$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i1jTh3jF_r3-sj0EnxFVAD8A-24.roa File: i1jTh3jF_r3-sj0EnxFVAD8A-24.roa (raw, json) Hash identifier: aj85mqM0dCH5hEsWhREBg/PoE//gxvWq5M13NOxFkRM= Subject key identifier: 8B:58:D3:87:78:C5:FE:BD:FE:B2:3D:04:9F:11:55:00:3F:00:FB:6E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 28ED Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i1jTh3jF_r3-sj0EnxFVAD8A-24.roa Signing time: Fri 01 Sep 2023 10:05:56 +0000 ROA not before: Fri 01 Sep 2023 10:05:56 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 211.76.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10477 (0x28ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:56 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8B58D38778C5FEBDFEB23D049F1155003F00FB6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a5:81:3e:a1:1d:f1:37:c4:32:d1:b4:85:bf: 3b:1e:5f:c0:bd:26:39:e6:25:a8:23:4a:1d:b0:d7: 75:8d:63:18:d5:a5:ec:a7:e0:db:e0:31:94:63:d9: 6e:4a:0c:d5:85:a3:fb:7c:c5:bb:03:85:e9:27:a0: 41:9a:c5:c3:d5:30:f6:95:a1:93:12:fb:8c:86:10: 47:6b:1a:4a:0e:67:58:48:86:dd:f9:c3:ec:a5:e7: e7:7d:54:39:1f:12:d5:80:b8:27:39:34:78:5d:82: 38:90:e2:b4:bb:60:6d:b9:04:13:00:05:3f:c9:4e: df:79:23:06:ca:b5:63:94:e6:c1:24:fc:17:1b:d0: a8:26:54:b0:cc:e2:fa:a7:ee:d6:bc:9b:6a:7f:80: 75:1e:cc:ba:2c:9d:c3:54:86:d0:54:70:4f:f7:7a: e2:b3:1b:dc:8b:56:2c:5c:c6:b4:73:2d:bf:9e:85: 26:93:dd:6e:26:2e:8a:e0:ce:cc:5a:48:23:d1:54: 46:df:cf:66:1f:6d:29:85:79:df:db:83:61:98:e2: 54:df:a8:00:a1:94:79:22:c8:ba:2e:fd:f0:85:30: f4:de:8c:29:cc:fb:bb:e7:1d:75:6d:51:b7:b6:dc: ed:61:9a:86:ce:25:46:ac:2d:d3:f5:05:08:0e:cc: 82:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:58:D3:87:78:C5:FE:BD:FE:B2:3D:04:9F:11:55:00:3F:00:FB:6E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i1jTh3jF_r3-sj0EnxFVAD8A-24.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.112.0/24 Signature Algorithm: sha256WithRSAEncryption 93:e5:8e:81:f3:ac:9f:55:10:32:74:a3:cd:8d:de:51:1b:c9: a0:91:3d:72:43:c3:9f:1a:18:de:f9:fb:da:2f:db:4e:3a:f9: 1b:7d:19:00:66:e9:32:47:ed:fc:5d:12:db:7c:67:7b:4c:84: a2:a2:a4:d2:0c:f9:97:7d:5b:92:ce:64:c0:e8:2e:85:17:0d: 52:05:f9:3d:58:9a:74:bb:91:80:6c:e9:28:39:c4:7f:c7:96: b5:66:26:2a:5f:a1:d9:a4:8a:82:79:fb:cc:f9:31:34:cd:51: b1:9b:47:f1:40:1c:ae:f8:16:52:e6:79:a7:de:05:d2:8c:e3: c0:1a:9f:5c:96:6c:83:fc:93:b5:00:9f:3f:d3:7f:55:8d:8e: 92:a4:8f:43:62:22:30:d3:d7:99:6a:55:fc:75:6c:f5:80:24: d6:0b:b2:b8:06:42:a9:9d:01:2c:c8:15:ed:b6:55:b0:93:4f: 4c:2b:23:ef:1e:d7:a8:2e:b6:52:3c:af:a5:58:82:04:54:ff: f1:40:47:93:6e:ab:a9:86:c2:17:cd:44:8a:aa:e1:10:09:c0: 16:46:b3:fb:47:94:77:47:c8:a6:38:e2:88:b9:9d:ea:9d:76: 75:fb:df:06:2b:7b:eb:a6:9e:18:13:1d:d7:a3:39:ff:52:d8: be:3a:a8:af -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKO0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1NTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhCNThEMzg3NzhDNUZF QkRGRUIyM0QwNDlGMTE1NTAwM0YwMEZCNkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1pYE+oR3xN8Qy0bSFvzseX8C9JjnmJagjSh2w13WNYxjVpeyn 4NvgMZRj2W5KDNWFo/t8xbsDheknoEGaxcPVMPaVoZMS+4yGEEdrGkoOZ1hIht35 w+yl5+d9VDkfEtWAuCc5NHhdgjiQ4rS7YG25BBMABT/JTt95IwbKtWOU5sEk/Bcb 0KgmVLDM4vqn7ta8m2p/gHUezLosncNUhtBUcE/3euKzG9yLVixcxrRzLb+ehSaT 3W4mLorgzsxaSCPRVEbfz2YfbSmFed/bg2GY4lTfqAChlHkiyLou/fCFMPTejCnM +7vnHXVtUbe23O1hmobOJUasLdP1BQgOzIJfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUi1jTh3jF/r3+sj0EnxFVAD8A+24wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2kxalRoM2pGX3IzLXNqMEVu eEZWQUQ4QS0yNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT THAwDQYJKoZIhvcNAQELBQADggEBAJPljoHzrJ9VEDJ0o82N3lEbyaCRPXJDw58a GN75+9ov2046+Rt9GQBm6TJH7fxdEtt8Z3tMhKKipNIM+Zd9W5LOZMDoLoUXDVIF +T1YmnS7kYBs6Sg5xH/HlrVmJipfodmkioJ5+8z5MTTNUbGbR/FAHK74FlLmeafe BdKM48Aan1yWbIP8k7UAnz/Tf1WNjpKkj0NiIjDT15lqVfx1bPWAJNYLsrgGQqmd ASzIFe22VbCTT0wrI+8e16gutlI8r6VYggRU//FAR5Nuq6mGwhfNRIqq4RAJwBZG s/tHlHdHyKY44oi5neqddnX73wYre+umnhgTHdejOf9S2L46qK8= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:06 2024 by rpki-client on console-fra.rpki-client.org