$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/fVZd0PTlr8WjdmIhLKpFBOVchqY.roa File: fVZd0PTlr8WjdmIhLKpFBOVchqY.roa (raw, json) Hash identifier: +uo53/t4NyXkBu4dlU2HZZkOTmH63W1uTC0r0Aw7dDo= Subject key identifier: 7D:56:5D:D0:F4:E5:AF:C5:A3:76:62:21:2C:AA:45:04:E5:5C:86:A6 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3151 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/fVZd0PTlr8WjdmIhLKpFBOVchqY.roa Signing time: Mon 26 Aug 2024 05:30:21 +0000 ROA not before: Mon 26 Aug 2024 05:30:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12625 (0x3151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7D565DD0F4E5AFC5A37662212CAA4504E55C86A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ee:a5:57:15:fe:f5:c6:a0:9b:d9:a1:dd:13: d6:30:e2:1e:42:d6:91:f1:2a:8a:63:b7:36:8d:b0: 3a:cc:93:28:70:ff:43:10:0b:b3:a6:79:f6:64:5d: ef:71:7a:60:d2:90:65:87:f3:a5:cf:17:f0:6d:af: 08:d9:f2:05:b7:26:ad:fa:59:8d:fd:80:ee:11:ca: 50:43:65:31:3e:69:24:32:f9:e6:42:9e:d4:bf:63: 5c:e0:fd:27:04:47:84:04:56:4c:63:45:18:4b:09: d8:9d:03:a4:96:b3:a8:1b:80:bd:9a:00:75:29:7e: c1:ab:87:3c:8b:37:eb:fa:55:12:56:ed:4a:a0:f6: 5b:51:c1:cf:1e:46:29:59:62:7e:84:46:ab:5e:b7: 6c:da:12:d5:02:2e:b3:69:2f:98:71:da:6a:22:82: 86:80:e0:fe:c5:be:80:c6:22:60:44:66:b0:2a:a1: 65:6b:1a:54:af:82:8b:61:2c:68:9b:33:32:76:7c: d7:67:a8:98:4c:b1:66:5c:87:80:b7:b6:c9:c9:db: 3c:0b:9c:c4:78:98:73:6c:c1:52:d7:07:0d:95:10: 6a:9c:b8:28:fd:ff:16:af:7d:f3:e8:db:5f:ba:8b: 0d:6c:92:82:78:c1:b0:6b:2c:2f:67:c8:49:b7:29: 18:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:56:5D:D0:F4:E5:AF:C5:A3:76:62:21:2C:AA:45:04:E5:5C:86:A6 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/fVZd0PTlr8WjdmIhLKpFBOVchqY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.151.0/24 Signature Algorithm: sha256WithRSAEncryption 63:a6:ae:3c:f3:c1:40:cb:4b:15:c0:81:50:32:2b:e0:25:c1: 21:f9:83:ea:a9:b5:e0:f5:2f:29:d6:e7:5a:d4:d1:8c:51:64: 21:95:01:cc:34:b8:b7:29:db:ce:c8:90:b1:fb:d3:ad:fb:3f: 3f:19:08:76:91:86:30:f6:55:e1:51:cd:aa:9d:ea:80:7f:e7: 5c:3a:3b:48:61:c6:50:8e:04:2b:ce:49:44:5a:5f:31:53:3f: 76:8c:48:07:13:c7:58:51:03:23:af:15:ec:d9:1b:4c:b2:3e: b8:04:06:39:0d:7e:8b:c1:70:a3:69:31:35:e5:4e:aa:cb:6e: 43:4c:58:d3:15:63:f1:c8:d3:bc:47:d4:fc:32:61:2f:9b:72: b9:c1:b1:94:d2:ec:07:84:2b:df:69:ce:7f:7e:e9:98:07:30: e8:7f:e2:bb:c9:1e:33:70:dc:1f:88:c5:ec:94:42:1d:36:70: 6b:29:03:7b:3e:d5:c4:89:d7:64:53:38:ee:ef:0b:82:d7:82: 92:ab:01:13:66:33:f4:28:69:91:69:36:8f:ba:12:19:33:a3: 21:23:84:f6:9d:75:10:84:bd:dd:6c:02:13:a4:7b:ad:72:27: 49:7b:75:6c:2d:c7:1d:eb:35:6d:fd:de:7c:9c:8d:95:17:0e: b1:59:6f:b0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMVEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdENTY1REQwRjRFNUFG QzVBMzc2NjIyMTJDQUE0NTA0RTU1Qzg2QTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC87qVXFf71xqCb2aHdE9Yw4h5C1pHxKopjtzaNsDrMkyhw/0MQ C7OmefZkXe9xemDSkGWH86XPF/BtrwjZ8gW3Jq36WY39gO4RylBDZTE+aSQy+eZC ntS/Y1zg/ScER4QEVkxjRRhLCdidA6SWs6gbgL2aAHUpfsGrhzyLN+v6VRJW7Uqg 9ltRwc8eRilZYn6ERqtet2zaEtUCLrNpL5hx2moigoaA4P7FvoDGImBEZrAqoWVr GlSvgothLGibMzJ2fNdnqJhMsWZch4C3tsnJ2zwLnMR4mHNswVLXBw2VEGqcuCj9 /xavffPo21+6iw1skoJ4wbBrLC9nyEm3KRjBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUfVZd0PTlr8WjdmIhLKpFBOVchqYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2ZWWmQwUFRscjhXamRtSWhM S3BGQk9WY2hxWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AZcwDQYJKoZIhvcNAQELBQADggEBAGOmrjzzwUDLSxXAgVAyK+AlwSH5g+qpteD1 LynW51rU0YxRZCGVAcw0uLcp287IkLH70637Pz8ZCHaRhjD2VeFRzaqd6oB/51w6 O0hhxlCOBCvOSURaXzFTP3aMSAcTx1hRAyOvFezZG0yyPrgEBjkNfovBcKNpMTXl TqrLbkNMWNMVY/HI07xH1PwyYS+bcrnBsZTS7AeEK99pzn9+6ZgHMOh/4rvJHjNw 3B+IxeyUQh02cGspA3s+1cSJ12RTOO7vC4LXgpKrARNmM/QoaZFpNo+6EhkzoyEj hPaddRCEvd1sAhOke61yJ0l7dWwtxx3rNW393nycjZUXDrFZb7A= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:54 2024 by rpki-client on console-fra.rpki-client.org