$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iLxj2zdzSYwmuXuY-T5cXqSQWuQ.roa File: iLxj2zdzSYwmuXuY-T5cXqSQWuQ.roa (raw, json) Hash identifier: 8pVN1qXb6ErBJF4i1wE/2lvrwLjToSH5YcHcY02p64M= Subject key identifier: 88:BC:63:DB:37:73:49:8C:26:B9:7B:98:F9:3E:5C:5E:A4:90:5A:E4 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 27CE Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iLxj2zdzSYwmuXuY-T5cXqSQWuQ.roa Signing time: Fri 01 Sep 2023 10:04:34 +0000 ROA not before: Fri 01 Sep 2023 10:04:34 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.192.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10190 (0x27ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:04:34 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=88BC63DB3773498C26B97B98F93E5C5EA4905AE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:90:e9:e0:15:88:c1:9f:91:c9:0c:92:08:60: c3:27:15:72:c7:f3:8f:58:86:85:8a:02:62:df:64: 56:9e:c8:47:25:28:f1:03:ff:7e:96:8a:3f:60:15: 4f:82:a0:c5:70:41:d3:92:45:0e:c1:63:23:8c:a8: f1:45:8a:82:6c:e3:88:80:02:42:d0:9d:68:5d:32: 22:14:41:62:e9:a4:dc:13:54:61:89:ac:49:28:e4: df:b8:8c:f2:56:50:6b:dc:9e:1f:75:68:9d:e0:81: ab:25:c4:76:02:11:ef:6f:2a:bb:23:18:97:e7:90: 7a:24:09:16:87:86:57:01:d3:33:e6:9d:88:b1:b3: b6:ab:51:1b:e9:31:62:a8:c0:32:ce:73:aa:44:6b: f8:e7:0e:ff:ec:fe:30:07:0a:c3:b6:37:3d:73:a9: f4:76:30:03:49:b3:c0:ea:8c:fa:e1:c5:dc:76:c2: 38:f7:90:c8:2c:2c:45:e6:f1:18:3d:13:1e:e5:97: 29:a3:4c:80:4f:3c:d3:d7:1c:c7:f8:3a:2c:e0:07: bd:75:96:d1:52:a5:53:1e:4e:f6:3c:f1:4e:02:9d: 4c:32:95:85:c9:d7:53:ae:b2:32:35:9b:92:31:a2: 6d:58:43:19:2b:ba:0a:4e:0f:fb:7f:1b:24:b8:c9: cb:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:BC:63:DB:37:73:49:8C:26:B9:7B:98:F9:3E:5C:5E:A4:90:5A:E4 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iLxj2zdzSYwmuXuY-T5cXqSQWuQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.204.0/22 Signature Algorithm: sha256WithRSAEncryption a2:19:1b:51:51:e6:c3:95:31:5b:24:c7:87:16:38:c9:07:58: 84:78:5c:40:6d:0f:d2:fa:35:68:1e:c7:8c:fa:d7:95:6b:69: 7e:e0:7d:b1:2d:3e:86:b9:15:d4:86:67:a2:16:4b:45:a5:e2: a5:de:4b:2d:a4:92:2c:0c:29:f4:a4:3f:56:e5:f5:1d:45:54: c0:21:96:d8:14:d1:b4:c5:f8:bc:93:f5:cc:22:d3:43:8a:cb: b3:ac:9d:49:e5:df:e9:ee:02:70:ae:5b:a2:04:bc:8b:a7:74: b9:19:ae:0e:d6:b0:fe:d6:27:e7:d3:10:80:4e:52:c8:79:40: 44:28:66:02:70:d5:e5:a3:85:80:69:b7:35:9c:c1:e0:49:bb: 6e:a1:0b:dc:e9:39:c6:23:ba:51:82:a2:c0:24:d2:03:55:d9: 8e:ac:3b:db:e3:f4:25:79:6d:7f:dc:f7:a2:74:8d:6a:b6:89: 96:94:21:be:fd:26:8e:b4:82:d7:f2:3f:5e:0d:9e:1b:fd:e5: c0:5c:d9:25:b4:e3:98:31:61:4c:f7:3c:c1:fa:0a:15:22:ae: e5:29:91:08:1c:1e:bc:0d:60:b3:87:0a:ca:cb:95:93:35:ab: c3:12:38:b6:a3:a9:6a:01:1d:b6:4b:ec:83:27:0c:af:57:c1: 8b:5e:b4:9d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJ84wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA0MzRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg4QkM2M0RCMzc3MzQ5 OEMyNkI5N0I5OEY5M0U1QzVFQTQ5MDVBRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4kOngFYjBn5HJDJIIYMMnFXLH849YhoWKAmLfZFaeyEclKPED /36Wij9gFU+CoMVwQdOSRQ7BYyOMqPFFioJs44iAAkLQnWhdMiIUQWLppNwTVGGJ rEko5N+4jPJWUGvcnh91aJ3ggaslxHYCEe9vKrsjGJfnkHokCRaHhlcB0zPmnYix s7arURvpMWKowDLOc6pEa/jnDv/s/jAHCsO2Nz1zqfR2MANJs8DqjPrhxdx2wjj3 kMgsLEXm8Rg9Ex7llymjTIBPPNPXHMf4OizgB711ltFSpVMeTvY88U4CnUwylYXJ 11OusjI1m5Ixom1YQxkrugpOD/t/GyS4yct9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUiLxj2zdzSYwmuXuY+T5cXqSQWuQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2lMeGoyemR6U1l3bXVYdVkt VDVjWHFTUVd1US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wMwwDQYJKoZIhvcNAQELBQADggEBAKIZG1FR5sOVMVskx4cWOMkHWIR4XEBtD9L6 NWgex4z615VraX7gfbEtPoa5FdSGZ6IWS0Wl4qXeSy2kkiwMKfSkP1bl9R1FVMAh ltgU0bTF+LyT9cwi00OKy7OsnUnl3+nuAnCuW6IEvIundLkZrg7WsP7WJ+fTEIBO Ush5QEQoZgJw1eWjhYBptzWcweBJu26hC9zpOcYjulGCosAk0gNV2Y6sO9vj9CV5 bX/c96J0jWq2iZaUIb79Jo60gtfyP14Nnhv95cBc2SW045gxYUz3PMH6ChUiruUp kQgcHrwNYLOHCsrLlZM1q8MSOLajqWoBHbZL7IMnDK9XwYtetJ0= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:06 2024 by rpki-client on console-ams.rpki-client.org