$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5qzJp2PgdZAgTrUxZbTOUSnHI_0.roa File: 5qzJp2PgdZAgTrUxZbTOUSnHI_0.roa (raw, json) Hash identifier: Ig28imtydMuER8mPXVtZ5qEU6SyuvKNnMNNlv0Pov6w= Subject key identifier: E6:AC:C9:A7:63:E0:75:90:20:4E:B5:31:65:B4:CE:51:29:C7:23:FD Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3006 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5qzJp2PgdZAgTrUxZbTOUSnHI_0.roa Signing time: Mon 26 Aug 2024 05:29:04 +0000 ROA not before: Mon 26 Aug 2024 05:29:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12294 (0x3006) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E6ACC9A763E07590204EB53165B4CE5129C723FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3b:3c:47:a0:34:1d:6c:a4:70:a1:b4:9e:b1: 71:46:0e:e9:4f:61:6e:1d:95:1e:81:ad:59:f1:e8: 56:a6:26:a7:10:bf:1c:cc:ad:02:81:ca:18:31:e5: 60:4b:c9:1c:c3:cd:5d:82:8f:d5:59:ff:03:ad:20: 76:c2:05:28:2a:2c:e0:3b:ce:72:37:ad:c9:68:21: f6:41:32:ae:7e:f1:48:0b:9a:be:1d:15:bc:f0:ce: b6:5b:76:16:ff:24:03:1d:db:bf:c5:a6:4e:22:dc: 63:3d:9a:22:8a:37:75:f7:eb:e9:8a:e5:14:fa:e9: 80:16:1a:13:7e:0e:3b:58:c5:dc:72:d6:1b:8f:2f: d6:e2:05:a1:68:3c:c8:fd:3e:77:e1:ac:e5:15:aa: eb:dc:8d:e1:6a:d1:12:d5:0d:f3:e8:99:83:75:5b: e4:ac:86:a9:56:73:b0:96:5a:d7:f1:11:f7:6a:f2: cc:5e:0f:c1:3f:13:5b:a3:1e:ab:ce:02:0d:89:b8: 22:cf:b4:a2:c7:37:bf:13:26:6b:29:83:ec:e0:ea: 84:ac:45:f1:44:05:de:fa:ec:c3:a9:67:e9:50:78: 2f:d2:20:60:bb:dd:61:e5:f0:45:b6:e4:3a:f1:69: 9e:0a:e6:66:95:c8:4b:8d:45:d5:e9:28:c8:23:7a: df:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:AC:C9:A7:63:E0:75:90:20:4E:B5:31:65:B4:CE:51:29:C7:23:FD X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/5qzJp2PgdZAgTrUxZbTOUSnHI_0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.165.0/24 Signature Algorithm: sha256WithRSAEncryption 20:a4:58:30:b7:2a:d0:7e:8a:3b:8f:f1:d1:a6:0b:4e:79:7b: 17:af:10:01:28:bb:cd:b6:1f:3b:3b:d3:25:51:ed:72:3b:9f: 59:60:5f:83:c9:9a:1b:43:58:44:40:d2:64:8c:ad:ae:43:bf: 82:8b:88:14:5e:5f:f6:e9:be:30:cd:ee:c8:b2:dc:a7:4d:c9: 97:cc:1a:18:a2:ae:b6:85:a1:9e:9d:d9:2a:49:30:ef:6c:82: 73:79:84:ae:fe:91:0f:a2:da:ae:f0:34:7e:cc:e2:e5:2c:ee: d4:37:d5:4e:4f:44:29:9e:97:2c:05:4b:90:01:61:e7:23:b2: 95:97:cf:66:ad:02:93:20:15:94:cb:6e:f1:f4:c0:f4:c1:d2: 04:5e:df:13:50:50:ae:14:a1:59:9e:60:9d:39:e2:89:1b:9b: ce:42:67:93:93:45:dc:e1:fd:27:99:fb:c5:95:ad:39:3c:81: 02:66:42:9d:b9:09:8e:73:59:df:79:89:d0:39:d8:7e:83:72: 29:a4:b8:52:d2:37:d9:ae:40:86:cc:2f:1c:3d:97:50:07:1f: 7c:e0:da:f8:56:28:1d:12:e9:e8:45:cb:c4:a3:ea:57:2a:66: 22:b2:9d:8a:7a:2e:b5:52:e8:15:5f:e9:20:bb:13:f5:24:c5: f0:3b:3b:aa -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMAYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU2QUNDOUE3NjNFMDc1 OTAyMDRFQjUzMTY1QjRDRTUxMjlDNzIzRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKOzxHoDQdbKRwobSesXFGDulPYW4dlR6BrVnx6FamJqcQvxzM rQKByhgx5WBLyRzDzV2Cj9VZ/wOtIHbCBSgqLOA7znI3rcloIfZBMq5+8UgLmr4d FbzwzrZbdhb/JAMd27/Fpk4i3GM9miKKN3X36+mK5RT66YAWGhN+DjtYxdxy1huP L9biBaFoPMj9PnfhrOUVquvcjeFq0RLVDfPomYN1W+SshqlWc7CWWtfxEfdq8sxe D8E/E1ujHqvOAg2JuCLPtKLHN78TJmspg+zg6oSsRfFEBd767MOpZ+lQeC/SIGC7 3WHl8EW25DrxaZ4K5maVyEuNRdXpKMgjet93AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU5qzJp2PgdZAgTrUxZbTOUSnHI/0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzVxekpwMlBnZFpBZ1RyVXha YlRPVVNuSElfMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AaUwDQYJKoZIhvcNAQELBQADggEBACCkWDC3KtB+ijuP8dGmC055exevEAEou822 Hzs70yVR7XI7n1lgX4PJmhtDWERA0mSMra5Dv4KLiBReX/bpvjDN7siy3KdNyZfM GhiirraFoZ6d2SpJMO9sgnN5hK7+kQ+i2q7wNH7M4uUs7tQ31U5PRCmelywFS5AB YecjspWXz2atApMgFZTLbvH0wPTB0gRe3xNQUK4UoVmeYJ054okbm85CZ5OTRdzh /SeZ+8WVrTk8gQJmQp25CY5zWd95idA52H6DcimkuFLSN9muQIbMLxw9l1AHH3zg 2vhWKB0S6ehFy8Sj6lcqZiKynYp6LrVS6BVf6SC7E/UkxfA7O6o= -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:37 2024 by rpki-client on console-fra.rpki-client.org