$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-D-Z-Rvi1EewaWBTNy23JZzUf78.roa File: -D-Z-Rvi1EewaWBTNy23JZzUf78.roa (raw, json) Hash identifier: f6zqEzSsVfNHFQgjRVKbWT8shK3JPYqGLyQJ0OQlg4Y= Subject key identifier: F8:3F:99:F9:1B:E2:D4:47:B0:69:60:53:37:2D:B7:25:9C:D4:7F:BF Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31C9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-D-Z-Rvi1EewaWBTNy23JZzUf78.roa Signing time: Mon 26 Aug 2024 05:30:56 +0000 ROA not before: Mon 26 Aug 2024 05:30:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.36.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12745 (0x31c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:56 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F83F99F91BE2D447B0696053372DB7259CD47FBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:64:c1:f9:d4:b9:6f:7d:b3:17:48:58:3e:ec: 84:8e:ea:2c:d4:5d:e1:39:40:2f:c6:28:83:b2:d1: fa:df:86:3c:3f:74:89:3a:c3:8f:77:e8:9e:27:02: b5:5e:c8:eb:09:bc:46:4b:a7:95:5e:2e:20:a7:66: 98:fb:26:2f:45:bf:87:ee:be:93:6c:53:c3:e6:5b: b0:ab:ac:ef:af:7c:a3:7b:0d:e5:73:05:5d:9a:e6: b2:89:d6:4b:f0:e6:65:b9:ab:10:31:6a:af:11:04: e7:9e:73:23:d4:ca:b4:fa:47:1d:63:e7:66:ac:47: c7:b7:38:8a:40:fb:4f:66:ff:16:92:62:1d:b2:9e: bf:69:26:95:4e:29:11:e1:84:03:9a:4b:50:a5:df: cc:f5:7f:d7:dd:fd:cf:c0:07:fe:a1:d4:21:60:e7: 0c:13:7b:c5:ed:3e:b2:3e:d6:66:3f:ed:dd:4f:47: a3:9a:7d:85:44:ee:28:8c:38:25:f5:d4:37:3a:f0: 09:4c:da:ff:82:81:b1:e6:53:d2:60:3e:4c:72:ea: aa:26:d1:67:67:75:3a:47:00:fb:40:d5:75:d8:bf: 9b:eb:b2:be:dc:bc:d9:38:97:b5:5e:c9:84:22:4d: 18:9a:6c:84:72:48:b9:a9:ae:0a:05:c1:09:3b:c9: 3a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:3F:99:F9:1B:E2:D4:47:B0:69:60:53:37:2D:B7:25:9C:D4:7F:BF X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/-D-Z-Rvi1EewaWBTNy23JZzUf78.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.36.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:46:1a:3b:a3:62:41:32:21:56:d7:d6:c9:63:aa:d1:ee:0e: e1:3c:6f:58:2e:61:2f:8d:50:ae:22:21:af:d3:d8:fd:3f:3f: 2a:0d:c1:33:63:ec:45:8d:12:5c:f0:64:3f:55:92:ba:08:6a: cc:78:b9:78:b4:ac:54:58:53:1a:bb:1c:b1:bd:d4:33:77:90: 76:72:04:36:e4:5b:a4:97:71:fb:38:5f:5a:47:13:75:ab:80: 2d:0b:6c:41:df:0b:42:cf:c0:ef:49:d6:ee:f7:b1:8a:41:75: c7:82:6e:4a:28:9b:94:24:70:d1:a2:92:86:c6:72:a5:d8:c7: f4:ef:c1:58:b6:88:9a:89:1c:32:9c:26:24:04:dc:1a:57:22: b9:8d:d0:a2:5d:1c:a7:2d:94:9b:d3:43:ff:14:94:0e:b3:b8: 87:d8:c2:ab:53:57:8b:73:72:bf:f4:fa:a6:72:b0:3a:a3:c2: 29:46:e0:36:a5:24:88:a3:7c:c8:ba:00:2b:1e:55:fb:75:d0: b9:db:ed:74:72:b5:6c:af:5b:e7:91:c3:41:d8:81:f7:ba:9b: 23:52:63:67:a2:8a:aa:dd:27:87:96:90:4f:dd:cb:d8:2e:7a: 3c:05:0b:68:da:b5:8f:ce:a1:76:85:ed:46:25:fe:96:ed:82: d2:75:70:37 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY4M0Y5OUY5MUJFMkQ0 NDdCMDY5NjA1MzM3MkRCNzI1OUNENDdGQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD0ZMH51LlvfbMXSFg+7ISO6izUXeE5QC/GKIOy0frfhjw/dIk6 w4936J4nArVeyOsJvEZLp5VeLiCnZpj7Ji9Fv4fuvpNsU8PmW7CrrO+vfKN7DeVz BV2a5rKJ1kvw5mW5qxAxaq8RBOeecyPUyrT6Rx1j52asR8e3OIpA+09m/xaSYh2y nr9pJpVOKRHhhAOaS1Cl38z1f9fd/c/AB/6h1CFg5wwTe8XtPrI+1mY/7d1PR6Oa fYVE7iiMOCX11Dc68AlM2v+CgbHmU9JgPkxy6qom0WdndTpHAPtA1XXYv5vrsr7c vNk4l7VeyYQiTRiabIRySLmprgoFwQk7yTpZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+D+Z+Rvi1EewaWBTNy23JZzUf78wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLy1ELVotUnZpMUVld2FXQlRO eTIzSlp6VWY3OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq ASQwDQYJKoZIhvcNAQELBQADggEBAFxGGjujYkEyIVbX1sljqtHuDuE8b1guYS+N UK4iIa/T2P0/PyoNwTNj7EWNElzwZD9VkroIasx4uXi0rFRYUxq7HLG91DN3kHZy BDbkW6SXcfs4X1pHE3WrgC0LbEHfC0LPwO9J1u73sYpBdceCbkoom5QkcNGikobG cqXYx/TvwVi2iJqJHDKcJiQE3BpXIrmN0KJdHKctlJvTQ/8UlA6zuIfYwqtTV4tz cr/0+qZysDqjwilG4DalJIijfMi6ACseVft10Lnb7XRytWyvW+eRw0HYgfe6myNS Y2eiiqrdJ4eWkE/dy9guejwFC2jatY/OoXaF7UYl/pbtgtJ1cDc= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:50 2024 by rpki-client on console-ams.rpki-client.org