$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tFRiowKLJiUW61iltQkGJu_A4rk.roa File: tFRiowKLJiUW61iltQkGJu_A4rk.roa (raw, json) Hash identifier: 9z3ttGM4hqvviXbupM5fd6RwDO9n9GS7jZ+ZV+kTOqU= Subject key identifier: B4:54:62:A3:02:8B:26:25:16:EB:58:A5:B5:09:06:26:EF:C0:E2:B9 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 288E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tFRiowKLJiUW61iltQkGJu_A4rk.roa Signing time: Fri 01 Sep 2023 10:05:29 +0000 ROA not before: Fri 01 Sep 2023 10:05:29 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.194.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 18:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10382 (0x288e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:29 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B45462A3028B262516EB58A5B5090626EFC0E2B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:46:5a:ab:54:0a:ed:ef:f1:3f:5a:43:ad:05: 7e:57:c8:28:ee:a4:09:53:e4:1d:7f:e3:75:ff:8d: ec:85:ac:cb:20:64:b5:b2:63:b2:a8:1a:66:78:d6: 26:c5:b9:a7:7a:d0:2f:05:01:b2:8c:b6:bb:e7:7a: 0d:7c:ad:1e:86:54:9e:1c:10:5a:fd:b2:3d:8f:58: f1:91:f6:7c:55:09:ff:c9:be:52:2b:4c:c2:44:fa: 42:8e:58:5f:1d:06:e3:11:a0:a9:31:84:9a:f2:52: 9e:5e:57:38:29:26:df:a4:e1:25:5c:cf:5e:ec:3d: 7e:00:e4:17:98:58:d3:53:d1:fc:37:2e:cb:df:de: 60:6a:9b:a8:33:54:e5:db:ae:2b:d8:bc:c9:be:be: c8:cb:73:95:6e:87:44:41:ef:67:54:9f:89:f3:6d: 50:04:c8:ab:28:cc:e1:b0:6f:a5:78:b9:c3:f8:17: 6d:d6:9e:aa:16:34:69:f1:b0:e8:2a:15:6e:0d:47: e3:94:26:ca:9d:0f:fd:8e:e1:2f:57:1c:1b:e7:fb: 24:3a:81:41:33:9a:30:b8:34:fc:94:6f:c0:2d:0a: 74:08:9a:3c:fe:90:a8:ba:53:77:ee:6a:89:5e:93: f5:59:0d:3c:ce:32:53:40:e5:32:8d:2f:00:d0:29: f4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:54:62:A3:02:8B:26:25:16:EB:58:A5:B5:09:06:26:EF:C0:E2:B9 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tFRiowKLJiUW61iltQkGJu_A4rk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.96.0/21 Signature Algorithm: sha256WithRSAEncryption 36:cb:eb:cb:31:34:6a:4f:5e:49:4f:14:54:af:47:cf:6d:3f: d9:3e:cb:01:6a:e2:04:92:a0:bb:50:52:a6:dc:c5:6e:b5:00: 87:af:34:8f:ef:d3:49:5b:d2:e3:05:97:b7:96:f6:01:28:14: 0a:d7:3f:73:ab:69:19:4c:71:0a:19:0d:5e:6c:5a:0d:61:22: 08:d4:cb:5c:5e:a4:d1:a8:85:01:ad:ce:54:d0:5e:ba:ff:33: dd:59:71:c6:06:5b:10:ea:1b:49:ce:78:a9:25:4d:46:4e:83: c4:7e:a3:cc:92:04:fc:f8:27:c3:0e:f1:a2:54:e1:62:6d:63: 66:22:d0:cd:3e:95:55:0b:d2:b2:e0:a0:b8:e0:a1:5d:d5:b9: 1e:33:73:86:88:65:03:0b:79:d3:78:81:b5:44:6e:cb:aa:fc: 6f:d1:c2:24:06:c2:61:b5:ba:ff:73:bd:eb:9f:21:f5:1c:f4: 46:fb:d3:fd:30:66:80:02:00:6e:be:de:d6:e2:a0:15:aa:68: 73:f0:ab:0a:14:28:9b:d6:89:9b:1c:bc:b7:1d:1f:ed:cd:4e: 25:0e:2f:76:e5:60:9c:0f:49:af:c5:0c:1c:44:da:7f:cf:c0: 2e:57:32:11:d1:a1:68:ef:20:7b:c7:73:da:4b:2c:b4:c0:4e: a4:b8:c1:e9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKI4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1MjlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI0NTQ2MkEzMDI4QjI2 MjUxNkVCNThBNUI1MDkwNjI2RUZDMEUyQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKRlqrVArt7/E/WkOtBX5XyCjupAlT5B1/43X/jeyFrMsgZLWy Y7KoGmZ41ibFuad60C8FAbKMtrvneg18rR6GVJ4cEFr9sj2PWPGR9nxVCf/JvlIr TMJE+kKOWF8dBuMRoKkxhJryUp5eVzgpJt+k4SVcz17sPX4A5BeYWNNT0fw3Lsvf 3mBqm6gzVOXbrivYvMm+vsjLc5Vuh0RB72dUn4nzbVAEyKsozOGwb6V4ucP4F23W nqoWNGnxsOgqFW4NR+OUJsqdD/2O4S9XHBvn+yQ6gUEzmjC4NPyUb8AtCnQImjz+ kKi6U3fuaolek/VZDTzOMlNA5TKNLwDQKfR5AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUtFRiowKLJiUW61iltQkGJu/A4rkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3RGUmlvd0tMSmlVVzYxaWx0 UWtHSnVfQTRyay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wmAwDQYJKoZIhvcNAQELBQADggEBADbL68sxNGpPXklPFFSvR89tP9k+ywFq4gSS oLtQUqbcxW61AIevNI/v00lb0uMFl7eW9gEoFArXP3OraRlMcQoZDV5sWg1hIgjU y1xepNGohQGtzlTQXrr/M91ZccYGWxDqG0nOeKklTUZOg8R+o8ySBPz4J8MO8aJU 4WJtY2Yi0M0+lVUL0rLgoLjgoV3VuR4zc4aIZQMLedN4gbVEbsuq/G/RwiQGwmG1 uv9zveufIfUc9Eb70/0wZoACAG6+3tbioBWqaHPwqwoUKJvWiZscvLcdH+3NTiUO L3blYJwPSa/FDBxE2n/PwC5XMhHRoWjvIHvHc9pLLLTATqS4wek= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:00 2024 by rpki-client on console-ams.rpki-client.org