:95:67:87:7b:e0:b3:7e:a8:0c:3f:1b:e9: 78:ee:e9:17:92:21:ae:65:b1:f2:26:31:6c:ef:df:e6:91:d2: 31:ae:ef:e9:15:dd:91:73:66:30:a4:d2:65:e2:6f:fb:9f:e3: e6:0a:56:99:39:35:6e:a8:32:be:3f:48:16:84:27:cf:d7:b6: 15:bb:34:83:70:bb:ba:af:74:b8:a0:04:d4:cb:a6:3b:91:09: 92:52:85:57:4e:ae:12:6c:ce:f8:6b:68:29:33:28:25:17:af: b2:a8:1c:2b:4e:5d:a3:f6:a4:89:d4:8f:8b:46:e0:95:85:dd: de:14:11:96:0d:6d:96:28:b7:0e:85:5d:1a:ea:bc:62:31:c5: 83:d0:bb:01:f0:9a:18:d5:b0:e7:d4:72:24:33:cd:f8:ff:27: cc:f2:52:2a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKlAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3NDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDYwRTUxMkQyNjU5RTE1 ODYwMEMwRERGRkYxMTI5RkIwOTMyOUFBMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHYgvVYkOMFvQ5H7jpr4iY5KzJRJmXnw7h7eAwvRSvvVvaqAjQ PughahswD2NEUr6MIwqpqpwbJHSVktY0kUzIUcASwPcgOEdOo9IOV67DoKgUXYZd VcxiCokz2WIOFr7pBd6I//UuBkYJDSk8BZlMpDBsLLG/PgguTA7e7IIlY8nQp/0Q enPyFY3afhHnE/7JHLxM5agLtOSb+5Z3PZwRfnyR9D8Fje8LKwKq/Snyh40KXZeF 0ZxrJz2lxuyzor7wDHJ9p9y5sQYaFGXyl+m6i27iPlv0CCaxyVuhI4DsN/4HNNPb TPPxZOwcx61acB6j5cfGEC+JmvfhPqzKjjTJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUYOUS0mWeFYYAwN3/8RKfsJMpqgAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1lPVVMwbVdlRllZQXdOM184 Uktmc0pNcHFnQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6WAwDQYJKoZIhvcNAQELBQADggEBAHsR16YHo+cip7F8OJ1DwMzKAiNNgFRtE8e4 +c4DUxDfDwIEpfQrHIOUUKkfwsDn5DqwDMk/OEh07gEYZAl7h0aICfyZF3dIvvk9 2PzsIyMnc4eEvur+TGlaiKMgcweLlZVnh3vgs36oDD8b6Xju6ReSIa5lsfImMWzv 3+aR0jGu7+kV3ZFzZjCk0mXib/uf4+YKVpk5NW6oMr4/SBaEJ8/XthW7NINwu7qv dLigBNTLpjuRCZJShVdOrhJszvhraCkzKCUXr7KoHCtOXaP2pInUj4tG4JWF3d4U EZYNbZYotw6FXRrqvGIxxYPQuwHwmhjVsOfUciQzzfj/J8zyUio= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:05 2024 by rpki-client on console-fra.rpki-client.org