$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hQh1sYf0QW-62J2i06zQ2OW5Yu4.roa File: hQh1sYf0QW-62J2i06zQ2OW5Yu4.roa (raw, json) Hash identifier: YEV5xx2iboq4Mm1i+4ER0dyyYu9SeYvWkhJeLSf9XKU= Subject key identifier: 85:08:75:B1:87:F4:41:6F:BA:D8:9D:A2:D3:AC:D0:D8:E5:B9:62:EE Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2AAA Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hQh1sYf0QW-62J2i06zQ2OW5Yu4.roa Signing time: Fri 01 Sep 2023 10:08:09 +0000 ROA not before: Fri 01 Sep 2023 10:08:09 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 180.177.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10922 (0x2aaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:09 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=850875B187F4416FBAD89DA2D3ACD0D8E5B962EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d5:03:39:ac:d7:6c:2e:98:b1:46:83:cb:23: ef:45:6e:ae:27:77:b7:09:aa:21:09:d8:42:51:08: bd:31:9c:aa:58:09:7c:33:8d:a5:a8:27:4d:45:06: d2:fb:ab:86:b2:9d:be:39:4f:f4:56:c7:d1:6f:11: eb:48:0d:7f:a2:62:7d:5a:58:7e:26:92:3e:05:57: dc:5d:c0:20:7c:ab:f3:27:3a:02:c6:4b:ae:48:87: 7c:13:ab:ad:4e:ab:53:94:85:9f:e4:a8:6b:89:9f: 15:be:2f:be:e9:f1:dc:3e:09:0d:23:04:d4:72:b4: 69:dc:e1:05:78:24:e5:b2:59:d6:50:74:51:87:92: 17:00:27:1c:3b:c4:10:31:a2:f4:66:4e:38:dc:f0: 1c:40:9c:b5:a1:f4:8e:4e:23:4e:e6:3d:ed:d6:9e: 69:5c:a9:4d:d2:ec:14:f5:f0:77:8f:fe:f4:21:bd: e8:18:ff:8d:22:11:5e:5a:f3:b6:dc:e2:80:a4:63: 29:b5:fb:f1:41:e7:fb:67:d0:4e:52:09:aa:79:39: 73:9c:ef:69:e1:ce:a8:26:67:30:05:0f:92:8a:fd: 19:d0:a6:10:5e:dc:fc:f3:81:1b:24:2e:d7:e1:6f: 67:31:0b:bd:6a:2e:78:c0:d5:d9:0e:9c:d4:70:17: 9a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:08:75:B1:87:F4:41:6F:BA:D8:9D:A2:D3:AC:D0:D8:E5:B9:62:EE X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hQh1sYf0QW-62J2i06zQ2OW5Yu4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.8.0/21 Signature Algorithm: sha256WithRSAEncryption 93:f9:2b:10:1f:55:a0:33:26:56:72:76:c4:f8:ba:1c:15:b3: 32:68:85:f7:ef:b5:74:2a:86:35:52:7e:e7:77:cc:f6:86:e1: 4f:c9:ca:68:5a:04:ab:6c:76:0f:81:f6:60:46:ad:07:09:99: db:bc:bc:14:23:7c:94:07:85:b4:82:05:4f:44:87:00:63:9c: e5:60:42:35:08:9e:92:ed:50:c3:87:e7:26:51:17:f1:73:c8: d5:94:0e:fc:2f:96:1f:e7:b3:4f:78:59:62:59:14:66:ce:1e: f3:5f:e9:4e:47:07:50:2a:bb:a1:fa:4f:1b:40:87:02:57:65: 19:e0:ba:2d:56:5a:e1:28:40:c4:34:58:17:c2:15:b5:36:61: 3e:12:fb:03:0b:b4:9a:0e:e3:fb:d0:0c:15:58:62:25:3d:6d: 18:40:3b:cd:33:0f:f4:83:36:2f:e2:72:dc:9d:79:b8:11:23: 6a:3e:68:94:0f:f9:7a:7c:c1:a8:e4:6a:5d:e6:35:18:56:46: 77:6b:42:92:09:19:5d:fc:79:d7:b0:71:e6:d6:46:06:e6:35: cb:01:66:2e:90:d3:c3:1d:4e:b9:ae:56:15:bb:fc:23:72:b1: 28:b2:5b:f5:d5:01:65:bc:85:89:15:28:bf:89:15:62:b0:34: ab:d4:e7:7f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKqowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg1MDg3NUIxODdGNDQx NkZCQUQ4OURBMkQzQUNEMEQ4RTVCOTYyRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCs1QM5rNdsLpixRoPLI+9Fbq4nd7cJqiEJ2EJRCL0xnKpYCXwz jaWoJ01FBtL7q4aynb45T/RWx9FvEetIDX+iYn1aWH4mkj4FV9xdwCB8q/MnOgLG S65Ih3wTq61Oq1OUhZ/kqGuJnxW+L77p8dw+CQ0jBNRytGnc4QV4JOWyWdZQdFGH khcAJxw7xBAxovRmTjjc8BxAnLWh9I5OI07mPe3WnmlcqU3S7BT18HeP/vQhvegY /40iEV5a87bc4oCkYym1+/FB5/tn0E5SCap5OXOc72nhzqgmZzAFD5KK/RnQphBe 3PzzgRskLtfhb2cxC71qLnjA1dkOnNRwF5qHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUhQh1sYf0QW+62J2i06zQ2OW5Yu4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2hRaDFzWWYwUVctNjJKMmkw NnpRMk9XNVl1NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sQgwDQYJKoZIhvcNAQELBQADggEBAJP5KxAfVaAzJlZydsT4uhwVszJohffvtXQq hjVSfud3zPaG4U/JymhaBKtsdg+B9mBGrQcJmdu8vBQjfJQHhbSCBU9EhwBjnOVg QjUInpLtUMOH5yZRF/FzyNWUDvwvlh/ns094WWJZFGbOHvNf6U5HB1Aqu6H6TxtA hwJXZRngui1WWuEoQMQ0WBfCFbU2YT4S+wMLtJoO4/vQDBVYYiU9bRhAO80zD/SD Ni/ictydebgRI2o+aJQP+Xp8wajkal3mNRhWRndrQpIJGV38edewcebWRgbmNcsB Zi6Q08MdTrmuVhW7/CNysSiyW/XVAWW8hYkVKL+JFWKwNKvU538= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:06 2024 by rpki-client on console-fra.rpki-client.org