$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/At-i3N-PTLGDA68OoqznlmTNFug.roa File: At-i3N-PTLGDA68OoqznlmTNFug.roa (raw, json) Hash identifier: gFMv/Bo0G/iKmyRM0JifLPc6oSw9AXgU3EKKC5jDJBA= Subject key identifier: 02:DF:A2:DC:DF:8F:4C:B1:83:03:AF:0E:A2:AC:E7:96:64:CD:16:E8 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 30AD Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/At-i3N-PTLGDA68OoqznlmTNFug.roa Signing time: Mon 26 Aug 2024 05:29:43 +0000 ROA not before: Mon 26 Aug 2024 05:29:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 123.193.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12461 (0x30ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=02DFA2DCDF8F4CB18303AF0EA2ACE79664CD16E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:64:90:b9:c2:b0:c3:82:ba:80:be:85:88:81: 30:6a:27:6f:7a:be:e9:4f:ff:1a:e6:d0:c6:15:35: 6e:78:c0:29:a6:39:0e:34:e9:a7:06:72:34:9f:80: dd:9a:39:14:c3:41:ad:b9:27:d8:1d:19:99:49:7c: b0:b8:7b:ea:14:33:f3:d8:74:86:a1:08:91:08:d2: 81:df:be:69:ad:6c:2e:aa:8e:3d:f0:7e:e1:e6:01: 2c:2c:09:d5:e0:fe:61:12:05:58:58:1a:8d:42:b1: 94:23:80:9e:2c:56:ef:93:e2:ad:a3:6d:4b:ed:21: cd:fe:89:44:b8:d0:92:d3:97:81:12:2a:53:4d:d5: 88:27:60:ba:d5:2f:70:87:31:c8:bc:12:d3:41:02: 9a:81:e4:a9:bb:16:67:57:f2:f9:8d:46:cc:ee:bf: e4:4c:43:98:ab:ab:f5:c3:44:07:bb:0e:e2:2b:d9: ff:fb:9d:3d:c0:d3:88:be:7c:60:39:44:29:ff:cf: 9c:a1:f1:43:8f:4b:78:44:8a:cf:22:34:a5:8c:5b: ec:e8:b1:46:39:06:a6:61:0c:05:0a:65:8a:4f:b9: a4:21:50:00:14:e9:d9:7b:e0:65:85:3f:1d:f3:d9: 44:46:3d:54:8c:c3:38:3f:90:7f:d0:a5:c1:77:29: 3f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:DF:A2:DC:DF:8F:4C:B1:83:03:AF:0E:A2:AC:E7:96:64:CD:16:E8 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/At-i3N-PTLGDA68OoqznlmTNFug.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.223.0/24 Signature Algorithm: sha256WithRSAEncryption af:5c:88:3b:de:2e:54:c5:2c:99:58:85:40:b6:c8:2f:14:f2: a0:86:2b:88:cb:1a:f5:a8:e0:35:58:35:66:a5:6c:ec:ac:09: 28:9a:72:ad:ab:8a:64:2c:e7:f6:18:c3:d0:ed:d3:76:3d:e5: 6d:2a:1b:13:67:58:d7:92:41:61:b5:a9:76:76:e7:93:e4:d1: 3f:fb:77:21:44:0c:56:30:df:dc:f5:1f:26:39:31:ba:31:e3: e2:43:8c:49:ed:cd:6b:8a:8b:ac:cd:3d:16:52:22:48:90:ba: 56:48:02:6c:1d:17:93:05:ca:b1:04:f2:ee:00:b4:8a:03:5d: a8:2f:36:bc:14:0f:8c:d2:c6:e6:78:c5:0f:83:1d:19:f4:8e: 1f:3e:97:a6:0f:c9:7c:7b:ee:99:c5:04:24:8d:b0:30:bc:55: b0:19:93:78:68:af:2e:a7:1a:a2:77:36:6a:86:16:b6:af:43: 31:66:bf:38:0a:3e:70:5b:12:2f:d6:46:01:c0:8c:33:14:b0: 90:69:50:b4:f5:fc:f0:33:1a:84:84:7f:ac:16:dc:92:02:3c: 7e:6b:25:be:3f:40:53:6d:63:48:e4:b4:61:c1:20:27:7c:c4: 57:5a:49:c7:04:5f:2f:77:0b:ce:c0:91:d8:f5:d3:5a:0f:46: 76:1f:4f:9b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMK0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAyREZBMkRDREY4RjRD QjE4MzAzQUYwRUEyQUNFNzk2NjRDRDE2RTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaZJC5wrDDgrqAvoWIgTBqJ296vulP/xrm0MYVNW54wCmmOQ40 6acGcjSfgN2aORTDQa25J9gdGZlJfLC4e+oUM/PYdIahCJEI0oHfvmmtbC6qjj3w fuHmASwsCdXg/mESBVhYGo1CsZQjgJ4sVu+T4q2jbUvtIc3+iUS40JLTl4ESKlNN 1YgnYLrVL3CHMci8EtNBApqB5Km7FmdX8vmNRszuv+RMQ5irq/XDRAe7DuIr2f/7 nT3A04i+fGA5RCn/z5yh8UOPS3hEis8iNKWMW+zosUY5BqZhDAUKZYpPuaQhUAAU 6dl74GWFPx3z2URGPVSMwzg/kH/QpcF3KT/1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAt+i3N+PTLGDA68OoqznlmTNFugwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0F0LWkzTi1QVExHREE2OE9v cXpubG1UTkZ1Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 wd8wDQYJKoZIhvcNAQELBQADggEBAK9ciDveLlTFLJlYhUC2yC8U8qCGK4jLGvWo 4DVYNWalbOysCSiacq2rimQs5/YYw9Dt03Y95W0qGxNnWNeSQWG1qXZ255Pk0T/7 dyFEDFYw39z1HyY5Mbox4+JDjEntzWuKi6zNPRZSIkiQulZIAmwdF5MFyrEE8u4A tIoDXagvNrwUD4zSxuZ4xQ+DHRn0jh8+l6YPyXx77pnFBCSNsDC8VbAZk3hory6n GqJ3NmqGFravQzFmvzgKPnBbEi/WRgHAjDMUsJBpULT1/PAzGoSEf6wW3JICPH5r Jb4/QFNtY0jktGHBICd8xFdaSccEXy93C87Akdj101oPRnYfT5s= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:46 2024 by rpki-client on console-fra.rpki-client.org