$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7KQHwnnFeFynhF1oR7NUQIzqfZw.roa File: 7KQHwnnFeFynhF1oR7NUQIzqfZw.roa (raw, json) Hash identifier: DK+IiVAXi7sNcnyDXFn5UVslR95L3y0YB8/54eOW5Js= Subject key identifier: EC:A4:07:C2:79:C5:78:5C:A7:84:5D:68:47:B3:54:40:8C:EA:7D:9C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3256 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7KQHwnnFeFynhF1oR7NUQIzqfZw.roa Signing time: Mon 26 Aug 2024 05:31:33 +0000 ROA not before: Mon 26 Aug 2024 05:31:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.232.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12886 (0x3256) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:33 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=ECA407C279C5785CA7845D6847B354408CEA7D9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:65:55:dc:4e:3f:5e:47:c5:fc:9a:59:85:37: 25:f0:e7:86:de:dc:93:9f:7c:7d:e0:fe:c2:2b:87: d4:1d:28:75:1f:3a:17:6a:99:97:4c:00:a7:33:a3: af:53:f1:ad:5d:1a:52:09:1e:30:ba:ba:8a:17:13: 0d:d1:07:07:d7:b5:d3:f4:fe:d9:d3:cb:79:fe:21: 77:83:d8:14:5b:58:c0:98:71:05:7e:23:e8:17:c6: a9:16:8c:eb:9a:9b:67:80:48:cb:27:0b:9b:13:9e: 6f:29:2f:89:a5:13:ed:08:92:3c:8d:5a:d3:93:a7: bf:8e:28:60:21:5c:01:ad:35:72:4c:ea:64:48:6a: 1b:8a:7a:7c:fe:9d:28:f4:a8:ba:65:8c:86:97:bd: df:7e:0a:fe:b0:04:5c:8f:d1:90:35:e6:eb:0c:62: bd:a1:31:33:5a:fa:d1:c8:f3:84:69:02:cb:ef:6d: 1d:10:94:22:7a:61:1e:7d:a1:db:24:9c:4b:46:35: ab:7a:ac:0a:c5:5d:49:24:06:b7:c3:3a:2f:d6:86: 62:59:53:9b:3e:25:11:f1:8a:77:2c:2e:c7:79:b2: 2e:18:7f:19:c2:b0:40:f8:d4:c2:ce:af:b7:07:8b: b1:7e:54:3f:c9:63:3a:bc:97:ff:6f:e4:bc:03:78: 08:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:A4:07:C2:79:C5:78:5C:A7:84:5D:68:47:B3:54:40:8C:EA:7D:9C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7KQHwnnFeFynhF1oR7NUQIzqfZw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.244.0/22 Signature Algorithm: sha256WithRSAEncryption a4:53:d3:54:bd:25:57:c2:8b:1d:89:d8:42:8e:68:24:fa:6a: 80:9c:af:c8:52:18:55:00:06:ee:24:9c:f4:d5:c5:b3:65:d3: fc:d5:60:db:26:95:92:12:b1:44:50:f0:b8:d3:21:d7:e0:b1: 6f:ac:f9:e6:26:83:12:05:a5:f2:66:de:75:42:3a:f6:8f:e0: 0e:5c:18:c9:8c:1f:8e:3c:e6:2f:53:ad:7a:63:07:eb:5a:84: ae:aa:c9:fa:d9:bc:7a:c4:db:5e:68:26:e6:35:ed:19:c8:3c: 9d:eb:e8:7d:83:ab:36:56:cf:e9:fd:3f:3f:10:3f:76:f2:d7: 87:43:a1:d9:32:7b:38:65:f2:b8:d6:15:64:de:9a:c8:0e:a3: c7:f4:a6:72:7d:1c:f2:f9:7e:3f:2d:05:ea:36:35:5e:2b:c0: e4:c0:82:d8:dd:bb:9f:f5:e7:e6:1d:48:4a:49:48:fa:b5:a5: 56:7a:64:53:6a:c9:3b:a9:3e:d8:bf:3f:af:97:4c:b0:34:03: 58:4b:69:3b:8d:94:c9:37:09:ae:ef:84:6d:65:3f:2e:48:0e: 82:6e:10:04:70:68:21:a7:80:87:2a:56:d8:21:e2:7a:6b:61: 51:e3:52:fd:74:99:b5:d4:3f:f5:e3:ad:4d:39:6a:3c:c4:37: 11:fd:2b:7b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMlYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVDQTQwN0MyNzlDNTc4 NUNBNzg0NUQ2ODQ3QjM1NDQwOENFQTdEOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/ZVXcTj9eR8X8mlmFNyXw54be3JOffH3g/sIrh9QdKHUfOhdq mZdMAKczo69T8a1dGlIJHjC6uooXEw3RBwfXtdP0/tnTy3n+IXeD2BRbWMCYcQV+ I+gXxqkWjOuam2eASMsnC5sTnm8pL4mlE+0IkjyNWtOTp7+OKGAhXAGtNXJM6mRI ahuKenz+nSj0qLpljIaXvd9+Cv6wBFyP0ZA15usMYr2hMTNa+tHI84RpAsvvbR0Q lCJ6YR59odsknEtGNat6rArFXUkkBrfDOi/WhmJZU5s+JRHxincsLsd5si4YfxnC sED41MLOr7cHi7F+VD/JYzq8l/9v5LwDeAh/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU7KQHwnnFeFynhF1oR7NUQIzqfZwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzdLUUh3bm5GZUZ5bmhGMW9S N05VUUl6cWZady5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6PQwDQYJKoZIhvcNAQELBQADggEBAKRT01S9JVfCix2J2EKOaCT6aoCcr8hSGFUA Bu4knPTVxbNl0/zVYNsmlZISsURQ8LjTIdfgsW+s+eYmgxIFpfJm3nVCOvaP4A5c GMmMH4485i9TrXpjB+tahK6qyfrZvHrE215oJuY17RnIPJ3r6H2DqzZWz+n9Pz8Q P3by14dDodkyezhl8rjWFWTemsgOo8f0pnJ9HPL5fj8tBeo2NV4rwOTAgtjdu5/1 5+YdSEpJSPq1pVZ6ZFNqyTupPti/P6+XTLA0A1hLaTuNlMk3Ca7vhG1lPy5IDoJu EARwaCGngIcqVtgh4nprYVHjUv10mbXUP/XjrU05ajzENxH9K3s= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:50 2024 by rpki-client on console-fra.rpki-client.org