$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vssDWlijf-KCZJ6c_jufPM7izsU.roa File: vssDWlijf-KCZJ6c_jufPM7izsU.roa (raw, json) Hash identifier: yOuFSQDedVv1oxAn3cbzb9tNPS+EDziBXNxJEhw6iSs= Subject key identifier: BE:CB:03:5A:58:A3:7F:E2:82:64:9E:9C:FE:3B:9F:3C:CE:E2:CE:C5 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2928 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vssDWlijf-KCZJ6c_jufPM7izsU.roa Signing time: Fri 01 Sep 2023 10:06:13 +0000 ROA not before: Fri 01 Sep 2023 10:06:13 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 123.193.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10536 (0x2928) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:06:13 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=BECB035A58A37FE282649E9CFE3B9F3CCEE2CEC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6d:fd:23:dd:69:f7:ab:1e:be:de:a1:b1:7b: f5:65:0a:4f:af:aa:d7:d9:19:5f:a4:5b:00:94:2a: 48:5d:b3:38:96:21:78:b5:3c:53:15:4f:f1:bf:a9: 4b:36:38:84:ac:30:49:cf:2b:85:be:04:c4:a7:7c: ed:2e:26:ff:e6:af:c0:ef:a4:e9:a0:93:aa:be:8d: ed:37:19:9f:f6:9b:ef:29:d9:f8:4a:26:35:f9:87: a5:bd:90:5e:3e:3a:25:6c:2c:4d:50:04:83:cb:bf: 83:49:90:c8:83:95:4a:bf:5e:b4:cd:19:e1:f4:c8: 9a:1f:52:92:d0:01:56:03:0e:80:63:15:bb:15:ad: 35:56:54:25:b1:de:d4:86:ea:c0:fc:cd:91:63:7d: 7a:0e:06:e9:93:66:e2:6b:ce:05:88:85:27:58:e0: ca:de:7b:21:95:d4:69:a8:fe:70:e9:94:2d:e5:82: 64:4e:da:97:c0:ee:a4:70:ea:b4:58:29:76:9b:f2: 3e:a8:8b:16:96:10:e2:ce:bf:ab:ff:c0:b0:6c:09: 72:a8:0f:bf:66:58:3c:70:c4:8d:2b:05:d8:43:ba: 7d:6b:a2:c6:48:34:b5:dc:8e:f6:c1:f9:94:cc:42: 42:9e:c2:a2:e4:f2:69:a2:6b:ff:25:c4:fe:84:9c: 15:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:CB:03:5A:58:A3:7F:E2:82:64:9E:9C:FE:3B:9F:3C:CE:E2:CE:C5 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vssDWlijf-KCZJ6c_jufPM7izsU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.96.0/21 Signature Algorithm: sha256WithRSAEncryption 6e:15:46:58:e1:84:84:52:48:06:3a:ae:94:ba:a5:0b:1e:d8: 2e:55:ef:8d:3b:80:85:b0:d3:86:1b:4c:ad:97:b0:ff:b6:6d: 9d:01:00:e0:71:76:b1:11:89:52:57:ee:89:ac:38:ed:05:09: 27:d0:2b:17:ce:12:dd:5c:c4:6c:0a:00:1f:c1:a5:83:a5:97: e6:cb:65:52:3e:a4:6b:28:8f:bd:9a:13:09:71:58:a5:b5:b5: ce:b2:e3:92:4a:ff:63:c0:23:b2:6d:aa:06:16:d1:cc:f2:7f: 5c:c4:1f:94:ee:ed:5e:c2:5d:9d:ab:d6:95:ad:bc:2d:29:39: 6d:4f:87:71:23:5d:5a:e0:14:e6:c3:69:88:a2:7b:52:ef:6d: 51:06:7b:da:cc:c5:07:47:58:44:c8:81:b9:bb:a8:25:b4:4e: 0a:96:1e:62:c3:ac:0d:95:52:6c:2f:ae:19:f9:04:b4:80:c4: 23:2c:b1:fc:51:6e:c5:dc:e9:9b:7d:fd:9d:59:e6:43:51:96: 54:ec:0f:84:04:53:f0:77:c2:6a:3b:04:a0:98:e2:93:9b:e2: f7:cb:66:59:e7:1a:52:8d:33:19:04:23:3d:24:a0:d3:76:12: 19:4f:42:53:6d:a1:eb:08:5e:6a:96:be:aa:8d:20:9d:dd:ff: 52:69:c4:67 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKSgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA2MTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEJFQ0IwMzVBNThBMzdG RTI4MjY0OUU5Q0ZFM0I5RjNDQ0VFMkNFQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNbf0j3Wn3qx6+3qGxe/VlCk+vqtfZGV+kWwCUKkhdsziWIXi1 PFMVT/G/qUs2OISsMEnPK4W+BMSnfO0uJv/mr8DvpOmgk6q+je03GZ/2m+8p2fhK JjX5h6W9kF4+OiVsLE1QBIPLv4NJkMiDlUq/XrTNGeH0yJofUpLQAVYDDoBjFbsV rTVWVCWx3tSG6sD8zZFjfXoOBumTZuJrzgWIhSdY4MreeyGV1Gmo/nDplC3lgmRO 2pfA7qRw6rRYKXab8j6oixaWEOLOv6v/wLBsCXKoD79mWDxwxI0rBdhDun1rosZI NLXcjvbB+ZTMQkKewqLk8mmia/8lxP6EnBXlAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUvssDWlijf+KCZJ6c/jufPM7izsUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3Zzc0RXbGlqZi1LQ1pKNmNf anVmUE03aXpzVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wWAwDQYJKoZIhvcNAQELBQADggEBAG4VRljhhIRSSAY6rpS6pQse2C5V7407gIWw 04YbTK2XsP+2bZ0BAOBxdrERiVJX7omsOO0FCSfQKxfOEt1cxGwKAB/BpYOll+bL ZVI+pGsoj72aEwlxWKW1tc6y45JK/2PAI7JtqgYW0czyf1zEH5Tu7V7CXZ2r1pWt vC0pOW1Ph3EjXVrgFObDaYiie1LvbVEGe9rMxQdHWETIgbm7qCW0TgqWHmLDrA2V Umwvrhn5BLSAxCMssfxRbsXc6Zt9/Z1Z5kNRllTsD4QEU/B3wmo7BKCY4pOb4vfL ZlnnGlKNMxkEIz0koNN2EhlPQlNtoesIXmqWvqqNIJ3d/1JpxGc= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:07 2024 by rpki-client on console-fra.rpki-client.org