$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rKTqfM6IS3qJfP89V6TBN8fTWF0.roa File: rKTqfM6IS3qJfP89V6TBN8fTWF0.roa (raw, json) Hash identifier: DgSyOw5uWbIfOxyMQW7FRrwbXxibSxNC/6qFFbXktLU= Subject key identifier: AC:A4:EA:7C:CE:88:4B:7A:89:7C:FF:3D:57:A4:C1:37:C7:D3:58:5D Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 30F9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rKTqfM6IS3qJfP89V6TBN8fTWF0.roa Signing time: Mon 26 Aug 2024 05:29:59 +0000 ROA not before: Mon 26 Aug 2024 05:29:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12537 (0x30f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=ACA4EA7CCE884B7A897CFF3D57A4C137C7D3585D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4e:fc:14:f5:38:70:ff:8b:93:35:4d:bf:2d: 14:06:d4:f6:8d:05:11:20:4d:41:2d:8c:43:bd:08: f6:62:25:29:fa:2f:fc:7e:8a:6e:c0:cc:a8:c5:3b: 1a:3d:fd:7b:a7:36:87:60:85:cb:b4:27:4e:17:8d: dc:0d:45:48:5d:93:4a:a2:50:00:30:34:e7:f6:d3: 7e:47:10:2c:96:a7:d6:64:01:21:d4:3f:0d:31:70: 4c:bb:2a:4e:ff:df:8f:ec:1a:56:fb:e6:cd:50:0a: 03:b1:50:14:0a:71:6e:a2:13:b8:fb:84:95:a7:cd: 6e:f8:29:d0:a8:cf:17:91:c9:f0:1c:4c:cc:29:11: 15:7c:19:18:61:68:9b:78:29:65:53:a4:a0:51:2c: 78:95:7f:7e:df:ae:89:52:c6:8c:78:8a:1a:7f:0f: db:cc:a6:6b:f5:f4:ce:54:18:68:fe:1f:f4:f7:56: 04:f9:92:cd:00:29:a6:c4:71:7f:0d:5f:9e:03:8e: bc:7e:df:0f:46:5a:49:7f:05:de:7e:8d:60:f3:25: 38:4f:6b:d8:8b:ff:44:b2:96:c8:47:5e:e6:4b:15: 69:2b:41:c6:da:51:ff:48:42:7c:39:5f:30:64:10: c6:cb:81:61:73:dd:83:63:ff:08:cd:97:75:0b:65: 85:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:A4:EA:7C:CE:88:4B:7A:89:7C:FF:3D:57:A4:C1:37:C7:D3:58:5D X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rKTqfM6IS3qJfP89V6TBN8fTWF0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.72.0/22 Signature Algorithm: sha256WithRSAEncryption 52:8c:4b:e2:94:0d:43:50:0e:9a:6e:98:9f:9d:90:61:33:4c: 60:b8:3f:a7:8e:24:6f:2b:a3:df:61:a1:0a:a8:e7:c2:ce:cb: a5:6b:f6:1e:cb:72:23:58:4c:ad:80:d5:37:f0:40:1c:34:9e: 80:32:73:cf:12:05:b2:d0:cf:4e:d9:d0:6c:73:33:a6:b5:6d: 0f:2f:1e:05:35:a2:7d:78:80:50:1c:93:17:83:aa:79:76:53: c6:1a:22:63:03:27:e5:ef:2f:58:9f:59:2e:1b:50:fb:5d:36: ef:91:b8:b8:f0:e3:e3:05:46:58:47:57:26:aa:10:26:c7:17: 57:ad:ba:7c:f7:0a:1d:f7:1c:80:58:4b:f4:63:60:d4:5f:e1: 14:b9:2e:50:e1:3e:93:ec:41:eb:2b:fb:44:58:cf:de:0c:41: c7:6f:18:e0:3b:0a:1f:f9:74:d2:53:d5:8b:b4:94:6f:08:60: e4:fe:e5:0f:82:1c:92:3d:5a:58:4b:ca:bc:98:a0:17:1c:d7: 25:85:fd:67:fe:07:f4:91:83:e0:69:59:9a:cc:0f:de:55:8d: c7:a0:6d:71:e0:b5:b4:da:2b:69:fd:c0:07:3c:d8:d0:83:49: 33:82:24:48:d5:52:86:08:58:fc:e5:43:f9:a8:c7:57:64:6a: c7:23:02:01 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMPkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFDQTRFQTdDQ0U4ODRC N0E4OTdDRkYzRDU3QTRDMTM3QzdEMzU4NUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjTvwU9Thw/4uTNU2/LRQG1PaNBREgTUEtjEO9CPZiJSn6L/x+ im7AzKjFOxo9/XunNodghcu0J04XjdwNRUhdk0qiUAAwNOf2035HECyWp9ZkASHU Pw0xcEy7Kk7/34/sGlb75s1QCgOxUBQKcW6iE7j7hJWnzW74KdCozxeRyfAcTMwp ERV8GRhhaJt4KWVTpKBRLHiVf37frolSxox4ihp/D9vMpmv19M5UGGj+H/T3VgT5 ks0AKabEcX8NX54Djrx+3w9GWkl/Bd5+jWDzJThPa9iL/0SylshHXuZLFWkrQcba Uf9IQnw5XzBkEMbLgWFz3YNj/wjNl3ULZYUxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUrKTqfM6IS3qJfP89V6TBN8fTWF0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3JLVHFmTTZJUzNxSmZQODlW NlRCTjhmVFdGMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wkgwDQYJKoZIhvcNAQELBQADggEBAFKMS+KUDUNQDppumJ+dkGEzTGC4P6eOJG8r o99hoQqo58LOy6Vr9h7LciNYTK2A1TfwQBw0noAyc88SBbLQz07Z0GxzM6a1bQ8v HgU1on14gFAckxeDqnl2U8YaImMDJ+XvL1ifWS4bUPtdNu+RuLjw4+MFRlhHVyaq ECbHF1etunz3Ch33HIBYS/RjYNRf4RS5LlDhPpPsQesr+0RYz94MQcdvGOA7Ch/5 dNJT1Yu0lG8IYOT+5Q+CHJI9WlhLyryYoBcc1yWF/Wf+B/SRg+BpWZrMD95Vjceg bXHgtbTaK2n9wAc82NCDSTOCJEjVUoYIWPzlQ/mox1dkascjAgE= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:54 2024 by rpki-client on console-ams.rpki-client.org