$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ALqyEQ3zqojb963glLpyhIY5mTc.roa File: ALqyEQ3zqojb963glLpyhIY5mTc.roa (raw, json) Hash identifier: VUpLDHGHvmjgYNE8So/QMKQKJ2EJuOJ9FIWetnuuVmc= Subject key identifier: 00:BA:B2:11:0D:F3:AA:88:DB:F7:AD:E0:94:BA:72:84:86:39:99:37 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32C9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ALqyEQ3zqojb963glLpyhIY5mTc.roa Signing time: Mon 26 Aug 2024 05:32:01 +0000 ROA not before: Mon 26 Aug 2024 05:32:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13001 (0x32c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:32:01 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=00BAB2110DF3AA88DBF7ADE094BA728486399937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2e:a4:08:b1:fe:fb:ec:93:ae:8f:44:cb:10: 12:30:5f:dc:07:4a:69:c4:d9:94:58:c5:38:4c:88: 47:9b:2f:3a:07:1e:ac:0f:e9:eb:6c:0c:4d:7b:47: c1:41:d9:3a:94:44:c1:ce:41:91:5f:f0:7f:79:a4: 4b:90:eb:c0:6d:de:b6:e8:ab:01:26:60:4d:09:93: ae:6d:f6:60:9d:53:29:29:f7:3e:2e:3a:5f:79:50: 4a:be:45:44:7c:2c:14:2c:86:f1:e2:15:05:d2:47: 5c:e4:e8:e6:56:96:b2:02:10:fa:d6:78:21:c6:58: 56:0b:cf:e5:8f:a6:fe:dd:32:f8:0e:09:ee:92:be: d4:59:47:5a:73:4a:0b:f5:bc:bb:14:33:55:ea:8d: b0:75:66:e8:d7:78:90:16:76:db:d2:cf:21:48:e1: 96:bf:8c:e0:c3:ab:8d:0f:7d:8b:9b:e3:a4:d2:3c: 96:8c:f9:a8:3d:9c:7a:7b:2c:7a:90:99:48:db:0a: 71:50:3a:47:13:1f:df:a5:f3:79:9e:57:32:64:99: 3d:4b:e5:00:38:1a:9c:f9:62:82:9c:52:a1:96:f9: dd:ea:fa:38:4f:88:38:b4:fb:43:0e:5a:0c:61:e1: cf:72:e8:20:40:30:cd:52:59:ef:7e:65:f6:5c:d2: b6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:BA:B2:11:0D:F3:AA:88:DB:F7:AD:E0:94:BA:72:84:86:39:99:37 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ALqyEQ3zqojb963glLpyhIY5mTc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.128.0/24 Signature Algorithm: sha256WithRSAEncryption a7:ae:6a:b6:81:5b:7c:11:5a:21:86:8b:de:7a:38:4f:35:c5: aa:e4:b6:1b:cb:6f:ae:16:b7:58:e3:08:e6:de:85:ce:2c:b0: 38:b7:35:e8:e1:5f:dc:90:48:c4:20:61:d8:0b:8b:b7:31:1b: 3b:a6:76:96:0d:76:7c:3a:97:eb:fd:58:0a:64:5b:09:06:83: e9:7c:a5:03:44:d4:0e:f7:05:d9:2d:ca:57:3e:e7:b9:87:05: b3:1c:18:a3:c9:cf:c5:f3:23:4a:43:38:c7:a3:b9:9e:c3:68: ed:2f:8e:32:6e:0b:9d:7d:88:80:63:24:a2:5e:3c:e6:08:1c: c8:4b:e0:e7:48:78:fa:a4:54:e5:9b:5c:96:2a:fd:69:1a:8f: d1:aa:75:51:4f:8f:f3:a5:c9:75:a7:24:57:a6:a6:1f:f6:b2: 10:40:47:d5:3f:3b:ed:42:2a:b3:75:5a:3e:ca:45:13:be:d4: 9d:79:45:1b:aa:30:4e:c7:16:40:3c:a3:ea:b5:45:52:e8:3a: 97:ff:2a:00:c2:64:31:28:1c:4f:c5:06:4a:b9:66:2f:01:30: 5c:4a:67:c3:1b:64:69:32:5f:6a:9f:b9:17:d4:44:64:cf:dc: 4b:ba:be:32:71:f0:94:c8:21:74:a2:cb:28:9e:ee:14:18:d2: 8c:bf:ed:f9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMskwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMyMDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAwQkFCMjExMERGM0FB ODhEQkY3QURFMDk0QkE3Mjg0ODYzOTk5MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnLqQIsf777JOuj0TLEBIwX9wHSmnE2ZRYxThMiEebLzoHHqwP 6etsDE17R8FB2TqURMHOQZFf8H95pEuQ68Bt3rboqwEmYE0Jk65t9mCdUykp9z4u Ol95UEq+RUR8LBQshvHiFQXSR1zk6OZWlrICEPrWeCHGWFYLz+WPpv7dMvgOCe6S vtRZR1pzSgv1vLsUM1XqjbB1ZujXeJAWdtvSzyFI4Za/jODDq40PfYub46TSPJaM +ag9nHp7LHqQmUjbCnFQOkcTH9+l83meVzJkmT1L5QA4Gpz5YoKcUqGW+d3q+jhP iDi0+0MOWgxh4c9y6CBAMM1SWe9+ZfZc0rYFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUALqyEQ3zqojb963glLpyhIY5mTcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0FMcXlFUTN6cW9qYjk2M2ds THB5aElZNW1UYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AYAwDQYJKoZIhvcNAQELBQADggEBAKeuaraBW3wRWiGGi956OE81xarkthvLb64W t1jjCObehc4ssDi3NejhX9yQSMQgYdgLi7cxGzumdpYNdnw6l+v9WApkWwkGg+l8 pQNE1A73Bdktylc+57mHBbMcGKPJz8XzI0pDOMejuZ7DaO0vjjJuC519iIBjJKJe POYIHMhL4OdIePqkVOWbXJYq/Wkaj9GqdVFPj/OlyXWnJFemph/2shBAR9U/O+1C KrN1Wj7KRRO+1J15RRuqME7HFkA8o+q1RVLoOpf/KgDCZDEoHE/FBkq5Zi8BMFxK Z8MbZGkyX2qfuRfURGTP3Eu6vjJx8JTIIXSiyyie7hQY0oy/7fk= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:51 2024 by rpki-client on console-ams.rpki-client.org