$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i9xO6d-rx7ZBHEwVeKquQzJpfu8.roa File: i9xO6d-rx7ZBHEwVeKquQzJpfu8.roa (raw, json) Hash identifier: NszBuIGMgL4IRq9SEzWeT+0Wm90OKM3U8Ly9oF7fX00= Subject key identifier: 8B:DC:4E:E9:DF:AB:C7:B6:41:1C:4C:15:78:AA:AE:43:32:69:7E:EF Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A35 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i9xO6d-rx7ZBHEwVeKquQzJpfu8.roa Signing time: Fri 01 Sep 2023 10:07:37 +0000 ROA not before: Fri 01 Sep 2023 10:07:37 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 123.195.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10805 (0x2a35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:37 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8BDC4EE9DFABC7B6411C4C1578AAAE4332697EEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d7:60:8b:f5:54:b0:26:1b:75:cf:dd:2b:e4: 8d:02:fd:e3:8b:fe:76:38:7b:01:f0:3c:39:ed:f8: 87:fc:b4:ae:1a:8f:e4:e0:f1:8e:29:76:55:a7:0e: a9:64:26:01:2f:6d:7d:a5:85:52:ab:9f:4f:cc:e0: 6b:ca:89:8c:f3:67:81:48:8d:47:3a:58:95:ef:26: 36:3d:d5:25:38:d4:7b:11:82:15:f1:42:a0:23:8b: af:fc:31:f7:f9:40:e2:2e:20:33:05:07:0e:03:af: fb:e6:4b:ef:55:55:cb:3d:ac:02:2f:2e:7b:f5:e0: ef:08:0c:50:a7:5a:a4:f2:cd:e0:d8:c1:b0:3a:a1: 2f:e6:cc:ea:39:60:25:0f:4f:02:22:33:fe:38:dc: ac:41:44:4f:8f:d0:e5:fd:3d:29:14:13:7e:de:98: 43:73:f4:cd:f0:49:4f:9c:b0:b7:ae:35:5c:57:34: 38:5a:1f:e3:f3:74:2b:ba:63:ff:43:52:d6:2b:ea: 7a:b5:1b:3c:07:00:5a:ad:24:c8:c6:3a:b4:10:d8: b4:a8:68:d5:1a:bd:91:d8:3c:f6:f5:4f:96:28:e8: b6:38:2c:5a:36:6f:58:22:c0:82:a7:3a:46:83:dc: d1:5d:4f:d0:c1:a5:30:02:e0:ce:0b:ea:00:3f:b1: a6:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:DC:4E:E9:DF:AB:C7:B6:41:1C:4C:15:78:AA:AE:43:32:69:7E:EF X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i9xO6d-rx7ZBHEwVeKquQzJpfu8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.0.0/18 Signature Algorithm: sha256WithRSAEncryption 53:3f:01:99:5b:95:bb:3e:29:15:9f:e7:23:e9:4f:3c:9e:3f: bc:0c:e1:d2:91:b9:b9:09:f2:89:ad:83:33:24:5f:de:f5:a2: ce:b2:1c:45:c7:8c:f1:f8:c6:f0:34:68:fe:1e:21:15:a3:24: 67:52:f0:e7:d9:1d:30:31:df:43:c8:1a:53:78:fd:73:f4:b1: c8:9a:cf:78:91:0e:18:4e:71:c8:c4:8a:a5:84:ec:bb:18:69: 0d:2e:16:e4:72:66:7c:d7:6d:74:17:cc:04:65:58:40:7c:6e: 10:b9:77:a3:65:b1:02:8f:f7:a5:09:ab:26:f5:0f:64:db:24: 19:d5:6a:3a:ea:2c:bf:03:aa:8d:6e:61:0a:7e:1f:e0:09:39: 5e:97:4e:4f:48:cb:15:eb:5c:9e:cb:f6:30:26:ab:c2:5c:5b: 57:ac:20:bf:d4:30:b2:b8:bf:1e:a4:f3:1d:23:44:78:dd:cc: 12:77:37:67:a3:69:8b:df:34:5d:d8:26:3e:56:78:05:36:f5: 2e:78:66:68:ae:7c:4c:bd:bf:a5:b3:95:ec:fc:bd:51:22:e4: 85:aa:c9:07:0f:97:91:d2:d7:c1:ac:f0:6d:8c:f4:ac:ae:8e: 54:6d:93:cb:72:32:10:0c:cb:9f:97:6b:f3:aa:22:76:9e:d5: 95:a8:3e:5e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKjUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3MzdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhCREM0RUU5REZBQkM3 QjY0MTFDNEMxNTc4QUFBRTQzMzI2OTdFRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCk12CL9VSwJht1z90r5I0C/eOL/nY4ewHwPDnt+If8tK4aj+Tg 8Y4pdlWnDqlkJgEvbX2lhVKrn0/M4GvKiYzzZ4FIjUc6WJXvJjY91SU41HsRghXx QqAji6/8Mff5QOIuIDMFBw4Dr/vmS+9VVcs9rAIvLnv14O8IDFCnWqTyzeDYwbA6 oS/mzOo5YCUPTwIiM/443KxBRE+P0OX9PSkUE37emENz9M3wSU+csLeuNVxXNDha H+PzdCu6Y/9DUtYr6nq1GzwHAFqtJMjGOrQQ2LSoaNUavZHYPPb1T5Yo6LY4LFo2 b1giwIKnOkaD3NFdT9DBpTAC4M4L6gA/sabHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUi9xO6d+rx7ZBHEwVeKquQzJpfu8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2k5eE82ZC1yeDdaQkhFd1Zl S3F1UXpKcGZ1OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ7 wwAwDQYJKoZIhvcNAQELBQADggEBAFM/AZlblbs+KRWf5yPpTzyeP7wM4dKRubkJ 8omtgzMkX971os6yHEXHjPH4xvA0aP4eIRWjJGdS8OfZHTAx30PIGlN4/XP0scia z3iRDhhOccjEiqWE7LsYaQ0uFuRyZnzXbXQXzARlWEB8bhC5d6NlsQKP96UJqyb1 D2TbJBnVajrqLL8Dqo1uYQp+H+AJOV6XTk9IyxXrXJ7L9jAmq8JcW1esIL/UMLK4 vx6k8x0jRHjdzBJ3N2ejaYvfNF3YJj5WeAU29S54ZmiufEy9v6Wzlez8vVEi5IWq yQcPl5HS18Gs8G2M9KyujlRtk8tyMhAMy5+Xa/OqInae1ZWoPl4= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:06 2024 by rpki-client on console-fra.rpki-client.org