$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7yOYebliK4qh4TUeYEQDe70Z56A.roa File: 7yOYebliK4qh4TUeYEQDe70Z56A.roa (raw, json) Hash identifier: vmMWLIBLX1VgdBZa9Mkt4nEOmDm/mN/G8+OCnb3Gx/4= Subject key identifier: EF:23:98:79:B9:62:2B:8A:A1:E1:35:1E:60:44:03:7B:BD:19:E7:A0 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2FBA Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7yOYebliK4qh4TUeYEQDe70Z56A.roa Signing time: Mon 26 Aug 2024 05:28:48 +0000 ROA not before: Mon 26 Aug 2024 05:28:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.232.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12218 (0x2fba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:28:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EF239879B9622B8AA1E1351E6044037BBD19E7A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d0:4c:eb:27:ef:81:f2:59:c0:e3:91:31:48: 28:f1:41:14:7a:73:95:4b:cd:97:a9:c4:c5:1e:19: c2:6e:f5:33:7d:c3:13:9a:db:6c:d2:2c:ec:f2:4c: f3:3d:75:30:7f:36:fc:46:7a:bd:c7:31:aa:9f:01: e5:20:5c:d0:36:8f:46:81:4d:c8:8f:71:e0:06:6c: 71:12:99:8b:5a:98:9f:1d:ea:e8:3c:6a:97:76:c5: 73:9b:fb:fe:f5:41:49:0f:f2:31:15:a3:b5:af:40: a7:4d:25:cc:5a:6b:2b:20:bd:d6:9c:07:c8:42:5d: 41:62:89:e1:f0:34:e3:4c:23:75:de:76:b8:31:07: 5e:e9:a1:59:9a:e7:f0:e4:7d:53:16:bd:80:6c:e7: aa:fe:53:a6:9e:74:35:d2:00:05:21:49:41:33:7f: f9:98:4b:e7:c6:bc:3d:cc:12:66:bd:20:0a:2e:0e: 33:d7:b2:f3:33:c1:ce:c8:8e:6c:35:15:02:91:35: 46:35:c6:d3:1c:9b:53:05:de:dc:8d:04:ef:c7:7b: f3:17:a6:30:45:22:79:ab:43:0e:09:9e:81:7e:b7: 04:51:79:84:38:f7:a8:92:68:5f:76:22:59:4e:17: 8d:68:33:52:24:9e:c4:b8:0b:48:d1:35:fb:cd:1d: a3:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:23:98:79:B9:62:2B:8A:A1:E1:35:1E:60:44:03:7B:BD:19:E7:A0 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/7yOYebliK4qh4TUeYEQDe70Z56A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.28.0/22 Signature Algorithm: sha256WithRSAEncryption a7:8f:3b:2a:3d:34:aa:87:97:a1:df:04:8e:49:35:91:ab:d5: 1b:c1:9c:ca:44:f4:20:51:d5:b0:d8:31:69:39:76:77:10:ab: 18:99:88:63:dc:6e:84:93:68:5d:1e:fb:ad:d6:33:98:af:b6: 71:b1:e5:ed:6b:40:f5:20:ed:ab:3c:7f:47:e0:66:55:21:e5: ef:e2:6e:75:4c:cb:68:58:ee:a3:a6:3f:c4:fd:eb:dc:b4:67: c6:fe:44:32:44:be:e4:87:9b:19:3c:72:99:06:a4:15:42:9a: b0:d2:7e:49:a6:c4:df:cf:ae:78:b0:85:7d:cd:ed:ae:a5:88: df:2f:4a:cb:9e:ef:4e:a1:1a:fc:55:77:c8:4b:b4:ab:70:9b: ab:9e:a6:e6:89:eb:23:ba:52:2f:bd:00:10:bc:4f:7e:10:03: 7b:ed:05:3a:0b:05:f1:e2:29:ff:4a:b5:24:f0:ac:1c:d2:12: 08:06:44:13:fe:7d:73:4e:e4:55:84:0c:11:f4:d3:85:ea:cc: ec:6e:3a:cd:b0:7a:b0:fb:9d:4a:de:71:40:e0:c2:41:3b:bf: e7:95:40:fe:0e:54:14:f1:96:31:6d:30:28:f4:cc:6e:f2:8d: 4f:23:16:de:fb:c7:06:3a:ed:02:ac:43:94:c5:87:5a:23:ae: 02:66:a7:83 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICL7owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI4NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVGMjM5ODc5Qjk2MjJC OEFBMUUxMzUxRTYwNDQwMzdCQkQxOUU3QTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDP0EzrJ++B8lnA45ExSCjxQRR6c5VLzZepxMUeGcJu9TN9wxOa 22zSLOzyTPM9dTB/NvxGer3HMaqfAeUgXNA2j0aBTciPceAGbHESmYtamJ8d6ug8 apd2xXOb+/71QUkP8jEVo7WvQKdNJcxaaysgvdacB8hCXUFiieHwNONMI3Xedrgx B17poVma5/DkfVMWvYBs56r+U6aedDXSAAUhSUEzf/mYS+fGvD3MEma9IAouDjPX svMzwc7Ijmw1FQKRNUY1xtMcm1MF3tyNBO/He/MXpjBFInmrQw4JnoF+twRReYQ4 96iSaF92IllOF41oM1IknsS4C0jRNfvNHaNjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU7yOYebliK4qh4TUeYEQDe70Z56AwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzd5T1llYmxpSzRxaDRUVWVZ RVFEZTcwWjU2QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6BwwDQYJKoZIhvcNAQELBQADggEBAKePOyo9NKqHl6HfBI5JNZGr1RvBnMpE9CBR 1bDYMWk5dncQqxiZiGPcboSTaF0e+63WM5ivtnGx5e1rQPUg7as8f0fgZlUh5e/i bnVMy2hY7qOmP8T969y0Z8b+RDJEvuSHmxk8cpkGpBVCmrDSfkmmxN/PrniwhX3N 7a6liN8vSsue706hGvxVd8hLtKtwm6uepuaJ6yO6Ui+9ABC8T34QA3vtBToLBfHi Kf9KtSTwrBzSEggGRBP+fXNO5FWEDBH004XqzOxuOs2werD7nUrecUDgwkE7v+eV QP4OVBTxljFtMCj0zG7yjU8jFt77xwY67QKsQ5TFh1ojrgJmp4M= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:36 2024 by rpki-client on console-ams.rpki-client.org