$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7kTY-o2XrrsJaJNf-YEuDS5iQiY.roa File: 7kTY-o2XrrsJaJNf-YEuDS5iQiY.roa (raw, json) Hash identifier: ZymmN7FoO3ppjFn0wawNNOeWrF88kzgrwUybKwU5vD0= Subject key identifier: EE:44:D8:FA:8D:97:AE:BB:09:68:93:5F:F9:81:2E:0D:2E:62:42:26 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3116 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7kTY-o2XrrsJaJNf-YEuDS5iQiY.roa Signing time: Mon 26 Aug 2024 05:30:06 +0000 ROA not before: Mon 26 Aug 2024 05:30:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12566 (0x3116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:06 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EE44D8FA8D97AEBB0968935FF9812E0D2E624226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7a:30:bd:d5:8c:a8:3c:ec:34:e6:4d:35:f1: 67:20:f6:00:65:6c:35:20:3f:df:09:4a:d1:5b:3b: 22:7b:4c:0f:e5:18:9f:75:c9:a3:7c:f2:f6:6f:67: 20:c7:80:87:93:ae:96:c5:48:b1:a8:15:7a:ae:b1: 98:ed:96:b3:b6:7a:6a:1e:1a:0d:1f:c0:a1:f9:00: 65:bb:6d:29:d4:4f:ab:58:45:af:92:e0:04:5a:c2: 63:02:16:2e:55:be:23:33:a0:e7:89:99:2f:d4:e4: 07:a5:99:49:54:04:7f:91:e3:d9:76:b2:d9:0f:8b: da:66:a3:09:14:94:b0:e9:2d:12:43:02:70:5d:3b: 08:b3:5c:11:bf:29:3c:5a:cc:21:4e:02:43:ec:1d: 0e:a5:41:ae:02:e5:a9:3e:32:39:64:8f:f5:07:0c: ff:37:55:dd:4e:0e:b6:e4:d4:30:17:fd:f0:00:64: 1f:a2:a2:16:68:2e:d9:1c:e2:96:b7:0f:f2:e5:d3: 7f:fe:bd:30:f2:4e:f9:67:3f:ef:53:57:a0:be:bd: 01:4b:e5:1c:2e:4b:37:1e:05:45:26:10:65:1b:0a: 1e:e5:ac:24:04:3a:9e:99:eb:77:6e:29:78:ac:43: 01:6a:95:d6:47:c5:d5:a1:e0:45:e3:ac:b6:1c:b5: 64:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:44:D8:FA:8D:97:AE:BB:09:68:93:5F:F9:81:2E:0D:2E:62:42:26 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7kTY-o2XrrsJaJNf-YEuDS5iQiY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.8.0/22 Signature Algorithm: sha256WithRSAEncryption a4:44:cb:4d:d8:12:8c:18:c5:3e:f0:54:78:81:fc:b2:69:c7: 0a:2b:91:5b:b8:2a:ad:ff:5e:98:af:75:56:3b:44:b6:53:bc: 3a:ec:5d:a1:d6:59:90:63:52:fd:db:b3:e1:69:aa:02:51:fc: 30:cd:ca:e3:2b:b4:ab:6e:0b:56:fa:a4:92:21:d5:89:7a:61: a3:32:df:6a:79:e9:3a:a4:8a:10:24:7f:30:2d:db:95:12:8b: dc:bb:2d:78:a9:ba:a1:54:ba:5b:ee:1a:a4:da:54:50:f5:44: fd:bf:4c:3c:c5:89:79:47:75:11:ba:ba:1a:6e:9e:7d:15:be: 2d:72:17:78:70:cb:42:69:d8:92:d3:de:cf:ca:3b:34:c7:cf: f9:f2:d0:c9:ee:d6:c4:1a:8d:9f:ea:ad:55:44:bb:bc:f5:88: 43:e9:fa:b8:6f:b3:08:a2:9e:36:e9:36:74:76:57:67:3c:9c: 8f:ca:08:7b:b3:16:18:ac:99:a0:84:58:ec:e5:f3:67:cd:8b: 49:7a:98:43:7a:32:c2:37:84:fe:96:9c:d4:60:ce:45:a6:6f: 88:4e:07:e7:a5:ef:87:36:0e:8f:86:62:d5:bc:c3:d7:23:a5: a3:4f:9d:25:b8:a1:6f:c4:ff:40:0f:db:f3:07:4f:23:d5:7a: ae:a4:84:ed -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMRYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVFNDREOEZBOEQ5N0FF QkIwOTY4OTM1RkY5ODEyRTBEMkU2MjQyMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEejC91YyoPOw05k018Wcg9gBlbDUgP98JStFbOyJ7TA/lGJ91 yaN88vZvZyDHgIeTrpbFSLGoFXqusZjtlrO2emoeGg0fwKH5AGW7bSnUT6tYRa+S 4ARawmMCFi5VviMzoOeJmS/U5AelmUlUBH+R49l2stkPi9pmowkUlLDpLRJDAnBd OwizXBG/KTxazCFOAkPsHQ6lQa4C5ak+Mjlkj/UHDP83Vd1ODrbk1DAX/fAAZB+i ohZoLtkc4pa3D/Ll03/+vTDyTvlnP+9TV6C+vQFL5RwuSzceBUUmEGUbCh7lrCQE Op6Z63duKXisQwFqldZHxdWh4EXjrLYctWQxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU7kTY+o2XrrsJaJNf+YEuDS5iQiYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzdrVFktbzJYcnJzSmFKTmYt WUV1RFM1aVFpWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wwgwDQYJKoZIhvcNAQELBQADggEBAKREy03YEowYxT7wVHiB/LJpxworkVu4Kq3/ XpivdVY7RLZTvDrsXaHWWZBjUv3bs+FpqgJR/DDNyuMrtKtuC1b6pJIh1Yl6YaMy 32p56TqkihAkfzAt25USi9y7LXipuqFUulvuGqTaVFD1RP2/TDzFiXlHdRG6uhpu nn0Vvi1yF3hwy0Jp2JLT3s/KOzTHz/ny0Mnu1sQajZ/qrVVEu7z1iEPp+rhvswii njbpNnR2V2c8nI/KCHuzFhismaCEWOzl82fNi0l6mEN6MsI3hP6WnNRgzkWmb4hO B+el74c2Do+GYtW8w9cjpaNPnSW4oW/E/0AP2/MHTyPVeq6khO0= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:55 2024 by rpki-client on console-fra.rpki-client.org