$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wEZkM3vUj-KucNUZ-HwWbKs265k.roa File: wEZkM3vUj-KucNUZ-HwWbKs265k.roa (raw, json) Hash identifier: soIpcJSuCylHotSuD66cpG3Cvd0sNOGj6kZTlwMlCyM= Subject key identifier: C0:46:64:33:7B:D4:8F:E2:AE:70:D5:19:F8:7C:16:6C:AB:36:EB:99 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 28E6 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wEZkM3vUj-KucNUZ-HwWbKs265k.roa Signing time: Fri 01 Sep 2023 10:05:53 +0000 ROA not before: Fri 01 Sep 2023 10:05:53 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 180.176.248.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10470 (0x28e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:53 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C04664337BD48FE2AE70D519F87C166CAB36EB99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:77:b3:1e:f7:76:23:9a:f0:d3:24:29:d8:0d: cc:87:27:2e:ea:31:1f:09:b9:cb:d8:1f:6d:84:a3: 85:cf:e6:1b:9d:56:cc:79:2d:2e:d0:73:5a:25:3c: 9c:3c:f8:f6:ff:ae:08:06:27:c8:99:49:8f:b9:d7: 8d:e0:a9:5f:ac:02:e2:d4:65:2c:fc:3b:44:62:83: dc:46:6e:f3:db:99:5b:fe:8f:3d:d8:a5:bf:64:1e: 22:93:44:b2:7e:13:b8:16:d0:42:93:da:c7:0c:f2: e3:46:46:92:11:81:88:60:3f:7e:63:0f:41:bf:20: 5f:fa:06:ea:7e:ed:72:55:43:9d:c3:86:e8:bb:dd: bd:7a:4e:59:de:6e:d3:fb:72:29:88:bb:18:40:5c: 88:8c:0b:84:84:04:d0:54:c2:b6:19:f0:17:bc:4e: e1:c8:4a:50:ef:39:99:bc:00:9f:83:53:2c:d6:7e: c2:44:fb:a2:bc:6e:37:65:e9:71:05:64:9f:cd:5b: e4:7c:5e:c2:dc:c8:57:81:a0:04:ea:92:77:a7:79: ea:01:ad:f9:bc:09:b6:48:dc:4f:53:10:05:28:38: 3b:72:a8:09:24:9c:ea:ef:ed:43:80:55:20:60:34: 68:48:61:5d:b3:a2:2f:6f:9c:ab:f4:7d:9f:55:f1: 43:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:46:64:33:7B:D4:8F:E2:AE:70:D5:19:F8:7C:16:6C:AB:36:EB:99 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wEZkM3vUj-KucNUZ-HwWbKs265k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.248.0/21 Signature Algorithm: sha256WithRSAEncryption b1:4d:ad:a9:c9:21:a5:ec:41:2f:e7:d6:f8:94:a1:0b:fe:c3: fd:46:97:48:7b:f5:94:d1:ce:57:d1:5e:a7:f6:73:ba:60:18: 8f:6e:b1:55:a8:29:22:d1:06:38:46:99:49:1a:3d:00:36:8f: 85:c3:fd:d1:89:84:f8:d8:e5:b8:e9:33:bd:d7:fd:08:9a:1a: 01:2f:93:26:d9:cf:33:fb:b8:b8:0e:66:58:39:66:bf:fa:2b: 55:db:90:a1:bb:aa:05:2f:15:d0:d4:f2:96:71:a7:ac:a4:3b: a9:35:c1:87:72:36:24:ac:52:b1:f6:45:b4:2f:c6:82:0b:29: e0:4b:00:2e:8a:3f:60:92:73:63:bd:7d:19:a4:40:cc:ff:ba: ad:04:22:f8:0e:f6:94:05:12:9d:30:29:e6:3a:79:b1:25:0b: f2:9b:73:90:8b:71:b4:c8:9e:91:b0:57:70:a0:42:37:f6:e0: 57:4c:13:de:f9:d3:d5:2f:9d:f2:b9:51:17:8b:cd:43:1d:7e: b7:eb:b2:b5:ee:56:21:0a:4e:b4:3c:9b:0f:80:6c:ee:ae:15: 78:6e:97:20:e6:88:01:be:5f:e0:a0:57:5f:55:c2:31:34:3b: e4:2e:34:e0:6d:f3:82:0a:60:a5:a0:4f:11:8f:cd:ff:1a:07: 14:96:8e:9f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKOYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1NTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEMwNDY2NDMzN0JENDhG RTJBRTcwRDUxOUY4N0MxNjZDQUIzNkVCOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSd7Me93YjmvDTJCnYDcyHJy7qMR8JucvYH22Eo4XP5hudVsx5 LS7Qc1olPJw8+Pb/rggGJ8iZSY+5143gqV+sAuLUZSz8O0Rig9xGbvPbmVv+jz3Y pb9kHiKTRLJ+E7gW0EKT2scM8uNGRpIRgYhgP35jD0G/IF/6Bup+7XJVQ53Dhui7 3b16TlnebtP7cimIuxhAXIiMC4SEBNBUwrYZ8Be8TuHISlDvOZm8AJ+DUyzWfsJE +6K8bjdl6XEFZJ/NW+R8XsLcyFeBoATqkneneeoBrfm8CbZI3E9TEAUoODtyqAkk nOrv7UOAVSBgNGhIYV2zoi9vnKv0fZ9V8UODAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUwEZkM3vUj+KucNUZ+HwWbKs265kwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3dFWmtNM3ZVai1LdWNOVVot SHdXYktzMjY1ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sPgwDQYJKoZIhvcNAQELBQADggEBALFNranJIaXsQS/n1viUoQv+w/1Gl0h79ZTR zlfRXqf2c7pgGI9usVWoKSLRBjhGmUkaPQA2j4XD/dGJhPjY5bjpM73X/QiaGgEv kybZzzP7uLgOZlg5Zr/6K1XbkKG7qgUvFdDU8pZxp6ykO6k1wYdyNiSsUrH2RbQv xoILKeBLAC6KP2CSc2O9fRmkQMz/uq0EIvgO9pQFEp0wKeY6ebElC/Kbc5CLcbTI npGwV3CgQjf24FdME97509UvnfK5UReLzUMdfrfrsrXuViEKTrQ8mw+AbO6uFXhu lyDmiAG+X+CgV19VwjE0O+QuNOBt84IKYKWgTxGPzf8aBxSWjp8= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:07 2024 by rpki-client on console-fra.rpki-client.org