$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iVJWrUdGD7iFXjTzc2dLfH2S5OU.roa File: iVJWrUdGD7iFXjTzc2dLfH2S5OU.roa (raw, json) Hash identifier: R8Xc/ik0fzYIV3akGf1FjK9v6mnM95cl8rtcmiXKOOY= Subject key identifier: 89:52:56:AD:47:46:0F:B8:85:5E:34:F3:73:67:4B:7C:7D:92:E4:E5 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3210 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iVJWrUdGD7iFXjTzc2dLfH2S5OU.roa Signing time: Mon 26 Aug 2024 05:31:13 +0000 ROA not before: Mon 26 Aug 2024 05:31:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.192.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12816 (0x3210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:13 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=895256AD47460FB8855E34F373674B7C7D92E4E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a5:21:03:8c:af:f6:59:30:2b:5e:4b:fd:18: 87:7a:d3:be:dc:31:f0:67:dc:7e:12:1c:81:54:e2: 52:92:db:f0:6c:5d:52:b9:d5:9c:24:f6:4c:df:a5: ef:a7:a4:98:cf:81:86:d7:c0:0c:5e:9e:23:14:1f: cb:e2:12:e4:a9:48:0e:d0:85:28:fb:8e:0e:2d:fc: ca:a8:a2:5c:68:5b:ae:6c:31:fc:2d:ed:7c:01:52: 51:4f:b1:c0:a2:25:f9:36:a2:46:20:85:eb:8b:fc: 50:b1:d3:80:8f:de:43:c3:c3:5f:3f:f6:63:4a:f1: 95:15:d5:e5:e8:2c:eb:14:35:66:25:bc:d0:70:9c: a2:f1:55:74:87:e9:43:a7:1f:6c:8a:d3:19:58:9b: d8:22:2c:5f:1f:43:4d:08:c4:12:e9:5b:23:dc:c7: ce:2d:d2:bf:0a:b8:42:0f:6e:13:4a:bc:63:95:66: 82:0a:57:63:b6:e0:00:83:40:ff:2c:57:18:a1:44: 02:ed:e7:2a:d2:b6:a3:1f:84:a9:53:7a:4c:ea:41: 3a:67:ad:82:4f:2d:4e:ad:89:66:fb:51:ac:ac:8c: 64:20:41:e3:d9:7e:36:2e:2d:31:2e:f8:d4:a8:ae: 5b:92:00:b9:d5:a5:a3:1c:68:8f:71:37:fa:7c:9c: 78:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:52:56:AD:47:46:0F:B8:85:5E:34:F3:73:67:4B:7C:7D:92:E4:E5 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iVJWrUdGD7iFXjTzc2dLfH2S5OU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.112.0/20 Signature Algorithm: sha256WithRSAEncryption 31:42:0d:6d:36:0a:a9:ec:20:9d:95:a8:96:6a:d5:1a:67:cb: 5e:5b:ad:22:ad:fe:13:23:4b:35:a7:af:3e:4b:01:e0:05:c4: 61:3f:5c:b3:a1:a9:e6:cd:79:57:82:18:dc:ce:b8:84:68:3e: 96:d3:f6:50:4c:a0:70:be:aa:dd:29:9b:4e:6b:2b:ec:ac:56: 22:c9:d8:c3:7b:00:a7:af:e5:1c:5f:bd:34:b6:8e:48:7b:46: 4e:c2:40:31:d5:46:58:7e:6d:ee:96:12:fc:1e:c9:e0:6c:33: 27:06:e4:a6:22:a4:39:b8:a7:9b:06:32:73:3c:52:f4:77:92: b4:46:ac:e1:c9:92:2b:ec:a5:69:68:fa:e8:a9:03:0d:e7:96: 6e:53:7e:f8:63:33:a2:88:7e:7d:ed:47:7e:c7:75:39:2a:e4: 71:fa:e1:ef:d9:f1:09:c7:f0:67:4f:b6:18:bc:49:24:e5:a2: a0:16:58:2f:a3:20:61:8c:b3:92:1e:fb:62:cc:6d:f7:a7:92: 41:7e:bd:d7:fd:8e:97:d6:40:dd:fd:b2:15:7d:e7:5b:d2:37: 11:59:bf:bb:f9:62:59:a9:e2:9d:3e:9f:1e:41:0f:87:a3:5b: fc:1a:bb:f7:0a:bc:10:8e:cb:04:0d:c6:60:e5:01:2f:72:8e: f0:59:b8:8a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMhAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg5NTI1NkFENDc0NjBG Qjg4NTVFMzRGMzczNjc0QjdDN0Q5MkU0RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqpSEDjK/2WTArXkv9GId6077cMfBn3H4SHIFU4lKS2/BsXVK5 1Zwk9kzfpe+npJjPgYbXwAxeniMUH8viEuSpSA7QhSj7jg4t/MqoolxoW65sMfwt 7XwBUlFPscCiJfk2okYgheuL/FCx04CP3kPDw18/9mNK8ZUV1eXoLOsUNWYlvNBw nKLxVXSH6UOnH2yK0xlYm9giLF8fQ00IxBLpWyPcx84t0r8KuEIPbhNKvGOVZoIK V2O24ACDQP8sVxihRALt5yrStqMfhKlTekzqQTpnrYJPLU6tiWb7UaysjGQgQePZ fjYuLTEu+NSorluSALnVpaMcaI9xN/p8nHjfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUiVJWrUdGD7iFXjTzc2dLfH2S5OUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2lWSldyVWRHRDdpRlhqVHpj MmRMZkgyUzVPVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 wHAwDQYJKoZIhvcNAQELBQADggEBADFCDW02CqnsIJ2VqJZq1Rpny15brSKt/hMj SzWnrz5LAeAFxGE/XLOhqebNeVeCGNzOuIRoPpbT9lBMoHC+qt0pm05rK+ysViLJ 2MN7AKev5RxfvTS2jkh7Rk7CQDHVRlh+be6WEvweyeBsMycG5KYipDm4p5sGMnM8 UvR3krRGrOHJkivspWlo+uipAw3nlm5TfvhjM6KIfn3tR37HdTkq5HH64e/Z8QnH 8GdPthi8SSTloqAWWC+jIGGMs5Ie+2LMbfenkkF+vdf9jpfWQN39shV951vSNxFZ v7v5Ylmp4p0+nx5BD4ejW/wau/cKvBCOywQNxmDlAS9yjvBZuIo= -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:40 2024 by rpki-client on console-fra.rpki-client.org