$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/a37OurlyWrfY-H8peN6Fcf4B5ks.roa File: a37OurlyWrfY-H8peN6Fcf4B5ks.roa (raw, json) Hash identifier: RPUl1hTiWoRxc9XQuun9eZbFn2rOVAbXd653figgNpE= Subject key identifier: 6B:7E:CE:BA:B9:72:5A:B7:D8:F8:7F:29:78:DE:85:71:FE:01:E6:4B Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2AB2 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/a37OurlyWrfY-H8peN6Fcf4B5ks.roa Signing time: Fri 01 Sep 2023 10:08:12 +0000 ROA not before: Fri 01 Sep 2023 10:08:12 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.194.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10930 (0x2ab2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:12 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6B7ECEBAB9725AB7D8F87F2978DE8571FE01E64B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3e:c8:fe:28:9c:a1:43:6b:01:5e:27:96:7a: 4b:ce:ff:84:15:aa:e3:e2:5e:da:30:97:a2:2e:e1: a8:dd:08:5e:79:91:cc:f1:6b:e0:fa:f2:42:3b:47: 7a:c7:fd:cd:c1:87:19:4a:43:b3:58:c5:50:b7:7d: 79:6d:e3:30:54:db:31:51:81:d5:db:70:09:d9:b7: 22:97:c5:f6:9d:f6:88:06:fe:14:05:9f:dd:1b:79: a1:33:82:25:dc:28:bf:f4:7d:f6:d5:ed:bc:a7:7a: 08:b9:0f:c6:c8:ae:95:e7:a4:95:a3:88:d1:97:e6: 2e:cd:37:6f:80:26:08:66:74:4b:ec:36:00:77:22: 8b:2e:03:d9:bc:dc:c8:d5:a9:9b:4b:61:cd:fa:97: 09:58:47:f1:1f:b8:da:89:0d:64:88:0c:5d:22:c7: ee:6a:75:dd:08:09:44:3f:90:43:db:a3:f0:10:4e: dc:42:b5:fb:5d:cc:c2:86:10:72:70:43:15:c9:3e: c3:e7:95:5b:07:1a:18:ae:c3:51:08:ef:7e:83:1c: 78:62:3f:4e:b1:05:de:f3:5c:37:5a:91:f1:86:d0: d7:ce:d0:74:f7:82:0e:11:e5:bd:db:36:10:fb:05: 1e:2b:77:fa:01:eb:fd:17:34:ca:f3:4c:b0:db:f4: 58:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:7E:CE:BA:B9:72:5A:B7:D8:F8:7F:29:78:DE:85:71:FE:01:E6:4B X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/a37OurlyWrfY-H8peN6Fcf4B5ks.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.0.0/21 Signature Algorithm: sha256WithRSAEncryption 28:a5:5f:78:fc:96:13:7e:29:ab:3d:08:7f:d2:9c:01:d6:3b: 3c:44:b9:d8:a1:08:de:c1:09:39:96:35:c9:27:8d:b0:fd:e1: 4b:d0:0e:3c:dd:f9:96:4b:29:12:0c:aa:99:ed:96:4e:a2:b0: 8d:a1:e4:6a:d5:7d:2c:c3:e3:27:44:11:74:f3:cd:19:38:9f: bd:ea:0c:47:d9:f8:41:51:a2:c0:3f:52:65:67:08:dd:0b:db: 06:3f:ac:e4:7b:a2:96:43:78:df:5d:0d:24:8e:84:53:aa:b5: 76:95:86:8b:a2:ce:da:7d:8d:b0:d5:2e:ba:10:8e:03:4a:5b: 0e:cc:34:4c:be:db:69:fd:60:19:cf:85:94:8f:9c:d2:78:ef: 78:db:93:cf:72:c6:6c:76:ad:3f:26:b4:8a:96:83:c1:7c:73: 78:10:a7:90:b6:45:a2:da:6a:01:81:df:58:eb:2b:40:54:e4: 90:dc:b8:c4:47:a1:3f:0e:b7:a8:21:0a:12:fb:c4:04:57:47: e6:f8:06:67:da:5e:7a:5b:6d:eb:91:77:b8:78:51:52:16:b6: 72:ba:21:f5:7f:d3:15:07:67:5c:1e:9a:42:c5:a3:b2:97:9d: 92:56:bc:20:02:05:31:1e:9d:60:71:56:6a:35:da:25:32:c7: 10:92:95:59 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKrIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZCN0VDRUJBQjk3MjVB QjdEOEY4N0YyOTc4REU4NTcxRkUwMUU2NEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKPsj+KJyhQ2sBXieWekvO/4QVquPiXtowl6Iu4ajdCF55kczx a+D68kI7R3rH/c3BhxlKQ7NYxVC3fXlt4zBU2zFRgdXbcAnZtyKXxfad9ogG/hQF n90beaEzgiXcKL/0ffbV7bynegi5D8bIrpXnpJWjiNGX5i7NN2+AJghmdEvsNgB3 IosuA9m83MjVqZtLYc36lwlYR/EfuNqJDWSIDF0ix+5qdd0ICUQ/kEPbo/AQTtxC tftdzMKGEHJwQxXJPsPnlVsHGhiuw1EI736DHHhiP06xBd7zXDdakfGG0NfO0HT3 gg4R5b3bNhD7BR4rd/oB6/0XNMrzTLDb9FidAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUa37OurlyWrfY+H8peN6Fcf4B5kswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2EzN091cmx5V3JmWS1IOHBl TjZGY2Y0QjVrcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wgAwDQYJKoZIhvcNAQELBQADggEBACilX3j8lhN+Kas9CH/SnAHWOzxEudihCN7B CTmWNcknjbD94UvQDjzd+ZZLKRIMqpntlk6isI2h5GrVfSzD4ydEEXTzzRk4n73q DEfZ+EFRosA/UmVnCN0L2wY/rOR7opZDeN9dDSSOhFOqtXaVhouiztp9jbDVLroQ jgNKWw7MNEy+22n9YBnPhZSPnNJ473jbk89yxmx2rT8mtIqWg8F8c3gQp5C2RaLa agGB31jrK0BU5JDcuMRHoT8Ot6ghChL7xARXR+b4BmfaXnpbbeuRd7h4UVIWtnK6 IfV/0xUHZ1wemkLFo7KXnZJWvCACBTEenWBxVmo12iUyxxCSlVk= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:05 2024 by rpki-client on console-fra.rpki-client.org