$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sLgh2M8qbQLx6TkH4NzlShGD0iA.roa File: sLgh2M8qbQLx6TkH4NzlShGD0iA.roa (raw, json) Hash identifier: zjGkMcfpwVlFlEg7JFy/gwykvgR30YO4SzXOKGJCjEc= Subject key identifier: B0:B8:21:D8:CF:2A:6D:02:F1:E9:39:07:E0:DC:E5:4A:11:83:D2:20 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2AF4 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sLgh2M8qbQLx6TkH4NzlShGD0iA.roa Signing time: Fri 01 Sep 2023 10:08:28 +0000 ROA not before: Fri 01 Sep 2023 10:08:28 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 106.1.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10996 (0x2af4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:28 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B0B821D8CF2A6D02F1E93907E0DCE54A1183D220 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a1:68:73:15:ed:6a:30:39:ac:93:bf:ca:d1: 90:a9:5d:85:22:e8:6e:01:67:f2:ae:0b:54:b4:f5: 1c:fb:63:d2:d1:b5:80:cf:b3:89:14:35:34:c3:de: c3:d9:a4:28:c7:f2:92:09:73:a3:61:ac:c8:2c:cf: 02:b5:03:1a:90:67:ad:9c:00:f6:61:13:53:21:73: cd:f8:41:3b:fd:e3:b2:d4:c3:eb:c0:6b:1a:9f:07: c4:76:43:30:b2:b4:be:6e:0c:c1:84:24:dc:82:4c: ec:37:e3:70:53:e6:a5:54:9a:6c:ea:56:d5:87:81: f2:55:bf:52:6c:41:f6:3a:ac:37:71:bd:dc:e6:d6: 11:32:23:fd:13:66:fd:ad:95:c9:34:19:13:fe:60: 04:26:41:7d:08:d1:31:87:b3:30:39:06:a9:7a:4b: 0f:40:64:18:ad:bd:cb:5e:d7:20:a0:f9:90:f7:98: 2c:e1:3f:2d:85:8e:8c:3f:38:6e:56:24:87:f8:02: ba:20:ae:35:f8:54:1f:21:ba:e5:5a:d2:85:27:88: e1:c9:61:7e:33:a3:87:f2:84:2a:b2:e3:24:25:5f: 35:0b:e5:83:35:24:0c:eb:74:f8:a4:04:dc:c3:5e: 7f:8f:c0:ba:bc:7c:2a:5b:8e:b8:1a:be:74:4f:ca: c1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:B8:21:D8:CF:2A:6D:02:F1:E9:39:07:E0:DC:E5:4A:11:83:D2:20 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sLgh2M8qbQLx6TkH4NzlShGD0iA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.180.0/22 Signature Algorithm: sha256WithRSAEncryption 51:63:50:70:28:9c:46:b0:80:75:da:c0:b5:fe:bb:50:d5:68: 04:75:3f:06:f5:79:20:65:42:90:01:97:de:c9:fa:e4:03:27: 5a:f8:a1:6f:e9:10:ef:61:60:64:5c:e9:77:6a:dc:36:fa:7b: 65:70:19:71:83:e4:ae:6d:5d:90:a6:52:1a:c0:50:c5:12:05: 03:3a:97:e3:c9:84:46:de:f8:b8:65:0a:d9:62:cc:99:95:45: 11:3c:0d:10:be:68:82:4b:b7:a2:a3:87:82:eb:af:76:71:63: 86:a1:61:15:07:da:27:e1:98:58:fc:ea:43:f7:a2:c3:e8:93: d5:8f:ab:b7:07:85:72:c9:03:97:20:72:0f:1b:b4:ec:11:36: 81:81:6d:6a:44:dc:fd:9e:8e:5d:10:5e:1e:a8:3b:dc:61:ad: 83:e9:9c:28:55:4e:ec:a8:c8:4a:e3:3f:aa:0e:45:a5:f0:38: 83:c8:5c:02:70:27:9c:40:b9:38:c2:d8:b2:61:b5:d2:0b:ca: 4d:c4:a6:fb:ac:69:2c:37:6e:39:b9:f0:b1:cf:d2:cf:5c:60: 00:5b:66:ee:3a:e9:3b:ad:04:6a:2d:47:db:2e:12:7b:04:82: ae:f9:e1:76:b4:c3:48:a5:40:69:d3:af:8c:a4:a3:59:b7:3a: 4e:a7:39:01 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKvQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MjhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEIwQjgyMUQ4Q0YyQTZE MDJGMUU5MzkwN0UwRENFNTRBMTE4M0QyMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6oWhzFe1qMDmsk7/K0ZCpXYUi6G4BZ/KuC1S09Rz7Y9LRtYDP s4kUNTTD3sPZpCjH8pIJc6NhrMgszwK1AxqQZ62cAPZhE1Mhc834QTv947LUw+vA axqfB8R2QzCytL5uDMGEJNyCTOw343BT5qVUmmzqVtWHgfJVv1JsQfY6rDdxvdzm 1hEyI/0TZv2tlck0GRP+YAQmQX0I0TGHszA5Bql6Sw9AZBitvcte1yCg+ZD3mCzh Py2Fjow/OG5WJIf4ArogrjX4VB8huuVa0oUniOHJYX4zo4fyhCqy4yQlXzUL5YM1 JAzrdPikBNzDXn+PwLq8fCpbjrgavnRPysGFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUsLgh2M8qbQLx6TkH4NzlShGD0iAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3NMZ2gyTThxYlFMeDZUa0g0 TnpsU2hHRDBpQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AbQwDQYJKoZIhvcNAQELBQADggEBAFFjUHAonEawgHXawLX+u1DVaAR1Pwb1eSBl QpABl97J+uQDJ1r4oW/pEO9hYGRc6Xdq3Db6e2VwGXGD5K5tXZCmUhrAUMUSBQM6 l+PJhEbe+LhlCtlizJmVRRE8DRC+aIJLt6Kjh4Lrr3ZxY4ahYRUH2ifhmFj86kP3 osPok9WPq7cHhXLJA5cgcg8btOwRNoGBbWpE3P2ejl0QXh6oO9xhrYPpnChVTuyo yErjP6oORaXwOIPIXAJwJ5xAuTjC2LJhtdILyk3EpvusaSw3bjm58LHP0s9cYABb Zu466TutBGotR9suEnsEgq754Xa0w0ilQGnTr4yko1m3Ok6nOQE= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:07 2024 by rpki-client on console-ams.rpki-client.org