$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yx7R6tR0WO5VPL743GNzeb-JyEE.roa File: yx7R6tR0WO5VPL743GNzeb-JyEE.roa (raw, json) Hash identifier: I5fcvi8wuM4mwrE4FsF20bH25z1XDcK7bmcv14dB0PI= Subject key identifier: CB:1E:D1:EA:D4:74:58:EE:55:3C:BE:F8:DC:63:73:79:BF:89:C8:41 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2910 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yx7R6tR0WO5VPL743GNzeb-JyEE.roa Signing time: Fri 01 Sep 2023 10:06:07 +0000 ROA not before: Fri 01 Sep 2023 10:06:06 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 118.232.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10512 (0x2910) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:06:06 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CB1ED1EAD47458EE553CBEF8DC637379BF89C841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0c:e0:b2:49:a8:ba:15:32:c6:35:08:a0:b8: bb:4e:d3:e2:86:3f:81:00:8f:1e:88:81:38:9c:9a: dd:4d:21:61:0c:0d:7d:df:84:91:51:99:30:a7:b1: a4:0d:80:8b:e2:5c:48:57:73:5f:c0:30:a7:38:8c: 50:b7:2f:35:36:54:6f:d2:c2:f4:44:d1:82:79:1b: 21:6f:be:65:b4:42:a9:24:d3:b6:b2:3d:82:f9:29: 04:fc:75:e6:02:de:f8:c3:91:53:ce:20:6d:8d:fc: 26:42:de:23:cd:30:c6:9e:57:1e:fd:27:d5:0c:9d: 7e:1c:48:8c:c4:bf:ed:a8:a6:5f:df:c5:a9:b8:af: eb:1d:50:04:fa:ee:e1:1d:85:a1:bc:b7:8f:2e:a4: a7:f4:f6:a6:11:ee:ea:f6:8e:83:85:96:e9:6a:9d: 89:1d:8b:19:b2:46:34:1f:e6:27:25:d8:2a:7d:72: 3b:6b:ea:98:17:37:b8:95:c5:24:c3:c8:7f:fe:79: b5:17:bf:4c:74:62:62:28:19:b6:89:da:62:cd:ba: 0a:b4:60:a6:9c:d0:36:69:7d:f6:4f:d6:f0:9e:07: e4:52:b8:61:90:63:27:dc:7a:51:b5:4d:41:c1:69: 7b:e1:89:14:00:9d:8a:85:ce:ac:4d:42:ba:09:ca: 18:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:1E:D1:EA:D4:74:58:EE:55:3C:BE:F8:DC:63:73:79:BF:89:C8:41 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yx7R6tR0WO5VPL743GNzeb-JyEE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.248.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:85:61:f8:b1:19:ef:6c:4c:01:db:67:1b:d1:d6:8f:bf:eb: 2a:8f:23:50:69:c5:95:de:d9:84:a9:d0:b5:79:40:94:7e:be: 17:89:3d:e8:e8:2e:61:bc:2f:db:28:1b:70:22:7a:9b:35:18: 6e:b5:ab:5b:a6:c2:6e:23:c4:bc:a2:51:b8:2e:98:e4:16:1d: e4:a2:db:06:8d:31:15:ac:3d:d4:de:36:e4:81:5a:eb:ce:cf: 98:88:4f:05:27:80:d9:75:93:20:bc:46:4b:1e:95:39:34:e2: 22:f0:e2:d6:26:f6:98:61:a4:a0:c4:83:aa:db:11:60:04:76: e8:93:46:14:32:4c:e8:3b:df:74:01:22:12:4e:dd:f4:46:52: 11:2b:d7:21:5c:be:2c:96:dd:59:7d:00:09:ab:52:de:fd:14: 2d:51:ff:b1:c5:fc:6f:0b:60:73:57:b0:31:12:e6:71:b2:98: e9:17:9c:2f:2e:62:ad:b9:a1:44:ca:4b:3a:69:28:99:38:5a: 13:89:3f:e0:97:c8:df:38:f7:a5:9e:94:52:29:1c:8d:1b:b6: f9:64:2a:e9:16:20:a1:92:1a:f5:5d:8e:94:02:30:67:52:89: ed:09:fa:47:4e:69:f4:78:6b:5f:4f:be:15:85:7a:d9:dc:dc: 6e:31:50:d8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKRAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA2MDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENCMUVEMUVBRDQ3NDU4 RUU1NTNDQkVGOERDNjM3Mzc5QkY4OUM4NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6DOCySai6FTLGNQiguLtO0+KGP4EAjx6IgTicmt1NIWEMDX3f hJFRmTCnsaQNgIviXEhXc1/AMKc4jFC3LzU2VG/SwvRE0YJ5GyFvvmW0Qqkk07ay PYL5KQT8deYC3vjDkVPOIG2N/CZC3iPNMMaeVx79J9UMnX4cSIzEv+2opl/fxam4 r+sdUAT67uEdhaG8t48upKf09qYR7ur2joOFlulqnYkdixmyRjQf5icl2Cp9cjtr 6pgXN7iVxSTDyH/+ebUXv0x0YmIoGbaJ2mLNugq0YKac0DZpffZP1vCeB+RSuGGQ YyfcelG1TUHBaXvhiRQAnYqFzqxNQroJyhhDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUyx7R6tR0WO5VPL743GNzeb+JyEEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3l4N1I2dFIwV081VlBMNzQz R056ZWItSnlFRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6PgwDQYJKoZIhvcNAQELBQADggEBAG+FYfixGe9sTAHbZxvR1o+/6yqPI1BpxZXe 2YSp0LV5QJR+vheJPejoLmG8L9soG3Aieps1GG61q1umwm4jxLyiUbgumOQWHeSi 2waNMRWsPdTeNuSBWuvOz5iITwUngNl1kyC8RkselTk04iLw4tYm9phhpKDEg6rb EWAEduiTRhQyTOg733QBIhJO3fRGUhEr1yFcviyW3Vl9AAmrUt79FC1R/7HF/G8L YHNXsDES5nGymOkXnC8uYq25oUTKSzppKJk4WhOJP+CXyN8496WelFIpHI0btvlk KukWIKGSGvVdjpQCMGdSie0J+kdOafR4a19PvhWFetnc3G4xUNg= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:07 2024 by rpki-client on console-ams.rpki-client.org