$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lLSpsXjCbcp8HEPdvpHTWw3yvrc.roa File: lLSpsXjCbcp8HEPdvpHTWw3yvrc.roa (raw, json) Hash identifier: EL1sPlfAKDI0XvGVv7758dyLvGMY6jWZY99W76Cof/w= Subject key identifier: 94:B4:A9:B1:78:C2:6D:CA:7C:1C:43:DD:BE:91:D3:5B:0D:F2:BE:B7 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 28BE Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lLSpsXjCbcp8HEPdvpHTWw3yvrc.roa Signing time: Fri 01 Sep 2023 10:05:43 +0000 ROA not before: Fri 01 Sep 2023 10:05:43 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 106.1.128.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10430 (0x28be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:43 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=94B4A9B178C26DCA7C1C43DDBE91D35B0DF2BEB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:ec:d7:15:7e:b1:5f:45:91:4b:4f:ef:90:61: 35:69:c2:09:6e:a3:bd:0f:e0:97:94:cf:26:c6:e2: fa:98:07:f0:22:f4:40:76:34:4c:28:69:e7:1b:32: 44:43:1d:75:a0:1f:cc:64:9b:98:a6:19:63:97:a4: cb:f0:29:b8:ab:1a:6a:9b:76:84:58:b0:10:9c:9e: 83:4e:c3:2f:a6:80:0f:5e:ad:31:f6:f5:7c:9f:9a: 93:b3:41:4d:64:fd:7e:de:32:23:fa:2d:7b:d6:99: fc:57:ef:0b:c2:30:bb:e4:d5:6a:68:ba:b9:69:d2: 6e:53:c0:2f:d4:c2:4e:f8:7d:8b:48:0f:b0:4b:cc: b8:c6:cf:4f:d8:89:ad:10:bb:2b:31:fa:2a:4a:a4: 0b:cb:77:e8:7d:6c:11:04:15:d5:d8:1b:b1:1f:73: a1:1a:5e:48:bb:3f:f4:f8:6c:a4:73:70:5b:f1:0b: 4f:c5:fb:1c:39:91:ae:01:b5:56:6d:f5:37:33:d9: 78:29:b2:21:6c:24:c0:ee:36:47:a9:b3:1c:a0:98: 64:78:3d:c0:30:46:30:1e:4b:ba:18:0a:40:17:a0: 19:f6:66:94:8c:2b:fc:f3:d2:2f:53:20:78:85:39: 41:e3:b6:14:a8:c0:c1:da:1f:08:87:a9:81:f7:e3: ec:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:B4:A9:B1:78:C2:6D:CA:7C:1C:43:DD:BE:91:D3:5B:0D:F2:BE:B7 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lLSpsXjCbcp8HEPdvpHTWw3yvrc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.128.0/21 Signature Algorithm: sha256WithRSAEncryption 5b:dd:97:b9:33:01:5b:e7:e5:de:ef:1d:4f:a4:f2:ff:ab:c7: ec:50:fa:72:c9:9b:2b:e7:51:85:2c:00:7f:31:b5:f8:1a:2e: 9e:99:37:8c:6d:88:b3:27:93:28:c0:0e:e2:36:7e:ac:43:48: 46:0b:ab:d0:a6:7f:51:d7:1c:5d:a3:64:53:de:03:2d:ca:91: 4a:6f:81:e7:3b:72:d4:10:1b:89:24:c5:e9:b2:94:28:d1:39: ef:77:73:d3:55:1a:f0:1d:0f:65:8d:3e:69:e0:20:15:0e:7f: 32:22:a5:68:8f:f9:a3:56:ad:bf:a0:ad:d6:66:db:e4:9f:ac: f0:05:a3:2d:c0:d3:bf:56:3c:00:d2:cd:29:7a:46:ae:35:1a: ba:39:e0:b2:fc:43:ce:a8:51:db:72:0c:f1:99:9e:fc:e7:eb: de:3a:09:5d:8b:71:ed:c5:47:3f:a0:ec:35:56:c1:9b:32:ea: 7f:03:75:a3:54:d7:12:76:57:31:3a:8d:47:64:24:54:d9:b4: 4d:ae:0b:cc:00:7e:90:a3:10:9d:ea:a8:44:42:9e:aa:b8:16: ec:db:3a:76:23:b9:33:54:a2:29:8d:51:1a:90:46:d1:5a:b3: 08:9e:9f:cc:7b:ba:36:41:bc:25:5e:fb:07:4a:e0:dd:57:4b: 28:55:d0:be -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKL4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1NDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDk0QjRBOUIxNzhDMjZE Q0E3QzFDNDNEREJFOTFEMzVCMERGMkJFQjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDz7NcVfrFfRZFLT++QYTVpwgluo70P4JeUzybG4vqYB/Ai9EB2 NEwoaecbMkRDHXWgH8xkm5imGWOXpMvwKbirGmqbdoRYsBCcnoNOwy+mgA9erTH2 9XyfmpOzQU1k/X7eMiP6LXvWmfxX7wvCMLvk1Wpourlp0m5TwC/Uwk74fYtID7BL zLjGz0/Yia0Quysx+ipKpAvLd+h9bBEEFdXYG7Efc6EaXki7P/T4bKRzcFvxC0/F +xw5ka4BtVZt9Tcz2XgpsiFsJMDuNkepsxygmGR4PcAwRjAeS7oYCkAXoBn2ZpSM K/zz0i9TIHiFOUHjthSowMHaHwiHqYH34+wjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUlLSpsXjCbcp8HEPdvpHTWw3yvrcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2xMU3BzWGpDYmNwOEhFUGR2 cEhUV3czeXZyYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANq AYAwDQYJKoZIhvcNAQELBQADggEBAFvdl7kzAVvn5d7vHU+k8v+rx+xQ+nLJmyvn UYUsAH8xtfgaLp6ZN4xtiLMnkyjADuI2fqxDSEYLq9Cmf1HXHF2jZFPeAy3KkUpv gec7ctQQG4kkxemylCjROe93c9NVGvAdD2WNPmngIBUOfzIipWiP+aNWrb+grdZm 2+SfrPAFoy3A079WPADSzSl6Rq41Gro54LL8Q86oUdtyDPGZnvzn6946CV2Lce3F Rz+g7DVWwZsy6n8DdaNU1xJ2VzE6jUdkJFTZtE2uC8wAfpCjEJ3qqERCnqq4Fuzb OnYjuTNUoimNURqQRtFaswien8x7ujZBvCVe+wdK4N1XSyhV0L4= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:06 2024 by rpki-client on console-fra.rpki-client.org