$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_bfeyx6xT-Sqhme_xt53myD6xTk.roa File: _bfeyx6xT-Sqhme_xt53myD6xTk.roa (raw, json) Hash identifier: 91nq2zmOX5kteOtWsKVLP3GyRJs2BFNXaLm0MS4t84g= Subject key identifier: FD:B7:DE:CB:1E:B1:4F:E4:AA:86:67:BF:C6:DE:77:9B:20:FA:C5:39 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A0A Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_bfeyx6xT-Sqhme_xt53myD6xTk.roa Signing time: Fri 01 Sep 2023 10:07:25 +0000 ROA not before: Fri 01 Sep 2023 10:07:25 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.233.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10762 (0x2a0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:25 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=FDB7DECB1EB14FE4AA8667BFC6DE779B20FAC539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c9:c0:67:72:06:25:7d:42:09:b8:11:40:91: 2c:e5:4f:33:84:5d:df:90:92:8d:15:1c:ce:ee:31: 26:1b:c5:49:eb:5b:d1:2f:ea:58:9e:2b:d7:ab:17: 85:00:96:7e:91:b7:e6:6d:02:65:17:ef:d7:bb:66: ab:d2:07:1c:d2:3b:42:24:0f:dc:29:98:c2:aa:80: 38:1a:9a:74:0c:b5:5d:75:f0:80:86:e2:01:76:50: a6:34:c5:f7:00:d0:4c:ea:ae:a7:ae:8a:4b:60:23: d6:f6:4f:6f:d5:ed:27:19:90:e7:33:99:f3:cc:f9: 8c:12:7f:e5:93:3e:8f:ad:e9:11:40:6f:97:58:18: ca:a0:94:fe:89:65:d5:c1:c8:86:6b:5c:4b:b2:64: e0:f9:50:da:25:af:aa:cc:94:9a:96:ab:9c:ce:7e: 2b:c9:1d:d8:82:85:95:51:80:45:80:3b:64:e4:58: 7c:49:9e:7d:32:64:dc:0d:d1:6c:07:4b:f6:ac:a6: 89:13:68:c3:3d:9b:ec:5f:ff:f1:78:40:ec:ad:33: 30:aa:91:0b:a0:81:cf:15:c7:59:c9:43:f9:92:5c: a9:92:fa:79:6c:e6:c0:5f:bd:c9:95:de:27:83:38: 90:0a:18:32:54:4a:1a:58:29:9e:17:7b:05:3d:31: e7:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:B7:DE:CB:1E:B1:4F:E4:AA:86:67:BF:C6:DE:77:9B:20:FA:C5:39 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_bfeyx6xT-Sqhme_xt53myD6xTk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.0.0/21 Signature Algorithm: sha256WithRSAEncryption 74:0b:38:5c:13:d5:52:f4:c9:cb:27:06:fa:08:0e:25:fd:30: fb:d4:d9:de:1e:55:df:aa:ca:01:78:33:ab:d6:1d:f4:a2:77: 0e:74:61:e3:72:7c:bd:4e:bd:7f:b4:3e:d1:3b:01:8d:63:c4: 3f:b5:03:44:14:7c:ff:44:cd:10:6d:8f:8d:90:6e:59:61:77: b3:e6:f3:f8:0e:10:65:52:48:03:60:a9:62:03:a0:3b:24:80: 33:b2:05:8d:58:ff:98:27:46:d0:3c:9c:54:98:14:77:1b:d1: e7:19:86:d7:4a:9a:9b:fe:4a:df:c7:ff:68:48:cc:cf:de:9c: b1:ba:ff:4a:f5:86:b6:78:31:05:75:27:d2:7a:ad:fa:d0:46: 97:72:6f:33:2f:18:41:18:83:30:45:ea:a1:f4:f2:ac:0c:a6: 2a:70:67:5e:3c:16:35:14:f5:f3:6a:35:33:c2:32:81:1b:55: ac:02:b5:dd:fa:2f:ca:04:ab:5c:e7:46:e3:92:f6:6e:08:51: 03:84:2a:c0:64:77:5f:5a:15:ed:4a:d7:14:15:8d:8e:8c:83: 75:c0:18:9f:c0:2d:41:4b:b7:98:41:68:03:68:57:61:33:65: eb:15:5f:ba:31:16:c3:d6:e2:b5:f3:16:cf:6d:91:db:ad:80: 97:ad:b3:c7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKgowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3MjVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZEQjdERUNCMUVCMTRG RTRBQTg2NjdCRkM2REU3NzlCMjBGQUM1MzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNycBncgYlfUIJuBFAkSzlTzOEXd+Qko0VHM7uMSYbxUnrW9Ev 6lieK9erF4UAln6Rt+ZtAmUX79e7ZqvSBxzSO0IkD9wpmMKqgDgamnQMtV118ICG 4gF2UKY0xfcA0EzqrqeuiktgI9b2T2/V7ScZkOczmfPM+YwSf+WTPo+t6RFAb5dY GMqglP6JZdXByIZrXEuyZOD5UNolr6rMlJqWq5zOfivJHdiChZVRgEWAO2TkWHxJ nn0yZNwN0WwHS/aspokTaMM9m+xf//F4QOytMzCqkQuggc8Vx1nJQ/mSXKmS+nls 5sBfvcmV3ieDOJAKGDJUShpYKZ4XewU9Mec/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU/bfeyx6xT+Sqhme/xt53myD6xTkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL19iZmV5eDZ4VC1TcWhtZV94 dDUzbXlENnhUay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6QAwDQYJKoZIhvcNAQELBQADggEBAHQLOFwT1VL0ycsnBvoIDiX9MPvU2d4eVd+q ygF4M6vWHfSidw50YeNyfL1OvX+0PtE7AY1jxD+1A0QUfP9EzRBtj42Qbllhd7Pm 8/gOEGVSSANgqWIDoDskgDOyBY1Y/5gnRtA8nFSYFHcb0ecZhtdKmpv+St/H/2hI zM/enLG6/0r1hrZ4MQV1J9J6rfrQRpdybzMvGEEYgzBF6qH08qwMpipwZ148FjUU 9fNqNTPCMoEbVawCtd36L8oEq1znRuOS9m4IUQOEKsBkd19aFe1K1xQVjY6Mg3XA GJ/ALUFLt5hBaANoV2EzZesVX7oxFsPW4rXzFs9tkdutgJets8c= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:05 2024 by rpki-client on console-fra.rpki-client.org