$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zLGlDhtPVVIK7nAVyOz-F3UrGOU.roa File: zLGlDhtPVVIK7nAVyOz-F3UrGOU.roa (raw, json) Hash identifier: md/TIF4jb9sZajWW8i9vZCxBmhYabPEUuvgrmiUvXjI= Subject key identifier: CC:B1:A5:0E:1B:4F:55:52:0A:EE:70:15:C8:EC:FE:17:75:2B:18:E5 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2AD3 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zLGlDhtPVVIK7nAVyOz-F3UrGOU.roa Signing time: Fri 01 Sep 2023 10:08:19 +0000 ROA not before: Fri 01 Sep 2023 10:08:19 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.233.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10963 (0x2ad3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:19 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CCB1A50E1B4F55520AEE7015C8ECFE17752B18E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:03:57:bd:c3:52:ec:9f:c2:7b:1c:fe:4b:e3: 84:e4:20:8b:31:8c:ef:35:f8:8f:d9:5b:8c:9c:5c: 47:f1:4c:e0:cc:96:ff:25:f5:cb:0b:25:81:74:4d: c8:ff:6a:d8:f7:d5:96:44:a7:bb:07:42:08:3f:fb: 7c:19:35:04:c7:f6:d3:b6:7f:1c:45:a4:6a:94:eb: 5e:03:6c:5b:df:44:ae:f4:a3:37:3c:30:06:71:be: c5:4d:90:e8:69:29:b1:c9:98:00:34:e2:1e:43:e2: bc:27:0c:66:57:f8:a5:56:52:11:72:dd:d5:72:fa: fb:a9:21:80:86:bf:1f:f6:0f:1d:3c:9f:73:4c:ce: 7f:1d:ea:53:f8:3f:85:b8:1e:7a:95:33:b8:0c:f8: 54:5a:9b:25:93:f7:e6:7e:2d:3b:83:be:89:c6:93: 80:f3:86:41:8e:41:8d:1a:b8:32:11:7c:ca:47:35: ef:84:42:9d:8f:4b:02:82:1e:e6:d3:b5:29:b7:ce: be:2e:ee:8f:e1:a4:2a:bf:41:64:fe:31:b8:66:82: 7d:53:2c:96:f6:1e:f3:cd:13:60:fe:de:91:6f:10: 1c:b2:de:c0:41:40:d9:eb:ad:0f:45:03:cc:5d:d6: a0:cc:8d:7e:ba:0f:b6:db:9d:68:93:c4:f0:8d:7d: 71:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B1:A5:0E:1B:4F:55:52:0A:EE:70:15:C8:EC:FE:17:75:2B:18:E5 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zLGlDhtPVVIK7nAVyOz-F3UrGOU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.200.0/21 Signature Algorithm: sha256WithRSAEncryption 2c:af:0c:97:2b:1c:63:70:49:96:0b:73:db:ba:66:39:89:32: 8b:c4:86:d9:a1:cf:f8:00:35:3c:b0:80:fc:dd:78:67:c3:51: e7:7c:ce:49:74:6b:18:0f:82:85:70:45:e8:88:18:29:99:9c: 57:38:b3:96:d3:98:b0:68:69:46:4e:5f:34:59:db:aa:b2:4d: 4e:cf:81:9a:8f:07:06:a7:8d:f6:be:69:fa:d5:60:93:16:89: 07:da:df:e3:d9:81:b5:a3:33:7f:27:5e:ba:d7:eb:07:d6:43: f3:2b:15:d6:ec:a4:2e:87:85:e3:5e:1a:41:23:39:17:e0:d7: 57:bd:1f:8f:cd:3e:3a:c2:b1:e4:cc:43:45:61:b1:58:1e:c0: cc:bc:7f:a5:e9:f3:62:16:4e:fd:77:ef:91:30:43:d5:27:d5: f3:90:00:b3:48:eb:00:e4:db:87:45:a6:27:02:32:ea:ef:8d: 68:42:c7:ca:35:01:32:6d:ef:71:c9:c6:8f:8f:1c:dd:e4:9d: c9:0f:bb:69:a1:80:c5:a4:db:53:3f:50:f5:42:1c:4e:4e:6a: 2a:fa:37:00:00:15:3a:33:54:18:f9:bb:a3:a8:5e:0b:57:22: 32:c2:c6:d3:86:fa:02:5f:c4:1d:27:45:ed:8e:65:29:dc:02: 76:3d:2d:af -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKtMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENDQjFBNTBFMUI0RjU1 NTIwQUVFNzAxNUM4RUNGRTE3NzUyQjE4RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/A1e9w1Lsn8J7HP5L44TkIIsxjO81+I/ZW4ycXEfxTODMlv8l 9csLJYF0Tcj/atj31ZZEp7sHQgg/+3wZNQTH9tO2fxxFpGqU614DbFvfRK70ozc8 MAZxvsVNkOhpKbHJmAA04h5D4rwnDGZX+KVWUhFy3dVy+vupIYCGvx/2Dx08n3NM zn8d6lP4P4W4HnqVM7gM+FRamyWT9+Z+LTuDvonGk4DzhkGOQY0auDIRfMpHNe+E Qp2PSwKCHubTtSm3zr4u7o/hpCq/QWT+Mbhmgn1TLJb2HvPNE2D+3pFvEByy3sBB QNnrrQ9FA8xd1qDMjX66D7bbnWiTxPCNfXElAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUzLGlDhtPVVIK7nAVyOz+F3UrGOUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3pMR2xEaHRQVlZJSzduQVZ5 T3otRjNVckdPVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6cgwDQYJKoZIhvcNAQELBQADggEBACyvDJcrHGNwSZYLc9u6ZjmJMovEhtmhz/gA NTywgPzdeGfDUed8zkl0axgPgoVwReiIGCmZnFc4s5bTmLBoaUZOXzRZ26qyTU7P gZqPBwanjfa+afrVYJMWiQfa3+PZgbWjM38nXrrX6wfWQ/MrFdbspC6HheNeGkEj ORfg11e9H4/NPjrCseTMQ0VhsVgewMy8f6Xp82IWTv1375EwQ9Un1fOQALNI6wDk 24dFpicCMurvjWhCx8o1ATJt73HJxo+PHN3knckPu2mhgMWk21M/UPVCHE5Oair6 NwAAFTozVBj5u6OoXgtXIjLCxtOG+gJfxB0nRe2OZSncAnY9La8= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:07 2024 by rpki-client on console-fra.rpki-client.org