$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/21m3hgoIGM3ECVD8hWxPWxjxD1E.roa File: 21m3hgoIGM3ECVD8hWxPWxjxD1E.roa (raw, json) Hash identifier: XW0dUq+dg9egpJKnBvB2CihWVekZSFUNMZjadns/P9Y= Subject key identifier: DB:59:B7:86:0A:08:18:CD:C4:09:50:FC:85:6C:4F:5B:18:F1:0F:51 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32E9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/21m3hgoIGM3ECVD8hWxPWxjxD1E.roa Signing time: Mon 26 Aug 2024 05:32:08 +0000 ROA not before: Mon 26 Aug 2024 05:32:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.177.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13033 (0x32e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:32:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DB59B7860A0818CDC40950FC856C4F5B18F10F51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:87:4c:91:38:52:d8:b7:46:f8:10:0c:9c:0d: f4:1b:cc:22:8b:2b:3c:35:27:8f:8a:85:4a:be:96: 0a:2b:35:d9:28:c3:44:cd:b7:f4:8a:e7:95:ee:63: 86:96:dc:0a:5a:bd:46:a2:5d:50:ea:67:82:2f:a4: 69:4a:b3:41:2b:7e:61:34:31:93:a1:8b:78:d7:89: 42:76:e6:a5:16:65:59:e8:ed:e9:b0:06:7e:7e:5a: 10:01:1c:f3:ff:6b:4d:74:3a:7f:48:1a:34:2c:c8: d0:b5:dc:29:4c:d6:0f:cb:5f:ce:28:37:d3:85:ac: 68:8e:dc:22:1f:21:d2:d6:a1:b2:81:e6:86:75:46: d9:9c:36:78:dd:9f:54:89:6b:ab:41:9c:24:b8:b9: f7:45:74:35:58:1b:61:f9:f3:4e:9d:ae:79:fe:d5: c8:fa:25:57:a4:c8:6c:ab:72:36:a3:86:dc:7e:a0: 62:b5:b5:3b:2d:a5:d7:2d:f8:a5:6a:ad:69:fa:ab: 84:cf:eb:82:3f:43:c4:0c:c0:b7:52:f8:08:1e:be: 2c:f0:c0:fc:8d:95:e2:63:5c:9d:8e:0e:8c:34:65: f0:2f:f7:9e:0d:d5:84:95:25:72:86:26:c4:1e:9e: 3a:e0:62:fa:6e:5e:63:d6:1e:0e:d4:21:b5:51:73: 32:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:59:B7:86:0A:08:18:CD:C4:09:50:FC:85:6C:4F:5B:18:F1:0F:51 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/21m3hgoIGM3ECVD8hWxPWxjxD1E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.231.0/24 Signature Algorithm: sha256WithRSAEncryption 41:de:0d:d0:8d:af:0d:1f:dc:7a:7f:0d:d9:e8:bb:3b:b4:9e: ce:aa:2d:3c:38:f6:5f:fd:35:14:c7:6a:f2:af:39:6a:7a:88: ee:ec:b3:ad:1b:cf:9f:93:c3:d9:c2:9a:e1:b7:05:dc:10:28: 82:5a:fc:fa:58:2a:9b:a3:87:5a:0b:89:a7:07:c8:5d:18:dc: 93:7b:b6:b0:93:d6:4a:19:fb:e1:60:47:ef:31:a1:12:c4:7b: 7b:c6:3c:33:1f:55:92:50:b9:04:f9:0c:f6:93:a2:f2:c1:f0: ce:04:17:17:a8:86:2e:b9:73:47:69:f5:09:79:f2:ee:4c:c7: 30:58:62:b8:c8:2d:dc:77:8f:6b:7d:cf:c7:fd:42:06:c9:4d: 5b:ea:c1:1b:65:8c:32:0d:df:2f:a5:e9:30:44:73:a0:d7:15: 77:86:42:c0:e3:c2:4a:41:bb:c2:ab:12:d0:4f:f4:f4:79:fb: f5:27:b0:0c:71:49:be:0d:f9:4b:a2:4e:9b:0a:84:37:82:09: c3:56:c9:d2:a0:32:c5:ff:35:64:5e:02:6f:5c:21:b7:28:ff: ba:48:e4:ea:cc:84:ea:eb:63:8a:ad:e8:40:81:b5:64:fd:ef: 8d:ac:6b:0d:65:95:90:32:e8:50:d5:a7:88:ee:56:71:a3:23: 4f:b1:76:96 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMukwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMyMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERCNTlCNzg2MEEwODE4 Q0RDNDA5NTBGQzg1NkM0RjVCMThGMTBGNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCph0yROFLYt0b4EAycDfQbzCKLKzw1J4+KhUq+lgorNdkow0TN t/SK55XuY4aW3ApavUaiXVDqZ4IvpGlKs0ErfmE0MZOhi3jXiUJ25qUWZVno7emw Bn5+WhABHPP/a010On9IGjQsyNC13ClM1g/LX84oN9OFrGiO3CIfIdLWobKB5oZ1 RtmcNnjdn1SJa6tBnCS4ufdFdDVYG2H5806drnn+1cj6JVekyGyrcjajhtx+oGK1 tTstpdct+KVqrWn6q4TP64I/Q8QMwLdS+AgevizwwPyNleJjXJ2ODow0ZfAv954N 1YSVJXKGJsQenjrgYvpuXmPWHg7UIbVRczIfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU21m3hgoIGM3ECVD8hWxPWxjxD1EwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzIxbTNoZ29JR00zRUNWRDho V3hQV3hqeEQxRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0 secwDQYJKoZIhvcNAQELBQADggEBAEHeDdCNrw0f3Hp/Ddnouzu0ns6qLTw49l/9 NRTHavKvOWp6iO7ss60bz5+Tw9nCmuG3BdwQKIJa/PpYKpujh1oLiacHyF0Y3JN7 trCT1koZ++FgR+8xoRLEe3vGPDMfVZJQuQT5DPaTovLB8M4EFxeohi65c0dp9Ql5 8u5MxzBYYrjILdx3j2t9z8f9QgbJTVvqwRtljDIN3y+l6TBEc6DXFXeGQsDjwkpB u8KrEtBP9PR5+/UnsAxxSb4N+UuiTpsKhDeCCcNWydKgMsX/NWReAm9cIbco/7pI 5OrMhOrrY4qt6ECBtWT9742saw1llZAy6FDVp4juVnGjI0+xdpY= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:45 2024 by rpki-client on console-fra.rpki-client.org