$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aNYznlYdfw8o5-fvrlSpNf-qLKU.roa File: aNYznlYdfw8o5-fvrlSpNf-qLKU.roa (raw, json) Hash identifier: +u8/eeUDnqBv4lRAE5bzmjM+bLwkppmKG2RlfsrB4Yk= Subject key identifier: 68:D6:33:9E:56:1D:7F:0F:28:E7:E7:EF:AE:54:A9:35:FF:AA:2C:A5 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A9E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aNYznlYdfw8o5-fvrlSpNf-qLKU.roa Signing time: Fri 01 Sep 2023 10:08:06 +0000 ROA not before: Fri 01 Sep 2023 10:08:06 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.193.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10910 (0x2a9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:06 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=68D6339E561D7F0F28E7E7EFAE54A935FFAA2CA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:27:cd:ed:39:8e:67:85:d3:58:99:3d:86:40: 93:aa:4d:a0:7c:b8:20:99:f8:1c:8c:b6:a1:9d:67: b1:96:21:82:e1:d3:f0:fb:ed:ac:0f:d8:c5:e3:87: 21:94:cc:b6:e1:e6:1d:1b:af:b1:56:82:80:0b:c4: 06:3b:02:81:7a:bd:5e:04:69:4d:f5:b2:7a:be:3e: 59:08:83:ff:b8:6d:5a:a9:67:6e:0a:63:a4:cc:43: b3:5c:16:9c:81:56:ea:4d:db:00:56:0c:b0:6d:8e: 6c:12:9a:fa:d1:1e:95:b1:6e:c8:a7:a9:95:fb:93: a3:ae:f7:f6:e0:34:5b:90:04:2b:59:2a:54:86:c9: 9b:2c:ab:8b:87:08:0a:59:1c:87:c5:37:76:e2:5c: 6d:36:cd:a6:54:d8:a1:96:99:bc:40:2c:3b:06:62: 42:be:c1:ad:65:60:b1:e6:14:93:9c:49:e8:1f:d7: df:cb:c7:52:65:bb:67:1d:35:8f:a5:e3:51:02:b1: 68:67:c0:95:d7:02:9b:c0:57:8b:d5:62:a8:7a:d8: c3:5d:9e:06:7c:a4:f2:c7:9a:22:18:e0:1d:06:7b: 5d:48:ec:a7:e8:88:83:b9:27:bd:c7:b4:e0:c5:4f: af:e9:63:4f:4c:a8:7d:41:ec:26:e8:34:45:81:0d: 43:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:D6:33:9E:56:1D:7F:0F:28:E7:E7:EF:AE:54:A9:35:FF:AA:2C:A5 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aNYznlYdfw8o5-fvrlSpNf-qLKU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.128.0/22 Signature Algorithm: sha256WithRSAEncryption 71:16:5d:46:b3:21:22:66:33:b3:a4:e0:a8:fb:cb:a8:ed:a5: 72:96:5a:fb:f9:1b:e4:07:45:8d:af:38:c3:11:6b:a5:2b:5f: f6:4e:72:29:30:68:bc:b2:3b:5f:ef:d0:62:f4:48:52:86:9a: 8b:b9:e1:f1:a4:ff:4a:4d:ba:b0:f6:71:eb:ab:59:4c:60:28: 72:c3:0a:67:58:cc:bb:df:77:a8:38:05:05:2a:73:fa:81:bd: 31:1b:80:46:0b:32:d1:8f:0c:78:c1:ce:3a:73:35:20:9b:54: c0:35:1d:35:4c:4f:a4:47:be:12:c8:d2:96:23:21:a7:10:db: 47:2d:62:72:b3:da:ec:de:79:4c:e6:cf:e1:5d:ac:a0:58:37: dc:c5:ac:0b:eb:99:1e:59:ee:ea:44:e1:a8:fc:a2:14:f0:d8: 1b:f6:e6:4b:1c:c2:b3:f5:ce:c3:27:89:de:06:f0:76:5c:61: 33:c8:75:b8:69:77:38:12:8b:db:da:8d:3c:af:90:11:d1:27: e8:15:e9:66:25:01:bd:d3:f8:3b:fb:ee:63:c9:1b:6c:c5:73: fb:a8:75:e6:87:d5:ae:96:9e:b5:18:17:26:3c:1b:19:1a:5c: f4:dc:c4:44:45:68:a9:b0:c2:02:d7:a0:30:b3:0c:6a:1a:0a: dd:0f:f6:2c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKp4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY4RDYzMzlFNTYxRDdG MEYyOEU3RTdFRkFFNTRBOTM1RkZBQTJDQTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMJ83tOY5nhdNYmT2GQJOqTaB8uCCZ+ByMtqGdZ7GWIYLh0/D7 7awP2MXjhyGUzLbh5h0br7FWgoALxAY7AoF6vV4EaU31snq+PlkIg/+4bVqpZ24K Y6TMQ7NcFpyBVupN2wBWDLBtjmwSmvrRHpWxbsinqZX7k6Ou9/bgNFuQBCtZKlSG yZssq4uHCApZHIfFN3biXG02zaZU2KGWmbxALDsGYkK+wa1lYLHmFJOcSegf19/L x1Jlu2cdNY+l41ECsWhnwJXXApvAV4vVYqh62MNdngZ8pPLHmiIY4B0Ge11I7Kfo iIO5J73HtODFT6/pY09MqH1B7CboNEWBDUNpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUaNYznlYdfw8o5+fvrlSpNf+qLKUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2FOWXpubFlkZnc4bzUtZnZy bFNwTmYtcUxLVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wYAwDQYJKoZIhvcNAQELBQADggEBAHEWXUazISJmM7Ok4Kj7y6jtpXKWWvv5G+QH RY2vOMMRa6UrX/ZOcikwaLyyO1/v0GL0SFKGmou54fGk/0pNurD2ceurWUxgKHLD CmdYzLvfd6g4BQUqc/qBvTEbgEYLMtGPDHjBzjpzNSCbVMA1HTVMT6RHvhLI0pYj IacQ20ctYnKz2uzeeUzmz+FdrKBYN9zFrAvrmR5Z7upE4aj8ohTw2Bv25kscwrP1 zsMnid4G8HZcYTPIdbhpdzgSi9vajTyvkBHRJ+gV6WYlAb3T+Dv77mPJG2zFc/uo deaH1a6WnrUYFyY8GxkaXPTcxERFaKmwwgLXoDCzDGoaCt0P9iw= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:05 2024 by rpki-client on console-fra.rpki-client.org