$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8FD8E_CmcZ-D_adTto68zpRa-OI.roa File: 8FD8E_CmcZ-D_adTto68zpRa-OI.roa (raw, json) Hash identifier: yvYkZ4jLwmMeAeFKxPnsEqKmU4X7CF9vHMsqHE6M/FU= Subject key identifier: F0:50:FC:13:F0:A6:71:9F:83:FD:A7:53:B6:8E:BC:CE:94:5A:F8:E2 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32A3 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8FD8E_CmcZ-D_adTto68zpRa-OI.roa Signing time: Mon 26 Aug 2024 05:31:51 +0000 ROA not before: Mon 26 Aug 2024 05:31:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12963 (0x32a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:51 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F050FC13F0A6719F83FDA753B68EBCCE945AF8E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d7:0e:b2:90:3c:11:e8:de:57:14:3b:7f:fa: 97:7f:4a:01:23:97:d4:17:83:de:0d:a7:14:13:1b: 63:9d:66:43:59:7c:9b:d1:55:79:10:48:11:bd:0e: 16:a0:ef:84:e0:a8:fe:ba:d9:27:56:a2:60:c2:76: cb:1e:37:5a:d9:b1:53:c3:96:c9:ef:ff:9c:43:6c: 65:75:72:b6:e7:2f:cb:66:17:aa:d9:14:eb:25:e6: ea:ec:09:b9:8f:4d:b3:4c:fc:d7:fe:2a:27:9a:a5: d8:aa:d9:7e:2b:d6:0a:52:62:3f:50:d7:ad:f5:86: cd:c2:b2:08:fb:e1:27:0b:92:9e:ea:6e:56:92:f6: dc:ee:1f:95:10:e6:51:e2:2a:61:db:eb:ce:84:43: 8d:67:13:b3:f7:28:5a:d3:4a:76:d1:54:d3:ea:06: d9:46:8e:a8:1d:bb:f7:a8:41:e3:d8:ad:bf:78:b7: de:4a:5c:bc:70:33:20:bd:15:50:2e:0a:9c:1e:db: 82:42:6d:67:0f:30:9f:52:53:e3:98:86:cb:d5:c8: 5e:04:ab:b9:20:68:fe:d5:23:36:84:22:8b:6e:ec: be:4a:9b:36:16:3f:e2:22:bd:30:28:a0:4c:bc:1f: 9b:7b:5a:f0:b6:ae:72:5d:9c:ad:bd:d3:2b:7d:63: cb:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:50:FC:13:F0:A6:71:9F:83:FD:A7:53:B6:8E:BC:CE:94:5A:F8:E2 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/8FD8E_CmcZ-D_adTto68zpRa-OI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.152.0/22 Signature Algorithm: sha256WithRSAEncryption b9:05:37:ee:62:01:fe:8f:90:90:75:e4:19:5f:8e:a3:c3:1a: b8:73:9d:e8:5c:3e:41:7c:cf:2f:8b:5a:cb:1d:d7:10:9f:d7: d9:40:90:b5:bd:e3:a3:34:a9:4e:43:76:2f:6d:9c:ba:b5:8d: 70:db:96:3c:27:82:c4:7f:6d:b1:a7:bb:88:32:aa:36:28:ef: 2c:b3:d2:ca:82:74:1d:50:37:41:4d:88:13:21:3f:f8:f6:0b: ba:92:be:64:b6:62:7b:23:93:8a:45:33:fa:33:2e:5c:e0:4d: ad:b8:36:6f:5a:40:bb:39:9d:8f:e5:72:61:c5:b5:15:78:60: ed:91:fa:40:05:b6:3c:75:31:82:fd:a0:ed:1f:89:bb:07:7d: 6b:8c:5a:99:4d:db:1a:e9:77:9d:9f:25:25:90:ac:7a:8a:8f: aa:f5:d4:5d:f9:18:3e:16:fb:ed:0b:b7:14:16:64:94:b6:f4: 9c:9b:81:68:8f:5e:c6:1f:c3:ca:1c:cc:c1:72:10:aa:ff:8d: 64:9a:d1:55:81:7e:24:fd:63:c5:e6:eb:f9:88:58:5d:26:d8: 5f:fd:dd:47:29:12:47:7b:b4:86:e4:22:de:b4:03:39:33:c1: 78:e1:48:dc:79:78:f2:e3:3b:11:c6:ce:08:ae:15:93:9b:e5: 57:29:29:07 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMqMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYwNTBGQzEzRjBBNjcx OUY4M0ZEQTc1M0I2OEVCQ0NFOTQ1QUY4RTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCi1w6ykDwR6N5XFDt/+pd/SgEjl9QXg94NpxQTG2OdZkNZfJvR VXkQSBG9Dhag74TgqP662SdWomDCdsseN1rZsVPDlsnv/5xDbGV1crbnL8tmF6rZ FOsl5ursCbmPTbNM/Nf+Kieapdiq2X4r1gpSYj9Q1631hs3Csgj74ScLkp7qblaS 9tzuH5UQ5lHiKmHb686EQ41nE7P3KFrTSnbRVNPqBtlGjqgdu/eoQePYrb94t95K XLxwMyC9FVAuCpwe24JCbWcPMJ9SU+OYhsvVyF4Eq7kgaP7VIzaEIotu7L5KmzYW P+IivTAooEy8H5t7WvC2rnJdnK290yt9Y8sPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU8FD8E/CmcZ+D/adTto68zpRa+OIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPLzhGRDhFX0NtY1otRF9hZFR0 bzY4enBSYS1PSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wpgwDQYJKoZIhvcNAQELBQADggEBALkFN+5iAf6PkJB15BlfjqPDGrhznehcPkF8 zy+LWssd1xCf19lAkLW946M0qU5Ddi9tnLq1jXDbljwngsR/bbGnu4gyqjYo7yyz 0sqCdB1QN0FNiBMhP/j2C7qSvmS2Ynsjk4pFM/ozLlzgTa24Nm9aQLs5nY/lcmHF tRV4YO2R+kAFtjx1MYL9oO0fibsHfWuMWplN2xrpd52fJSWQrHqKj6r11F35GD4W ++0LtxQWZJS29JybgWiPXsYfw8oczMFyEKr/jWSa0VWBfiT9Y8Xm6/mIWF0m2F/9 3UcpEkd7tIbkIt60AzkzwXjhSNx5ePLjOxHGzgiuFZOb5VcpKQc= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:51 2024 by rpki-client on console-ams.rpki-client.org