$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/84dz8EjLHVS9EzGAiwj5b13QNoo.roa File: 84dz8EjLHVS9EzGAiwj5b13QNoo.roa (raw, json) Hash identifier: zvWzJdOD86QWHZt0YrDWnT/+nQUOn/k34EaJ2f0RMOY= Subject key identifier: F3:87:73:F0:48:CB:1D:54:BD:13:31:80:8B:08:F9:6F:5D:D0:36:8A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3121 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/84dz8EjLHVS9EzGAiwj5b13QNoo.roa Signing time: Mon 26 Aug 2024 05:30:08 +0000 ROA not before: Mon 26 Aug 2024 05:30:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.177.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12577 (0x3121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F38773F048CB1D54BD1331808B08F96F5DD0368A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:61:04:45:fe:cf:24:37:87:04:fa:19:1c:62: 8b:29:b6:04:d7:cd:07:e7:ca:e1:13:d1:e1:cf:01: 98:09:cb:d6:6e:bc:a8:2b:c1:b3:23:dd:58:51:9a: 19:c8:bd:96:43:d4:63:d5:86:7c:01:fb:b3:7d:f4: b7:cb:d7:48:3d:98:82:7e:37:ab:35:5e:cf:56:39: 7b:0d:ff:e5:0f:cd:e4:88:5b:4e:25:d0:f0:df:02: 12:27:3e:4c:a9:26:e5:26:2b:51:a0:58:eb:05:f1: e1:d2:b3:8f:ff:82:29:48:10:62:69:d4:5b:24:93: d4:5e:67:d7:d0:0d:13:e0:d4:7e:a5:70:09:3d:73: 2b:9d:ec:10:62:9f:5f:9d:85:2d:df:f8:75:a6:0b: 1b:7f:9c:1a:46:d7:c0:4a:27:8b:60:a6:56:d0:61: dd:74:3a:c5:5a:1d:98:13:34:1d:83:09:a1:ca:8f: 45:9e:a8:5b:a0:92:b4:de:a2:37:ff:44:af:92:28: b6:53:c3:ec:6b:2c:2b:de:f3:0d:5e:dd:33:45:68: 63:12:9e:60:cd:bd:1e:c7:07:a0:b8:93:21:55:c4: 86:e6:75:7e:1b:d7:c8:83:56:cb:05:aa:4f:6f:13: 04:c5:15:5d:7e:ac:4d:90:1b:61:af:dd:25:1c:9c: 11:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:87:73:F0:48:CB:1D:54:BD:13:31:80:8B:08:F9:6F:5D:D0:36:8A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/84dz8EjLHVS9EzGAiwj5b13QNoo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.240.0/22 Signature Algorithm: sha256WithRSAEncryption 65:55:37:a2:e2:4f:65:8d:fe:3a:54:68:38:96:f5:64:17:7c: 25:76:27:28:7f:85:68:d3:f9:80:fa:5a:18:86:72:6f:e4:ff: 1b:b5:17:ac:46:d1:e9:a7:3d:60:7d:3f:a0:ce:9a:df:2a:93: b8:ec:fc:20:ff:38:93:9c:10:b7:89:01:03:21:4e:c1:a7:e8: be:d9:5b:7d:28:6a:7c:b9:4b:00:79:f4:43:ca:1a:60:22:9d: f4:c1:40:42:a0:25:24:27:71:af:c2:3f:bf:a5:b3:bd:bd:2d: 62:30:ac:f7:b3:36:cc:1f:f3:2c:e8:99:17:63:c4:cf:4c:67: 59:f6:c5:79:7c:96:33:7f:0a:60:1d:38:f2:c7:c4:c3:e8:a1: 2d:a1:e5:a5:df:a0:5d:05:27:3e:6a:89:44:35:82:58:60:aa: a1:94:23:45:35:e3:90:37:6d:23:b9:7f:41:1d:7b:37:76:49: 20:b5:0f:26:5a:1f:3a:74:9b:2d:5b:98:43:9c:1d:ca:f8:c6: 0b:54:54:b3:af:9c:57:0d:7f:00:02:71:e7:57:be:c1:71:70: 33:85:aa:7b:a7:f3:fa:d1:9f:3c:35:38:85:bf:11:bf:9a:8c: e2:3d:75:d7:68:b0:c8:0f:70:7a:d0:32:64:46:85:18:67:f1: 6d:9f:63:0c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMSEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYzODc3M0YwNDhDQjFE NTRCRDEzMzE4MDhCMDhGOTZGNUREMDM2OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4YQRF/s8kN4cE+hkcYosptgTXzQfnyuET0eHPAZgJy9ZuvKgr wbMj3VhRmhnIvZZD1GPVhnwB+7N99LfL10g9mIJ+N6s1Xs9WOXsN/+UPzeSIW04l 0PDfAhInPkypJuUmK1GgWOsF8eHSs4//gilIEGJp1Fskk9ReZ9fQDRPg1H6lcAk9 cyud7BBin1+dhS3f+HWmCxt/nBpG18BKJ4tgplbQYd10OsVaHZgTNB2DCaHKj0We qFugkrTeojf/RK+SKLZTw+xrLCve8w1e3TNFaGMSnmDNvR7HB6C4kyFVxIbmdX4b 18iDVssFqk9vEwTFFV1+rE2QG2Gv3SUcnBEfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU84dz8EjLHVS9EzGAiwj5b13QNoowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzg0ZHo4RWpMSFZTOUV6R0Fp d2o1YjEzUU5vby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 sfAwDQYJKoZIhvcNAQELBQADggEBAGVVN6LiT2WN/jpUaDiW9WQXfCV2Jyh/hWjT +YD6WhiGcm/k/xu1F6xG0emnPWB9P6DOmt8qk7js/CD/OJOcELeJAQMhTsGn6L7Z W30oany5SwB59EPKGmAinfTBQEKgJSQnca/CP7+ls729LWIwrPezNswf8yzomRdj xM9MZ1n2xXl8ljN/CmAdOPLHxMPooS2h5aXfoF0FJz5qiUQ1glhgqqGUI0U145A3 bSO5f0Edezd2SSC1DyZaHzp0my1bmEOcHcr4xgtUVLOvnFcNfwACcedXvsFxcDOF qnun8/rRnzw1OIW/Eb+ajOI9dddosMgPcHrQMmRGhRhn8W2fYww= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:55 2024 by rpki-client on console-fra.rpki-client.org