$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Al-uqc0t0LeyqAUgxPLAEMGyWaE.roa File: Al-uqc0t0LeyqAUgxPLAEMGyWaE.roa (raw, json) Hash identifier: E12HrGPyH5EWcrJ5u9vT81jRqkNWXb3ZNUjvHtNDPO8= Subject key identifier: 02:5F:AE:A9:CD:2D:D0:B7:B2:A8:05:20:C4:F2:C0:10:C1:B2:59:A1 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 316C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Al-uqc0t0LeyqAUgxPLAEMGyWaE.roa Signing time: Mon 26 Aug 2024 05:30:26 +0000 ROA not before: Mon 26 Aug 2024 05:30:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 118.232.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12652 (0x316c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=025FAEA9CD2DD0B7B2A80520C4F2C010C1B259A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6e:d9:07:2b:04:44:82:b5:95:11:34:fe:5a: 4b:52:af:c3:21:7b:d5:a4:ae:4e:13:98:9f:6d:69: a5:97:4f:50:e4:16:42:b4:25:4c:1a:97:15:b7:15: b0:cc:12:9b:da:0e:e0:6a:c5:95:43:6c:0c:c2:6c: ce:26:7c:43:5f:aa:48:91:6f:e9:a1:cf:d3:81:27: 6e:28:3d:71:83:cc:53:50:38:76:ff:47:b3:56:eb: 7c:4b:bb:bd:ab:dd:8c:60:d0:52:be:22:26:d4:45: f9:af:0b:b5:7b:09:9c:d1:ff:22:ff:d6:2e:dd:f5: 0e:0e:1e:af:02:62:4c:45:b1:69:ff:13:a1:33:19: e6:f1:bc:ef:4c:88:00:cb:89:42:0e:e1:30:cb:d8: c1:15:94:6d:98:9f:b2:a9:cb:5a:d4:fa:24:73:be: cd:5f:ad:3b:e9:d0:19:6d:7a:0d:3b:bb:ff:93:fe: dd:f6:4d:e8:f9:cb:e0:0e:9c:d1:41:69:70:91:22: b7:08:01:77:af:e3:1f:23:f3:f2:8b:e8:82:88:5d: f0:f9:42:f4:e1:2b:5b:b5:de:e0:59:68:7a:9d:15: af:37:bf:69:6d:c3:10:80:3f:27:ce:41:30:d7:9c: 50:cc:6e:ac:8a:f8:14:00:e3:00:31:56:4a:ab:97: cf:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:5F:AE:A9:CD:2D:D0:B7:B2:A8:05:20:C4:F2:C0:10:C1:B2:59:A1 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Al-uqc0t0LeyqAUgxPLAEMGyWaE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.0.0/18 Signature Algorithm: sha256WithRSAEncryption 65:a5:13:bc:76:63:ed:6c:ed:20:3d:e3:36:89:15:86:5a:06: ec:14:11:5a:d0:c8:19:9d:36:0f:9e:01:c2:5b:46:cb:7b:5d: cc:bc:c1:2a:d3:4e:36:b9:55:dd:12:d3:31:17:3c:47:a9:31: 1c:4e:f1:1f:08:9d:a2:3c:bf:77:d6:4e:d7:d5:08:22:a1:f2: 7d:90:ce:8b:e0:37:a6:e5:b5:32:e3:3e:92:3e:c6:61:23:25: 2f:2f:c9:bd:85:42:d1:f5:12:be:fa:86:54:3b:33:f4:84:04: 9b:c6:5f:f3:66:67:be:e9:54:35:c5:b9:80:e8:38:d3:db:02: c1:e2:2f:54:72:6b:ef:af:40:55:00:4a:2b:d1:8d:f2:87:15: be:e6:f1:e8:a7:c3:1b:02:fb:6c:7b:af:d0:a9:38:89:5e:a5: 58:04:a2:31:82:0a:99:91:ac:10:8e:a5:a9:f7:01:e1:7d:55: be:e8:e0:7e:13:81:8a:18:4d:ed:ef:60:cc:13:f7:a9:a2:16: c3:51:7c:ab:ed:0e:71:4c:01:08:77:c8:d3:04:2a:e6:17:a3: b7:e0:00:3b:51:44:d3:24:0c:8f:fb:86:48:ce:c4:a3:5a:7f: 5c:61:49:e2:d7:54:64:3d:f6:c8:cf:29:bf:62:40:69:f3:b2: e1:a0:1f:72 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMWwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAyNUZBRUE5Q0QyREQw QjdCMkE4MDUyMEM0RjJDMDEwQzFCMjU5QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRbtkHKwREgrWVETT+WktSr8Mhe9Wkrk4TmJ9taaWXT1DkFkK0 JUwalxW3FbDMEpvaDuBqxZVDbAzCbM4mfENfqkiRb+mhz9OBJ24oPXGDzFNQOHb/ R7NW63xLu72r3Yxg0FK+IibURfmvC7V7CZzR/yL/1i7d9Q4OHq8CYkxFsWn/E6Ez GebxvO9MiADLiUIO4TDL2MEVlG2Yn7Kpy1rU+iRzvs1frTvp0Blteg07u/+T/t32 Tej5y+AOnNFBaXCRIrcIAXev4x8j8/KL6IKIXfD5QvThK1u13uBZaHqdFa83v2lt wxCAPyfOQTDXnFDMbqyK+BQA4wAxVkqrl8/3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAl+uqc0t0LeyqAUgxPLAEMGyWaEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0FsLXVxYzB0MExleXFBVWd4 UExBRU1HeVdhRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ2 6AAwDQYJKoZIhvcNAQELBQADggEBAGWlE7x2Y+1s7SA94zaJFYZaBuwUEVrQyBmd Ng+eAcJbRst7Xcy8wSrTTja5Vd0S0zEXPEepMRxO8R8InaI8v3fWTtfVCCKh8n2Q zovgN6bltTLjPpI+xmEjJS8vyb2FQtH1Er76hlQ7M/SEBJvGX/NmZ77pVDXFuYDo ONPbAsHiL1Rya++vQFUASivRjfKHFb7m8einwxsC+2x7r9CpOIlepVgEojGCCpmR rBCOpan3AeF9Vb7o4H4TgYoYTe3vYMwT96miFsNRfKvtDnFMAQh3yNMEKuYXo7fg ADtRRNMkDI/7hkjOxKNaf1xhSeLXVGQ99sjPKb9iQGnzsuGgH3I= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:36 2024 by rpki-client on console-ams.rpki-client.org