$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uVJuyYdI7dL8anBuMjzaW4SJ2rM.roa File: uVJuyYdI7dL8anBuMjzaW4SJ2rM.roa (raw, json) Hash identifier: BuSZgnhHUfQpm6qN2I762W3dqjRgoMjiKJLyEP1rB84= Subject key identifier: B9:52:6E:C9:87:48:ED:D2:FC:6A:70:6E:32:3C:DA:5B:84:89:DA:B3 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 27E0 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uVJuyYdI7dL8anBuMjzaW4SJ2rM.roa Signing time: Fri 01 Sep 2023 10:04:40 +0000 ROA not before: Fri 01 Sep 2023 10:04:40 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.195.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10208 (0x27e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:04:40 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B9526EC98748EDD2FC6A706E323CDA5B8489DAB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:47:20:00:5e:c9:76:7e:09:dc:cd:39:9b:4b: 7b:66:2c:5d:40:e6:bc:b4:98:02:42:3e:7d:a1:3d: 31:28:c4:31:6a:0b:10:38:d3:47:d7:0a:ed:f0:f5: 2d:37:08:dd:7a:71:8a:f2:89:d3:89:c5:0b:69:d4: fa:9a:eb:94:2f:80:1a:90:bc:52:65:0d:fb:7d:e2: c8:0d:a0:b1:a7:19:4d:32:c5:80:f7:b1:0b:1f:30: ca:c2:8f:b9:d7:82:82:7e:ee:5a:fe:4c:29:7a:af: 6e:41:aa:78:0c:3a:12:91:30:92:fe:36:bf:db:ee: 99:26:d7:a3:10:e6:36:26:f6:8c:43:9e:43:46:f5: f4:5c:dc:73:95:68:e4:b8:e2:97:d5:66:26:9e:b3: cc:e1:41:fe:c3:a5:81:cb:ca:cd:19:fa:f4:82:04: 9a:92:dc:72:49:be:e7:07:c3:12:24:8f:ed:ae:b5: e7:ed:cc:c0:2c:59:18:e6:26:63:66:be:6b:60:76: a5:b0:7b:b4:0c:7d:17:c2:2c:74:ce:09:fc:0b:5f: d1:13:c3:5e:55:af:9f:e6:b0:1c:f4:1d:f1:f2:f9: d3:75:b9:1f:12:bf:db:d9:18:96:fd:7b:69:35:ed: 91:ed:e1:e2:03:a2:7b:0c:cf:1b:d2:99:f4:0d:99: 6e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:52:6E:C9:87:48:ED:D2:FC:6A:70:6E:32:3C:DA:5B:84:89:DA:B3 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/uVJuyYdI7dL8anBuMjzaW4SJ2rM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.151.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:65:70:26:62:66:1a:b6:a0:88:53:14:c8:14:48:c9:c6:fc: 3c:88:9a:4a:2c:18:50:c8:20:30:af:05:07:d6:d3:99:88:aa: 80:7d:a7:e1:6c:4e:92:2b:89:e3:72:da:d5:e1:bc:63:58:9a: 85:9c:47:0c:ff:b4:2d:21:60:86:7b:19:87:c1:65:59:a7:b0: 3d:bc:b8:9c:29:7c:5f:d9:57:f4:87:e8:bd:7c:94:57:fd:3d: 96:ec:4a:da:9b:fa:fa:7f:7d:2f:a5:85:00:4e:0a:be:92:a1: 3c:c8:14:e7:21:7a:a2:91:13:a5:95:fe:1d:2d:79:5c:9a:a3: 4c:67:e3:9b:4d:c9:95:5b:d8:13:6a:a9:ba:63:9a:f3:b3:14: 90:f7:ac:6b:70:58:31:5d:cc:c3:6f:f3:65:4f:50:f9:0a:dd: 96:7f:ef:47:81:51:a1:02:c6:f0:3f:6e:ce:d9:fb:21:62:6c: 32:18:c4:fa:3a:63:41:74:b1:09:e9:e0:38:7d:d3:c2:d8:e1: c1:53:97:6b:88:bf:32:3a:e0:8b:fd:54:33:13:d8:dc:d6:dc: 0e:6a:bf:61:35:96:13:68:d7:0a:07:91:fe:c2:6c:cd:2f:26: 20:e9:d9:b5:3e:b4:20:61:fc:f5:76:56:f9:83:dd:c2:cd:da: 77:0b:94:38 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJ+AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA0NDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI5NTI2RUM5ODc0OEVE RDJGQzZBNzA2RTMyM0NEQTVCODQ4OURBQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkRyAAXsl2fgnczTmbS3tmLF1A5ry0mAJCPn2hPTEoxDFqCxA4 00fXCu3w9S03CN16cYryidOJxQtp1Pqa65QvgBqQvFJlDft94sgNoLGnGU0yxYD3 sQsfMMrCj7nXgoJ+7lr+TCl6r25BqngMOhKRMJL+Nr/b7pkm16MQ5jYm9oxDnkNG 9fRc3HOVaOS44pfVZiaes8zhQf7DpYHLys0Z+vSCBJqS3HJJvucHwxIkj+2uteft zMAsWRjmJmNmvmtgdqWwe7QMfRfCLHTOCfwLX9ETw15Vr5/msBz0HfHy+dN1uR8S v9vZGJb9e2k17ZHt4eIDonsMzxvSmfQNmW7/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUuVJuyYdI7dL8anBuMjzaW4SJ2rMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3VWSnV5WWRJN2RMOGFuQnVN anphVzRTSjJyTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 w5cwDQYJKoZIhvcNAQELBQADggEBAB9lcCZiZhq2oIhTFMgUSMnG/DyImkosGFDI IDCvBQfW05mIqoB9p+FsTpIrieNy2tXhvGNYmoWcRwz/tC0hYIZ7GYfBZVmnsD28 uJwpfF/ZV/SH6L18lFf9PZbsStqb+vp/fS+lhQBOCr6SoTzIFOcheqKRE6WV/h0t eVyao0xn45tNyZVb2BNqqbpjmvOzFJD3rGtwWDFdzMNv82VPUPkK3ZZ/70eBUaEC xvA/bs7Z+yFibDIYxPo6Y0F0sQnp4Dh908LY4cFTl2uIvzI64Iv9VDMT2NzW3A5q v2E1lhNo1woHkf7CbM0vJiDp2bU+tCBh/PV2VvmD3cLN2ncLlDg= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:07 2024 by rpki-client on console-ams.rpki-client.org