$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xwkyBSW2t0K3R27pNzoegDdZ68Q.roa File: xwkyBSW2t0K3R27pNzoegDdZ68Q.roa (raw, json) Hash identifier: 1pFgakyTR+h5KedrRW6hI51tn1PVf+ctvba/NMzNric= Subject key identifier: C7:09:32:05:25:B6:B7:42:B7:47:6E:E9:37:3A:1E:80:37:59:EB:C4 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2ABC Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xwkyBSW2t0K3R27pNzoegDdZ68Q.roa Signing time: Fri 01 Sep 2023 10:08:14 +0000 ROA not before: Fri 01 Sep 2023 10:08:14 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 118.232.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10940 (0x2abc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:14 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C709320525B6B742B7476EE9373A1E803759EBC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ec:e4:31:29:48:7a:98:a0:05:65:56:ea:be: c7:f6:45:36:ba:be:4f:65:8a:42:4c:e5:69:6f:f4: 64:93:be:38:e0:87:5e:12:53:92:80:e1:a5:5b:85: 8a:ae:c7:11:b4:3b:bf:ea:39:44:56:66:c2:60:8b: 0d:5a:df:84:78:49:25:65:8a:90:49:94:c1:69:4c: bd:b5:b1:e9:e4:d5:c2:a3:51:4e:40:55:e0:4b:b4: d8:94:76:60:73:bd:3c:01:65:3b:76:38:9c:1f:d6: 51:c2:27:2c:f8:db:b5:dc:66:8c:76:a6:fa:47:ac: c6:3a:56:73:17:63:7c:d9:63:e6:71:dd:01:5d:d5: b2:af:d2:bc:9f:60:e8:2a:b2:d6:02:65:fe:f0:91: 6d:16:ce:36:5b:dd:cc:83:04:ea:fd:cd:c4:d0:2b: f7:44:5c:54:8c:20:2e:92:8a:58:7a:57:4d:74:8c: e6:af:31:1f:95:ff:2c:0f:5c:45:60:61:d4:2a:b7: 4d:a5:7e:72:c4:bf:89:fc:2e:15:49:73:72:76:f4: 7f:12:93:e9:8c:8e:33:d3:9f:a1:97:4c:cb:6a:6b: c4:5f:67:15:e7:4b:83:cf:be:be:5b:46:29:ef:6b: a1:79:72:bf:fc:f6:1b:6b:66:86:5a:53:f3:6f:c9: b0:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:09:32:05:25:B6:B7:42:B7:47:6E:E9:37:3A:1E:80:37:59:EB:C4 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xwkyBSW2t0K3R27pNzoegDdZ68Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.244.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:7a:6f:71:28:5c:89:80:9e:a4:fb:0a:e8:aa:89:76:c2:0a: f2:c4:d9:0a:92:84:44:ed:9d:50:30:6c:4b:78:e5:55:f3:2f: 5e:88:d7:36:cf:c6:0f:95:9c:0b:03:22:eb:53:0b:6d:80:0f: 42:ca:f7:21:98:ac:32:1d:e7:6d:06:88:01:99:f1:0f:9b:56: 24:f8:1e:f3:97:d1:9d:23:f7:ba:3d:2a:fb:73:3e:af:8e:b6: 9c:d7:dd:f2:dd:29:a6:f6:2e:83:ce:d7:2c:74:ae:68:13:99: f3:8b:94:6d:c9:a6:56:98:80:46:4b:f2:9f:c9:b1:5f:a0:0a: 05:ed:9d:b2:6e:be:55:ad:68:84:7b:ac:ed:aa:20:ad:1e:fc: df:4c:b5:e7:50:0b:e6:4f:f0:f9:4f:cd:76:2f:37:4f:fb:40: db:69:4b:b6:d7:2e:80:05:69:73:41:fd:0e:75:9b:19:11:bf: 75:e5:62:1a:b0:af:f0:ab:7a:86:e9:f8:0e:0b:57:c2:0e:ef: 05:08:a5:ae:fb:97:9a:34:93:5d:44:65:b6:4b:83:6d:d6:6c: f1:d8:1c:5a:a6:83:05:e6:cf:9d:d5:bb:d3:9d:69:d4:55:9d: 00:03:e8:93:e1:fe:06:c4:31:cb:7c:6b:d9:f5:2f:03:40:0d: 71:94:33:a8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKrwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM3MDkzMjA1MjVCNkI3 NDJCNzQ3NkVFOTM3M0ExRTgwMzc1OUVCQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDe7OQxKUh6mKAFZVbqvsf2RTa6vk9likJM5Wlv9GSTvjjgh14S U5KA4aVbhYquxxG0O7/qOURWZsJgiw1a34R4SSVlipBJlMFpTL21senk1cKjUU5A VeBLtNiUdmBzvTwBZTt2OJwf1lHCJyz427XcZox2pvpHrMY6VnMXY3zZY+Zx3QFd 1bKv0ryfYOgqstYCZf7wkW0WzjZb3cyDBOr9zcTQK/dEXFSMIC6Silh6V010jOav MR+V/ywPXEVgYdQqt02lfnLEv4n8LhVJc3J29H8Sk+mMjjPTn6GXTMtqa8RfZxXn S4PPvr5bRinva6F5cr/89htrZoZaU/NvybA7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUxwkyBSW2t0K3R27pNzoegDdZ68QwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3h3a3lCU1cydDBLM1IyN3BO em9lZ0RkWjY4US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6PQwDQYJKoZIhvcNAQELBQADggEBAFx6b3EoXImAnqT7CuiqiXbCCvLE2QqShETt nVAwbEt45VXzL16I1zbPxg+VnAsDIutTC22AD0LK9yGYrDId520GiAGZ8Q+bViT4 HvOX0Z0j97o9KvtzPq+OtpzX3fLdKab2LoPO1yx0rmgTmfOLlG3JplaYgEZL8p/J sV+gCgXtnbJuvlWtaIR7rO2qIK0e/N9MtedQC+ZP8PlPzXYvN0/7QNtpS7bXLoAF aXNB/Q51mxkRv3XlYhqwr/Creobp+A4LV8IO7wUIpa77l5o0k11EZbZLg23WbPHY HFqmgwXmz53Vu9OdadRVnQAD6JPh/gbEMct8a9n1LwNADXGUM6g= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:07 2024 by rpki-client on console-ams.rpki-client.org