$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i_Pk2V9kUFFY1N-0FvwDos0FMr0.roa File: i_Pk2V9kUFFY1N-0FvwDos0FMr0.roa (raw, json) Hash identifier: F5XXCA+fiHQyXEFnqkgm4gUT1RgtVdoOMHgF1gXPAgM= Subject key identifier: 8B:F3:E4:D9:5F:64:50:51:58:D4:DF:B4:16:FC:03:A2:CD:05:32:BD Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 292D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i_Pk2V9kUFFY1N-0FvwDos0FMr0.roa Signing time: Fri 01 Sep 2023 10:06:15 +0000 ROA not before: Fri 01 Sep 2023 10:06:15 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 123.193.80.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10541 (0x292d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:06:15 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8BF3E4D95F64505158D4DFB416FC03A2CD0532BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:12:6d:3e:79:e9:58:79:cd:e4:5e:62:9f:80: ed:5d:86:99:2b:d2:ea:dc:dc:50:4d:f0:e8:8d:c7: 9f:e0:c5:4c:7d:5d:44:0a:d9:4b:5d:ea:90:18:8d: 8a:cc:c1:d4:5f:9b:be:47:75:ef:cb:25:75:cd:ed: da:e2:e6:fe:9a:32:16:f3:e8:eb:80:46:30:0b:24: 35:51:d1:a8:3f:10:d3:8e:98:90:fe:17:a5:5e:16: 34:ba:75:2a:e8:70:38:3a:3b:a6:69:16:8e:39:d7: a0:ec:8f:74:5a:13:b6:91:06:d0:94:dc:63:e5:5f: 47:67:aa:96:fa:ae:f0:de:d0:40:c0:99:49:ff:cf: 87:7c:e7:1c:be:5a:2c:af:51:2c:e9:5b:a3:35:b6: 12:ac:19:f0:f1:a7:b0:fc:71:fb:42:e5:64:f1:b4: 59:22:ed:65:9c:f6:db:7c:3f:07:d8:c6:b5:83:3a: 6d:ba:eb:59:f7:21:79:3a:dd:ba:3b:9f:48:f0:ea: f6:a3:a7:a9:ca:4c:f0:40:a1:a1:c4:06:ed:71:54: 3a:fa:a9:47:b3:a0:9d:5f:40:73:1f:54:e4:23:eb: 41:a6:6c:a8:da:8b:5b:2a:f9:2b:f3:1b:1e:ec:70: c2:cf:f7:07:84:6c:a2:4f:41:2c:34:c8:98:24:e0: 2b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:F3:E4:D9:5F:64:50:51:58:D4:DF:B4:16:FC:03:A2:CD:05:32:BD X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/i_Pk2V9kUFFY1N-0FvwDos0FMr0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.80.0/20 Signature Algorithm: sha256WithRSAEncryption 8a:55:75:c6:b4:3e:69:27:5d:27:8b:c8:a9:07:94:57:0d:a3: b7:62:89:1b:62:67:50:a0:e7:72:07:45:5b:c9:f5:41:4a:81: 1c:05:00:38:48:2b:b8:56:91:b9:c5:5d:91:2e:07:9c:80:1d: 09:2e:90:f4:a8:bc:20:45:c0:79:b9:b8:fb:1e:e9:86:bf:dc: ce:59:d7:b3:c7:30:12:10:c5:68:7c:14:2d:79:55:17:d7:ba: 1f:86:38:82:de:78:57:ee:10:28:55:8c:7a:42:dd:fa:81:03: 68:3d:6c:10:33:7f:be:70:41:4d:e5:fc:35:07:c5:f7:b4:9a: 57:81:f0:5e:43:eb:68:5d:b3:8b:6c:f2:74:d0:f1:1b:6d:1e: 7d:ce:53:b3:cf:a2:dd:01:f1:c6:9e:35:11:a4:2f:88:bf:94: f1:a8:8d:2c:88:6b:d0:f0:64:3a:91:a5:6b:6c:72:84:af:29: 97:db:28:16:75:6c:e1:46:83:a1:56:11:bc:ed:c6:d3:59:d7: 62:fe:ee:cf:e7:1a:f6:78:da:13:7b:4a:4c:ce:2f:a1:82:f6: 3a:1b:fc:fd:e0:30:5c:be:82:8d:3f:b4:b7:50:7b:af:15:64: 1f:74:45:be:7e:ea:a3:24:6e:e6:dd:b5:ce:e0:86:39:f7:fa: ef:9d:f8:a8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKS0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA2MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhCRjNFNEQ5NUY2NDUw NTE1OEQ0REZCNDE2RkMwM0EyQ0QwNTMyQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtEm0+eelYec3kXmKfgO1dhpkr0urc3FBN8OiNx5/gxUx9XUQK 2Utd6pAYjYrMwdRfm75Hde/LJXXN7dri5v6aMhbz6OuARjALJDVR0ag/ENOOmJD+ F6VeFjS6dSrocDg6O6ZpFo4516Dsj3RaE7aRBtCU3GPlX0dnqpb6rvDe0EDAmUn/ z4d85xy+WiyvUSzpW6M1thKsGfDxp7D8cftC5WTxtFki7WWc9tt8PwfYxrWDOm26 61n3IXk63bo7n0jw6vajp6nKTPBAoaHEBu1xVDr6qUezoJ1fQHMfVOQj60GmbKja i1sq+SvzGx7scMLP9weEbKJPQSw0yJgk4CsbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUi/Pk2V9kUFFY1N+0FvwDos0FMr0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2lfUGsyVjlrVUZGWTFOLTBG dndEb3MwRk1yMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 wVAwDQYJKoZIhvcNAQELBQADggEBAIpVdca0PmknXSeLyKkHlFcNo7diiRtiZ1Cg 53IHRVvJ9UFKgRwFADhIK7hWkbnFXZEuB5yAHQkukPSovCBFwHm5uPse6Ya/3M5Z 17PHMBIQxWh8FC15VRfXuh+GOILeeFfuEChVjHpC3fqBA2g9bBAzf75wQU3l/DUH xfe0mleB8F5D62hds4ts8nTQ8RttHn3OU7PPot0B8caeNRGkL4i/lPGojSyIa9Dw ZDqRpWtscoSvKZfbKBZ1bOFGg6FWEbztxtNZ12L+7s/nGvZ42hN7SkzOL6GC9job /P3gMFy+go0/tLdQe68VZB90Rb5+6qMkbubdtc7ghjn3+u+d+Kg= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:06 2024 by rpki-client on console-ams.rpki-client.org