$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xKWNtfHtQNeyxE-4-2dd3iXa8BQ.roa File: xKWNtfHtQNeyxE-4-2dd3iXa8BQ.roa (raw, json) Hash identifier: heYsJ9wc3ilG+x7pavY1AkrGUa9sqYckHzqNQE0dTUY= Subject key identifier: C4:A5:8D:B5:F1:ED:40:D7:B2:C4:4F:B8:FB:67:5D:DE:25:DA:F0:14 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 291A Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xKWNtfHtQNeyxE-4-2dd3iXa8BQ.roa Signing time: Fri 01 Sep 2023 10:06:09 +0000 ROA not before: Fri 01 Sep 2023 10:06:09 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 106.1.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10522 (0x291a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:06:09 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C4A58DB5F1ED40D7B2C44FB8FB675DDE25DAF014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6a:a1:e3:88:47:46:88:20:24:c8:85:34:a4: 9d:29:94:c1:3d:f6:b3:f5:7a:59:dc:ae:5b:9f:e0: dd:c4:fc:35:58:55:33:fb:e3:e9:b2:5d:43:ca:f6: 90:e5:27:80:ba:a3:c2:3d:42:75:9d:52:66:cf:1d: f9:36:54:04:7b:e9:58:6b:73:98:e9:8f:6a:65:e1: 55:70:ad:d2:e9:28:58:df:30:64:cf:4f:25:e1:37: ee:3c:5c:8a:50:3c:f9:02:e5:e8:93:f4:ed:46:d0: 6d:72:15:8e:59:f9:f5:fe:5b:78:e2:c1:34:4a:67: fa:74:e2:c5:7e:12:ba:18:74:07:4c:c4:88:9a:6e: 19:34:67:f1:59:bf:f4:95:20:66:a6:c9:10:30:22: b6:7e:44:b3:77:0c:c1:fa:bb:62:62:b4:2e:21:be: d8:2c:15:5a:c2:f8:d3:d8:b3:89:4d:b5:e8:27:ca: 17:7a:51:7d:55:be:b9:b1:fb:2c:4a:e4:19:bb:6f: 4e:76:21:a5:d4:58:67:ec:3c:a3:79:12:a7:d6:44: 2f:12:42:f5:67:fe:20:c4:59:7d:75:cb:5e:5c:94: 82:f9:97:08:b1:84:ac:14:84:4c:29:6c:94:5c:93: 57:14:cd:ad:a1:6c:01:cc:5c:16:19:14:11:f6:18: 84:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:A5:8D:B5:F1:ED:40:D7:B2:C4:4F:B8:FB:67:5D:DE:25:DA:F0:14 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xKWNtfHtQNeyxE-4-2dd3iXa8BQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.0.0/16 Signature Algorithm: sha256WithRSAEncryption 24:3a:66:89:34:83:af:6b:1d:6c:70:58:e5:ed:df:7d:d5:b2: 79:42:cf:ed:a9:d2:9b:24:96:d1:3c:99:2d:ec:fc:58:83:3c: af:b8:79:8e:2a:43:bb:68:06:fe:84:0d:26:e8:bd:1e:94:a8: 22:b4:27:e5:88:da:49:e9:21:96:12:e8:26:d5:95:e6:39:f1: 35:e3:64:cf:96:8a:0d:fe:c2:f9:9c:94:ce:a2:4d:cc:c0:62: 4f:68:a0:70:9c:a3:3a:97:8f:0b:46:8c:5c:a9:ee:f0:0e:98: 7b:c6:f7:48:a5:b0:8f:c7:1f:b5:dc:77:b8:30:76:d9:38:5c: a3:a6:ba:15:93:b5:3c:d2:6f:4f:a1:e4:0a:17:f8:80:fb:74: ed:70:0d:cf:fb:b1:74:bc:6b:6a:fa:9e:7c:77:db:25:e7:ae: 4e:49:6b:c2:28:20:81:1c:5c:0c:2e:ef:11:ed:a1:09:04:22: e7:de:f9:6c:00:64:d9:5b:54:67:54:a5:9c:e6:76:53:cb:2f: 57:17:74:e7:74:ca:a4:df:03:fa:51:13:ff:9a:9c:6c:a7:f2: 07:3d:6c:b7:b0:7d:77:52:99:f3:9a:6c:73:5f:12:c8:ee:f0: 83:f1:32:5d:51:9d:3a:05:f5:57:5c:7f:90:5b:66:cb:72:8e: db:e6:b4:43 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICKRowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA2MDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM0QTU4REI1RjFFRDQw RDdCMkM0NEZCOEZCNjc1RERFMjVEQUYwMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYaqHjiEdGiCAkyIU0pJ0plME99rP1elncrluf4N3E/DVYVTP7 4+myXUPK9pDlJ4C6o8I9QnWdUmbPHfk2VAR76Vhrc5jpj2pl4VVwrdLpKFjfMGTP TyXhN+48XIpQPPkC5eiT9O1G0G1yFY5Z+fX+W3jiwTRKZ/p04sV+EroYdAdMxIia bhk0Z/FZv/SVIGamyRAwIrZ+RLN3DMH6u2JitC4hvtgsFVrC+NPYs4lNtegnyhd6 UX1Vvrmx+yxK5Bm7b052IaXUWGfsPKN5EqfWRC8SQvVn/iDEWX11y15clIL5lwix hKwUhEwpbJRck1cUza2hbAHMXBYZFBH2GITfAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUxKWNtfHtQNeyxE+4+2dd3iXa8BQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3hLV050Zkh0UU5leXhFLTQt MmRkM2lYYThCUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwBq ATANBgkqhkiG9w0BAQsFAAOCAQEAJDpmiTSDr2sdbHBY5e3ffdWyeULP7anSmySW 0TyZLez8WIM8r7h5jipDu2gG/oQNJui9HpSoIrQn5YjaSekhlhLoJtWV5jnxNeNk z5aKDf7C+ZyUzqJNzMBiT2igcJyjOpePC0aMXKnu8A6Ye8b3SKWwj8cftdx3uDB2 2Thco6a6FZO1PNJvT6HkChf4gPt07XANz/uxdLxravqefHfbJeeuTklrwigggRxc DC7vEe2hCQQi5975bABk2VtUZ1SlnOZ2U8svVxd053TKpN8D+lET/5qcbKfyBz1s t7B9d1KZ85psc18SyO7wg/EyXVGdOgX1V1x/kFtmy3KO2+a0Qw== -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:07 2024 by rpki-client on console-ams.rpki-client.org