$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5Wl1nXQuE6EGLoAMTdZmxFVL6bU.roa File: 5Wl1nXQuE6EGLoAMTdZmxFVL6bU.roa (raw, json) Hash identifier: gZwNSgduqhXxJQbee+MBcqnhxfNwPzbqq3q7mBglgJw= Subject key identifier: E5:69:75:9D:74:2E:13:A1:06:2E:80:0C:4D:D6:66:C4:55:4B:E9:B5 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32A9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5Wl1nXQuE6EGLoAMTdZmxFVL6bU.roa Signing time: Mon 26 Aug 2024 05:31:52 +0000 ROA not before: Mon 26 Aug 2024 05:31:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12969 (0x32a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:52 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E569759D742E13A1062E800C4DD666C4554BE9B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ff:12:30:0c:28:ed:8b:e0:2e:cf:66:0b:bd: bd:0c:6b:f3:73:12:f6:66:a8:7d:a4:88:ee:96:a3: 4a:0f:65:a1:3f:c8:2b:47:b9:54:bf:32:86:21:23: f0:f7:bd:de:14:38:b7:53:c3:da:22:4f:a6:55:4c: 78:1b:2c:73:79:7a:07:8a:fd:2c:f6:f1:93:54:cd: d2:d7:50:fa:42:6c:39:91:ba:99:5e:16:dc:bc:09: 11:ed:f9:13:72:bb:1d:e6:66:28:60:0e:70:0d:09: 5e:40:63:b1:bc:d2:d9:71:94:3d:75:00:f0:81:d0: 45:43:bd:3e:6f:45:0c:83:f5:15:ca:65:a4:d6:4b: b6:d2:9c:1b:08:ac:5e:66:ac:94:e4:ff:15:b6:0a: 9a:14:7f:9a:c9:60:16:f1:20:cf:bd:9f:3a:55:b5: 5e:76:e9:c0:cc:e2:81:31:fd:a7:84:85:f8:fb:c9: 80:67:43:96:99:e1:04:50:4f:34:bb:53:21:76:37: 97:ea:85:7a:3e:9a:b7:ac:d0:ed:a7:cf:77:45:49: 81:d2:ca:49:be:bb:54:43:54:d3:2a:a4:2c:a1:0b: 57:83:0b:71:a2:73:63:90:77:f8:7d:52:91:03:b5: 4b:ed:00:a4:77:e0:2a:d4:f3:9c:2b:d5:af:9f:b4: 65:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:69:75:9D:74:2E:13:A1:06:2E:80:0C:4D:D6:66:C4:55:4B:E9:B5 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5Wl1nXQuE6EGLoAMTdZmxFVL6bU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.200.0/21 Signature Algorithm: sha256WithRSAEncryption 42:71:71:9a:61:76:78:90:15:66:d3:df:3b:b1:71:15:cf:07: ac:fa:08:af:f1:c4:e5:a3:f2:54:82:6b:62:be:69:80:1c:9a: 05:00:6b:12:30:85:48:44:1f:ad:93:9d:ef:25:65:72:31:c0: bf:4d:57:d8:d8:f4:ab:42:15:2a:70:99:de:98:93:2d:33:c6: 2b:96:2f:8d:01:e4:0e:e5:e3:ca:bc:01:f5:96:ac:5f:11:01: 66:76:84:b2:d5:20:c4:78:32:7f:f2:b4:6d:07:7b:71:12:af: 2e:7e:20:d5:a2:f7:6f:e7:0f:9a:b8:e9:d3:7c:47:3e:c6:59: b8:36:76:75:4d:59:33:83:ab:1d:44:d0:d9:95:a5:71:ce:74: 23:ae:c2:3a:e8:65:38:e2:4e:5d:fc:05:50:b5:8c:b7:42:44: d0:36:60:77:ec:f6:c0:54:f9:87:52:71:10:59:98:d4:72:4e: ad:aa:e5:ac:53:ae:91:d3:06:f1:36:11:cf:b2:e3:61:aa:eb: 3d:97:77:ca:a1:4f:b2:b0:83:1c:f4:99:1d:15:97:da:88:f8: e4:65:c4:38:7a:9b:e1:d6:e6:ee:9d:60:5f:0b:0a:71:f4:88: 47:3c:ef:62:f7:44:64:fe:a3:ca:17:80:a1:e6:f4:f0:33:b2: 40:37:8e:b2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMqkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU1Njk3NTlENzQyRTEz QTEwNjJFODAwQzRERDY2NkM0NTU0QkU5QjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCt/xIwDCjti+Auz2YLvb0Ma/NzEvZmqH2kiO6Wo0oPZaE/yCtH uVS/MoYhI/D3vd4UOLdTw9oiT6ZVTHgbLHN5egeK/Sz28ZNUzdLXUPpCbDmRuple Fty8CRHt+RNyux3mZihgDnANCV5AY7G80tlxlD11APCB0EVDvT5vRQyD9RXKZaTW S7bSnBsIrF5mrJTk/xW2CpoUf5rJYBbxIM+9nzpVtV526cDM4oEx/aeEhfj7yYBn Q5aZ4QRQTzS7UyF2N5fqhXo+mres0O2nz3dFSYHSykm+u1RDVNMqpCyhC1eDC3Gi c2OQd/h9UpEDtUvtAKR34CrU85wr1a+ftGXVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU5Wl1nXQuE6EGLoAMTdZmxFVL6bUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzVXbDFuWFF1RTZFR0xvQU1U ZFpteEZWTDZiVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6cgwDQYJKoZIhvcNAQELBQADggEBAEJxcZphdniQFWbT3zuxcRXPB6z6CK/xxOWj 8lSCa2K+aYAcmgUAaxIwhUhEH62Tne8lZXIxwL9NV9jY9KtCFSpwmd6Yky0zxiuW L40B5A7l48q8AfWWrF8RAWZ2hLLVIMR4Mn/ytG0He3ESry5+INWi92/nD5q46dN8 Rz7GWbg2dnVNWTODqx1E0NmVpXHOdCOuwjroZTjiTl38BVC1jLdCRNA2YHfs9sBU +YdScRBZmNRyTq2q5axTrpHTBvE2Ec+y42Gq6z2Xd8qhT7Kwgxz0mR0Vl9qI+ORl xDh6m+HW5u6dYF8LCnH0iEc872L3RGT+o8oXgKHm9PAzskA3jrI= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:36 2024 by rpki-client on console-ams.rpki-client.org