$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/liOu2oMktvhtSwgPenzhXuxOWJs.roa File: liOu2oMktvhtSwgPenzhXuxOWJs.roa (raw, json) Hash identifier: R5xYUa/gmg4fWwn78WdiqSEmDn6EyY21bQrP5G5zzLg= Subject key identifier: 96:23:AE:DA:83:24:B6:F8:6D:4B:08:0F:7A:7C:E1:5E:EC:4E:58:9B Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 289D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/liOu2oMktvhtSwgPenzhXuxOWJs.roa Signing time: Fri 01 Sep 2023 10:05:35 +0000 ROA not before: Fri 01 Sep 2023 10:05:35 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.233.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10397 (0x289d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:35 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9623AEDA8324B6F86D4B080F7A7CE15EEC4E589B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3d:b1:e5:a4:15:d0:ef:05:3f:8d:ad:eb:fd: 1a:f2:f1:0a:58:c9:d7:cc:98:ba:aa:50:0a:60:ce: 2e:82:4c:94:8e:23:24:95:a4:e9:5a:e7:4c:d0:70: c2:91:dc:6e:a1:91:44:db:3e:a4:16:28:ed:0d:83: 68:c4:31:82:6a:59:3e:df:89:21:b1:b5:ed:ae:f1: 92:90:10:5d:48:73:0e:7c:2b:48:57:d3:68:47:1c: 60:41:15:23:b4:f9:3b:3c:cd:0f:c2:ca:8f:08:c9: 99:62:03:3b:8d:c9:81:6b:8f:ce:bb:5f:a6:c0:18: da:07:1a:24:9f:d9:c3:dd:4f:7d:a7:57:ae:73:2e: 12:05:fb:b1:2b:63:30:17:ae:c4:6e:6e:e6:c5:79: 70:01:14:b4:72:6b:6a:0f:b8:26:08:4d:4f:d9:b4: 49:48:50:29:16:ac:40:9d:85:eb:0b:5d:e8:95:b3: bf:10:81:b6:22:89:0c:55:a0:44:ec:2e:2e:0f:be: 91:f6:00:7e:05:3e:3b:fe:d7:aa:13:f9:03:e4:2e: f4:4a:6b:f7:20:35:2c:a2:25:14:16:88:76:bf:bf: ce:f1:71:82:d0:91:57:b8:c7:64:a9:35:65:ef:57: 99:93:8f:2a:3c:1a:a0:be:23:f9:15:b9:bc:8f:b7: a4:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:23:AE:DA:83:24:B6:F8:6D:4B:08:0F:7A:7C:E1:5E:EC:4E:58:9B X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/liOu2oMktvhtSwgPenzhXuxOWJs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.248.0/22 Signature Algorithm: sha256WithRSAEncryption 38:84:43:6e:96:01:24:cc:c4:e7:9c:08:7e:de:12:28:3b:62: 16:53:0a:be:a6:f6:9b:16:a4:8e:f8:ef:3f:c6:96:bb:b0:96: 9f:52:5c:97:57:45:16:25:f9:b3:f7:2c:18:ca:c8:4e:e8:b6: 04:e1:d5:e9:49:2d:5f:a9:22:83:ee:f9:c6:b0:42:a1:78:53: 29:45:40:26:28:65:b4:d5:7e:51:e7:d4:89:07:02:b8:c7:0b: 07:b2:e6:ae:75:73:d4:ed:1f:67:58:a8:84:c3:42:aa:2b:e1: 88:87:41:7b:cf:3d:37:63:b7:e6:08:e2:0a:6b:d7:1c:16:12: b7:db:fe:ff:4c:fa:ca:66:cb:38:7d:5c:5a:66:83:b3:04:5c: 6c:93:be:f7:b8:d6:ce:32:e7:c7:30:fd:10:05:d0:d2:ea:c7: f9:95:a0:0a:b9:e4:73:10:71:26:fc:04:3f:1a:15:d9:62:34: f9:d0:e9:74:1a:80:af:1d:57:c9:1e:33:0f:ef:dc:c8:3a:38: 89:b8:d9:bf:0c:21:ba:d7:e9:95:9a:ff:88:39:a1:58:7b:a1: b7:e7:32:e1:dd:b5:8b:11:7d:e7:a0:3b:4a:c3:16:e2:4f:6e: 94:0a:f3:3a:13:f2:d0:f7:1a:6b:38:1b:70:90:8d:96:31:07: 95:6c:d6:59 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKJ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1MzVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDk2MjNBRURBODMyNEI2 Rjg2RDRCMDgwRjdBN0NFMTVFRUM0RTU4OUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMPbHlpBXQ7wU/ja3r/Rry8QpYydfMmLqqUApgzi6CTJSOIySV pOla50zQcMKR3G6hkUTbPqQWKO0Ng2jEMYJqWT7fiSGxte2u8ZKQEF1Icw58K0hX 02hHHGBBFSO0+Ts8zQ/Cyo8IyZliAzuNyYFrj867X6bAGNoHGiSf2cPdT32nV65z LhIF+7ErYzAXrsRububFeXABFLRya2oPuCYITU/ZtElIUCkWrECdhesLXeiVs78Q gbYiiQxVoETsLi4PvpH2AH4FPjv+16oT+QPkLvRKa/cgNSyiJRQWiHa/v87xcYLQ kVe4x2SpNWXvV5mTjyo8GqC+I/kVubyPt6QjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUliOu2oMktvhtSwgPenzhXuxOWJswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2xpT3Uyb01rdHZodFN3Z1Bl bnpoWHV4T1dKcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6fgwDQYJKoZIhvcNAQELBQADggEBADiEQ26WASTMxOecCH7eEig7YhZTCr6m9psW pI747z/Glruwlp9SXJdXRRYl+bP3LBjKyE7otgTh1elJLV+pIoPu+cawQqF4UylF QCYoZbTVflHn1IkHArjHCwey5q51c9TtH2dYqITDQqor4YiHQXvPPTdjt+YI4gpr 1xwWErfb/v9M+spmyzh9XFpmg7MEXGyTvve41s4y58cw/RAF0NLqx/mVoAq55HMQ cSb8BD8aFdliNPnQ6XQagK8dV8keMw/v3Mg6OIm42b8MIbrX6ZWa/4g5oVh7obfn MuHdtYsRfeegO0rDFuJPbpQK8zoT8tD3Gms4G3CQjZYxB5Vs1lk= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:06 2024 by rpki-client on console-ams.rpki-client.org