$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/A3fvSm9PsHDflC2pRMau7vREPyg.roa File: A3fvSm9PsHDflC2pRMau7vREPyg.roa (raw, json) Hash identifier: ovl9zVWZayCV402vTmUzeizh3WP+1ogNKE8Ovo3XG5Q= Subject key identifier: 03:77:EF:4A:6F:4F:B0:70:DF:94:2D:A9:44:C6:AE:EE:F4:44:3F:28 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3221 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/A3fvSm9PsHDflC2pRMau7vREPyg.roa Signing time: Mon 26 Aug 2024 05:31:18 +0000 ROA not before: Mon 26 Aug 2024 05:31:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12833 (0x3221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0377EF4A6F4FB070DF942DA944C6AEEEF4443F28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:69:b9:fd:86:78:04:b6:48:cd:34:fe:af:9b: 91:3e:77:b4:76:ba:a0:46:54:ff:a8:d7:4d:af:61: e5:20:81:f3:de:0d:1f:44:7d:61:f1:24:07:d6:b5: a2:49:cd:9d:a6:f5:91:2a:4b:b0:cd:b1:ef:0c:ff: c5:fa:16:aa:94:ea:d8:4e:29:d6:01:67:59:4a:e8: 41:df:7f:92:20:f2:f5:fa:e1:f2:cc:f4:b2:32:48: b9:0e:4b:1f:b7:f7:bc:d7:db:30:c9:f1:66:5c:1c: 53:a1:32:87:7c:8c:7b:61:9a:fa:0a:4f:96:2a:78: b9:83:06:99:bd:89:aa:5d:e6:6b:00:66:43:df:0e: bf:f1:8c:26:82:c8:5b:c2:eb:3e:6e:13:75:18:e4: bd:de:e7:84:ed:30:ab:ca:3e:a2:91:e8:6b:20:3c: 2e:a5:eb:0b:3b:01:9d:b6:ac:52:17:59:1e:8f:02: 6a:bc:43:69:6e:53:6a:ae:75:57:27:a5:71:32:de: 5e:1e:1f:6d:d8:15:2d:43:fe:ff:df:01:94:1e:f0: fc:09:f2:6b:32:1d:f1:50:cb:a1:fe:f5:35:84:24: ba:2e:2d:dd:89:2f:f5:cf:52:79:07:51:e3:f6:66: cf:e9:d7:26:67:73:ed:6e:bf:11:11:c6:17:1f:09: 4f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:77:EF:4A:6F:4F:B0:70:DF:94:2D:A9:44:C6:AE:EE:F4:44:3F:28 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/A3fvSm9PsHDflC2pRMau7vREPyg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.236.0/24 Signature Algorithm: sha256WithRSAEncryption a8:98:20:1a:45:c2:ee:57:e7:4a:53:d7:f5:98:39:a3:3c:1b: 0d:4e:f5:a7:7c:0d:56:15:ce:e1:70:d9:8b:c3:5d:74:8c:02: 20:4a:e4:8f:88:33:79:19:32:1f:75:7d:24:6a:d0:fb:36:74: 62:3f:3f:9f:ee:ce:3e:60:cb:14:af:7d:21:e3:3b:b0:86:d4: 2e:e6:c3:af:97:3a:1a:31:22:38:6d:f6:30:f1:1b:97:56:b7: 41:f7:77:00:a3:a9:88:8c:7d:73:4f:25:d0:52:71:f4:e7:d7: d0:b7:a0:0e:69:68:69:40:17:da:cf:23:b1:61:ff:74:f7:d3: b9:98:67:f9:4f:88:62:54:02:d7:04:44:68:a9:ff:9a:f7:cf: 5b:91:04:81:b4:6c:9e:fb:ad:c1:d5:61:91:6c:d3:59:d3:61: ec:50:fa:77:d6:98:11:51:e9:43:8b:ff:77:fa:54:0e:3c:08: 53:a9:e9:8e:90:fa:83:26:83:2e:42:1c:23:41:8a:61:06:91: 75:88:25:9e:5a:fe:b2:5f:1a:ae:77:da:db:3a:b3:83:ba:14: 79:68:9b:85:bd:b7:2c:bf:48:db:cd:7c:db:29:10:d7:2d:f9: 58:96:b2:0e:61:01:9f:13:5e:e8:4a:b3:9f:74:60:e6:81:ec: cb:0a:33:46 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMiEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAzNzdFRjRBNkY0RkIw NzBERjk0MkRBOTQ0QzZBRUVFRjQ0NDNGMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyabn9hngEtkjNNP6vm5E+d7R2uqBGVP+o102vYeUggfPeDR9E fWHxJAfWtaJJzZ2m9ZEqS7DNse8M/8X6FqqU6thOKdYBZ1lK6EHff5Ig8vX64fLM 9LIySLkOSx+397zX2zDJ8WZcHFOhMod8jHthmvoKT5YqeLmDBpm9iapd5msAZkPf Dr/xjCaCyFvC6z5uE3UY5L3e54TtMKvKPqKR6GsgPC6l6ws7AZ22rFIXWR6PAmq8 Q2luU2qudVcnpXEy3l4eH23YFS1D/v/fAZQe8PwJ8msyHfFQy6H+9TWEJLouLd2J L/XPUnkHUeP2Zs/p1yZnc+1uvxERxhcfCU+RAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUA3fvSm9PsHDflC2pRMau7vREPygwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0EzZnZTbTlQc0hEZmxDMnBS TWF1N3ZSRVB5Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AewwDQYJKoZIhvcNAQELBQADggEBAKiYIBpFwu5X50pT1/WYOaM8Gw1O9ad8DVYV zuFw2YvDXXSMAiBK5I+IM3kZMh91fSRq0Ps2dGI/P5/uzj5gyxSvfSHjO7CG1C7m w6+XOhoxIjht9jDxG5dWt0H3dwCjqYiMfXNPJdBScfTn19C3oA5paGlAF9rPI7Fh /3T307mYZ/lPiGJUAtcERGip/5r3z1uRBIG0bJ77rcHVYZFs01nTYexQ+nfWmBFR 6UOL/3f6VA48CFOp6Y6Q+oMmgy5CHCNBimEGkXWIJZ5a/rJfGq532ts6s4O6FHlo m4W9tyy/SNvNfNspENct+ViWsg5hAZ8TXuhKs590YOaB7MsKM0Y= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:46 2024 by rpki-client on console-fra.rpki-client.org