$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gV7K8h2MnbRiPWjm6Z22UOVyXNs.roa File: gV7K8h2MnbRiPWjm6Z22UOVyXNs.roa (raw, json) Hash identifier: 6lxmOKJwMj3+Acx8khci3iRyy+fA42dPAEpPE6YLCCo= Subject key identifier: 81:5E:CA:F2:1D:8C:9D:B4:62:3D:68:E6:E9:9D:B6:50:E5:72:5C:DB Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 28DD Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gV7K8h2MnbRiPWjm6Z22UOVyXNs.roa Signing time: Fri 01 Sep 2023 10:05:51 +0000 ROA not before: Fri 01 Sep 2023 10:05:51 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.194.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10461 (0x28dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:51 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=815ECAF21D8C9DB4623D68E6E99DB650E5725CDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b7:db:d7:c7:77:d8:b9:20:d7:39:8d:a1:d8: 9d:04:b1:2f:19:32:ed:cc:4a:1a:3f:e9:38:1a:10: d9:76:6e:c4:81:d1:27:58:db:33:21:3c:36:81:3a: 25:77:ff:50:36:d9:be:78:bb:d0:86:94:36:38:1f: 57:cb:d4:99:c8:d1:f1:73:7d:67:54:05:de:ad:cc: be:3a:90:c0:13:dc:3e:a3:ef:b7:fe:c3:fd:08:89: 5a:0d:de:d3:d9:78:7b:f2:54:41:7b:18:5b:ad:c7: 7b:63:11:95:02:34:20:6e:66:d7:bc:41:e2:d5:bb: 3d:29:6f:5d:1f:91:9b:55:73:de:28:5f:bb:87:09: 90:86:aa:cc:16:7f:df:0f:8f:47:db:f8:82:cd:d6: 4e:be:0a:e1:42:ac:1a:79:35:71:b5:54:ab:4c:07: 6b:1e:dc:6f:92:24:3d:41:2a:e7:ba:b2:c3:2d:24: 71:ac:c3:08:db:fd:3f:c6:0b:8e:45:08:54:88:36: 95:37:9c:0c:cf:70:1f:22:f0:97:61:b9:c8:1e:46: 4e:ac:77:69:66:a7:de:c7:5c:e5:34:c9:a1:df:a8: 98:bb:90:06:40:a6:3a:d7:da:8a:92:d8:70:b6:94: fb:ef:38:53:d9:5f:96:97:be:b7:95:0e:1f:93:c1: 7c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:5E:CA:F2:1D:8C:9D:B4:62:3D:68:E6:E9:9D:B6:50:E5:72:5C:DB X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gV7K8h2MnbRiPWjm6Z22UOVyXNs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.56.0/21 Signature Algorithm: sha256WithRSAEncryption 0f:5c:db:15:b1:1c:e5:82:0a:64:b3:dc:b5:b1:0d:70:bf:16: fa:40:45:15:d5:f4:e8:0e:fa:6b:17:03:ef:56:71:10:ec:ec: 47:a7:82:1a:b7:35:e2:33:dd:2c:82:4b:2d:4b:b7:36:21:6a: 6b:a5:ea:f3:fb:ae:af:ea:d0:69:aa:10:04:10:0b:f1:d4:dc: 15:40:8f:c4:d6:db:4c:fc:53:6c:1b:32:3a:60:a6:16:ef:44: e4:e7:78:10:59:75:6a:56:0a:7e:25:7b:96:a0:98:09:fa:a3: 0f:e0:ae:40:b2:2d:e7:91:a5:ee:9a:ae:63:57:fa:fe:22:3d: e7:50:2d:92:e1:41:19:40:e1:f5:da:97:d0:8a:6f:8e:50:21: 00:41:43:f0:81:26:b8:e2:75:ed:05:ed:da:51:5d:30:b9:f5: e3:72:dd:8f:80:df:c7:af:55:2c:68:05:be:26:da:1f:01:5c: 4c:2c:f6:02:f7:04:ab:25:20:c9:69:86:b5:2c:d9:bc:95:2c: 8f:0a:be:37:4a:ae:2c:28:57:1e:09:2d:42:83:51:75:1f:3a: e1:51:e8:74:de:eb:ee:4f:18:a5:37:2e:d6:a0:79:33:35:6f: 90:41:70:3a:23:c9:e6:14:5f:c3:8c:b7:57:77:c6:c6:ba:78: 89:86:56:b2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKN0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1NTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDgxNUVDQUYyMUQ4QzlE QjQ2MjNENjhFNkU5OURCNjUwRTU3MjVDREIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYt9vXx3fYuSDXOY2h2J0EsS8ZMu3MSho/6TgaENl2bsSB0SdY 2zMhPDaBOiV3/1A22b54u9CGlDY4H1fL1JnI0fFzfWdUBd6tzL46kMAT3D6j77f+ w/0IiVoN3tPZeHvyVEF7GFutx3tjEZUCNCBuZte8QeLVuz0pb10fkZtVc94oX7uH CZCGqswWf98Pj0fb+ILN1k6+CuFCrBp5NXG1VKtMB2se3G+SJD1BKue6ssMtJHGs wwjb/T/GC45FCFSINpU3nAzPcB8i8JdhucgeRk6sd2lmp97HXOU0yaHfqJi7kAZA pjrX2oqS2HC2lPvvOFPZX5aXvreVDh+TwXyhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUgV7K8h2MnbRiPWjm6Z22UOVyXNswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2dWN0s4aDJNbmJSaVBXam02 WjIyVU9WeVhOcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wjgwDQYJKoZIhvcNAQELBQADggEBAA9c2xWxHOWCCmSz3LWxDXC/FvpARRXV9OgO +msXA+9WcRDs7Eenghq3NeIz3SyCSy1LtzYhamul6vP7rq/q0GmqEAQQC/HU3BVA j8TW20z8U2wbMjpgphbvROTneBBZdWpWCn4le5agmAn6ow/grkCyLeeRpe6armNX +v4iPedQLZLhQRlA4fXal9CKb45QIQBBQ/CBJrjide0F7dpRXTC59eNy3Y+A38ev VSxoBb4m2h8BXEws9gL3BKslIMlphrUs2byVLI8KvjdKriwoVx4JLUKDUXUfOuFR 6HTe6+5PGKU3LtageTM1b5BBcDojyeYUX8OMt1d3xsa6eImGVrI= -----END CERTIFICATE-----Generated at Mon Jun 3 10:15:31 2024 by rpki-client on console-fra.rpki-client.org