$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aomSLQzP1XLzzZ_UbNiL3vAJzQs.roa File: aomSLQzP1XLzzZ_UbNiL3vAJzQs.roa (raw, json) Hash identifier: Tu2gLmr2BDLH1kfz3cSehVzAervMMdVbeizGDqzlQIE= Subject key identifier: 6A:89:92:2D:0C:CF:D5:72:F3:CD:9F:D4:6C:D8:8B:DE:F0:09:CD:0B Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 29BB Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aomSLQzP1XLzzZ_UbNiL3vAJzQs.roa Signing time: Fri 01 Sep 2023 10:07:00 +0000 ROA not before: Fri 01 Sep 2023 10:07:00 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.195.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10683 (0x29bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:00 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6A89922D0CCFD572F3CD9FD46CD88BDEF009CD0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:14:19:e3:65:39:66:01:62:73:df:af:84:62: 23:fc:e7:cd:cf:22:14:dd:14:6e:33:c9:8b:ec:98: de:fe:e2:a0:a2:af:71:6f:b2:65:f1:e2:20:7e:18: 30:8d:c2:7d:fc:98:ef:0f:da:96:78:30:03:44:91: 57:97:b7:bc:81:7b:ab:0f:c2:1c:1b:aa:86:e7:2a: 09:e7:22:07:5e:bc:ce:a1:b6:3d:00:f1:2a:32:15: a3:94:9c:a4:92:3c:7f:a2:ec:f9:7b:e5:5b:b1:78: 4b:78:53:c9:2c:25:05:1e:3c:59:1a:a5:c1:90:d8: 71:6b:09:cc:45:4d:c8:43:37:7d:15:f8:e4:ab:cf: 7e:5a:22:2f:ed:26:0a:26:24:ba:b3:dd:e6:68:0e: 79:75:d5:0b:c1:85:ac:72:e6:21:74:5f:c1:db:d0: 44:3e:c8:7c:c9:9c:58:3c:4a:87:dd:3e:22:cc:21: cc:73:99:b2:56:0b:8a:50:86:29:5b:a8:7c:82:e7: 37:eb:5d:ab:7a:d7:e2:73:ad:8d:bb:d5:74:90:67: 08:5a:a8:81:26:4b:46:58:0d:5f:04:99:91:8e:40: 0b:32:b8:41:07:e5:11:99:79:6b:22:5d:9d:43:6f: 50:09:4e:e3:22:41:fc:5e:b9:23:c5:91:b2:c6:9e: 14:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:89:92:2D:0C:CF:D5:72:F3:CD:9F:D4:6C:D8:8B:DE:F0:09:CD:0B X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aomSLQzP1XLzzZ_UbNiL3vAJzQs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.149.0/24 Signature Algorithm: sha256WithRSAEncryption 42:cf:05:0c:e5:f5:f6:e9:d7:ee:0b:d7:93:48:fe:60:cc:22: 20:84:bb:09:67:f7:41:f2:28:4e:df:42:24:06:6a:36:d8:fd: 3c:fc:7c:f7:ce:b1:ae:f9:fd:da:65:84:07:a7:28:11:5a:8b: 24:aa:fe:d5:a2:80:1d:ed:6f:eb:aa:51:4e:55:91:23:e4:a2: 9e:be:77:73:55:a7:74:d7:5f:36:50:5a:f9:49:3c:af:20:3b: 09:76:ec:6d:e4:47:42:31:44:5d:e0:70:c2:1c:f0:1b:3b:82: 5b:d7:9b:04:8f:89:94:4e:7a:3c:6f:d0:74:b4:88:f1:a2:99: 80:6f:0d:01:75:a6:04:29:82:16:23:fc:c5:a9:c2:0e:74:8f: d0:9f:b7:cd:bf:e2:28:0c:50:6d:a9:f7:2f:75:6e:56:fa:2b: 17:1f:27:83:4b:8f:aa:8f:02:a1:4c:4c:8f:5f:69:2a:09:44: b7:54:a4:09:04:7b:11:cd:d0:66:d6:9a:34:ce:d8:80:03:c1: 85:7c:d0:c5:85:f7:94:2b:5d:ca:30:3e:12:59:fc:b5:0f:07: 29:6f:b1:09:8b:e2:b4:7f:be:df:23:5e:57:7e:9a:44:af:e4: e3:39:47:50:69:ce:cc:d9:2c:58:d7:7c:79:a7:bc:0f:05:a9: 23:22:6e:b0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKbswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3MDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZBODk5MjJEMENDRkQ1 NzJGM0NEOUZENDZDRDg4QkRFRjAwOUNEMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1FBnjZTlmAWJz36+EYiP8583PIhTdFG4zyYvsmN7+4qCir3Fv smXx4iB+GDCNwn38mO8P2pZ4MANEkVeXt7yBe6sPwhwbqobnKgnnIgdevM6htj0A 8SoyFaOUnKSSPH+i7Pl75VuxeEt4U8ksJQUePFkapcGQ2HFrCcxFTchDN30V+OSr z35aIi/tJgomJLqz3eZoDnl11QvBhaxy5iF0X8Hb0EQ+yHzJnFg8SofdPiLMIcxz mbJWC4pQhilbqHyC5zfrXat61+JzrY271XSQZwhaqIEmS0ZYDV8EmZGOQAsyuEEH 5RGZeWsiXZ1Db1AJTuMiQfxeuSPFkbLGnhRxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUaomSLQzP1XLzzZ/UbNiL3vAJzQswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2FvbVNMUXpQMVhMenpaX1Vi TmlMM3ZBSnpRcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 w5UwDQYJKoZIhvcNAQELBQADggEBAELPBQzl9fbp1+4L15NI/mDMIiCEuwln90Hy KE7fQiQGajbY/Tz8fPfOsa75/dplhAenKBFaiySq/tWigB3tb+uqUU5VkSPkop6+ d3NVp3TXXzZQWvlJPK8gOwl27G3kR0IxRF3gcMIc8Bs7glvXmwSPiZROejxv0HS0 iPGimYBvDQF1pgQpghYj/MWpwg50j9Cft82/4igMUG2p9y91blb6KxcfJ4NLj6qP AqFMTI9faSoJRLdUpAkEexHN0GbWmjTO2IADwYV80MWF95QrXcowPhJZ/LUPBylv sQmL4rR/vt8jXld+mkSv5OM5R1BpzszZLFjXfHmnvA8FqSMibrA= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:05 2024 by rpki-client on console-ams.rpki-client.org