$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/377l0LdMLELdoVfrGU9I_0BGm5g.roa File: 377l0LdMLELdoVfrGU9I_0BGm5g.roa (raw, json) Hash identifier: ixRKRlbkx915YDSZ3HDSXxrwNPsNh/zyEG+vxmuCbHg= Subject key identifier: DF:BE:E5:D0:B7:4C:2C:42:DD:A1:57:EB:19:4F:48:FF:40:46:9B:98 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32BF Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/377l0LdMLELdoVfrGU9I_0BGm5g.roa Signing time: Mon 26 Aug 2024 05:31:58 +0000 ROA not before: Mon 26 Aug 2024 05:31:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.224.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12991 (0x32bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DFBEE5D0B74C2C42DDA157EB194F48FF40469B98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f4:e1:8b:39:08:f3:56:81:9c:63:a6:53:5c: 86:b9:f9:a6:5c:58:2c:4b:8a:19:80:42:ce:ce:d7: 51:e9:e0:22:29:a9:43:08:57:86:49:48:bf:bd:f7: 9a:25:76:0f:2f:b4:d8:8d:bd:d7:17:33:98:1f:00: fa:a1:79:a1:04:5c:13:28:a3:af:e0:83:81:fd:90: e5:a0:b9:e8:71:89:e5:a3:97:78:60:b8:e4:ab:93: 5f:f3:82:4a:5a:c6:0d:93:03:50:a4:a7:57:4f:4a: 35:c6:a2:83:3d:81:fa:df:a4:8c:35:45:0a:e0:12: 63:e0:27:7b:f4:29:6d:cd:bb:f9:1d:e5:ac:87:cc: 85:a7:78:96:89:c3:0f:90:04:70:70:32:95:b7:89: f5:d9:2e:18:26:c3:7c:6a:94:00:35:26:d9:25:25: 4f:58:b5:1c:92:7f:f4:d4:8d:c9:b6:5b:bb:a5:b0: 9d:8e:4e:73:1a:b8:f0:0a:1b:97:21:43:67:05:b3: a8:ff:a3:2d:c4:ec:51:33:2e:b9:49:4f:91:d4:45: dc:06:e7:26:d2:c1:b1:5d:4a:45:0e:31:dc:b8:65: c3:26:03:1f:c1:3c:d5:86:40:b0:fe:ce:28:76:cd: 53:86:46:6b:5f:48:94:5b:8e:f0:6b:fe:50:cd:0a: 89:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:BE:E5:D0:B7:4C:2C:42:DD:A1:57:EB:19:4F:48:FF:40:46:9B:98 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/377l0LdMLELdoVfrGU9I_0BGm5g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.224.0/21 Signature Algorithm: sha256WithRSAEncryption 67:d0:c0:e7:25:33:98:86:71:ad:2a:59:fb:29:2f:1e:17:85: 39:8b:a6:94:0c:e6:16:f7:44:31:a9:aa:60:cc:f0:12:e0:19: f3:46:7c:5b:d6:dd:23:98:f7:1c:4c:60:b4:16:9c:ef:db:3a: 4e:1a:42:d8:df:b8:2e:eb:71:ad:c2:91:5a:f9:5b:72:68:23: 81:bf:44:b4:d4:2d:fa:2e:9f:a3:e8:db:d0:9e:f2:08:7d:5c: 6f:25:f1:65:6e:dd:b9:32:8f:59:c9:63:d2:9c:84:30:01:38: 1c:ee:a5:21:66:7c:5b:df:1e:f2:64:66:b8:5c:53:db:d5:54: 5b:37:cd:40:5b:80:78:7b:49:99:b7:f1:69:b6:37:e2:ee:f7: 63:9e:2d:0c:7f:9a:91:89:b6:3e:e2:b7:f2:09:12:16:6d:91: ff:46:90:06:2e:b5:7a:2e:45:cb:4b:b8:08:83:af:9a:44:66: ed:eb:2a:80:b7:ed:db:3c:2f:55:d2:c5:a3:3e:9c:30:25:10: a0:94:67:36:64:f7:4a:e1:ad:62:bb:cd:ce:af:75:f7:07:6b: df:e5:fe:7b:fe:90:b6:f0:74:61:f1:36:78:9a:0c:9f:76:e3: 45:c1:9d:cc:2c:fc:0e:e9:76:a7:a4:8a:f6:ee:81:3d:a7:ba: 41:c9:78:a0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMr8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERGQkVFNUQwQjc0QzJD NDJEREExNTdFQjE5NEY0OEZGNDA0NjlCOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC09OGLOQjzVoGcY6ZTXIa5+aZcWCxLihmAQs7O11Hp4CIpqUMI V4ZJSL+995oldg8vtNiNvdcXM5gfAPqheaEEXBMoo6/gg4H9kOWguehxieWjl3hg uOSrk1/zgkpaxg2TA1Ckp1dPSjXGooM9gfrfpIw1RQrgEmPgJ3v0KW3Nu/kd5ayH zIWneJaJww+QBHBwMpW3ifXZLhgmw3xqlAA1JtklJU9YtRySf/TUjcm2W7ulsJ2O TnMauPAKG5chQ2cFs6j/oy3E7FEzLrlJT5HURdwG5ybSwbFdSkUOMdy4ZcMmAx/B PNWGQLD+zih2zVOGRmtfSJRbjvBr/lDNComxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU377l0LdMLELdoVfrGU9I/0BGm5gwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzM3N2wwTGRNTEVMZG9WZnJH VTlJXzBCR201Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 w+AwDQYJKoZIhvcNAQELBQADggEBAGfQwOclM5iGca0qWfspLx4XhTmLppQM5hb3 RDGpqmDM8BLgGfNGfFvW3SOY9xxMYLQWnO/bOk4aQtjfuC7rca3CkVr5W3JoI4G/ RLTULfoun6Po29Ce8gh9XG8l8WVu3bkyj1nJY9KchDABOBzupSFmfFvfHvJkZrhc U9vVVFs3zUBbgHh7SZm38Wm2N+Lu92OeLQx/mpGJtj7it/IJEhZtkf9GkAYutXou RctLuAiDr5pEZu3rKoC37ds8L1XSxaM+nDAlEKCUZzZk90rhrWK7zc6vdfcHa9/l /nv+kLbwdGHxNniaDJ9240XBncws/A7pdqekivbugT2nukHJeKA= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:49 2024 by rpki-client on console-fra.rpki-client.org