$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/td-HLjMgcdXtg4JkKhNaao2UNCo.roa File: td-HLjMgcdXtg4JkKhNaao2UNCo.roa (raw, json) Hash identifier: Phojs9Eiq5ZkS5Ir82qvV/LLTrq2wemwt/bMG5fl4JE= Subject key identifier: B5:DF:87:2E:33:20:71:D5:ED:83:82:64:2A:13:5A:6A:8D:94:34:2A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 28D9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/td-HLjMgcdXtg4JkKhNaao2UNCo.roa Signing time: Fri 01 Sep 2023 10:05:49 +0000 ROA not before: Fri 01 Sep 2023 10:05:49 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 106.1.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10457 (0x28d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:49 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B5DF872E332071D5ED8382642A135A6A8D94342A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c9:3e:57:be:2c:42:4a:72:2e:f2:a9:8e:fb: c7:ed:f5:c3:d2:4d:62:d8:63:33:f4:68:5c:df:06: 72:6e:f8:16:11:8d:cf:9f:ac:ad:57:4e:da:cb:f6: 5d:46:a4:d3:41:c6:da:49:59:f1:96:bf:75:70:d4: b5:4f:29:b3:b9:d9:89:03:73:af:7c:1c:dc:51:b3: 30:36:2a:ae:0e:86:65:e0:9a:bc:94:21:d7:42:2c: d9:b8:7e:30:b1:ca:ed:ce:61:72:62:a9:06:4c:4e: 8e:ce:e1:1c:77:57:d7:3b:ec:bd:dc:6c:87:8b:0e: e7:39:86:5f:c5:ca:d1:7f:a6:a7:e8:74:90:df:6e: 89:3f:57:01:db:fa:94:3f:cc:f1:df:00:b1:0e:e2: 41:6c:ec:1d:a4:ce:43:78:c7:5d:20:f2:6a:a5:7f: 88:7a:f0:e6:6e:b6:95:8a:42:5a:96:ef:dd:4f:b2: da:df:ca:42:46:57:d0:75:cc:55:fd:4a:ea:48:79: 1a:96:5a:06:7e:d5:9a:7c:b3:81:bf:ed:ee:0b:db: 1f:47:1e:3f:3f:ae:91:a6:31:cc:db:71:c1:27:c9: 8e:84:01:99:f4:2a:f9:32:1e:af:39:3c:2a:22:f2: 04:ea:fe:a7:5a:df:ca:0b:53:6d:95:9d:e0:49:39: 72:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:DF:87:2E:33:20:71:D5:ED:83:82:64:2A:13:5A:6A:8D:94:34:2A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/td-HLjMgcdXtg4JkKhNaao2UNCo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.47.0/24 Signature Algorithm: sha256WithRSAEncryption 66:4e:e5:29:56:b9:41:1a:4d:3f:30:1e:b1:28:f8:80:68:1a: 01:e7:f4:c1:89:b0:e2:70:d7:45:e5:56:2e:08:d7:d3:08:95: 37:1e:b8:ef:43:44:47:5b:89:1a:f7:01:3e:82:56:b6:72:17: ac:cc:97:fd:44:5b:2b:16:23:c8:6e:f6:e3:29:79:95:8c:9a: 5e:fa:86:98:87:bd:b6:42:63:c3:55:ac:ba:04:7c:88:74:e4: 40:1c:b0:10:01:d9:6f:f4:7e:5a:cc:ad:f2:f3:f0:7b:2e:d4: b4:8e:b6:62:a9:8b:8c:0b:0c:9c:cf:61:db:23:c7:ea:a1:59: 68:da:3d:58:8a:be:9a:a5:70:cc:d9:93:2a:7c:7e:71:7a:6b: 8d:01:73:10:73:41:39:dc:f4:d1:11:a0:31:a0:ef:ec:a9:d7: fc:82:0a:11:b1:18:8c:cf:eb:35:a6:e9:55:cf:99:df:9b:6a: 25:cf:04:cd:ae:5d:96:88:4f:a7:48:3b:f1:52:b1:e5:f1:78: 57:27:92:1a:ed:d3:4a:05:e7:e4:2a:bf:8d:49:bd:24:80:1a: 9d:ac:74:f3:1f:6f:4f:7a:99:31:d7:e1:86:13:46:4c:b6:4b: 00:95:93:6b:5c:a9:6f:5e:62:07:10:50:72:6f:a7:9d:b4:bf: 55:e9:dd:b4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKNkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1NDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI1REY4NzJFMzMyMDcx RDVFRDgzODI2NDJBMTM1QTZBOEQ5NDM0MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCyT5XvixCSnIu8qmO+8ft9cPSTWLYYzP0aFzfBnJu+BYRjc+f rK1XTtrL9l1GpNNBxtpJWfGWv3Vw1LVPKbO52YkDc698HNxRszA2Kq4OhmXgmryU IddCLNm4fjCxyu3OYXJiqQZMTo7O4Rx3V9c77L3cbIeLDuc5hl/FytF/pqfodJDf bok/VwHb+pQ/zPHfALEO4kFs7B2kzkN4x10g8mqlf4h68OZutpWKQlqW791Pstrf ykJGV9B1zFX9SupIeRqWWgZ+1Zp8s4G/7e4L2x9HHj8/rpGmMczbccEnyY6EAZn0 KvkyHq85PCoi8gTq/qda38oLU22VneBJOXKJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUtd+HLjMgcdXtg4JkKhNaao2UNCowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3RkLUhMak1nY2RYdGc0SmtL aE5hYW8yVU5Dby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AS8wDQYJKoZIhvcNAQELBQADggEBAGZO5SlWuUEaTT8wHrEo+IBoGgHn9MGJsOJw 10XlVi4I19MIlTceuO9DREdbiRr3AT6CVrZyF6zMl/1EWysWI8hu9uMpeZWMml76 hpiHvbZCY8NVrLoEfIh05EAcsBAB2W/0flrMrfLz8Hsu1LSOtmKpi4wLDJzPYdsj x+qhWWjaPViKvpqlcMzZkyp8fnF6a40BcxBzQTnc9NERoDGg7+yp1/yCChGxGIzP 6zWm6VXPmd+baiXPBM2uXZaIT6dIO/FSseXxeFcnkhrt00oF5+Qqv41JvSSAGp2s dPMfb096mTHX4YYTRky2SwCVk2tcqW9eYgcQUHJvp520v1Xp3bQ= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:06 2024 by rpki-client on console-fra.rpki-client.org