$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/t1DEj02EZppNQ9i3TGTewHqf6d8.roa File: t1DEj02EZppNQ9i3TGTewHqf6d8.roa (raw, json) Hash identifier: P85aMgvoT3YJKYbsAZDvJcNhYWxrS/j9VmzpIuX4Lx8= Subject key identifier: B7:50:C4:8F:4D:84:66:9A:4D:43:D8:B7:4C:64:DE:C0:7A:9F:E9:DF Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2A08 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/t1DEj02EZppNQ9i3TGTewHqf6d8.roa Signing time: Fri 01 Sep 2023 10:07:24 +0000 ROA not before: Fri 01 Sep 2023 10:07:24 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.195.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 18:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10760 (0x2a08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:07:24 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B750C48F4D84669A4D43D8B74C64DEC07A9FE9DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0f:e4:38:be:48:84:05:9a:02:ec:40:30:a4: 1d:e0:4f:ef:50:2a:b6:86:22:16:94:e4:82:bf:b4: 0d:ae:3c:42:7a:10:36:fe:91:d5:64:e0:cf:15:bb: 4d:af:4a:ae:ce:a8:23:df:6d:78:ea:13:7e:5e:b0: 0e:90:a4:51:6b:29:72:f8:2e:2b:28:52:16:06:82: ab:b1:3a:b0:1f:df:fe:7d:b3:10:0a:fd:c3:20:41: 1e:ca:8e:14:ef:f2:73:33:ab:97:82:24:1c:ff:06: 1e:a0:09:48:fd:e1:18:e7:2a:96:ba:ca:bb:97:ff: 6f:d6:87:a9:fd:0d:90:bc:57:ff:b6:c7:28:3d:13: e7:58:21:cd:6f:55:67:d2:ae:9e:82:ed:cb:fd:65: 0c:b5:98:1c:dd:c5:87:5c:25:cb:8e:bb:61:64:e4: 8a:64:20:5b:50:31:22:64:ed:04:b3:fd:0b:6f:c9: 98:db:ba:8b:21:69:a3:6a:fe:ba:cd:ca:aa:cd:e7: 94:bd:85:c4:c4:ae:9a:18:1f:2b:0a:db:1d:06:b7: 4a:6c:65:d8:eb:5c:90:d7:d0:6e:ad:52:d6:6b:6c: 73:a2:53:88:b6:9c:d2:96:af:70:c2:e2:0f:7f:97: 77:df:97:d7:c4:ff:57:32:28:bc:f6:e1:cc:69:f5: ea:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:50:C4:8F:4D:84:66:9A:4D:43:D8:B7:4C:64:DE:C0:7A:9F:E9:DF X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/t1DEj02EZppNQ9i3TGTewHqf6d8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.28.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:03:85:ca:2a:00:b1:fc:21:1e:e7:5a:b1:1f:13:df:c3:ff: 89:b6:52:f8:72:b3:b8:cb:55:bb:da:94:2f:5b:be:08:39:79: a0:50:62:fc:fb:9d:fd:3e:f4:88:6b:cc:cf:61:8c:26:22:17: 03:32:6a:9d:a3:4a:a6:f1:b0:9b:90:8b:f3:89:b8:c0:4f:62: 83:2d:bc:b6:b4:97:c1:1a:bb:e6:2d:bc:ce:76:a2:0d:58:8e: fd:a4:21:46:a8:78:d8:66:e6:bc:61:a0:e4:73:50:e5:a6:86: 3f:83:ab:40:2b:fe:00:fb:c6:53:a5:71:bc:f8:f2:f2:cb:e2: 7c:dd:23:35:91:d5:33:4b:6c:7e:91:bd:ef:e2:6a:32:74:28: cd:78:f1:e7:cb:34:fc:da:bf:a6:cf:62:38:ac:a3:e9:69:67: f8:4a:2b:8b:23:6c:48:a1:28:2d:2a:39:90:d0:a3:c3:d2:5b: d0:16:ae:aa:12:38:91:5c:9d:22:d6:1a:e6:2b:bb:9e:6d:45: cd:6f:6d:ad:aa:d3:c9:74:d4:d6:b6:56:ea:f6:74:31:44:38: 94:2c:99:69:e2:37:0f:99:7d:db:d9:eb:85:bc:e3:88:89:a6: 4f:fe:18:f8:b4:67:7f:2f:d4:a3:b6:7e:a9:86:7b:fd:d6:9b: 55:ca:8d:23 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKggwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA3MjRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI3NTBDNDhGNEQ4NDY2 OUE0RDQzRDhCNzRDNjRERUMwN0E5RkU5REYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqD+Q4vkiEBZoC7EAwpB3gT+9QKraGIhaU5IK/tA2uPEJ6EDb+ kdVk4M8Vu02vSq7OqCPfbXjqE35esA6QpFFrKXL4LisoUhYGgquxOrAf3/59sxAK /cMgQR7KjhTv8nMzq5eCJBz/Bh6gCUj94RjnKpa6yruX/2/Wh6n9DZC8V/+2xyg9 E+dYIc1vVWfSrp6C7cv9ZQy1mBzdxYdcJcuOu2Fk5IpkIFtQMSJk7QSz/QtvyZjb uoshaaNq/rrNyqrN55S9hcTErpoYHysK2x0Gt0psZdjrXJDX0G6tUtZrbHOiU4i2 nNKWr3DC4g9/l3ffl9fE/1cyKLz24cxp9er3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUt1DEj02EZppNQ9i3TGTewHqf6d8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3QxREVqMDJFWnBwTlE5aTNU R1Rld0hxZjZkOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wxwwDQYJKoZIhvcNAQELBQADggEBAB0DhcoqALH8IR7nWrEfE9/D/4m2Uvhys7jL VbvalC9bvgg5eaBQYvz7nf0+9IhrzM9hjCYiFwMyap2jSqbxsJuQi/OJuMBPYoMt vLa0l8Eau+YtvM52og1Yjv2kIUaoeNhm5rxhoORzUOWmhj+Dq0Ar/gD7xlOlcbz4 8vLL4nzdIzWR1TNLbH6Rve/iajJ0KM148efLNPzav6bPYjiso+lpZ/hKK4sjbEih KC0qOZDQo8PSW9AWrqoSOJFcnSLWGuYru55tRc1vba2q08l01Na2Vur2dDFEOJQs mWniNw+ZfdvZ64W844iJpk/+GPi0Z38v1KO2fqmGe/3Wm1XKjSM= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:00 2024 by rpki-client on console-ams.rpki-client.org