$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Yk8dmPPOfOz7WioqKlRalyYXcpc.roa File: Yk8dmPPOfOz7WioqKlRalyYXcpc.roa (raw, json) Hash identifier: kh//X1WahPwFy+4Ri5p29Ip5YRO1DgZm81cCdFbmxbQ= Subject key identifier: 62:4F:1D:98:F3:CE:7C:EC:FB:5A:2A:2A:2A:54:5A:97:26:17:72:97 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 28B8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Yk8dmPPOfOz7WioqKlRalyYXcpc.roa Signing time: Fri 01 Sep 2023 10:05:41 +0000 ROA not before: Fri 01 Sep 2023 10:05:41 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.194.205.32/27 maxlen: 27 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10424 (0x28b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:41 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=624F1D98F3CE7CECFB5A2A2A2A545A9726177297 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d0:25:94:f3:80:18:8e:86:d3:de:40:88:67: cb:8a:e5:60:b1:22:7e:4e:60:d7:15:31:d3:0a:28: 9e:6b:e6:50:b8:42:ca:99:2a:4a:ae:ed:92:2c:9a: 79:0c:9b:c0:3f:47:0b:17:83:5f:c9:65:c1:7d:19: 65:66:1d:91:9a:42:e3:1b:d9:7d:ff:40:de:59:60: 31:cb:a6:31:6a:3f:b6:b2:b4:97:06:6d:2b:b6:fa: f3:ec:42:01:a2:16:22:69:4e:a6:d1:53:d0:3e:10: 4c:bb:35:d2:01:da:e7:5a:fd:0d:64:73:e7:87:0d: 03:07:82:49:77:27:dd:b1:f9:e1:fb:34:78:fb:d4: f7:5f:83:de:fb:62:2d:d0:68:3a:93:61:71:69:8a: 7b:a0:0f:89:e8:31:4f:a7:b4:8b:f2:f5:7f:4d:da: 9e:6c:a3:1a:89:65:4d:87:05:a0:23:31:17:1a:d6: fb:c2:d1:8f:6f:35:2d:01:23:be:82:f7:e2:9b:63: fa:a6:31:df:26:2e:9d:c1:70:38:7a:16:2f:5f:b3: d0:20:cc:bd:8e:3f:b4:3f:ee:00:19:73:c6:d7:d4: b8:4c:cf:cd:25:a7:93:14:10:1c:02:70:27:91:4a: 77:b2:51:dd:31:68:a2:0b:f4:16:bc:12:78:51:42: d3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:4F:1D:98:F3:CE:7C:EC:FB:5A:2A:2A:2A:54:5A:97:26:17:72:97 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Yk8dmPPOfOz7WioqKlRalyYXcpc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.205.32/27 Signature Algorithm: sha256WithRSAEncryption a1:35:4f:11:12:c6:5f:40:bc:d8:9b:22:fd:be:f8:33:34:61: 2a:3e:f1:f6:8c:d5:39:a3:99:a2:5b:bc:e5:aa:d0:1d:3c:9a: 0f:c2:1c:82:e3:de:9b:52:66:e6:bc:6a:46:4e:79:0d:e7:33: 74:8f:1f:5e:fe:79:0e:b7:d6:d1:bf:36:4a:79:e0:1a:b3:db: 5e:f7:99:d6:da:23:5b:b0:ff:e8:7b:f5:fa:54:30:9c:65:4d: 58:e4:90:6d:b8:20:b7:56:0e:db:0e:5d:ca:c8:69:e2:9d:1b: a5:2a:47:34:f5:e8:11:6c:e3:3b:86:4e:ab:8c:af:71:7b:4d: 36:83:f4:4a:48:ab:65:06:04:5c:18:65:84:c9:d3:bc:9d:b0: 49:7c:d4:70:c1:c7:8a:32:68:1a:6f:51:25:53:a2:e8:27:30: 93:38:bd:fa:8c:3b:ac:d6:99:08:92:b3:4b:4f:3a:6c:c1:7a: d3:f1:27:dc:12:f2:de:a7:3c:e2:ed:52:94:35:46:c8:0d:9c: 25:3b:92:ec:bd:28:59:1d:e5:dc:ff:9b:80:ea:b0:2d:5f:a3: 6c:08:cc:4e:54:e3:4b:ea:8c:9c:e1:4e:ba:29:53:1b:c3:b0: f6:b4:fa:30:e4:c2:22:a2:49:b4:f4:54:75:a9:34:e3:21:aa: ea:aa:2a:b5 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICKLgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1NDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDYyNEYxRDk4RjNDRTdD RUNGQjVBMkEyQTJBNTQ1QTk3MjYxNzcyOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC80CWU84AYjobT3kCIZ8uK5WCxIn5OYNcVMdMKKJ5r5lC4QsqZ Kkqu7ZIsmnkMm8A/RwsXg1/JZcF9GWVmHZGaQuMb2X3/QN5ZYDHLpjFqP7aytJcG bSu2+vPsQgGiFiJpTqbRU9A+EEy7NdIB2uda/Q1kc+eHDQMHgkl3J92x+eH7NHj7 1Pdfg977Yi3QaDqTYXFpinugD4noMU+ntIvy9X9N2p5soxqJZU2HBaAjMRca1vvC 0Y9vNS0BI76C9+KbY/qmMd8mLp3BcDh6Fi9fs9AgzL2OP7Q/7gAZc8bX1LhMz80l p5MUEBwCcCeRSneyUd0xaKIL9Ba8EnhRQtMZAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUYk8dmPPOfOz7WioqKlRalyYXcpcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1lrOGRtUFBPZk96N1dpb3FL bFJhbHlZWGNwYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQV7 ws0gMA0GCSqGSIb3DQEBCwUAA4IBAQChNU8REsZfQLzYmyL9vvgzNGEqPvH2jNU5 o5miW7zlqtAdPJoPwhyC496bUmbmvGpGTnkN5zN0jx9e/nkOt9bRvzZKeeAas9te 95nW2iNbsP/oe/X6VDCcZU1Y5JBtuCC3Vg7bDl3KyGninRulKkc09egRbOM7hk6r jK9xe002g/RKSKtlBgRcGGWEydO8nbBJfNRwwceKMmgab1ElU6LoJzCTOL36jDus 1pkIkrNLTzpswXrT8SfcEvLepzzi7VKUNUbIDZwlO5LsvShZHeXc/5uA6rAtX6Ns CMxOVONL6oyc4U66KVMbw7D2tPow5MIiokm09FR1qTTjIarqqiq1 -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:05 2024 by rpki-client on console-fra.rpki-client.org