$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1zQVBWboyLN3vtjdktXu_Z2e4kw.roa File: 1zQVBWboyLN3vtjdktXu_Z2e4kw.roa (raw, json) Hash identifier: xCjXwmK1WUcbbKAxs3qOWAYu3EB+7iYrdllY9DoE7nY= Subject key identifier: D7:34:15:05:66:E8:C8:B3:77:BE:D8:DD:92:D5:EE:FD:9D:9E:E2:4C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 320E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1zQVBWboyLN3vtjdktXu_Z2e4kw.roa Signing time: Mon 26 Aug 2024 05:31:12 +0000 ROA not before: Mon 26 Aug 2024 05:31:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 211.76.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12814 (0x320e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D734150566E8C8B377BED8DD92D5EEFD9D9EE24C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c2:34:c2:91:47:d9:1e:34:6c:a0:03:97:39: f7:f2:3f:49:8a:e0:fa:23:01:ef:16:3a:82:01:ec: 5c:2e:29:b6:b0:4c:d8:4e:93:95:66:79:b4:60:82: 92:cd:df:33:38:34:f7:5c:1c:0e:35:09:ec:d0:71: 1e:71:15:73:22:c6:45:7f:24:22:60:52:a2:b4:50: 0c:8c:16:65:56:49:a9:a7:2d:37:d1:e4:3c:72:5f: f2:62:f9:33:e5:77:e3:d0:1d:5e:d2:08:ea:b5:5a: c4:0a:93:43:13:58:e7:31:37:ca:d0:4c:79:b3:c0: a4:07:5d:ed:d2:9f:9e:b9:99:72:35:25:3f:ca:f6: 6d:ac:a3:a1:14:2d:94:3c:57:f6:41:49:be:b1:22: 10:56:46:58:44:fc:24:61:95:fd:a6:73:f3:78:2e: b4:31:e9:2d:1f:e7:e2:4e:96:b3:ff:a0:c7:c5:1f: e4:65:08:39:c3:1b:dd:7b:2f:3d:ca:70:ef:f0:d0: f6:6a:e1:68:f4:11:ff:a7:fd:84:df:8c:97:dd:10: 5d:0c:a5:8d:2f:67:b2:17:1a:dc:5c:1b:60:2c:54: ad:a8:92:92:07:1a:ed:5f:10:4e:53:d1:e7:05:e8: db:16:e6:45:2d:47:9a:71:9c:db:ef:ce:5b:3a:6d: 0c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:34:15:05:66:E8:C8:B3:77:BE:D8:DD:92:D5:EE:FD:9D:9E:E2:4C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/1zQVBWboyLN3vtjdktXu_Z2e4kw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.122.0/24 Signature Algorithm: sha256WithRSAEncryption a7:49:4b:a7:f7:7a:b6:9e:e1:8c:ce:f8:aa:58:a5:89:a0:c2: dc:9b:11:fc:08:89:01:df:c8:5e:d9:92:e9:5f:2e:bd:f3:67: e3:db:39:63:59:05:47:32:8a:6d:a0:30:f7:2e:0b:ea:55:e2: ba:69:7b:d6:64:6a:fa:70:56:3b:34:2e:ac:0d:87:76:2a:b5: 08:20:37:1a:02:b9:fa:c0:86:3a:07:66:ae:57:03:2f:9e:7f: bd:3d:0f:78:92:15:bf:32:ab:e5:6d:d0:fe:c5:60:ac:e7:0b: ea:39:37:39:3e:ec:fd:68:07:6a:20:49:5a:23:a3:b0:b1:91: ca:7e:60:c5:99:a4:79:f9:a0:31:76:85:e7:00:6f:60:4f:8f: 5a:df:a6:8c:a6:5c:bc:75:2c:93:f0:73:b0:2c:83:67:35:98: 60:aa:59:10:ca:06:70:42:f5:e9:6a:09:b3:54:10:84:36:05: 77:68:ab:9d:59:90:5a:8f:bc:5d:c0:4b:1a:5c:23:1b:8c:b1: e3:3e:f5:cb:e6:99:61:08:fd:39:33:7b:f9:ab:1c:c3:29:1a: f6:f0:e8:81:76:63:e7:68:d2:06:25:bc:e5:5f:89:a2:d7:65: f3:c6:ba:89:59:57:4a:6a:1a:19:4d:aa:02:f5:f3:3b:07:5e: f0:e6:f7:ae -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMg4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ3MzQxNTA1NjZFOEM4 QjM3N0JFRDhERDkyRDVFRUZEOUQ5RUUyNEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYwjTCkUfZHjRsoAOXOffyP0mK4PojAe8WOoIB7FwuKbawTNhO k5VmebRggpLN3zM4NPdcHA41CezQcR5xFXMixkV/JCJgUqK0UAyMFmVWSamnLTfR 5DxyX/Ji+TPld+PQHV7SCOq1WsQKk0MTWOcxN8rQTHmzwKQHXe3Sn565mXI1JT/K 9m2so6EULZQ8V/ZBSb6xIhBWRlhE/CRhlf2mc/N4LrQx6S0f5+JOlrP/oMfFH+Rl CDnDG917Lz3KcO/w0PZq4Wj0Ef+n/YTfjJfdEF0MpY0vZ7IXGtxcG2AsVK2okpIH Gu1fEE5T0ecF6NsW5kUtR5pxnNvvzls6bQzXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1zQVBWboyLN3vtjdktXu/Z2e4kwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzF6UVZCV2JveUxOM3Z0amRr dFh1X1oyZTRrdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT THowDQYJKoZIhvcNAQELBQADggEBAKdJS6f3erae4YzO+KpYpYmgwtybEfwIiQHf yF7ZkulfLr3zZ+PbOWNZBUcyim2gMPcuC+pV4rppe9ZkavpwVjs0LqwNh3YqtQgg NxoCufrAhjoHZq5XAy+ef709D3iSFb8yq+Vt0P7FYKznC+o5Nzk+7P1oB2ogSVoj o7Cxkcp+YMWZpHn5oDF2hecAb2BPj1rfpoymXLx1LJPwc7Asg2c1mGCqWRDKBnBC 9elqCbNUEIQ2BXdoq51ZkFqPvF3ASxpcIxuMseM+9cvmmWEI/Tkze/mrHMMpGvbw 6IF2Y+do0gYlvOVfiaLXZfPGuolZV0pqGhlNqgL18zsHXvDm964= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:55 2024 by rpki-client on console-fra.rpki-client.org