$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kVC-OuNuk0h2UII3_B4wY-RgYDE.roa File: kVC-OuNuk0h2UII3_B4wY-RgYDE.roa (raw, json) Hash identifier: pwQw0Kd+3waSrUZkj/Oh/QSs/e/1pzRLz+B7363D+P8= Subject key identifier: 91:50:BE:3A:E3:6E:93:48:76:50:82:37:FC:1E:30:63:E4:60:60:31 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 28C8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kVC-OuNuk0h2UII3_B4wY-RgYDE.roa Signing time: Fri 01 Sep 2023 10:05:45 +0000 ROA not before: Fri 01 Sep 2023 10:05:45 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 106.1.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10440 (0x28c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:45 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9150BE3AE36E934876508237FC1E3063E4606031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:50:d8:4a:61:4a:b3:c7:24:db:1f:11:23:d4: 92:2c:7f:8a:31:4d:2a:83:dc:3d:5b:d3:c3:0d:92: 27:4d:25:20:53:70:10:41:63:10:86:eb:81:f2:a4: 0e:31:19:ab:fa:00:76:5b:40:60:ef:08:2c:6b:33: 5a:ac:5c:03:b8:aa:12:7b:c7:9f:59:d3:fd:6f:b4: 7b:ce:d9:a1:64:cd:eb:b0:e0:9f:08:e3:0a:5e:3f: b5:c3:80:ab:03:60:58:02:e0:11:13:bc:a0:23:ff: 2e:b1:03:96:57:6b:e9:57:49:80:e6:0a:07:de:20: 79:62:3f:3d:8c:ce:ac:8a:57:20:62:02:2d:b9:28: 9a:0b:02:9c:d7:5f:83:e2:98:96:c5:60:32:b4:da: fe:59:8d:bc:f8:f3:df:3b:9f:e3:88:53:da:4d:f3: 84:0c:fb:a8:37:d0:5d:0b:05:5b:0c:f4:c4:e4:e7: 03:fb:c8:04:03:3f:0c:d8:28:5a:80:60:23:f9:a0: 44:e7:bd:c8:ae:4d:ba:2c:4d:03:a0:9d:1c:1e:6a: 90:50:a6:3c:f8:ec:a1:4e:a3:9f:04:74:d3:22:b4: 5a:07:b7:07:26:70:ab:53:51:f4:68:54:3c:87:79: c5:c9:2b:a8:a7:ff:61:88:92:37:dc:5b:ef:90:75: 03:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:50:BE:3A:E3:6E:93:48:76:50:82:37:FC:1E:30:63:E4:60:60:31 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kVC-OuNuk0h2UII3_B4wY-RgYDE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.40.0/22 Signature Algorithm: sha256WithRSAEncryption 57:f3:6f:3e:29:b4:f4:91:52:8f:31:b6:88:6f:ca:50:4e:4c: 84:ab:b4:9f:84:ea:bd:c7:c4:4f:12:d0:b1:e6:ff:00:46:89: 33:61:b0:61:f6:27:34:8c:60:65:f1:d9:42:7e:b8:72:d0:e2: 33:65:b0:57:9b:e3:79:2d:ef:b3:99:dd:06:3d:38:15:8b:91: d4:29:53:b2:7b:50:7d:f7:f1:a6:b3:5d:85:4e:d8:62:c5:f6: d1:95:87:9c:36:3a:c8:be:90:c2:98:1b:83:87:e9:99:8e:a8: df:c0:1e:64:3d:d2:71:50:10:83:99:e9:f3:76:54:c8:2d:53: 91:a9:90:46:ae:25:ca:8f:94:7c:29:68:58:b7:25:f8:94:32: 4a:d0:71:32:df:d0:42:1c:41:fb:71:42:82:06:1e:aa:59:b7: 3a:e8:94:0a:ad:d9:86:9e:ca:27:af:ef:ab:cf:1c:cf:02:1e: 47:e5:80:fc:79:bb:3e:24:32:11:70:b6:01:47:29:d3:0c:2b: 96:f4:e3:6a:02:9a:fa:be:fb:e5:c8:95:4e:ce:2a:ab:b9:89: 71:22:c8:50:95:a8:8b:46:f3:e5:4c:46:bc:af:10:bc:07:88: 41:40:6d:0c:d1:b0:a2:0b:14:d6:96:87:7a:e7:b5:b3:cd:28: cb:bf:93:c6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKMgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1NDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkxNTBCRTNBRTM2RTkz NDg3NjUwODIzN0ZDMUUzMDYzRTQ2MDYwMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQUNhKYUqzxyTbHxEj1JIsf4oxTSqD3D1b08MNkidNJSBTcBBB YxCG64HypA4xGav6AHZbQGDvCCxrM1qsXAO4qhJ7x59Z0/1vtHvO2aFkzeuw4J8I 4wpeP7XDgKsDYFgC4BETvKAj/y6xA5ZXa+lXSYDmCgfeIHliPz2MzqyKVyBiAi25 KJoLApzXX4PimJbFYDK02v5Zjbz48987n+OIU9pN84QM+6g30F0LBVsM9MTk5wP7 yAQDPwzYKFqAYCP5oETnvciuTbosTQOgnRweapBQpjz47KFOo58EdNMitFoHtwcm cKtTUfRoVDyHecXJK6in/2GIkjfcW++QdQObAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUkVC+OuNuk0h2UII3/B4wY+RgYDEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2tWQy1PdU51azBoMlVJSTNf QjR3WS1SZ1lERS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq ASgwDQYJKoZIhvcNAQELBQADggEBAFfzbz4ptPSRUo8xtohvylBOTISrtJ+E6r3H xE8S0LHm/wBGiTNhsGH2JzSMYGXx2UJ+uHLQ4jNlsFeb43kt77OZ3QY9OBWLkdQp U7J7UH338aazXYVO2GLF9tGVh5w2Osi+kMKYG4OH6ZmOqN/AHmQ90nFQEIOZ6fN2 VMgtU5GpkEauJcqPlHwpaFi3JfiUMkrQcTLf0EIcQftxQoIGHqpZtzrolAqt2Yae yiev76vPHM8CHkflgPx5uz4kMhFwtgFHKdMMK5b042oCmvq+++XIlU7OKqu5iXEi yFCVqItG8+VMRryvELwHiEFAbQzRsKILFNaWh3rntbPNKMu/k8Y= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:06 2024 by rpki-client on console-fra.rpki-client.org