$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hmsKWFxWGsBn_zEXxnK-slv8yU8.roa File: hmsKWFxWGsBn_zEXxnK-slv8yU8.roa (raw, json) Hash identifier: XjT/63giKR6Adorq/soZTPxpAu/KGe9Ckryuv8KmmGU= Subject key identifier: 86:6B:0A:58:5C:56:1A:C0:67:FF:31:17:C6:72:BE:B2:5B:FC:C9:4F Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A68 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hmsKWFxWGsBn_zEXxnK-slv8yU8.roa Signing time: Fri 01 Sep 2023 10:07:52 +0000 ROA not before: Fri 01 Sep 2023 10:07:52 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 180.177.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10856 (0x2a68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:52 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=866B0A585C561AC067FF3117C672BEB25BFCC94F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ae:3d:00:47:5b:1e:a1:bf:1f:c6:9d:58:b6: 7e:b9:f2:ed:08:0a:0c:22:6c:60:da:12:bd:fe:a3: 7a:3c:42:4f:8e:3a:da:76:c9:a9:1a:7c:18:56:e2: c5:01:d4:69:a6:f3:0f:02:ca:f4:74:35:de:43:95: 33:23:3b:3f:4d:47:16:b6:7e:f5:75:fa:5a:68:25: 36:20:f6:22:71:5e:d0:53:c0:46:04:3c:15:57:1e: d3:9d:07:c9:54:ca:78:86:55:a4:7e:43:5b:c6:da: 22:0e:2f:e5:fd:e4:4c:32:7e:64:37:ca:f2:a2:ed: df:5b:5e:bb:ea:ba:87:35:9e:1c:8b:ff:0f:1b:52: 6d:89:66:7c:ba:78:93:1e:3d:35:60:dd:39:ab:22: d6:dd:29:1e:48:db:19:c9:19:79:45:54:ea:6d:1e: 9a:dc:da:3c:39:b1:90:c4:9e:98:64:16:e7:62:73: 0b:29:15:c9:f9:18:ac:79:da:d6:0f:08:78:c9:c9: 21:9c:8c:b7:ae:da:98:57:9f:88:7c:82:ca:a6:56: 93:39:c7:85:61:83:5a:7e:ca:b7:16:a3:a9:da:4b: 07:2b:ea:6f:62:7a:df:43:35:f9:ea:de:6d:53:4d: 08:f3:81:62:f3:0b:07:2f:1a:10:d8:7e:63:46:b4: 2a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:6B:0A:58:5C:56:1A:C0:67:FF:31:17:C6:72:BE:B2:5B:FC:C9:4F X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hmsKWFxWGsBn_zEXxnK-slv8yU8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.208.0/22 Signature Algorithm: sha256WithRSAEncryption 01:8b:30:54:cd:ee:f2:a8:3d:32:e7:70:d4:cd:c4:d7:62:94: a1:96:6a:bd:66:30:3b:97:ff:bb:39:e8:df:5a:9f:f6:6b:27: 55:09:02:f6:33:cb:64:06:05:a8:4e:5b:a0:20:ce:52:7b:a9: 16:a9:13:04:a9:e8:06:04:ae:72:56:c9:dd:7e:fe:2b:df:a2: 97:5e:10:e2:2a:9a:19:37:8e:49:e5:22:6d:8a:42:69:88:7b: 23:c1:c3:f9:45:56:d8:6a:70:c5:36:ee:b0:28:3c:e8:47:59: 26:6f:da:6e:30:62:c2:40:d6:e6:26:49:55:c0:6c:2b:93:17: ce:a1:f5:dc:b9:40:7a:3c:3f:c0:2f:0b:7c:ad:fb:a7:42:e3: 96:e9:a6:0b:31:14:c4:6b:59:16:13:e1:8e:65:12:28:e8:13: c5:b1:0c:30:3c:17:2c:11:1c:c6:c9:6d:69:88:9c:67:d8:c1: 7a:42:4e:b1:9b:bd:ff:cc:89:b6:00:aa:d7:00:ae:35:1a:90: e4:e4:f6:75:f8:4e:33:47:22:2b:66:b5:66:80:7a:a6:ab:6c: f3:16:0d:89:9d:23:e7:ab:3d:f8:ee:f1:31:10:a0:47:7e:51: ea:cd:70:5f:e3:38:b9:a6:ba:85:3a:1f:95:11:6e:2a:ec:7d: 30:66:cd:5e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKmgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3NTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg2NkIwQTU4NUM1NjFB QzA2N0ZGMzExN0M2NzJCRUIyNUJGQ0M5NEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsrj0AR1seob8fxp1Ytn658u0ICgwibGDaEr3+o3o8Qk+OOtp2 yakafBhW4sUB1Gmm8w8CyvR0Nd5DlTMjOz9NRxa2fvV1+lpoJTYg9iJxXtBTwEYE PBVXHtOdB8lUyniGVaR+Q1vG2iIOL+X95EwyfmQ3yvKi7d9bXrvquoc1nhyL/w8b Um2JZny6eJMePTVg3TmrItbdKR5I2xnJGXlFVOptHprc2jw5sZDEnphkFudicwsp Fcn5GKx52tYPCHjJySGcjLeu2phXn4h8gsqmVpM5x4Vhg1p+yrcWo6naSwcr6m9i et9DNfnq3m1TTQjzgWLzCwcvGhDYfmNGtCpVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUhmsKWFxWGsBn/zEXxnK+slv8yU8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2htc0tXRnhXR3NCbl96RVh4 bkstc2x2OHlVOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 sdAwDQYJKoZIhvcNAQELBQADggEBAAGLMFTN7vKoPTLncNTNxNdilKGWar1mMDuX /7s56N9an/ZrJ1UJAvYzy2QGBahOW6AgzlJ7qRapEwSp6AYErnJWyd1+/ivfopde EOIqmhk3jknlIm2KQmmIeyPBw/lFVthqcMU27rAoPOhHWSZv2m4wYsJA1uYmSVXA bCuTF86h9dy5QHo8P8AvC3yt+6dC45bppgsxFMRrWRYT4Y5lEijoE8WxDDA8FywR HMbJbWmInGfYwXpCTrGbvf/MibYAqtcArjUakOTk9nX4TjNHIitmtWaAeqarbPMW DYmdI+erPfju8TEQoEd+UerNcF/jOLmmuoU6H5URbirsfTBmzV4= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:06 2024 by rpki-client on console-fra.rpki-client.org