$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/A34kxEf1tvNHmF4JRCcLpRx-JMw.roa File: A34kxEf1tvNHmF4JRCcLpRx-JMw.roa (raw, json) Hash identifier: Fuge/9WrCo6OKFqPtCwTipWre1xzgiv5v9dTfEfgk2w= Subject key identifier: 03:7E:24:C4:47:F5:B6:F3:47:98:5E:09:44:27:0B:A5:1C:7E:24:CC Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 286D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/A34kxEf1tvNHmF4JRCcLpRx-JMw.roa Signing time: Fri 01 Sep 2023 10:05:19 +0000 ROA not before: Fri 01 Sep 2023 10:05:19 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 123.193.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10349 (0x286d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:19 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=037E24C447F5B6F347985E0944270BA51C7E24CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:23:59:92:2d:d4:78:03:f7:0d:66:87:a6:9a: d0:37:27:d1:c4:87:66:d0:4b:45:5f:c7:98:52:38: 39:b8:bc:0f:b5:96:66:66:43:2b:49:ac:7a:2f:e6: ea:0d:b4:ad:0b:79:26:e6:1e:e1:6c:01:fb:c7:aa: 4a:b9:0a:57:04:6c:b2:ec:88:2b:0a:8e:6e:f3:9e: cd:1d:f7:1a:5d:64:a7:d9:38:53:94:c0:1e:90:b1: 3c:c1:0c:7a:00:ac:24:a4:0d:3e:38:3f:9b:b3:d2: 2d:53:9c:5b:00:a0:04:26:40:e5:d1:ee:0a:e3:63: 1b:12:f6:6a:5f:5e:2b:a3:45:52:68:35:44:15:74: 61:75:1a:7d:2b:5e:77:03:f4:55:48:1d:71:7e:59: 63:a1:52:e6:45:96:87:b1:ed:be:c0:11:7e:76:88: fa:85:28:4a:91:94:2f:c6:fc:88:40:24:19:7d:61: 29:5c:0d:cf:95:fa:6d:45:73:2d:6d:21:88:50:1f: 68:60:ba:0c:07:ee:22:1d:af:17:63:78:e4:dc:78: 0b:84:b7:5e:bf:b3:93:17:73:ba:8c:34:7e:26:b9: 8c:56:d8:0f:47:05:a2:36:ff:4e:41:1f:21:e5:44: ae:f6:4e:de:a1:ab:5b:69:3a:c5:81:3d:4c:fb:0d: 5f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:7E:24:C4:47:F5:B6:F3:47:98:5E:09:44:27:0B:A5:1C:7E:24:CC X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/A34kxEf1tvNHmF4JRCcLpRx-JMw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.64.0/19 Signature Algorithm: sha256WithRSAEncryption 3c:61:af:33:cc:98:da:b5:94:11:c8:0f:3a:f5:6a:b4:c5:db: 0d:82:b8:4b:74:dc:6f:54:b0:96:78:58:9b:cb:73:ce:0c:9d: fb:06:de:2c:46:8d:fd:68:35:f0:d4:18:17:72:79:fa:51:bc: 63:1b:2b:23:ff:8b:5a:aa:4f:16:92:47:56:2b:4c:53:03:1f: 5f:f7:1f:d5:dd:49:af:fb:73:c2:56:6d:b4:d0:9b:3d:a9:ed: 8a:61:57:4c:19:f6:e0:9c:7f:5e:1a:5d:86:d7:ba:ef:b6:8b: 42:cb:d6:40:63:1d:07:1f:ff:a1:85:3a:7a:39:f1:ba:59:23: b4:71:f7:81:05:a7:26:82:97:56:4b:3d:22:6a:eb:1e:b4:23: ac:95:70:c3:d1:e9:1e:44:b3:ce:6b:3a:88:6b:d1:52:9b:00: 35:02:47:03:8c:37:38:7c:36:7e:8c:a8:e2:f8:6c:9d:bb:49: 1e:5d:f2:40:8b:9b:a9:c0:e7:e2:fd:ad:22:e9:99:97:00:6a: 1a:a7:38:d5:df:68:83:bb:80:28:b3:30:ef:e7:59:7a:91:df: b6:50:fc:8f:b2:d1:de:2e:ed:e3:a3:7a:fd:6b:e2:e9:a1:e7: 91:60:99:7b:16:22:09:0e:58:95:34:ac:98:3f:f6:62:a7:f9: 94:26:fa:97 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKG0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAzN0UyNEM0NDdGNUI2 RjM0Nzk4NUUwOTQ0MjcwQkE1MUM3RTI0Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAI1mSLdR4A/cNZoemmtA3J9HEh2bQS0Vfx5hSODm4vA+1lmZm QytJrHov5uoNtK0LeSbmHuFsAfvHqkq5ClcEbLLsiCsKjm7zns0d9xpdZKfZOFOU wB6QsTzBDHoArCSkDT44P5uz0i1TnFsAoAQmQOXR7grjYxsS9mpfXiujRVJoNUQV dGF1Gn0rXncD9FVIHXF+WWOhUuZFloex7b7AEX52iPqFKEqRlC/G/IhAJBl9YSlc Dc+V+m1Fcy1tIYhQH2hgugwH7iIdrxdjeOTceAuEt16/s5MXc7qMNH4muYxW2A9H BaI2/05BHyHlRK72Tt6hq1tpOsWBPUz7DV9HAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUA34kxEf1tvNHmF4JRCcLpRx+JMwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0EzNGt4RWYxdHZOSG1GNEpS Q2NMcFJ4LUpNdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV7 wUAwDQYJKoZIhvcNAQELBQADggEBADxhrzPMmNq1lBHIDzr1arTF2w2CuEt03G9U sJZ4WJvLc84MnfsG3ixGjf1oNfDUGBdyefpRvGMbKyP/i1qqTxaSR1YrTFMDH1/3 H9XdSa/7c8JWbbTQmz2p7YphV0wZ9uCcf14aXYbXuu+2i0LL1kBjHQcf/6GFOno5 8bpZI7Rx94EFpyaCl1ZLPSJq6x60I6yVcMPR6R5Es85rOohr0VKbADUCRwOMNzh8 Nn6MqOL4bJ27SR5d8kCLm6nA5+L9rSLpmZcAahqnONXfaIO7gCizMO/nWXqR37ZQ /I+y0d4u7eOjev1r4umh55FgmXsWIgkOWJU0rJg/9mKn+ZQm+pc= -----END CERTIFICATE-----Generated at Mon Jun 3 10:15:29 2024 by rpki-client on console-fra.rpki-client.org