$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hZmeAB8BhwJnaWKUIgYEquAROYE.roa File: hZmeAB8BhwJnaWKUIgYEquAROYE.roa (raw, json) Hash identifier: mY9tYK3TPrmuYOR/XP0gyN8gGjeHf2gIwIJaV23aMpk= Subject key identifier: 85:99:9E:00:1F:01:87:02:67:69:62:94:22:06:04:AA:E0:11:39:81 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A26 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hZmeAB8BhwJnaWKUIgYEquAROYE.roa Signing time: Fri 01 Sep 2023 10:07:33 +0000 ROA not before: Fri 01 Sep 2023 10:07:33 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 123.195.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10790 (0x2a26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:33 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=85999E001F01870267696294220604AAE0113981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1c:0e:f8:88:44:61:59:0b:8d:3e:26:a1:2c: 89:40:91:a7:a3:8b:a6:7e:48:3a:b2:90:7d:a2:47: 9f:73:7b:50:11:5d:3c:9f:56:81:19:83:81:7a:b4: e3:8b:62:07:b7:14:2f:ad:2b:9b:2b:94:24:8d:28: 55:2e:0a:e4:60:13:f2:c9:b7:70:42:ec:ed:58:3c: be:b9:bb:27:8a:15:f9:6f:41:fd:9c:23:97:c4:c2: 6b:74:12:3a:51:27:f5:83:40:40:50:52:6f:71:aa: 8f:c3:46:79:55:11:25:fd:13:98:a8:f9:38:00:1f: 40:cf:28:11:a9:81:fe:16:24:f4:ce:ed:68:00:6d: 1e:2a:a3:3c:e1:f5:ad:7b:40:d8:17:fc:a9:2d:41: 1c:8d:9f:50:f7:85:97:44:f1:e0:e2:35:0b:5e:b1: 1a:ed:03:75:00:21:e7:e7:8e:a2:6f:5d:17:6f:57: 8b:28:4e:27:8b:b2:dd:b6:53:1a:8e:fe:66:03:50: 3f:27:5c:af:41:e8:07:3c:61:76:ac:de:b3:ce:34: e2:61:40:54:20:83:01:1c:ff:37:de:96:5d:4e:fb: b3:d7:f1:38:eb:66:be:b7:96:c7:e5:3b:be:88:3f: 04:e1:b2:81:79:5b:72:77:e6:4b:ab:a4:c8:8c:1b: d1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:99:9E:00:1F:01:87:02:67:69:62:94:22:06:04:AA:E0:11:39:81 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hZmeAB8BhwJnaWKUIgYEquAROYE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5a:14:8d:73:ba:00:ff:93:c2:40:dc:07:e6:1f:82:cd:75:07: 67:95:70:19:de:31:33:93:c8:16:22:30:82:60:1e:11:44:35: eb:89:b0:8e:45:1b:eb:83:2d:2a:59:df:0d:79:70:c3:d8:8c: 8c:27:73:28:e0:10:dd:54:63:4d:c7:d7:ac:5e:0a:d3:80:25: 47:71:86:6b:65:2c:94:31:2e:ae:50:e7:f0:26:bb:88:26:f3: 4a:9a:fb:6e:65:19:9b:ae:41:47:67:79:ee:9a:fe:5e:a5:a7: 7a:34:7a:35:ad:70:c5:6f:43:80:95:9b:80:11:10:5e:8c:84: b4:c6:32:7e:39:97:2b:0e:f6:4f:f3:3d:a0:b3:6b:6b:6e:e6: cc:9d:98:8d:79:85:41:81:fe:f5:c7:3e:bc:c9:0e:ad:88:4e: 2e:75:eb:e0:70:ef:dc:54:33:63:7c:15:eb:14:54:35:f6:79: 0e:1b:e9:16:3b:5b:40:1c:20:78:63:4e:61:4e:6b:76:82:ee: 46:84:5b:c8:b4:a0:26:7a:a3:35:85:85:7c:67:3d:bf:1a:d8: b1:ab:9c:80:75:c7:27:92:a7:09:90:60:e1:bd:53:2e:53:31: db:0b:9e:0c:08:4b:a3:6f:cc:80:3f:6c:3a:f7:1b:00:24:2b: 02:dd:e9:03 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICKiYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3MzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg1OTk5RTAwMUYwMTg3 MDI2NzY5NjI5NDIyMDYwNEFBRTAxMTM5ODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2HA74iERhWQuNPiahLIlAkaeji6Z+SDqykH2iR59ze1ARXTyf VoEZg4F6tOOLYge3FC+tK5srlCSNKFUuCuRgE/LJt3BC7O1YPL65uyeKFflvQf2c I5fEwmt0EjpRJ/WDQEBQUm9xqo/DRnlVESX9E5io+TgAH0DPKBGpgf4WJPTO7WgA bR4qozzh9a17QNgX/KktQRyNn1D3hZdE8eDiNQtesRrtA3UAIefnjqJvXRdvV4so TieLst22UxqO/mYDUD8nXK9B6Ac8YXas3rPONOJhQFQggwEc/zfell1O+7PX8Tjr Zr63lsflO76IPwThsoF5W3J35kurpMiMG9HNAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUhZmeAB8BhwJnaWKUIgYEquAROYEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2habWVBQjhCaHdKbmFXS1VJ Z1lFcXVBUk9ZRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB7 wzANBgkqhkiG9w0BAQsFAAOCAQEAWhSNc7oA/5PCQNwH5h+CzXUHZ5VwGd4xM5PI FiIwgmAeEUQ164mwjkUb64MtKlnfDXlww9iMjCdzKOAQ3VRjTcfXrF4K04AlR3GG a2UslDEurlDn8Ca7iCbzSpr7bmUZm65BR2d57pr+XqWnejR6Na1wxW9DgJWbgBEQ XoyEtMYyfjmXKw72T/M9oLNra27mzJ2YjXmFQYH+9cc+vMkOrYhOLnXr4HDv3FQz Y3wV6xRUNfZ5DhvpFjtbQBwgeGNOYU5rdoLuRoRbyLSgJnqjNYWFfGc9vxrYsauc gHXHJ5KnCZBg4b1TLlMx2wueDAhLo2/MgD9sOvcbACQrAt3pAw== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:06 2024 by rpki-client on console-fra.rpki-client.org