$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_jpTbAkWvHkKW7OVRQKcDQM4N24.roa File: _jpTbAkWvHkKW7OVRQKcDQM4N24.roa (raw, json) Hash identifier: p7R4YeuwRGX36c+LZAZOzl+szN2OCNaYshl0iwlu7vs= Subject key identifier: FE:3A:53:6C:09:16:BC:79:0A:5B:B3:95:45:02:9C:0D:03:38:37:6E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2960 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_jpTbAkWvHkKW7OVRQKcDQM4N24.roa Signing time: Fri 01 Sep 2023 10:06:26 +0000 ROA not before: Fri 01 Sep 2023 10:06:26 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 106.1.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10592 (0x2960) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:06:26 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=FE3A536C0916BC790A5BB39545029C0D0338376E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1c:6b:5f:ac:67:3a:34:2b:bf:68:49:1f:08: 94:47:9d:78:bf:f0:3e:56:14:c8:26:0f:2e:9c:2e: 56:61:70:4a:9d:7a:58:4e:73:66:50:7d:e2:57:45: bb:e7:97:55:90:2f:b3:d0:31:b9:3e:80:9d:a7:b7: a6:77:fb:7c:8c:17:f6:04:89:6f:64:1c:4b:a2:1d: c9:e4:da:59:da:d1:d0:48:a8:a5:75:ad:23:8e:f1: 33:27:44:d0:82:6c:3c:97:c2:02:03:6b:f3:19:18: 5b:9c:61:5b:42:10:fc:35:b0:2d:1c:92:af:3d:8b: bd:42:b4:c5:6c:49:b5:95:84:e4:63:24:26:38:25: 6c:19:4a:20:62:1f:63:9c:0b:a4:53:af:65:9c:39: 70:31:c7:d4:a3:88:b7:4d:bb:c1:8b:3f:80:f8:bd: 6f:e6:bf:2d:8e:02:11:db:98:b0:39:7d:e5:dc:89: 02:3f:b1:c2:84:9e:b7:b2:c8:33:14:cb:92:0d:cc: 72:26:00:cb:a8:d2:01:92:10:2b:4f:c3:45:f9:94: 50:bd:10:e6:ee:fb:5d:97:82:9e:dd:17:96:9e:a0: 8f:2d:f7:1c:3e:6c:c8:27:a9:0d:6a:b3:c1:c1:68: 88:d1:b4:90:49:48:75:15:f7:49:18:8c:50:6c:eb: 1b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:3A:53:6C:09:16:BC:79:0A:5B:B3:95:45:02:9C:0D:03:38:37:6E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_jpTbAkWvHkKW7OVRQKcDQM4N24.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.116.0/22 Signature Algorithm: sha256WithRSAEncryption 82:cb:d0:f6:e6:f4:6c:86:af:9f:e9:8d:f1:5c:dc:91:5f:9c: 26:28:71:4f:d7:4b:0f:71:0b:09:3a:9e:17:a1:97:f8:23:b5: ba:15:4e:c6:d2:1a:85:cc:7e:fa:54:31:d2:39:c5:07:c5:f9: e4:21:5e:c0:17:67:fa:a1:e7:b8:51:31:f3:7c:90:c5:ad:39: c4:3f:b1:85:c9:e8:64:f0:26:4d:37:76:7f:d6:b7:13:a8:d3: 1e:52:5e:41:62:a1:71:85:0c:2c:c3:27:49:76:59:65:59:7d: f4:52:e9:9b:88:aa:3b:23:df:90:c9:c9:b3:e4:5a:ec:1e:b8: 9e:a5:b1:25:71:43:68:fd:ef:c0:40:ad:c4:24:b6:34:2d:78: 75:da:d2:57:ec:63:1f:c7:46:cd:b9:bd:f0:5c:89:2b:62:7a: 3f:25:99:4e:43:58:ea:6c:40:05:c5:2e:0c:99:1a:19:f6:6d: 1a:1c:96:b9:8c:e6:90:7d:13:b3:a7:f3:d7:14:37:83:66:19: 4b:05:04:22:48:81:34:a4:fe:86:e6:93:a5:5b:8d:9d:d7:60: c7:7e:fe:17:3d:63:05:73:54:68:a5:63:35:fc:1f:d5:a7:ba: d1:a2:4e:aa:cd:0b:46:45:ca:fb:50:26:5c:e6:89:df:e6:be: 0e:a0:79:cf -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKWAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA2MjZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZFM0E1MzZDMDkxNkJD NzkwQTVCQjM5NTQ1MDI5QzBEMDMzODM3NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgHGtfrGc6NCu/aEkfCJRHnXi/8D5WFMgmDy6cLlZhcEqdelhO c2ZQfeJXRbvnl1WQL7PQMbk+gJ2nt6Z3+3yMF/YEiW9kHEuiHcnk2lna0dBIqKV1 rSOO8TMnRNCCbDyXwgIDa/MZGFucYVtCEPw1sC0ckq89i71CtMVsSbWVhORjJCY4 JWwZSiBiH2OcC6RTr2WcOXAxx9SjiLdNu8GLP4D4vW/mvy2OAhHbmLA5feXciQI/ scKEnreyyDMUy5INzHImAMuo0gGSECtPw0X5lFC9EObu+12Xgp7dF5aeoI8t9xw+ bMgnqQ1qs8HBaIjRtJBJSHUV90kYjFBs6xu/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU/jpTbAkWvHkKW7OVRQKcDQM4N24wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL19qcFRiQWtXdkhrS1c3T1ZS UUtjRFFNNE4yNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AXQwDQYJKoZIhvcNAQELBQADggEBAILL0Pbm9GyGr5/pjfFc3JFfnCYocU/XSw9x Cwk6nhehl/gjtboVTsbSGoXMfvpUMdI5xQfF+eQhXsAXZ/qh57hRMfN8kMWtOcQ/ sYXJ6GTwJk03dn/WtxOo0x5SXkFioXGFDCzDJ0l2WWVZffRS6ZuIqjsj35DJybPk WuweuJ6lsSVxQ2j978BArcQktjQteHXa0lfsYx/HRs25vfBciStiej8lmU5DWOps QAXFLgyZGhn2bRoclrmM5pB9E7On89cUN4NmGUsFBCJIgTSk/obmk6VbjZ3XYMd+ /hc9YwVzVGilYzX8H9WnutGiTqrNC0ZFyvtQJlzmid/mvg6gec8= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:05 2024 by rpki-client on console-fra.rpki-client.org