$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/66S0fKwwe-tsRG68S_I2moDPOj0.roa File: 66S0fKwwe-tsRG68S_I2moDPOj0.roa (raw, json) Hash identifier: zBkmWGjMYCoC27iIM57xYLCzjOftAP1tjJWLO6N27O8= Subject key identifier: EB:A4:B4:7C:AC:30:7B:EB:6C:44:6E:BC:4B:F2:36:9A:80:CF:3A:3D Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3050 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/66S0fKwwe-tsRG68S_I2moDPOj0.roa Signing time: Mon 26 Aug 2024 05:29:21 +0000 ROA not before: Mon 26 Aug 2024 05:29:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12368 (0x3050) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EBA4B47CAC307BEB6C446EBC4BF2369A80CF3A3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e9:e0:0a:f4:75:8d:31:7c:d4:2b:f1:65:98: e7:20:cf:b9:b3:ce:d8:b0:15:59:ac:49:cd:7c:9a: 47:f8:dc:94:ae:6d:5f:b2:2f:00:9e:81:c3:8b:f4: 60:ab:d7:56:a9:8b:46:0f:bf:7a:14:99:22:95:d1: a1:25:bf:cd:29:3c:42:e3:97:41:21:a1:4b:be:86: d1:88:16:8d:cd:3f:86:be:0a:b0:b8:f3:d5:d2:e7: 19:46:18:42:9e:b1:aa:30:38:c3:8c:82:ce:0d:ea: 89:b3:8e:8a:bb:ed:19:50:ef:51:0f:09:09:26:51: 96:05:4b:14:1e:56:7e:9e:bd:0d:24:fe:71:fd:55: d7:5a:f5:86:07:6c:69:a2:83:4d:0e:4b:b1:14:60: 7c:44:69:21:c4:9a:7c:97:b6:2e:e6:a2:56:9e:0e: 4a:11:b3:a3:bb:b7:ad:e2:c8:b5:35:dd:14:e3:07: 6c:9d:28:f1:2a:87:79:93:27:3b:4d:4c:7a:a5:06: 34:21:56:98:0a:f9:3b:f0:f8:5f:64:15:db:0b:e8: b8:69:24:0d:1a:78:0c:62:56:14:87:a3:5c:3d:83: 18:d9:60:10:09:12:70:ed:aa:1d:11:6d:14:32:0f: d0:32:ca:b7:b0:77:29:18:45:c6:1f:e3:6a:48:0d: b0:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A4:B4:7C:AC:30:7B:EB:6C:44:6E:BC:4B:F2:36:9A:80:CF:3A:3D X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/66S0fKwwe-tsRG68S_I2moDPOj0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.180.0/22 Signature Algorithm: sha256WithRSAEncryption 83:f3:73:79:9e:7d:74:d0:e1:0d:3e:f5:b8:f0:e4:a5:b3:a9: c4:ff:48:b3:b7:42:cb:cf:01:58:75:8b:11:cb:92:7c:8e:0d: 97:54:0c:1c:9c:82:5c:71:6c:d9:83:40:ca:14:68:95:03:5c: 09:b7:eb:53:bb:5b:2a:69:b0:02:66:73:48:69:de:5f:a4:1f: ea:75:49:ef:b0:7b:17:c3:6f:57:b3:12:f7:eb:1e:b6:94:3a: 91:fd:dc:e7:4b:2f:db:76:87:98:8e:16:df:bb:df:0f:5e:51: 60:00:3d:80:2b:a9:cc:6e:f2:75:d7:8a:c2:75:c9:49:d5:4f: ab:fb:7e:76:db:50:7f:5f:4f:1d:94:d3:35:bc:34:37:31:a1: ca:16:86:52:32:d7:34:ba:ec:99:af:5a:3f:e5:44:39:b2:53: 7b:5f:b8:06:0d:a4:9f:71:14:6e:fc:8f:54:74:7e:d9:ef:0e: 85:bb:f4:f5:62:b6:84:4c:ef:80:81:47:15:f0:76:ee:bb:ac: db:c3:e2:b1:89:17:6b:73:d9:ca:77:06:a5:09:36:77:0a:12: f9:56:01:c4:c2:6b:79:fa:56:ff:ff:4e:2f:89:70:a2:3e:6c: 19:3a:5f:ff:0a:17:ea:e2:6c:3d:61:6f:1a:8b:09:af:34:6e: 67:04:1d:ed -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMFAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVCQTRCNDdDQUMzMDdC RUI2QzQ0NkVCQzRCRjIzNjlBODBDRjNBM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZ6eAK9HWNMXzUK/FlmOcgz7mzztiwFVmsSc18mkf43JSubV+y LwCegcOL9GCr11api0YPv3oUmSKV0aElv80pPELjl0EhoUu+htGIFo3NP4a+CrC4 89XS5xlGGEKesaowOMOMgs4N6omzjoq77RlQ71EPCQkmUZYFSxQeVn6evQ0k/nH9 Vdda9YYHbGmig00OS7EUYHxEaSHEmnyXti7molaeDkoRs6O7t63iyLU13RTjB2yd KPEqh3mTJztNTHqlBjQhVpgK+Tvw+F9kFdsL6LhpJA0aeAxiVhSHo1w9gxjZYBAJ EnDtqh0RbRQyD9AyyrewdykYRcYf42pIDbC1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU66S0fKwwe+tsRG68S/I2moDPOj0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzY2UzBmS3d3ZS10c1JHNjhT X0kybW9EUE9qMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6bQwDQYJKoZIhvcNAQELBQADggEBAIPzc3mefXTQ4Q0+9bjw5KWzqcT/SLO3QsvP AVh1ixHLknyODZdUDBycglxxbNmDQMoUaJUDXAm361O7WyppsAJmc0hp3l+kH+p1 Se+wexfDb1ezEvfrHraUOpH93OdLL9t2h5iOFt+73w9eUWAAPYArqcxu8nXXisJ1 yUnVT6v7fnbbUH9fTx2U0zW8NDcxocoWhlIy1zS67JmvWj/lRDmyU3tfuAYNpJ9x FG78j1R0ftnvDoW79PVitoRM74CBRxXwdu67rNvD4rGJF2tz2cp3BqUJNncKEvlW AcTCa3n6Vv//Ti+JcKI+bBk6X/8KF+ribD1hbxqLCa80bmcEHe0= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:50 2024 by rpki-client on console-fra.rpki-client.org