$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cz-fbrDDpjyrX3VtNyCVZMFZNkY.roa File: cz-fbrDDpjyrX3VtNyCVZMFZNkY.roa (raw, json) Hash identifier: abhUxlXjKTsmguEoQHXQHxIrtUj4CiF2OKr4KMYxR+Y= Subject key identifier: 73:3F:9F:6E:B0:C3:A6:3C:AB:5F:75:6D:37:20:95:64:C1:59:36:46 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 293F Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cz-fbrDDpjyrX3VtNyCVZMFZNkY.roa Signing time: Fri 01 Sep 2023 10:06:19 +0000 ROA not before: Fri 01 Sep 2023 10:06:18 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.195.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10559 (0x293f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:06:18 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=733F9F6EB0C3A63CAB5F756D37209564C1593646 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:58:ad:c4:2b:d9:21:c1:af:69:c5:c9:fe:52: 67:fa:95:ad:17:e2:af:04:04:ae:ab:38:c1:4f:db: c4:cb:83:12:c0:fc:7b:97:25:6c:17:a0:58:e9:52: 32:3b:4f:6e:e6:f1:dd:3d:5c:77:84:ef:61:64:63: 14:f7:ef:df:de:82:00:07:30:17:11:6e:83:03:67: 68:29:b9:01:50:66:00:72:f8:97:87:bc:94:92:ed: ed:4a:ed:eb:1e:37:24:29:4e:3b:08:9b:e7:c6:6e: 2f:3a:cb:eb:eb:c0:ef:a3:99:a4:79:88:d8:28:f0: ce:6a:76:58:e8:98:23:58:f2:eb:c0:5b:a2:c2:15: 93:ea:5e:65:ca:7e:22:93:47:1c:54:cb:b5:c4:ed: 00:00:f0:b3:7d:b9:9b:49:cf:c6:79:e7:2a:2f:d5: 35:32:ab:a1:23:44:b6:ef:c3:5a:fa:29:0b:af:6d: 66:ab:72:cd:ae:9e:99:80:18:f5:db:05:c9:72:00: 65:38:46:1f:0a:12:c6:89:8b:a3:77:96:55:c5:3a: 82:43:99:fd:dc:c7:b9:30:98:99:5f:29:db:46:10: 1c:52:73:b7:ed:da:0a:1f:c0:4b:ef:b9:57:24:f6: 38:98:6a:dd:c7:77:92:72:27:4c:3d:cc:98:f9:a8: 6b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:3F:9F:6E:B0:C3:A6:3C:AB:5F:75:6D:37:20:95:64:C1:59:36:46 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cz-fbrDDpjyrX3VtNyCVZMFZNkY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.16.0/21 Signature Algorithm: sha256WithRSAEncryption af:b4:48:c4:81:73:01:f6:26:e5:c5:1a:83:0b:d9:a7:a0:4d: de:dc:ad:80:94:3d:eb:a8:6a:02:40:73:73:23:1a:46:5c:04: 41:4e:b5:29:34:d1:9a:92:b7:0c:46:1b:d1:19:18:2b:5b:4a: 7f:4e:6e:84:89:a6:63:81:fd:06:be:e6:eb:40:3e:bd:72:ed: 93:2a:5d:c4:a8:4f:13:b3:d1:6b:e1:66:28:7a:d5:c0:d9:a3: 2d:c7:84:3e:0d:d5:e4:f8:72:3c:8d:02:71:bb:bd:8d:af:5b: 65:d0:eb:52:48:a8:8d:ad:3d:09:db:35:f6:d7:cc:94:c5:b4: b9:f2:3f:b9:5b:84:0b:c4:51:63:de:a8:d2:36:29:54:44:3a: c3:e2:2e:78:a0:02:50:3a:cb:a5:74:30:c9:2a:63:d4:d5:14: 48:8c:f9:31:43:e5:bd:f3:fd:55:de:e7:90:ba:4c:4d:7e:4b: 9b:6a:71:be:d7:cd:5c:4a:9e:e7:58:8f:d2:a1:ca:c5:cd:78: 38:ac:46:3c:66:1e:3a:bc:7d:74:99:fa:32:f7:f4:d9:bc:b3: 24:70:0e:0d:87:76:a9:f9:af:09:1b:3d:49:53:cd:c3:38:dc: e3:62:a9:92:bd:b8:21:47:e0:29:0f:cf:ee:56:25:9f:ad:1d: b3:a6:84:97 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKT8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA2MThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDczM0Y5RjZFQjBDM0E2 M0NBQjVGNzU2RDM3MjA5NTY0QzE1OTM2NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEWK3EK9khwa9pxcn+Umf6la0X4q8EBK6rOMFP28TLgxLA/HuX JWwXoFjpUjI7T27m8d09XHeE72FkYxT379/eggAHMBcRboMDZ2gpuQFQZgBy+JeH vJSS7e1K7eseNyQpTjsIm+fGbi86y+vrwO+jmaR5iNgo8M5qdljomCNY8uvAW6LC FZPqXmXKfiKTRxxUy7XE7QAA8LN9uZtJz8Z55yov1TUyq6EjRLbvw1r6KQuvbWar cs2unpmAGPXbBclyAGU4Rh8KEsaJi6N3llXFOoJDmf3cx7kwmJlfKdtGEBxSc7ft 2gofwEvvuVck9jiYat3Hd5JyJ0w9zJj5qGvpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUcz+fbrDDpjyrX3VtNyCVZMFZNkYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2N6LWZickREcGp5clgzVnRO eUNWWk1GWk5rWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wxAwDQYJKoZIhvcNAQELBQADggEBAK+0SMSBcwH2JuXFGoML2aegTd7crYCUPeuo agJAc3MjGkZcBEFOtSk00ZqStwxGG9EZGCtbSn9OboSJpmOB/Qa+5utAPr1y7ZMq XcSoTxOz0WvhZih61cDZoy3HhD4N1eT4cjyNAnG7vY2vW2XQ61JIqI2tPQnbNfbX zJTFtLnyP7lbhAvEUWPeqNI2KVREOsPiLnigAlA6y6V0MMkqY9TVFEiM+TFD5b3z /VXe55C6TE1+S5tqcb7XzVxKnudYj9KhysXNeDisRjxmHjq8fXSZ+jL39Nm8syRw Dg2Hdqn5rwkbPUlTzcM43ONiqZK9uCFH4CkPz+5WJZ+tHbOmhJc= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:06 2024 by rpki-client on console-ams.rpki-client.org