$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_HE-2kC18vyb_ywX1RC-V2dQOYM.roa File: _HE-2kC18vyb_ywX1RC-V2dQOYM.roa (raw, json) Hash identifier: 7c+t+Y6IT32xk831+fIwrKLBbkTBcWO/R66bv2Ijh0w= Subject key identifier: FC:71:3E:DA:40:B5:F2:FC:9B:FF:2C:17:D5:10:BE:57:67:50:39:83 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 29DB Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_HE-2kC18vyb_ywX1RC-V2dQOYM.roa Signing time: Fri 01 Sep 2023 10:07:10 +0000 ROA not before: Fri 01 Sep 2023 10:07:10 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.233.232.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10715 (0x29db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:10 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=FC713EDA40B5F2FC9BFF2C17D510BE5767503983 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e7:2d:a5:07:dd:74:5c:89:04:1f:9a:9a:85: c4:a3:a4:33:62:56:f6:6b:93:88:a8:12:db:f1:b1: bc:36:da:3b:24:2c:5c:6e:48:fe:fa:29:c8:52:bb: f3:7f:f7:6e:09:cd:3d:cd:91:90:97:2c:65:51:44: 0b:22:5b:e3:0c:ab:89:e0:b1:a9:70:d1:17:60:c0: 5f:43:45:83:06:1b:d1:d0:17:f1:39:e2:87:b0:f1: 40:8e:fb:46:c2:4b:02:30:47:bf:e3:94:ed:a1:dd: 54:16:11:59:3f:ce:17:e9:f8:ad:d1:e4:54:11:1c: a9:78:85:74:3c:de:eb:a4:c4:29:87:b2:9b:08:04: 82:e0:8a:b3:ce:b0:d4:e4:03:73:14:ff:0c:49:7c: dd:4a:55:56:9c:aa:18:4c:67:b2:3f:60:e5:58:e6: ea:09:a7:0e:d0:4c:b7:1e:1c:78:e7:b3:a5:40:fd: 04:65:7b:b6:66:22:30:42:fb:e9:61:01:66:6b:d8: af:0c:34:32:e3:e6:a2:ad:94:bc:17:86:30:01:ef: 2a:4f:5f:b7:c9:df:65:f3:da:70:32:16:ce:3c:8e: c5:81:53:93:0c:1c:59:bc:2a:f2:d7:88:3a:af:40: 24:57:ba:a9:30:56:d6:f1:aa:7a:8c:19:7c:f6:f0: 2e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:71:3E:DA:40:B5:F2:FC:9B:FF:2C:17:D5:10:BE:57:67:50:39:83 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_HE-2kC18vyb_ywX1RC-V2dQOYM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.232.0/23 Signature Algorithm: sha256WithRSAEncryption 33:dd:57:2b:db:7b:01:65:73:bb:5d:e7:23:e9:f5:3c:72:1f: 00:8a:91:13:a3:49:c8:cd:f8:26:e2:ca:1f:21:b8:63:99:77: ed:16:cd:fa:b7:1d:ec:3c:1c:c6:cd:7a:12:f9:f9:b4:79:13: 8a:8f:23:56:4d:29:41:7e:f4:83:25:e0:e3:bd:71:d7:78:a6: 43:f0:27:9d:bf:6a:62:75:59:b7:cc:48:cd:03:2a:e1:62:03: d4:da:71:37:4b:05:19:d5:19:a0:1b:d1:75:98:49:c6:29:b1: 0d:0b:3f:82:4e:eb:46:87:36:06:78:12:f0:7e:10:cf:07:d8: 6b:8d:6e:c4:77:db:99:f4:4b:1b:9e:7c:62:6d:79:a3:fe:32: b3:86:7e:58:ee:00:b8:a3:b2:c1:72:ee:a5:61:e9:06:b4:6b: b0:06:37:96:6a:df:1f:5c:a3:cb:2a:80:e3:46:f4:96:f6:d0: 6c:fa:71:f0:b4:09:00:09:d1:86:02:3e:ff:5a:fb:f3:07:b5: 6b:86:d1:4d:76:b7:d1:51:d1:d2:91:fa:03:33:47:9e:29:ae: a2:1a:1d:b6:a1:ee:9a:88:25:33:ac:a6:bd:63:af:3b:02:98: 31:ff:30:59:91:ed:d5:30:c8:70:80:ee:52:9f:b2:81:2a:42: 1a:da:a5:06 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKdswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3MTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZDNzEzRURBNDBCNUYy RkM5QkZGMkMxN0Q1MTBCRTU3Njc1MDM5ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM5y2lB910XIkEH5qahcSjpDNiVvZrk4ioEtvxsbw22jskLFxu SP76KchSu/N/924JzT3NkZCXLGVRRAsiW+MMq4ngsalw0RdgwF9DRYMGG9HQF/E5 4oew8UCO+0bCSwIwR7/jlO2h3VQWEVk/zhfp+K3R5FQRHKl4hXQ83uukxCmHspsI BILgirPOsNTkA3MU/wxJfN1KVVacqhhMZ7I/YOVY5uoJpw7QTLceHHjns6VA/QRl e7ZmIjBC++lhAWZr2K8MNDLj5qKtlLwXhjAB7ypPX7fJ32Xz2nAyFs48jsWBU5MM HFm8KvLXiDqvQCRXuqkwVtbxqnqMGXz28C5lAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU/HE+2kC18vyb/ywX1RC+V2dQOYMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL19IRS0ya0MxOHZ5Yl95d1gx UkMtVjJkUU9ZTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF2 6egwDQYJKoZIhvcNAQELBQADggEBADPdVyvbewFlc7td5yPp9TxyHwCKkROjScjN +Cbiyh8huGOZd+0Wzfq3Hew8HMbNehL5+bR5E4qPI1ZNKUF+9IMl4OO9cdd4pkPw J52/amJ1WbfMSM0DKuFiA9TacTdLBRnVGaAb0XWYScYpsQ0LP4JO60aHNgZ4EvB+ EM8H2GuNbsR325n0SxuefGJteaP+MrOGfljuALijssFy7qVh6Qa0a7AGN5Zq3x9c o8sqgONG9Jb20Gz6cfC0CQAJ0YYCPv9a+/MHtWuG0U12t9FR0dKR+gMzR54prqIa Hbah7pqIJTOspr1jrzsCmDH/MFmR7dUwyHCA7lKfsoEqQhrapQY= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:05 2024 by rpki-client on console-ams.rpki-client.org