$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rjMVLCjVJzFuF1N5uYr7R_KBIt4.roa File: rjMVLCjVJzFuF1N5uYr7R_KBIt4.roa (raw, json) Hash identifier: SUs5JVflT4osU1VtrJnNpMe/eU8BS6bzv0WcV4yF584= Subject key identifier: AE:33:15:2C:28:D5:27:31:6E:17:53:79:B9:8A:FB:47:F2:81:22:DE Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A3F Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rjMVLCjVJzFuF1N5uYr7R_KBIt4.roa Signing time: Fri 01 Sep 2023 10:07:39 +0000 ROA not before: Fri 01 Sep 2023 10:07:39 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.195.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10815 (0x2a3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:39 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=AE33152C28D527316E175379B98AFB47F28122DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fe:e2:c6:6f:a2:73:cf:20:94:37:85:2e:be: 09:06:6f:59:a1:3a:0f:49:01:d3:11:96:ff:4b:88: cd:02:41:df:39:c1:73:bc:b6:9d:bf:ea:d2:28:96: c2:58:73:2f:87:87:1e:55:40:ec:52:8c:85:27:1d: 43:e5:77:de:9e:23:fb:ca:4d:d9:36:32:f2:43:a9: c1:7a:0a:78:c2:55:e1:e7:68:61:c6:d0:38:6b:d8: 93:d2:16:a0:56:a8:89:35:dd:ca:cb:8d:83:90:af: a1:8d:93:1a:86:44:6d:f0:c9:52:dd:cb:29:8e:18: 40:4c:60:68:d9:7f:99:14:f3:9f:d7:df:39:ed:78: e4:3c:89:e8:18:c0:21:93:ba:8a:59:06:19:a6:39: d0:93:30:ef:a2:6a:cd:56:18:d8:d4:f5:f5:58:2f: 2b:72:fa:f0:cb:7d:b4:5d:73:4d:05:6d:d7:c4:4c: e9:f7:9f:6a:a6:52:b1:8b:03:e5:d2:bd:08:1b:14: bf:87:da:6f:e2:8d:a9:ff:eb:18:e0:59:ad:49:ca: a4:00:c3:d6:25:2c:ea:03:c4:8b:47:27:01:75:9c: 5f:db:a4:fa:d2:da:2e:d5:45:86:e4:7b:c5:a0:3a: 5f:13:f1:b6:11:b7:b4:84:a0:69:9b:79:d3:7d:42: 16:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:33:15:2C:28:D5:27:31:6E:17:53:79:B9:8A:FB:47:F2:81:22:DE X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rjMVLCjVJzFuF1N5uYr7R_KBIt4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.112.0/21 Signature Algorithm: sha256WithRSAEncryption 06:13:c0:2a:4a:93:42:61:22:cd:33:bd:92:52:52:3d:0a:2e: a0:3d:41:77:40:c3:8d:19:dc:85:e2:37:f7:30:2a:eb:92:89: b6:9f:d7:b9:dd:ee:f6:0a:fb:82:74:2f:13:b7:99:21:3f:af: 5c:7d:90:db:7d:40:c8:d6:9d:9d:2a:12:6b:47:0b:6a:73:dd: 9b:79:bb:a9:a4:15:eb:e2:0e:d3:dc:50:a7:a1:2a:f2:ad:2f: cb:90:a5:56:7c:60:3b:ee:26:f0:82:2e:ec:1e:e7:04:3d:f0: 2a:91:2b:cb:7d:93:d2:04:70:94:52:f4:f6:7b:bf:b6:4e:9b: 88:29:9e:7c:bb:6a:65:4e:cf:40:8d:fd:15:56:2c:19:7c:a8: 72:cc:32:c4:c2:48:1c:b1:0a:44:ea:87:76:53:01:b1:97:c1: bf:78:b2:9f:ca:ab:19:e2:42:f2:36:27:26:a1:41:01:54:af: 3c:2a:64:2f:4e:de:53:fc:3e:18:17:4d:bf:29:ce:9c:50:7a: 61:f0:23:32:99:9e:dd:85:fe:cc:f5:8f:f6:5d:64:1b:ca:d2: 8c:04:dd:3f:fd:01:2f:50:7e:f8:7a:5e:d3:b7:e3:a1:0b:d1: 1d:46:c5:97:52:67:1d:e1:eb:0c:24:1d:3a:26:b5:36:57:57: 42:0d:15:e1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKj8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3MzlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFFMzMxNTJDMjhENTI3 MzE2RTE3NTM3OUI5OEFGQjQ3RjI4MTIyREUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2/uLGb6JzzyCUN4UuvgkGb1mhOg9JAdMRlv9LiM0CQd85wXO8 tp2/6tIolsJYcy+Hhx5VQOxSjIUnHUPld96eI/vKTdk2MvJDqcF6CnjCVeHnaGHG 0Dhr2JPSFqBWqIk13crLjYOQr6GNkxqGRG3wyVLdyymOGEBMYGjZf5kU85/X3znt eOQ8iegYwCGTuopZBhmmOdCTMO+ias1WGNjU9fVYLyty+vDLfbRdc00FbdfETOn3 n2qmUrGLA+XSvQgbFL+H2m/ijan/6xjgWa1JyqQAw9YlLOoDxItHJwF1nF/bpPrS 2i7VRYbke8WgOl8T8bYRt7SEoGmbedN9QhaJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUrjMVLCjVJzFuF1N5uYr7R/KBIt4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3JqTVZMQ2pWSnpGdUYxTjV1 WXI3Ul9LQkl0NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 w3AwDQYJKoZIhvcNAQELBQADggEBAAYTwCpKk0JhIs0zvZJSUj0KLqA9QXdAw40Z 3IXiN/cwKuuSibaf17nd7vYK+4J0LxO3mSE/r1x9kNt9QMjWnZ0qEmtHC2pz3Zt5 u6mkFeviDtPcUKehKvKtL8uQpVZ8YDvuJvCCLuwe5wQ98CqRK8t9k9IEcJRS9PZ7 v7ZOm4gpnny7amVOz0CN/RVWLBl8qHLMMsTCSByxCkTqh3ZTAbGXwb94sp/Kqxni QvI2JyahQQFUrzwqZC9O3lP8PhgXTb8pzpxQemHwIzKZnt2F/sz1j/ZdZBvK0owE 3T/9AS9Qfvh6XtO346EL0R1GxZdSZx3h6wwkHTomtTZXV0INFeE= -----END CERTIFICATE-----Generated at Mon Jun 3 10:15:31 2024 by rpki-client on console-fra.rpki-client.org