$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/690YoIlVHa0HvmM13X73Kw1_ff4.roa File: 690YoIlVHa0HvmM13X73Kw1_ff4.roa (raw, json) Hash identifier: tpp0w2Pzby+Epm3yk/qywgafHo5n2neCXoojcikcbHI= Subject key identifier: EB:DD:18:A0:89:55:1D:AD:07:BE:63:35:DD:7E:F7:2B:0D:7F:7D:FE Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2FC3 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/690YoIlVHa0HvmM13X73Kw1_ff4.roa Signing time: Mon 26 Aug 2024 05:28:50 +0000 ROA not before: Mon 26 Aug 2024 05:28:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12227 (0x2fc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:28:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EBDD18A089551DAD07BE6335DD7EF72B0D7F7DFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e2:1f:53:96:32:b7:64:63:5e:f2:cd:e1:8e: ca:4f:67:6c:94:2f:1f:b7:98:93:d8:7c:38:09:fc: a9:1c:37:c8:8b:1a:ae:64:82:71:4f:93:9f:92:ee: e2:73:55:60:ee:93:6d:aa:ee:af:53:aa:01:61:5d: 80:e1:f7:bc:03:b3:ae:46:ee:48:8f:46:83:28:bd: 05:29:86:15:ad:e7:88:da:6f:eb:62:03:79:4a:d4: 35:81:10:b2:aa:ee:cd:1e:a2:5f:9e:0d:c6:24:48: 21:42:a1:ff:da:92:7f:0b:41:be:91:04:fc:9d:0f: 4b:d5:5f:9f:5e:94:50:e8:f8:86:1a:40:5e:03:92: 2a:a8:35:b5:29:4e:51:73:85:db:66:74:8c:32:96: e7:45:94:50:48:1c:d6:ec:f0:4f:a2:f5:56:7c:53: af:a9:7a:39:4d:f4:ee:98:4a:cb:19:29:b6:2c:af: ee:2a:44:ab:5b:c4:45:af:9b:cd:38:9a:79:0e:df: f9:3c:db:f5:84:9e:68:dc:b1:9f:13:d6:56:8d:6a: a8:23:e9:7c:86:82:ae:bc:83:b3:0d:55:6d:0e:03: 1c:75:ad:19:28:01:24:87:f3:d6:6d:6a:7f:27:80: b3:f0:c2:a3:1b:77:73:85:1e:1b:13:2d:e9:be:01: 40:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:DD:18:A0:89:55:1D:AD:07:BE:63:35:DD:7E:F7:2B:0D:7F:7D:FE X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/690YoIlVHa0HvmM13X73Kw1_ff4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.52.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:ed:ee:58:15:76:b7:fa:85:14:2d:1c:ad:f1:1f:37:b2:9b: 1c:84:6f:37:d6:56:d6:49:27:90:ff:57:63:4d:1d:13:d8:2c: 86:7a:42:9f:23:d8:f8:40:a9:c1:d0:d8:74:17:2c:02:a2:08: fe:b5:4e:f1:84:cc:0d:6b:f5:da:87:ba:56:27:3f:ce:0a:ed: 33:ae:32:b4:3d:fd:45:f2:bb:2f:70:61:9f:24:32:9d:48:62: ce:6e:1c:6f:a1:1b:48:99:e0:1b:75:df:f4:7f:61:82:df:9b: ab:7c:ef:07:21:e0:95:90:5b:68:ff:fe:3a:b2:b4:65:a6:08: af:29:e6:c2:d5:8a:3c:87:9a:4f:55:3f:3b:53:2a:ef:f1:83: b5:05:49:e7:58:94:85:1d:f3:d1:ad:c5:43:37:8f:db:cb:1e: 76:e3:03:97:fa:e4:bf:07:18:bc:b6:6e:5b:f1:2e:b8:d0:68: 62:94:f1:9e:fc:f9:e9:e3:1a:0c:5b:58:87:ea:6a:f4:72:4c: 4a:56:02:97:3b:d2:b3:cf:98:45:bf:35:b6:98:08:95:b1:73: 51:fe:ad:4f:3a:cf:65:b8:88:c2:7e:c1:ed:81:73:2e:c4:d9: 7b:79:c9:42:58:8e:cf:8d:88:e3:14:57:c6:28:1d:2b:54:06: e4:21:16:21 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICL8MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI4NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVCREQxOEEwODk1NTFE QUQwN0JFNjMzNUREN0VGNzJCMEQ3RjdERkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDf4h9TljK3ZGNe8s3hjspPZ2yULx+3mJPYfDgJ/KkcN8iLGq5k gnFPk5+S7uJzVWDuk22q7q9TqgFhXYDh97wDs65G7kiPRoMovQUphhWt54jab+ti A3lK1DWBELKq7s0eol+eDcYkSCFCof/akn8LQb6RBPydD0vVX59elFDo+IYaQF4D kiqoNbUpTlFzhdtmdIwyludFlFBIHNbs8E+i9VZ8U6+pejlN9O6YSssZKbYsr+4q RKtbxEWvm804mnkO3/k82/WEnmjcsZ8T1laNaqgj6XyGgq68g7MNVW0OAxx1rRko ASSH89Ztan8ngLPwwqMbd3OFHhsTLem+AUDJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU690YoIlVHa0HvmM13X73Kw1/ff4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzY5MFlvSWxWSGEwSHZtTTEz WDczS3cxX2ZmNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6TQwDQYJKoZIhvcNAQELBQADggEBAHzt7lgVdrf6hRQtHK3xHzeymxyEbzfWVtZJ J5D/V2NNHRPYLIZ6Qp8j2PhAqcHQ2HQXLAKiCP61TvGEzA1r9dqHulYnP84K7TOu MrQ9/UXyuy9wYZ8kMp1IYs5uHG+hG0iZ4Bt13/R/YYLfm6t87wch4JWQW2j//jqy tGWmCK8p5sLVijyHmk9VPztTKu/xg7UFSedYlIUd89GtxUM3j9vLHnbjA5f65L8H GLy2blvxLrjQaGKU8Z78+enjGgxbWIfqavRyTEpWApc70rPPmEW/NbaYCJWxc1H+ rU86z2W4iMJ+we2Bcy7E2Xt5yUJYjs+NiOMUV8YoHStUBuQhFiE= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:50 2024 by rpki-client on console-ams.rpki-client.org