$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lT5RqaYtgXMKOFp8dU6BOsjf4sI.roa File: lT5RqaYtgXMKOFp8dU6BOsjf4sI.roa (raw, json) Hash identifier: evI1bea3n/uMUo153avq8cY3BgdnSB7PQ7Ug8h2kho8= Subject key identifier: 95:3E:51:A9:A6:2D:81:73:0A:38:5A:7C:75:4E:81:3A:C8:DF:E2:C2 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 304D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lT5RqaYtgXMKOFp8dU6BOsjf4sI.roa Signing time: Mon 26 Aug 2024 05:29:20 +0000 ROA not before: Mon 26 Aug 2024 05:29:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12365 (0x304d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=953E51A9A62D81730A385A7C754E813AC8DFE2C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:03:64:4b:6a:1b:74:79:b2:c5:c2:f4:2c:44: 62:7d:f9:b7:e4:66:8e:01:62:bd:d9:c6:47:56:fb: 05:8c:db:60:f9:4a:6f:24:85:13:50:46:95:10:e3: 6d:19:de:93:31:30:07:bc:bf:1d:b9:8e:cd:1d:2f: 03:a6:d5:8f:2e:37:52:1b:44:68:66:0c:d5:f2:b9: 4e:d6:30:24:4f:83:bf:f0:96:e6:18:2c:05:b7:d3: 70:57:0c:23:24:ee:82:08:58:65:31:4d:da:00:df: 31:33:4f:f9:74:09:d9:96:3b:d6:34:44:fd:fc:e3: 75:ae:ce:9b:8e:07:2d:7d:10:51:1b:18:80:a7:b8: ea:cd:15:98:96:4b:36:c7:ed:33:7b:6f:46:c6:18: 3a:4b:7e:99:b0:8b:dd:50:8c:6f:cc:99:10:23:3f: aa:f7:ce:05:86:c0:ed:7f:05:4c:7a:ca:89:3d:95: d1:bd:19:00:62:57:a6:3c:ea:97:62:55:04:8c:c0: ae:0c:38:1d:1d:62:39:40:fb:4c:d1:f4:62:89:3b: d6:bf:8b:0a:0a:c8:72:a9:6b:b4:da:e5:43:d5:04: 1e:94:36:14:da:6f:a1:91:ab:c9:49:20:4d:91:6d: ff:ec:46:4f:7d:ce:9e:7e:e4:03:77:24:e2:18:9c: 08:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:3E:51:A9:A6:2D:81:73:0A:38:5A:7C:75:4E:81:3A:C8:DF:E2:C2 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lT5RqaYtgXMKOFp8dU6BOsjf4sI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.205.0/24 Signature Algorithm: sha256WithRSAEncryption 48:1c:06:71:4b:87:8f:a0:dd:ca:2f:fd:a9:a4:4e:17:ce:fc: 4c:7e:24:0e:b1:8f:2f:5f:21:d2:34:cc:9d:cb:fe:f4:b3:a4: 32:24:d9:a3:5e:29:28:35:90:2b:29:19:10:77:f2:db:79:f1: 64:6b:d5:4f:25:ab:98:09:5d:36:8c:1a:0e:d2:b3:d5:40:c3: 87:f3:f4:4b:a9:d0:7d:19:3a:17:d1:a0:39:b9:24:66:34:48: 5a:6a:61:39:b4:57:c7:83:8a:7b:44:cf:f5:92:90:06:8e:4c: 90:65:2b:8b:9e:7e:f1:20:cf:8a:d6:2a:76:f7:7a:93:75:a9: 9e:d1:0a:17:6a:c1:98:7c:50:65:33:b1:30:a0:9f:2a:7e:52: a3:83:4b:e2:49:2c:97:3e:6d:04:49:12:55:1f:09:65:03:5e: 0c:68:92:ec:8d:5a:5e:6a:ae:41:a2:e5:40:46:3a:00:7d:5e: 2b:5a:9a:1e:c6:52:36:71:6e:5f:41:37:fa:4d:aa:7b:52:4e: 82:fa:a0:3e:a7:9b:ad:0c:61:4f:95:70:25:c4:ac:4d:03:0d: 27:de:0a:ec:fb:e2:9d:93:96:6a:48:b2:e7:2d:18:05:de:19: df:c4:0d:9e:e2:1d:0c:41:29:5b:8f:bc:db:70:1f:3b:c6:75: d8:83:02:7f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICME0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk1M0U1MUE5QTYyRDgx NzMwQTM4NUE3Qzc1NEU4MTNBQzhERkUyQzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1A2RLaht0ebLFwvQsRGJ9+bfkZo4BYr3ZxkdW+wWM22D5Sm8k hRNQRpUQ420Z3pMxMAe8vx25js0dLwOm1Y8uN1IbRGhmDNXyuU7WMCRPg7/wluYY LAW303BXDCMk7oIIWGUxTdoA3zEzT/l0CdmWO9Y0RP3843WuzpuOBy19EFEbGICn uOrNFZiWSzbH7TN7b0bGGDpLfpmwi91QjG/MmRAjP6r3zgWGwO1/BUx6yok9ldG9 GQBiV6Y86pdiVQSMwK4MOB0dYjlA+0zR9GKJO9a/iwoKyHKpa7Ta5UPVBB6UNhTa b6GRq8lJIE2Rbf/sRk99zp5+5AN3JOIYnAjxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUlT5RqaYtgXMKOFp8dU6BOsjf4sIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2xUNVJxYVl0Z1hNS09GcDhk VTZCT3NqZjRzSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq Ac0wDQYJKoZIhvcNAQELBQADggEBAEgcBnFLh4+g3cov/amkThfO/Ex+JA6xjy9f IdI0zJ3L/vSzpDIk2aNeKSg1kCspGRB38tt58WRr1U8lq5gJXTaMGg7Ss9VAw4fz 9Eup0H0ZOhfRoDm5JGY0SFpqYTm0V8eDintEz/WSkAaOTJBlK4uefvEgz4rWKnb3 epN1qZ7RChdqwZh8UGUzsTCgnyp+UqODS+JJLJc+bQRJElUfCWUDXgxokuyNWl5q rkGi5UBGOgB9Xitamh7GUjZxbl9BN/pNqntSToL6oD6nm60MYU+VcCXErE0DDSfe Cuz74p2TlmpIsuctGAXeGd/EDZ7iHQxBKVuPvNtwHzvGddiDAn8= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:53 2024 by rpki-client on console-ams.rpki-client.org