$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7-0MAgnSLPLCXaq1wLOqlSNuvsg.roa File: 7-0MAgnSLPLCXaq1wLOqlSNuvsg.roa (raw, json) Hash identifier: zNWSIssdoVTzVwpyY9m+J5BiTSIUVa8soXSCzsqMGnE= Subject key identifier: EF:ED:0C:02:09:D2:2C:F2:C2:5D:AA:B5:C0:B3:AA:95:23:6E:BE:C8 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2FAC Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7-0MAgnSLPLCXaq1wLOqlSNuvsg.roa Signing time: Mon 26 Aug 2024 05:28:44 +0000 ROA not before: Mon 26 Aug 2024 05:28:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12204 (0x2fac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:28:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EFED0C0209D22CF2C25DAAB5C0B3AA95236EBEC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:5b:49:c0:bd:0e:cb:44:f7:4a:bc:ba:c7:7c: a9:9b:d7:83:f9:25:f3:31:54:6f:61:77:96:f4:c5: 05:5e:13:00:17:cf:c7:2e:92:69:df:0c:94:43:5f: 7e:af:38:d0:9c:1d:62:b2:b1:6c:60:bc:69:35:26: 75:5f:ec:e1:69:ea:f2:36:80:6f:f1:30:30:36:e7: 18:90:8f:4d:a6:23:c1:e5:ed:45:13:b5:88:79:04: 21:42:8a:16:a5:53:7b:3a:c8:03:5b:05:c5:b7:17: a6:20:9b:b7:af:8d:81:81:47:06:d0:56:78:a3:1d: 6b:fb:dd:2b:ad:d5:27:14:86:ed:ce:b0:aa:e3:5a: bd:9f:0a:e2:5c:a0:d6:41:7c:4e:f2:6e:5f:fa:f4: 30:22:77:00:5b:44:d9:33:42:db:40:bf:8c:f4:bf: 2f:0f:ed:9d:ca:c2:d5:da:b6:17:da:34:1b:89:0e: 27:ea:de:6d:e0:25:b7:48:2f:f8:8d:9b:87:45:71: 1f:d7:13:f0:e0:59:61:7d:8a:a5:6f:91:60:8e:db: 0c:31:47:b1:0f:2a:5c:20:3b:05:9a:c2:5d:01:34: c9:93:6c:af:0c:d0:89:5a:f2:26:6b:e1:b5:97:30: bc:21:e3:66:a7:3c:58:96:cf:04:32:63:3e:ee:14: fa:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:ED:0C:02:09:D2:2C:F2:C2:5D:AA:B5:C0:B3:AA:95:23:6E:BE:C8 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7-0MAgnSLPLCXaq1wLOqlSNuvsg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.40.0/21 Signature Algorithm: sha256WithRSAEncryption 7c:6c:b4:e6:00:fd:e7:cb:20:dd:f5:0f:96:a9:bb:d4:2b:27: e8:4d:89:65:a8:21:d4:c5:aa:13:bb:f6:32:07:65:66:0e:14: 96:54:94:0e:1e:45:f9:9a:f0:46:36:63:a6:19:09:5d:21:a8: c1:ab:ba:66:4b:98:af:1d:43:ac:10:e5:fb:ec:f9:de:a0:5b: ea:77:3e:7a:92:b6:d9:21:a2:5b:15:8d:b6:10:a5:bd:10:ee: 92:5e:29:e8:d2:86:68:bb:dd:96:56:7d:92:96:8c:27:3f:ba: 3c:9e:c3:48:ff:9b:6b:0a:10:4c:c3:f8:fb:28:a3:20:4d:ba: f7:c7:62:25:78:b2:18:1a:f1:9f:df:50:e3:16:65:84:cc:8b: 6a:bf:41:eb:6e:c8:a7:fc:bd:3a:0e:2c:85:1d:73:b5:2c:f6: 84:f1:f7:76:8a:39:31:12:38:16:ce:73:30:ae:96:84:b7:47: 3b:8b:a0:d9:ae:a3:fd:9e:0a:97:5f:99:fa:9e:15:a9:6e:8c: 74:86:8a:14:95:77:c9:2e:ff:86:9f:5d:82:f2:78:41:5f:f8: c3:9f:d9:96:41:fc:01:a7:18:20:4d:aa:91:30:33:5c:23:7a: fd:8c:d5:23:bd:87:86:29:ae:c5:3f:c5:ad:5f:ae:4e:3d:d2: 39:53:ae:63 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICL6wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI4NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVGRUQwQzAyMDlEMjJD RjJDMjVEQUFCNUMwQjNBQTk1MjM2RUJFQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDvW0nAvQ7LRPdKvLrHfKmb14P5JfMxVG9hd5b0xQVeEwAXz8cu kmnfDJRDX36vONCcHWKysWxgvGk1JnVf7OFp6vI2gG/xMDA25xiQj02mI8Hl7UUT tYh5BCFCihalU3s6yANbBcW3F6Ygm7evjYGBRwbQVnijHWv73Sut1ScUhu3OsKrj Wr2fCuJcoNZBfE7ybl/69DAidwBbRNkzQttAv4z0vy8P7Z3KwtXathfaNBuJDifq 3m3gJbdIL/iNm4dFcR/XE/DgWWF9iqVvkWCO2wwxR7EPKlwgOwWawl0BNMmTbK8M 0Ila8iZr4bWXMLwh42anPFiWzwQyYz7uFPqZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU7+0MAgnSLPLCXaq1wLOqlSNuvsgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzctME1BZ25TTFBMQ1hhcTF3 TE9xbFNOdXZzZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wSgwDQYJKoZIhvcNAQELBQADggEBAHxstOYA/efLIN31D5apu9QrJ+hNiWWoIdTF qhO79jIHZWYOFJZUlA4eRfma8EY2Y6YZCV0hqMGrumZLmK8dQ6wQ5fvs+d6gW+p3 PnqSttkholsVjbYQpb0Q7pJeKejShmi73ZZWfZKWjCc/ujyew0j/m2sKEEzD+Pso oyBNuvfHYiV4shga8Z/fUOMWZYTMi2q/QetuyKf8vToOLIUdc7Us9oTx93aKOTES OBbOczCuloS3RzuLoNmuo/2eCpdfmfqeFalujHSGihSVd8ku/4afXYLyeEFf+MOf 2ZZB/AGnGCBNqpEwM1wjev2M1SO9h4YprsU/xa1frk490jlTrmM= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:50 2024 by rpki-client on console-ams.rpki-client.org