$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/fKg1l49wO1PMFSYlEKiK2lBWI0g.roa File: fKg1l49wO1PMFSYlEKiK2lBWI0g.roa (raw, json) Hash identifier: K4zQhKP7ISMw9TkGdVuDh2hVqHNVgrvIhRDmlRF+HSg= Subject key identifier: 7C:A8:35:97:8F:70:3B:53:CC:15:26:25:10:A8:8A:DA:50:56:23:48 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3122 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/fKg1l49wO1PMFSYlEKiK2lBWI0g.roa Signing time: Mon 26 Aug 2024 05:30:08 +0000 ROA not before: Mon 26 Aug 2024 05:30:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12578 (0x3122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7CA835978F703B53CC15262510A88ADA50562348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ba:d9:1c:79:e3:94:b6:78:dc:c3:53:b6:fc: 78:fc:17:63:8b:48:05:f7:92:87:e3:7d:8e:6d:92: 1a:ed:df:76:00:1a:4d:2f:3c:24:32:a8:e1:0a:d9: 6e:52:cc:50:e7:2a:c8:a5:f7:db:a3:87:c9:e1:37: 87:0f:8c:07:50:26:bf:a7:3c:fb:6b:f7:31:40:51: 9d:94:dd:c3:df:49:5d:69:2c:e4:8c:68:bf:78:2b: 45:7e:54:cb:69:32:5e:96:01:81:90:f6:0e:dc:54: 2e:22:be:1e:b5:c7:60:1f:4c:c4:7f:ca:d5:ed:c1: 7d:7e:0f:3c:19:bb:eb:85:a8:f0:b3:27:12:ce:8a: ee:14:5d:4e:04:e9:1b:fe:0f:eb:a9:c4:56:c3:72: 34:3b:e9:97:a6:11:9d:1e:f5:e9:3a:98:9b:e1:67: 28:f3:72:4f:bf:0c:58:27:bf:4d:92:2c:29:c5:41: 22:91:87:c0:87:98:6d:61:85:c2:34:5e:90:8f:11: e9:03:13:a1:0a:62:9f:3a:90:5f:9b:08:f2:d0:68: 1b:da:29:aa:21:3c:b2:64:69:39:9a:d9:1f:f9:fb: 00:af:76:e1:2b:b3:9f:c3:3a:d1:2f:c8:4a:9d:6f: 99:e9:5f:7a:0c:42:98:5e:9c:ac:dc:7d:aa:63:44: a0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:A8:35:97:8F:70:3B:53:CC:15:26:25:10:A8:8A:DA:50:56:23:48 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/fKg1l49wO1PMFSYlEKiK2lBWI0g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.124.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:f6:c6:ab:f3:d2:0d:12:84:97:a4:a7:57:cf:80:11:87:68: 2e:e7:7d:2f:9e:5a:51:e1:73:44:fc:5b:43:15:bc:d6:b7:56: f9:d6:65:db:2e:2a:0d:40:5b:d8:dd:53:bc:5e:65:cc:63:9d: 76:15:69:63:f9:c4:df:25:24:93:1a:c8:73:33:00:6d:74:f1: f6:ff:42:1b:58:22:cc:fb:b9:03:fb:42:14:ff:9d:af:3c:42: 67:e9:5b:5e:46:2f:a5:a0:b4:83:aa:08:b9:43:07:7a:96:75: 23:02:de:4b:d3:3b:7a:a0:eb:d5:ef:fb:86:4a:97:0e:32:81: a7:96:a0:22:8a:ed:d0:c4:46:5b:27:b1:1d:74:01:a4:1c:ac: 5e:32:f1:41:d6:01:74:df:cb:f5:5a:13:ff:a3:e5:7a:0a:30: a1:65:32:d7:1f:ef:a8:f7:51:db:59:e9:56:13:5a:f8:a8:28: 84:ae:9b:ab:96:cd:01:0e:64:84:f5:eb:73:7b:98:02:b8:1c: 56:c8:95:8a:73:ce:43:09:65:11:ab:3e:66:69:97:85:20:bb: 64:14:74:fb:b1:d4:9c:f6:24:5a:4a:3c:ad:78:9b:ee:d1:fb: 2f:53:4f:c6:7e:f5:b3:54:0b:ad:25:f8:eb:6a:b0:e3:c9:50: 66:57:7d:01 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMSIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdDQTgzNTk3OEY3MDNC NTNDQzE1MjYyNTEwQTg4QURBNTA1NjIzNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRutkceeOUtnjcw1O2/Hj8F2OLSAX3kofjfY5tkhrt33YAGk0v PCQyqOEK2W5SzFDnKsil99ujh8nhN4cPjAdQJr+nPPtr9zFAUZ2U3cPfSV1pLOSM aL94K0V+VMtpMl6WAYGQ9g7cVC4ivh61x2AfTMR/ytXtwX1+DzwZu+uFqPCzJxLO iu4UXU4E6Rv+D+upxFbDcjQ76ZemEZ0e9ek6mJvhZyjzck+/DFgnv02SLCnFQSKR h8CHmG1hhcI0XpCPEekDE6EKYp86kF+bCPLQaBvaKaohPLJkaTma2R/5+wCvduEr s5/DOtEvyEqdb5npX3oMQphenKzcfapjRKA1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUfKg1l49wO1PMFSYlEKiK2lBWI0gwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2ZLZzFsNDl3TzFQTUZTWWxF S2lLMmxCV0kwZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6XwwDQYJKoZIhvcNAQELBQADggEBAI/2xqvz0g0ShJekp1fPgBGHaC7nfS+eWlHh c0T8W0MVvNa3VvnWZdsuKg1AW9jdU7xeZcxjnXYVaWP5xN8lJJMayHMzAG108fb/ QhtYIsz7uQP7QhT/na88QmfpW15GL6WgtIOqCLlDB3qWdSMC3kvTO3qg69Xv+4ZK lw4ygaeWoCKK7dDERlsnsR10AaQcrF4y8UHWAXTfy/VaE/+j5XoKMKFlMtcf76j3 UdtZ6VYTWvioKISum6uWzQEOZIT163N7mAK4HFbIlYpzzkMJZRGrPmZpl4Ugu2QU dPux1Jz2JFpKPK14m+7R+y9TT8Z+9bNUC60l+OtqsOPJUGZXfQE= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:53 2024 by rpki-client on console-ams.rpki-client.org