$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4gICEaOkISd__zFobZIdXI3vn5s.roa File: 4gICEaOkISd__zFobZIdXI3vn5s.roa (raw, json) Hash identifier: m/+JKJnyfSSJS9GRmVuxfN3xC3j1NYfdB5s0Yf5lKHQ= Subject key identifier: E2:02:02:11:A3:A4:21:27:7F:FF:31:68:6D:92:1D:5C:8D:EF:9F:9B Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 30FF Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4gICEaOkISd__zFobZIdXI3vn5s.roa Signing time: Mon 26 Aug 2024 05:30:01 +0000 ROA not before: Mon 26 Aug 2024 05:30:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.232.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12543 (0x30ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:01 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E2020211A3A421277FFF31686D921D5C8DEF9F9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:58:1f:c2:f7:9b:f5:50:0c:42:1d:fa:ec:90: 16:94:62:b7:30:bb:92:d7:7b:cb:0e:7c:2b:44:6b: 4e:2a:03:bf:89:74:4e:4c:fc:92:ad:f9:8c:f7:85: e7:82:59:6d:f1:0b:d6:0d:b8:67:a2:10:01:3c:21: 72:02:b2:56:82:b9:86:41:a4:34:c0:46:9a:e4:8c: d0:e4:73:48:fb:4d:c1:02:dd:7b:05:b5:ef:1b:2a: 7b:e4:d4:ef:91:28:7e:3f:87:c2:57:51:98:23:df: 40:1f:6d:f1:a7:a0:68:25:7c:b7:09:62:26:e3:2e: 72:73:5b:6d:95:38:a4:03:a3:44:eb:8e:55:f1:96: 74:ec:25:cc:dd:49:7e:30:87:d1:e9:52:1b:62:5c: 41:83:83:db:eb:5e:c1:8f:1c:b8:d0:19:ba:f3:4d: 6b:8b:24:29:5e:13:fd:64:c5:0f:a2:c4:4a:93:00: 89:83:dc:d4:84:98:0b:9c:e7:eb:92:47:37:b9:fb: 85:eb:f6:4d:fe:9f:f9:6c:e2:ad:6c:a2:c7:78:a5: 34:f9:ee:7d:d3:d0:c3:64:52:e6:a4:71:a0:17:f1: 55:dd:e2:fe:d3:64:2b:de:36:6a:be:1e:32:db:cd: d9:40:e7:6c:7f:b0:c9:c4:2d:1f:86:50:2a:27:ec: 5d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:02:02:11:A3:A4:21:27:7F:FF:31:68:6D:92:1D:5C:8D:EF:9F:9B X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4gICEaOkISd__zFobZIdXI3vn5s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.224.0/21 Signature Algorithm: sha256WithRSAEncryption 3c:c5:fa:dc:f9:12:ee:9b:78:7d:d2:32:12:2c:56:65:f9:4a: b5:6f:05:a7:22:17:2c:73:02:8b:79:b1:03:5b:73:76:0a:6d: d0:56:d6:9c:37:bb:5c:5e:0d:f7:16:74:c6:e9:15:87:8e:31: 9f:d2:56:22:9f:3f:95:7c:77:b9:8f:4a:26:64:ab:be:bd:fd: e0:b9:aa:bf:c7:8a:7c:1a:60:5f:64:de:0a:72:3e:df:a0:34: 0d:84:fd:67:fd:44:b4:87:98:a8:58:10:50:9d:aa:fe:45:0e: 79:20:11:ab:c4:b2:b4:3e:87:b8:fb:98:8b:d3:c7:11:46:11: 98:ae:20:52:38:10:ed:06:40:b4:5d:9f:11:ef:4f:e8:5d:09: 46:91:0f:bb:93:8e:45:84:67:81:2d:60:a7:57:be:13:a0:b5: 70:7a:45:9d:7d:4e:e3:95:db:62:ed:e9:2d:c7:38:10:eb:8d: cb:96:97:8d:0d:fd:fa:03:99:d2:4a:7a:8e:f9:02:e8:64:ea: 6b:9e:86:80:44:65:09:8a:ee:29:16:fd:a1:0f:ce:12:dc:6b: ee:34:a2:f2:0a:84:6c:93:dd:3b:f7:26:6a:76:65:bc:13:4e: cc:ac:d5:8c:5c:e7:f4:71:10:2e:c4:cb:1e:f9:a3:9b:d2:46: f3:d9:43:be -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMP8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUyMDIwMjExQTNBNDIx Mjc3RkZGMzE2ODZEOTIxRDVDOERFRjlGOUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9WB/C95v1UAxCHfrskBaUYrcwu5LXe8sOfCtEa04qA7+JdE5M /JKt+Yz3heeCWW3xC9YNuGeiEAE8IXICslaCuYZBpDTARprkjNDkc0j7TcEC3XsF te8bKnvk1O+RKH4/h8JXUZgj30AfbfGnoGglfLcJYibjLnJzW22VOKQDo0TrjlXx lnTsJczdSX4wh9HpUhtiXEGDg9vrXsGPHLjQGbrzTWuLJCleE/1kxQ+ixEqTAImD 3NSEmAuc5+uSRze5+4Xr9k3+n/ls4q1sosd4pTT57n3T0MNkUuakcaAX8VXd4v7T ZCveNmq+HjLbzdlA52x/sMnELR+GUCon7F25AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU4gICEaOkISd//zFobZIdXI3vn5swHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzRnSUNFYU9rSVNkX196Rm9i WklkWEkzdm41cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6OAwDQYJKoZIhvcNAQELBQADggEBADzF+tz5Eu6beH3SMhIsVmX5SrVvBaciFyxz Aot5sQNbc3YKbdBW1pw3u1xeDfcWdMbpFYeOMZ/SViKfP5V8d7mPSiZkq769/eC5 qr/HinwaYF9k3gpyPt+gNA2E/Wf9RLSHmKhYEFCdqv5FDnkgEavEsrQ+h7j7mIvT xxFGEZiuIFI4EO0GQLRdnxHvT+hdCUaRD7uTjkWEZ4EtYKdXvhOgtXB6RZ19TuOV 22Lt6S3HOBDrjcuWl40N/foDmdJKeo75Auhk6muehoBEZQmK7ikW/aEPzhLca+40 ovIKhGyT3Tv3Jmp2ZbwTTsys1Yxc5/RxEC7Eyx75o5vSRvPZQ74= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:16 2024 by rpki-client on console-ams.rpki-client.org