$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/26EEmpxufMz5u91YwWp_S5QTi3Y.roa File: 26EEmpxufMz5u91YwWp_S5QTi3Y.roa (raw, json) Hash identifier: G/NkZE9cQhpO3zIfMqX2SGnreghA1JVqOJSlfDb3FEs= Subject key identifier: DB:A1:04:9A:9C:6E:7C:CC:F9:BB:DD:58:C1:6A:7F:4B:94:13:8B:76 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31AF Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/26EEmpxufMz5u91YwWp_S5QTi3Y.roa Signing time: Mon 26 Aug 2024 05:30:49 +0000 ROA not before: Mon 26 Aug 2024 05:30:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.192.232.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12719 (0x31af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DBA1049A9C6E7CCCF9BBDD58C16A7F4B94138B76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:63:0a:80:1e:1d:ce:d5:07:47:32:f8:da:7f: 2e:77:80:60:9e:01:ac:4f:d5:7d:a1:48:10:7e:b6: 59:6a:f3:8c:8a:43:60:0e:f6:1a:3e:60:c1:ea:38: 2b:78:e4:18:91:bc:08:13:46:8b:f2:69:44:ee:6f: 74:61:c0:2c:6c:f2:24:b2:f4:1c:a8:ac:65:47:f5: 75:b1:1b:c1:37:08:31:74:a5:c4:6c:42:88:d4:e5: 5a:3e:78:91:0d:cf:a1:f8:6f:0e:67:21:a4:d1:62: 76:39:e0:a3:38:a5:69:3d:2f:b2:70:99:0c:ea:4a: 9c:86:17:25:f5:8a:36:59:61:68:4d:cd:48:23:59: 62:fd:58:12:da:d5:5a:59:ff:fc:49:44:91:b4:49: 6c:23:f9:0c:49:55:c8:eb:eb:c8:c6:bd:93:83:28: 19:e4:20:a3:1e:77:96:45:64:15:d8:09:7c:33:5f: bf:bc:2a:8d:9e:a2:6d:45:cf:90:d3:db:e1:a4:59: e2:cc:70:5e:f7:23:b3:17:d9:99:ed:21:7f:61:ac: 5d:23:d8:db:bd:d8:6d:fb:f9:5f:f6:d8:44:54:26: 3b:d9:96:f7:2a:63:4f:38:4e:a4:63:aa:3e:ca:6d: c0:74:4f:f9:4d:b6:5e:18:7e:c1:9d:18:76:df:7c: 76:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A1:04:9A:9C:6E:7C:CC:F9:BB:DD:58:C1:6A:7F:4B:94:13:8B:76 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/26EEmpxufMz5u91YwWp_S5QTi3Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.232.0/21 Signature Algorithm: sha256WithRSAEncryption 68:cc:27:6b:c0:8a:72:23:0c:cd:4d:9a:c3:c3:dc:c4:00:dd: 14:2c:9c:3d:cf:3e:70:7b:4b:d0:fc:30:03:73:6c:a9:40:9a: 04:77:cb:9c:3e:52:4d:9d:2e:bd:f6:d5:a2:7b:86:53:9b:62: 06:9e:06:2f:94:33:fe:14:f3:86:78:44:1b:30:11:0d:aa:bf: 8e:93:13:8a:f4:c3:0a:5f:bd:96:69:89:ca:bd:e0:10:ff:5d: e6:45:3c:24:70:37:1a:c8:b1:b9:fe:ff:74:7c:39:3e:64:58: b7:b0:f5:0e:e4:c1:24:87:84:a7:c4:fa:5d:4d:1a:e4:be:80: fb:05:7e:a5:52:34:bf:ad:b7:57:41:34:d7:84:7b:59:c5:45: 57:55:d0:fb:01:6e:d7:f3:62:bc:f1:ec:d3:af:65:93:29:2f: 86:f1:7f:b8:08:60:0e:27:81:d4:05:b7:ca:bd:2b:28:23:fd: 8f:96:05:4e:87:46:7e:5f:25:23:9f:ea:3f:a2:8d:1d:bd:0b: 75:74:40:b4:da:2a:e8:57:d4:1a:6f:0d:59:6f:85:a0:bc:e5: 5d:af:ad:18:25:2d:09:71:c2:2e:55:07:cc:20:f6:e8:07:ea: ea:a5:d8:9f:f1:26:51:32:e9:62:13:e9:47:f9:4a:eb:eb:15: de:c6:13:9b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMa8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERCQTEwNDlBOUM2RTdD Q0NGOUJCREQ1OEMxNkE3RjRCOTQxMzhCNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXYwqAHh3O1QdHMvjafy53gGCeAaxP1X2hSBB+tllq84yKQ2AO 9ho+YMHqOCt45BiRvAgTRovyaUTub3RhwCxs8iSy9ByorGVH9XWxG8E3CDF0pcRs QojU5Vo+eJENz6H4bw5nIaTRYnY54KM4pWk9L7JwmQzqSpyGFyX1ijZZYWhNzUgj WWL9WBLa1VpZ//xJRJG0SWwj+QxJVcjr68jGvZODKBnkIKMed5ZFZBXYCXwzX7+8 Ko2eom1Fz5DT2+GkWeLMcF73I7MX2ZntIX9hrF0j2Nu92G37+V/22ERUJjvZlvcq Y084TqRjqj7KbcB0T/lNtl4YfsGdGHbffHYjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU26EEmpxufMz5u91YwWp/S5QTi3YwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzI2RUVtcHh1Zk16NXU5MVl3 V3BfUzVRVGkzWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wOgwDQYJKoZIhvcNAQELBQADggEBAGjMJ2vAinIjDM1NmsPD3MQA3RQsnD3PPnB7 S9D8MANzbKlAmgR3y5w+Uk2dLr321aJ7hlObYgaeBi+UM/4U84Z4RBswEQ2qv46T E4r0wwpfvZZpicq94BD/XeZFPCRwNxrIsbn+/3R8OT5kWLew9Q7kwSSHhKfE+l1N GuS+gPsFfqVSNL+tt1dBNNeEe1nFRVdV0PsBbtfzYrzx7NOvZZMpL4bxf7gIYA4n gdQFt8q9Kygj/Y+WBU6HRn5fJSOf6j+ijR29C3V0QLTaKuhX1BpvDVlvhaC85V2v rRglLQlxwi5VB8wg9ugH6uql2J/xJlEy6WIT6Uf5SuvrFd7GE5s= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:49 2024 by rpki-client on console-fra.rpki-client.org