$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/glr-_7UKLdevwY1xNtKohqL0bI4.roa File: glr-_7UKLdevwY1xNtKohqL0bI4.roa (raw, json) Hash identifier: GNsfxFV44CDnZzD8qPyuHY++M3RDAaT7B4lmxrFSFCg= Subject key identifier: 82:5A:FE:FF:B5:0A:2D:D7:AF:C1:8D:71:36:D2:A8:86:A2:F4:6C:8E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2AE2 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/glr-_7UKLdevwY1xNtKohqL0bI4.roa Signing time: Fri 01 Sep 2023 10:08:24 +0000 ROA not before: Fri 01 Sep 2023 10:08:24 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.232.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10978 (0x2ae2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:24 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=825AFEFFB50A2DD7AFC18D7136D2A886A2F46C8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:09:c5:38:29:82:46:f8:34:70:0b:b5:34:b5: 5f:cd:38:b1:4f:a1:4d:1f:d8:46:62:65:e3:f8:1f: ca:09:71:78:b4:0e:61:8e:18:65:87:a3:da:c4:66: 77:eb:e6:ef:6c:27:fd:be:98:88:5b:94:7d:0a:c8: b7:bc:41:ad:38:f1:a8:47:ca:8a:db:38:84:67:b3: a4:f8:e4:38:91:77:f0:13:28:17:9d:e1:20:b9:00: e5:ce:4f:4a:7d:16:2d:92:9a:51:da:d3:d7:97:32: 7b:4d:63:65:26:f0:22:8b:2f:95:8e:a7:e6:3c:04: 06:7f:cf:fa:5c:0c:c8:f9:47:19:64:ba:c3:a7:66: 59:82:91:f1:f2:a0:b8:bb:4b:22:8e:da:50:1c:7d: 62:b2:a0:c1:94:d9:f1:f2:32:f0:c1:39:3d:2c:13: 54:01:7f:cd:2d:99:b7:55:e8:f8:a3:60:9b:9b:c9: c8:29:e6:60:77:42:11:76:9b:0a:85:d1:4f:0c:f4: 0d:84:f1:3d:50:d6:40:82:a0:d3:83:8f:0a:38:ae: 29:a3:a6:fd:70:7f:a6:b7:71:ea:b6:79:a2:00:5f: fb:d4:ea:bb:61:1e:b5:ee:b1:f3:3e:ce:69:a6:62: 23:3c:10:b4:58:e4:15:9f:4a:c7:56:5e:15:96:30: 77:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:5A:FE:FF:B5:0A:2D:D7:AF:C1:8D:71:36:D2:A8:86:A2:F4:6C:8E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/glr-_7UKLdevwY1xNtKohqL0bI4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.208.0/21 Signature Algorithm: sha256WithRSAEncryption 80:5d:52:09:c9:97:d7:f9:01:1b:de:c7:93:a0:76:38:1b:2c: 79:32:c1:9b:ed:ad:a9:2a:6f:7c:6a:b5:d9:81:24:26:e2:85: 21:94:25:7e:e3:02:bd:60:4d:31:40:47:5a:49:b9:65:0f:8c: 48:a9:7d:4a:37:d7:ad:77:79:8d:4f:f2:21:a5:17:a5:3d:19: 8e:d5:91:78:3a:2d:a3:e5:81:22:3c:af:1f:99:b2:d4:4b:05: 61:74:06:68:00:3a:33:0e:1c:f8:8d:d0:09:85:53:10:88:77: 77:ab:f2:0d:86:84:d3:4b:30:fa:c9:1f:68:80:70:96:b3:f8: 57:b3:27:de:f4:35:eb:e2:90:71:b6:a7:28:a4:6e:8b:d7:22: fb:19:ff:a1:7c:10:c5:ac:85:1d:17:46:3e:d4:34:f0:df:88: e7:b4:95:78:bd:d3:0f:10:38:db:d6:8f:6e:ac:9a:26:f2:a1: 97:46:c0:30:e3:c2:40:5d:cc:f2:3e:39:b3:e7:df:83:1e:68: 75:05:7c:ab:0b:76:ab:90:be:46:31:9c:e8:13:f4:1a:25:4f: 59:65:39:13:90:9d:72:d4:df:c0:18:49:25:d5:90:ba:f3:01: b1:e9:20:92:29:f8:8f:c9:ad:fb:ba:d8:d2:98:3f:08:31:78: 25:11:1e:18 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKuIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MjRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDgyNUFGRUZGQjUwQTJE RDdBRkMxOEQ3MTM2RDJBODg2QTJGNDZDOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDoCcU4KYJG+DRwC7U0tV/NOLFPoU0f2EZiZeP4H8oJcXi0DmGO GGWHo9rEZnfr5u9sJ/2+mIhblH0KyLe8Qa048ahHyorbOIRns6T45DiRd/ATKBed 4SC5AOXOT0p9Fi2SmlHa09eXMntNY2Um8CKLL5WOp+Y8BAZ/z/pcDMj5RxlkusOn ZlmCkfHyoLi7SyKO2lAcfWKyoMGU2fHyMvDBOT0sE1QBf80tmbdV6PijYJubycgp 5mB3QhF2mwqF0U8M9A2E8T1Q1kCCoNODjwo4rimjpv1wf6a3ceq2eaIAX/vU6rth HrXusfM+zmmmYiM8ELRY5BWfSsdWXhWWMHfTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUglr+/7UKLdevwY1xNtKohqL0bI4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2dsci1fN1VLTGRldndZMXhO dEtvaHFMMGJJNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6NAwDQYJKoZIhvcNAQELBQADggEBAIBdUgnJl9f5ARvex5OgdjgbLHkywZvtrakq b3xqtdmBJCbihSGUJX7jAr1gTTFAR1pJuWUPjEipfUo31613eY1P8iGlF6U9GY7V kXg6LaPlgSI8rx+ZstRLBWF0BmgAOjMOHPiN0AmFUxCId3er8g2GhNNLMPrJH2iA cJaz+FezJ970NevikHG2pyikbovXIvsZ/6F8EMWshR0XRj7UNPDfiOe0lXi90w8Q ONvWj26smibyoZdGwDDjwkBdzPI+ObPn34MeaHUFfKsLdquQvkYxnOgT9BolT1ll OROQnXLU38AYSSXVkLrzAbHpIJIp+I/Jrfu62NKYPwgxeCURHhg= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:06 2024 by rpki-client on console-ams.rpki-client.org