$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o-aHXkDDDpadqLXOuQ4izLQOdFc.roa File: o-aHXkDDDpadqLXOuQ4izLQOdFc.roa (raw, json) Hash identifier: Nm9uaPQ8wr04IOo3/K9ZEeKgaYzKVuUqDlUgXxoMjbQ= Subject key identifier: A3:E6:87:5E:40:C3:0E:96:9D:A8:B5:CE:B9:0E:22:CC:B4:0E:74:57 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 30C4 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o-aHXkDDDpadqLXOuQ4izLQOdFc.roa Signing time: Mon 26 Aug 2024 05:29:48 +0000 ROA not before: Mon 26 Aug 2024 05:29:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12484 (0x30c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A3E6875E40C30E969DA8B5CEB90E22CCB40E7457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8b:e1:b6:f9:5c:25:ae:ae:5d:b1:b6:82:f5: 48:8c:24:a1:00:39:b9:8c:94:a3:78:ab:4b:74:df: 98:1a:a2:5d:06:89:38:6e:f8:a3:e2:88:bb:1e:48: d2:0b:63:82:14:58:e2:b2:e4:d7:b5:85:45:60:61: 61:b6:95:dc:ae:9e:bd:89:a9:da:27:e1:6c:11:f1: 49:64:d7:87:ce:6d:d6:6b:e7:6f:3d:fe:c8:f2:6b: 95:de:d6:c7:be:f6:94:31:17:30:d3:c9:02:dd:94: fe:b9:ec:79:61:ef:19:5e:c2:1d:44:ca:71:e4:e2: 0f:50:78:58:51:22:a1:45:12:a7:a7:fd:d0:10:b4: db:68:df:17:63:50:44:0a:82:4f:9a:16:eb:17:dd: 1f:31:d8:c5:b1:48:69:91:a3:d5:27:a3:35:7b:9b: 6f:49:fa:73:7a:4b:09:af:7d:4a:8f:52:f9:d9:7a: c4:10:1f:08:2d:6f:8c:bf:02:9b:69:7a:b1:7c:22: a2:0d:e0:a1:7e:95:8d:92:c0:6c:d4:ab:0a:e5:75: 24:b3:f9:a4:ce:b7:03:d1:a5:1c:43:ea:b9:33:22: 92:fd:79:55:95:39:7c:b0:5e:70:3c:05:54:ef:da: 37:de:2e:03:29:7f:9b:33:d2:8f:63:cf:12:62:a6: ea:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E6:87:5E:40:C3:0E:96:9D:A8:B5:CE:B9:0E:22:CC:B4:0E:74:57 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o-aHXkDDDpadqLXOuQ4izLQOdFc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.196.0/22 Signature Algorithm: sha256WithRSAEncryption 39:fe:e2:01:b2:4e:02:2d:6b:cb:e9:e1:01:ca:c9:99:27:94: 8c:6c:75:fa:b6:21:90:7b:6c:e4:d3:2c:74:13:c2:44:a1:14: 51:9d:9d:2e:d2:4a:86:8a:dc:dd:d9:a6:c0:b8:87:52:ac:80: ad:24:fa:8d:bd:99:a5:e8:a6:3a:6c:43:4f:e5:b1:6d:e9:dc: 27:e0:62:48:be:0b:b1:45:2d:3d:1e:74:b8:bc:d1:36:ee:af: 28:9e:5a:78:2e:ba:9b:c0:19:3a:dd:f9:1c:30:63:a0:31:6f: ff:08:1f:2e:dc:f2:a5:fb:bf:af:b1:26:82:92:ce:12:11:a8: 5a:52:a2:ab:1a:8a:48:57:07:68:c9:f6:4a:99:5a:fd:08:1a: ab:fe:c3:ec:9f:90:58:cf:66:e0:9d:6f:94:71:5d:10:ef:97: 47:80:6e:c2:1f:04:c1:e6:35:73:47:43:5f:5e:5b:a1:45:b6: b3:e9:f4:5e:81:f3:fb:2e:8c:c7:71:07:d3:cf:14:87:b0:ec: 2c:27:6c:2d:bc:7a:7d:4d:f7:ad:f9:d0:c8:f6:13:3e:e4:38: b0:3b:33:02:a3:e8:4b:5f:8e:a4:da:4e:f6:26:ff:fc:75:0e: c9:85:e2:42:d5:54:74:10:75:1e:81:03:b1:60:d7:0d:d7:c7: 78:63:8e:5a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMMQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEzRTY4NzVFNDBDMzBF OTY5REE4QjVDRUI5MEUyMkNDQjQwRTc0NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWi+G2+Vwlrq5dsbaC9UiMJKEAObmMlKN4q0t035gaol0GiThu +KPiiLseSNILY4IUWOKy5Ne1hUVgYWG2ldyunr2Jqdon4WwR8Ulk14fObdZr5289 /sjya5Xe1se+9pQxFzDTyQLdlP657Hlh7xlewh1EynHk4g9QeFhRIqFFEqen/dAQ tNto3xdjUEQKgk+aFusX3R8x2MWxSGmRo9UnozV7m29J+nN6SwmvfUqPUvnZesQQ Hwgtb4y/AptperF8IqIN4KF+lY2SwGzUqwrldSSz+aTOtwPRpRxD6rkzIpL9eVWV OXywXnA8BVTv2jfeLgMpf5sz0o9jzxJipur3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUo+aHXkDDDpadqLXOuQ4izLQOdFcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL28tYUhYa0RERHBhZHFMWE91 UTRpekxRT2RGYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AcQwDQYJKoZIhvcNAQELBQADggEBADn+4gGyTgIta8vp4QHKyZknlIxsdfq2IZB7 bOTTLHQTwkShFFGdnS7SSoaK3N3ZpsC4h1KsgK0k+o29maXopjpsQ0/lsW3p3Cfg Yki+C7FFLT0edLi80TburyieWnguupvAGTrd+RwwY6Axb/8IHy7c8qX7v6+xJoKS zhIRqFpSoqsaikhXB2jJ9kqZWv0IGqv+w+yfkFjPZuCdb5RxXRDvl0eAbsIfBMHm NXNHQ19eW6FFtrPp9F6B8/sujMdxB9PPFIew7CwnbC28en1N96350Mj2Ez7kOLA7 MwKj6EtfjqTaTvYm//x1DsmF4kLVVHQQdR6BA7Fg1w3Xx3hjjlo= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:53 2024 by rpki-client on console-ams.rpki-client.org