$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1O63dN-NfillMwa7O12jripS5no.roa File: 1O63dN-NfillMwa7O12jripS5no.roa (raw, json) Hash identifier: ccZjV6yTiq0/J9UzyLXHXNgg5w3FzMUOcP5WyaZ3Hp8= Subject key identifier: D4:EE:B7:74:DF:8D:7E:29:65:33:06:BB:3B:5D:A3:AE:2A:52:E6:7A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2905 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1O63dN-NfillMwa7O12jripS5no.roa Signing time: Fri 01 Sep 2023 10:06:04 +0000 ROA not before: Fri 01 Sep 2023 10:06:04 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 118.232.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 18:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10501 (0x2905) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:06:04 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D4EEB774DF8D7E29653306BB3B5DA3AE2A52E67A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:62:11:d8:ab:1f:61:0c:39:81:e8:eb:d7:7a: 04:5b:8c:b3:66:ee:a4:20:ab:6a:bf:24:c0:86:42: d2:02:8c:bc:82:5f:dc:27:94:10:de:c1:ff:01:a3: 5f:a9:5f:60:a1:db:66:74:fa:0e:87:64:55:4c:de: c1:9e:6d:0f:a8:d6:d7:f6:38:af:98:41:8c:b3:80: 5d:55:42:5c:a9:d5:73:01:d7:52:19:68:c8:9f:e6: b2:82:67:50:7d:27:0f:63:ff:01:ad:20:63:06:59: 79:f9:e1:ca:21:b5:d2:95:a2:8b:06:fa:30:9c:5c: 8a:44:c1:b9:e7:a6:12:84:f0:91:53:f7:c0:0e:e9: 9f:78:23:ce:28:25:a2:2f:93:62:d3:7d:fa:64:b5: 8d:56:29:9b:b4:81:7c:2b:ca:5a:26:d2:ee:77:4c: a4:51:bc:88:56:2e:ca:15:fa:84:81:2a:e7:7b:b7: df:ac:61:67:b7:ba:a3:0f:ba:5b:f8:cf:b2:e5:ee: 8d:e5:e7:b3:46:96:cb:bd:1a:54:29:f3:bc:ec:53: b9:8c:1e:69:76:1e:13:51:47:e6:06:e1:3a:71:53: 3e:83:c3:25:11:52:f7:e8:3f:52:51:9a:17:30:5e: 22:fe:71:a7:e7:93:29:02:01:54:c9:5c:a3:55:9d: c7:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:EE:B7:74:DF:8D:7E:29:65:33:06:BB:3B:5D:A3:AE:2A:52:E6:7A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1O63dN-NfillMwa7O12jripS5no.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.116.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:ff:f4:e8:f0:da:d6:dc:19:36:e4:de:65:ab:e9:99:7b:09: 27:7a:22:f2:46:63:29:18:d1:6b:a9:ba:78:66:05:d1:76:69: ab:0d:98:b6:22:b6:a8:ef:57:66:f1:f6:19:3b:68:a7:62:54: a0:1a:ba:17:c0:bb:77:bc:90:33:b7:c8:5d:76:86:ac:ee:be: 98:d4:77:35:da:e3:7f:8c:60:ee:7d:ef:1f:78:21:7e:bb:c3: 81:94:09:49:bf:05:5b:73:ce:5e:f9:99:34:c2:02:5c:21:72: 55:b4:1b:08:cc:a0:fd:4d:f0:ed:8e:09:5e:e1:22:73:8c:be: c7:35:23:8b:73:ef:80:94:74:b6:68:60:f4:b3:cb:17:d7:d4: fb:af:4e:7a:a3:8d:59:fd:6f:a4:9a:fb:c4:90:c9:1c:9f:fe: 5c:1d:9c:ae:e2:1e:b0:e5:90:64:77:81:bc:aa:6f:b1:7a:0e: 10:84:8f:36:99:63:1f:a8:19:5a:7f:67:fe:b4:60:79:66:e4: 79:57:99:fa:80:3a:3e:02:80:3f:c6:70:24:82:07:84:7b:ee: 8a:aa:61:d5:79:f1:5b:18:97:95:6f:87:d6:9b:00:2e:c6:21: 8f:0b:cd:a0:3d:a4:9a:4f:1f:cd:2b:5d:74:bc:92:cd:0a:6f: 17:8b:a3:ef -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKQUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA2MDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ0RUVCNzc0REY4RDdF Mjk2NTMzMDZCQjNCNURBM0FFMkE1MkU2N0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChYhHYqx9hDDmB6OvXegRbjLNm7qQgq2q/JMCGQtICjLyCX9wn lBDewf8Bo1+pX2Ch22Z0+g6HZFVM3sGebQ+o1tf2OK+YQYyzgF1VQlyp1XMB11IZ aMif5rKCZ1B9Jw9j/wGtIGMGWXn54cohtdKVoosG+jCcXIpEwbnnphKE8JFT98AO 6Z94I84oJaIvk2LTffpktY1WKZu0gXwrylom0u53TKRRvIhWLsoV+oSBKud7t9+s YWe3uqMPulv4z7Ll7o3l57NGlsu9GlQp87zsU7mMHml2HhNRR+YG4TpxUz6DwyUR UvfoP1JRmhcwXiL+cafnkykCAVTJXKNVncflAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1O63dN+NfillMwa7O12jripS5nowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzFPNjNkTi1OZmlsbE13YTdP MTJqcmlwUzVuby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6HQwDQYJKoZIhvcNAQELBQADggEBAFv/9Ojw2tbcGTbk3mWr6Zl7CSd6IvJGYykY 0WupunhmBdF2aasNmLYitqjvV2bx9hk7aKdiVKAauhfAu3e8kDO3yF12hqzuvpjU dzXa43+MYO597x94IX67w4GUCUm/BVtzzl75mTTCAlwhclW0GwjMoP1N8O2OCV7h InOMvsc1I4tz74CUdLZoYPSzyxfX1PuvTnqjjVn9b6Sa+8SQyRyf/lwdnK7iHrDl kGR3gbyqb7F6DhCEjzaZYx+oGVp/Z/60YHlm5HlXmfqAOj4CgD/GcCSCB4R77oqq YdV58VsYl5Vvh9abAC7GIY8LzaA9pJpPH80rXXS8ks0KbxeLo+8= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:53 2024 by rpki-client on console-ams.rpki-client.org