$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j8VCpach1_qxkzLSe0qxMb7YGyE.roa File: j8VCpach1_qxkzLSe0qxMb7YGyE.roa (raw, json) Hash identifier: 6QIaLLEvCg6mACk16hbOj37JbmXdHemI80VXWbKlyFw= Subject key identifier: 8F:C5:42:A5:A7:21:D7:FA:B1:93:32:D2:7B:4A:B1:31:BE:D8:1B:21 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A06 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j8VCpach1_qxkzLSe0qxMb7YGyE.roa Signing time: Fri 01 Sep 2023 10:07:23 +0000 ROA not before: Fri 01 Sep 2023 10:07:23 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 123.195.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10758 (0x2a06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:23 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8FC542A5A721D7FAB19332D27B4AB131BED81B21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e9:f8:8a:66:9f:8a:76:da:19:e3:92:77:19: 00:b5:6d:54:1f:2c:50:38:9f:12:f3:79:23:95:fb: f4:f3:44:d2:15:c3:c3:c3:44:e5:81:54:ae:34:71: 0c:f3:4e:36:61:ff:ef:95:54:28:b3:80:e8:87:c4: 96:df:ed:8a:66:1a:8e:99:63:d5:51:1c:61:7d:f6: 98:d5:89:6a:8b:fe:8f:24:69:07:10:b4:63:8b:ca: a4:0d:00:ba:a3:29:3c:b4:b7:66:f8:01:ab:96:e8: 65:ee:e5:8d:ee:08:e0:06:0e:a9:ca:f1:1e:d5:56: 48:00:84:66:50:24:67:cb:2c:86:64:11:6c:2a:87: 30:2e:af:5f:6f:fd:c1:c3:0e:ce:77:9b:19:bc:26: f0:5a:a2:4b:fe:e3:00:83:72:8f:e4:21:9b:1d:b8: cc:24:d3:14:27:44:ce:99:fd:55:f2:53:f4:fd:49: ff:1b:56:db:a2:44:99:c7:42:19:b4:1a:df:7c:2d: a2:ea:a9:24:7e:7d:36:8d:75:33:26:1b:cb:76:90: 1b:ae:c5:04:c6:3a:7c:9c:72:11:9a:50:ee:b8:c8: b2:a3:d0:83:b7:9b:79:50:0f:eb:6b:49:fe:0a:60: c9:c1:e7:47:9e:ec:54:ec:17:3b:77:6a:83:8e:3a: a3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:C5:42:A5:A7:21:D7:FA:B1:93:32:D2:7B:4A:B1:31:BE:D8:1B:21 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j8VCpach1_qxkzLSe0qxMb7YGyE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.208.0/20 Signature Algorithm: sha256WithRSAEncryption 4e:f8:30:45:20:d6:7b:d4:38:0f:ca:a1:42:c7:bd:43:6c:f8: 50:52:6c:8a:6e:32:61:0a:0a:d8:a7:62:3a:69:af:87:09:81: 5d:0e:10:38:d1:28:7c:7b:38:45:1e:fb:ed:bc:d4:02:b8:10: 6b:57:e1:38:40:27:ff:5f:a7:26:d2:b4:92:bd:9d:2a:91:b4: b9:61:74:ad:f6:ee:55:ee:be:e2:8a:5f:21:bd:1e:28:94:be: 3f:0d:02:f4:6a:6d:ad:af:d9:3f:cf:55:d9:22:55:e6:16:58: 49:09:72:a0:ee:f8:ee:8f:f3:40:d8:0d:07:ae:d5:f3:ae:d9: 0d:dc:72:87:25:36:34:5d:c8:6c:a7:95:ee:93:39:70:74:80: 87:5c:e2:aa:1b:0d:d4:a7:e4:f4:04:d2:cb:5b:76:ca:a6:5b: cf:3f:af:8d:1a:7d:e3:4f:df:0f:a0:2b:31:bb:9b:a6:15:56: 80:c0:c3:3a:80:d9:c9:f2:c1:dc:68:db:a4:ec:bc:29:6c:83: 37:54:4a:be:93:78:b9:6e:44:80:d0:04:9f:65:58:a8:b8:26: 76:82:fe:8c:93:c2:cb:f6:b6:b1:ea:fa:9d:77:ae:a0:36:b3: a3:c2:19:12:a3:45:b4:7f:bc:48:fe:7a:5a:e7:bd:10:85:59: e3:b5:9e:fd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKgYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3MjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhGQzU0MkE1QTcyMUQ3 RkFCMTkzMzJEMjdCNEFCMTMxQkVEODFCMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC66fiKZp+KdtoZ45J3GQC1bVQfLFA4nxLzeSOV+/TzRNIVw8PD ROWBVK40cQzzTjZh/++VVCizgOiHxJbf7YpmGo6ZY9VRHGF99pjViWqL/o8kaQcQ tGOLyqQNALqjKTy0t2b4AauW6GXu5Y3uCOAGDqnK8R7VVkgAhGZQJGfLLIZkEWwq hzAur19v/cHDDs53mxm8JvBaokv+4wCDco/kIZsduMwk0xQnRM6Z/VXyU/T9Sf8b VtuiRJnHQhm0Gt98LaLqqSR+fTaNdTMmG8t2kBuuxQTGOnycchGaUO64yLKj0IO3 m3lQD+trSf4KYMnB50ee7FTsFzt3aoOOOqMpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUj8VCpach1/qxkzLSe0qxMb7YGyEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2o4VkNwYWNoMV9xeGt6TFNl MHF4TWI3WUd5RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 w9AwDQYJKoZIhvcNAQELBQADggEBAE74MEUg1nvUOA/KoULHvUNs+FBSbIpuMmEK CtinYjppr4cJgV0OEDjRKHx7OEUe++281AK4EGtX4ThAJ/9fpybStJK9nSqRtLlh dK327lXuvuKKXyG9HiiUvj8NAvRqba2v2T/PVdkiVeYWWEkJcqDu+O6P80DYDQeu 1fOu2Q3ccoclNjRdyGynle6TOXB0gIdc4qobDdSn5PQE0stbdsqmW88/r40afeNP 3w+gKzG7m6YVVoDAwzqA2cnywdxo26TsvClsgzdUSr6TeLluRIDQBJ9lWKi4JnaC /oyTwsv2trHq+p13rqA2s6PCGRKjRbR/vEj+elrnvRCFWeO1nv0= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:06 2024 by rpki-client on console-fra.rpki-client.org