$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1vCOZHdQZ8y_9f6EFVEqfkaPVYU.roa File: 1vCOZHdQZ8y_9f6EFVEqfkaPVYU.roa (raw, json) Hash identifier: ykgNrPGNKVsTlI6trR7wq7kqP8mHvVs8EXda13wNIZM= Subject key identifier: D6:F0:8E:64:77:50:67:CC:BF:F5:FE:84:15:51:2A:7E:46:8F:55:85 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32F6 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1vCOZHdQZ8y_9f6EFVEqfkaPVYU.roa Signing time: Mon 26 Aug 2024 05:32:10 +0000 ROA not before: Mon 26 Aug 2024 05:32:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.160.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13046 (0x32f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:32:10 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D6F08E64775067CCBFF5FE8415512A7E468F5585 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:bc:93:d2:02:ec:e5:8a:b1:45:5b:57:42:4f: 7c:5b:c6:e5:eb:5f:a0:64:07:4a:d8:ac:ce:23:87: f9:80:37:6d:34:d7:7d:07:44:40:98:a4:8f:b2:c2: 94:5b:5d:66:fa:2c:13:77:90:1b:d5:d7:a4:25:c1: de:8a:8e:f0:96:6c:d4:b4:38:03:3e:8d:7a:e3:30: 70:df:b1:88:cc:1f:2a:42:7a:99:0d:04:6c:28:a6: 72:08:d5:df:71:c8:e5:14:0a:5d:51:35:fe:41:8a: da:3a:08:58:90:58:4f:ed:81:29:55:99:c7:b1:43: 0e:0f:d5:38:d5:ec:b4:bc:ac:66:fa:3c:ac:8a:c9: ff:53:dc:0c:f2:87:6f:73:88:50:72:34:0c:c1:1c: 00:09:88:ba:6f:7e:65:c8:eb:37:f7:ea:0c:a8:d4: 46:bf:13:3d:da:1a:a3:e6:bf:81:33:63:2e:e8:fd: 49:b2:06:8a:e6:a8:6c:87:25:d9:8a:74:1a:7e:c1: 97:20:86:68:ac:1c:27:15:4b:f0:37:53:4c:d6:e2: a8:d6:11:a0:fa:4f:c4:d1:16:91:95:40:f1:14:8e: 7f:17:83:28:01:ca:01:2c:35:8f:74:6b:24:9b:42: 18:10:1e:6f:8f:4b:11:ed:d3:43:80:b1:1b:e4:7e: 7d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:F0:8E:64:77:50:67:CC:BF:F5:FE:84:15:51:2A:7E:46:8F:55:85 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1vCOZHdQZ8y_9f6EFVEqfkaPVYU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.160.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:41:76:58:ab:80:d7:7f:4a:c2:c6:e5:2a:3f:ac:37:49:a8: 63:0d:dc:60:3d:db:0b:c9:18:de:db:ef:33:57:91:eb:22:8e: ea:0b:04:11:6f:c6:90:2b:0a:3c:e4:fc:ce:dc:fb:53:8e:d4: bb:10:94:f7:2f:d1:b2:8d:12:48:49:8a:a9:e3:88:c7:dc:d2: 04:1f:06:ff:0d:2e:5f:b4:e3:b0:2d:68:a6:be:e3:33:ef:e3: 4f:39:2b:44:2d:8a:11:d4:99:49:e0:1d:9f:0d:9c:ba:86:45: 10:7d:7f:7b:9a:0e:88:b4:56:5f:85:49:d7:51:94:c0:49:e0: 82:e7:28:35:d3:65:b1:45:10:78:a3:9d:da:99:2f:33:53:23: 75:d7:c7:0e:a3:53:5f:9c:72:99:8b:25:bf:48:a0:e6:cb:46: 6b:32:37:e4:d4:13:05:f8:4b:c6:5e:89:30:80:ed:72:54:20: a2:0b:bb:48:f4:fe:6e:52:ad:d5:b8:c3:85:d6:a2:c4:0e:42: 54:73:66:2e:33:3d:ca:87:dd:49:41:06:75:11:66:2d:a7:5d: 1c:a3:32:c8:61:dc:40:fc:3d:db:42:4e:af:36:21:8d:db:fd: 08:92:a6:b5:74:07:1d:26:68:45:dc:7b:bf:63:c0:43:b2:59: 14:e9:3c:53 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMvYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMyMTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ2RjA4RTY0Nzc1MDY3 Q0NCRkY1RkU4NDE1NTEyQTdFNDY4RjU1ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwvJPSAuzlirFFW1dCT3xbxuXrX6BkB0rYrM4jh/mAN200130H RECYpI+ywpRbXWb6LBN3kBvV16Qlwd6KjvCWbNS0OAM+jXrjMHDfsYjMHypCepkN BGwopnII1d9xyOUUCl1RNf5Bito6CFiQWE/tgSlVmcexQw4P1TjV7LS8rGb6PKyK yf9T3Azyh29ziFByNAzBHAAJiLpvfmXI6zf36gyo1Ea/Ez3aGqPmv4EzYy7o/Umy BormqGyHJdmKdBp+wZcghmisHCcVS/A3U0zW4qjWEaD6T8TRFpGVQPEUjn8XgygB ygEsNY90aySbQhgQHm+PSxHt00OAsRvkfn2FAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1vCOZHdQZ8y/9f6EFVEqfkaPVYUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzF2Q09aSGRRWjh5XzlmNkVG VkVxZmthUFZZVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AaAwDQYJKoZIhvcNAQELBQADggEBAF5BdlirgNd/SsLG5So/rDdJqGMN3GA92wvJ GN7b7zNXkesijuoLBBFvxpArCjzk/M7c+1OO1LsQlPcv0bKNEkhJiqnjiMfc0gQf Bv8NLl+047AtaKa+4zPv4085K0QtihHUmUngHZ8NnLqGRRB9f3uaDoi0Vl+FSddR lMBJ4ILnKDXTZbFFEHijndqZLzNTI3XXxw6jU1+ccpmLJb9IoObLRmsyN+TUEwX4 S8ZeiTCA7XJUIKILu0j0/m5SrdW4w4XWosQOQlRzZi4zPcqH3UlBBnURZi2nXRyj Mshh3ED8PdtCTq82IY3b/QiSprV0Bx0maEXce79jwEOyWRTpPFM= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:16 2024 by rpki-client on console-ams.rpki-client.org