$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o_KyFj3YoyTwC5fyyuqxHgK8Dtw.roa File: o_KyFj3YoyTwC5fyyuqxHgK8Dtw.roa (raw, json) Hash identifier: kEfQUvXiB8sGV+R0/evBMmgIwQmm7AdOa7SnsmU5TzY= Subject key identifier: A3:F2:B2:16:3D:D8:A3:24:F0:0B:97:F2:CA:EA:B1:1E:02:BC:0E:DC Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A59 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o_KyFj3YoyTwC5fyyuqxHgK8Dtw.roa Signing time: Fri 01 Sep 2023 10:07:48 +0000 ROA not before: Fri 01 Sep 2023 10:07:48 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 106.1.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10841 (0x2a59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:48 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A3F2B2163DD8A324F00B97F2CAEAB11E02BC0EDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fb:1e:7c:b1:c4:ce:4d:ef:f7:6d:7d:02:da: 5d:8e:23:3c:42:25:cf:3a:5f:ac:2c:cd:61:15:2a: cc:56:40:3f:88:35:5a:64:9b:f5:84:c8:dd:ef:d9: b4:e0:b6:81:e2:7b:05:67:74:ce:71:d2:ec:3d:5a: cf:e9:b2:11:10:5a:68:be:97:3d:30:03:02:52:a7: 1c:34:20:e0:a0:2d:c1:f6:29:ec:78:45:3c:81:e6: 24:c1:ae:09:57:55:d2:f4:09:3c:f1:fb:5a:c6:9b: 3a:d5:2e:e9:ab:63:db:ef:e1:46:b2:ca:c9:da:65: d1:fc:92:1e:d0:e8:72:8d:f3:17:2a:b9:66:ce:2d: a9:1a:a5:e0:5f:28:9f:b0:4d:66:66:55:c9:3f:19: 4d:ae:58:4c:c1:bc:97:12:4e:d6:e4:5f:35:86:c2: 61:0f:32:75:d0:9e:ea:3c:0c:09:23:e3:a1:b6:78: a9:4d:14:99:16:a0:13:ba:53:55:c7:a8:6b:d7:cc: 69:e4:17:ad:3b:4f:31:e8:50:70:14:fa:53:4c:10: dd:d0:b3:60:8a:3c:84:2b:6e:a8:23:3f:bd:3c:e5: 87:2e:d9:ee:41:33:52:ab:2c:bd:cb:08:bb:60:d9: f4:80:5f:41:51:d8:00:64:32:67:80:55:fe:dd:fd: da:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:F2:B2:16:3D:D8:A3:24:F0:0B:97:F2:CA:EA:B1:1E:02:BC:0E:DC X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o_KyFj3YoyTwC5fyyuqxHgK8Dtw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.128.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:e2:0b:61:fb:b1:78:0d:57:24:a2:96:cc:56:20:52:55:0d: 42:b6:75:75:e5:18:80:7c:1a:01:e2:fc:7d:b8:10:d9:e1:c2: f0:65:ae:b1:a7:cf:1f:e2:56:54:85:01:97:1c:5a:1c:b3:69: 07:65:e0:db:1f:2b:54:38:26:b8:b8:8c:0f:24:ef:5d:c6:3b: 40:2f:67:93:00:5f:bd:fc:b4:b3:48:2b:f8:75:5c:b9:56:54: 2c:3d:2c:e2:77:72:68:a0:c4:8b:6e:a9:9b:66:69:f5:5a:bd: d6:a1:49:bf:86:1c:6c:66:78:19:d4:0a:46:44:e8:7c:fe:a9: 84:70:04:27:94:2f:54:6c:0f:2f:b4:67:fc:be:2b:bc:a2:f1: c6:fc:6f:1d:01:b3:cc:3e:3e:42:ce:16:f9:ad:59:a5:2e:2b: b3:aa:a1:98:e7:5f:25:5b:92:e7:8f:d5:8d:48:4f:96:68:49: bf:94:e7:e2:e7:38:1e:ef:8b:b0:78:bd:7c:72:da:0e:80:79: a1:d7:ba:7c:90:f0:7f:be:8f:4a:90:8a:17:7a:ad:77:25:0a: db:3e:66:03:07:90:de:40:28:6b:a7:6a:7c:2f:30:ad:19:b3: 6f:f5:7f:46:41:9b:1e:bc:43:42:05:71:a6:20:5d:d5:2d:a4: db:42:a2:6c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKlkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEEzRjJCMjE2M0REOEEz MjRGMDBCOTdGMkNBRUFCMTFFMDJCQzBFREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC+x58scTOTe/3bX0C2l2OIzxCJc86X6wszWEVKsxWQD+INVpk m/WEyN3v2bTgtoHiewVndM5x0uw9Ws/pshEQWmi+lz0wAwJSpxw0IOCgLcH2Kex4 RTyB5iTBrglXVdL0CTzx+1rGmzrVLumrY9vv4UayysnaZdH8kh7Q6HKN8xcquWbO LakapeBfKJ+wTWZmVck/GU2uWEzBvJcSTtbkXzWGwmEPMnXQnuo8DAkj46G2eKlN FJkWoBO6U1XHqGvXzGnkF607TzHoUHAU+lNMEN3Qs2CKPIQrbqgjP7085Ycu2e5B M1KrLL3LCLtg2fSAX0FR2ABkMmeAVf7d/doPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUo/KyFj3YoyTwC5fyyuqxHgK8DtwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL29fS3lGajNZb3lUd0M1Znl5 dXF4SGdLOER0dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AYAwDQYJKoZIhvcNAQELBQADggEBAB7iC2H7sXgNVySilsxWIFJVDUK2dXXlGIB8 GgHi/H24ENnhwvBlrrGnzx/iVlSFAZccWhyzaQdl4NsfK1Q4Jri4jA8k713GO0Av Z5MAX738tLNIK/h1XLlWVCw9LOJ3cmigxItuqZtmafVavdahSb+GHGxmeBnUCkZE 6Hz+qYRwBCeUL1RsDy+0Z/y+K7yi8cb8bx0Bs8w+PkLOFvmtWaUuK7OqoZjnXyVb kueP1Y1IT5ZoSb+U5+LnOB7vi7B4vXxy2g6AeaHXunyQ8H++j0qQihd6rXclCts+ ZgMHkN5AKGunanwvMK0Zs2/1f0ZBmx68Q0IFcaYgXdUtpNtComw= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:06 2024 by rpki-client on console-fra.rpki-client.org