$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/B7QYrD7-biyvnd604KVvsaybgvI.roa File: B7QYrD7-biyvnd604KVvsaybgvI.roa (raw, json) Hash identifier: e0Yu+cRseQWbWZ5fxDIllT3wlLa2ykrK5aFnlQlkO84= Subject key identifier: 07:B4:18:AC:3E:FE:6E:2C:AF:9D:DE:B4:E0:A5:6F:B1:AC:9B:82:F2 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2FF4 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/B7QYrD7-biyvnd604KVvsaybgvI.roa Signing time: Mon 26 Aug 2024 05:29:00 +0000 ROA not before: Mon 26 Aug 2024 05:29:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12276 (0x2ff4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=07B418AC3EFE6E2CAF9DDEB4E0A56FB1AC9B82F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:19:c4:cf:74:bd:05:23:57:f9:88:80:bb:8a: 52:5b:e9:f3:82:93:87:30:db:43:71:d0:e3:d3:90: 35:11:5f:e4:76:9e:3c:05:9b:bd:6c:96:96:5d:8d: 7b:56:b5:0e:97:cd:1d:9c:fd:c2:2b:62:ff:7d:0b: 49:d8:cb:eb:fb:4f:9e:d3:01:9d:27:40:82:ee:49: 2c:10:3e:dc:f7:97:be:2e:7e:92:38:ac:d0:2d:0d: 8c:eb:3d:6f:9e:ca:af:0a:e6:e0:c3:57:a0:18:59: 1f:d6:bc:46:16:6b:43:c6:40:be:d9:50:fb:5c:2b: 63:c2:23:5e:f9:83:6e:4a:ff:6c:50:48:b0:af:28: f9:27:5d:be:3f:09:92:ad:3b:db:98:03:27:e2:4f: 70:42:4a:e7:90:22:c1:05:09:73:1c:4e:09:38:4f: 0b:71:76:0b:86:a3:b1:08:78:f1:3e:74:39:b1:71: fb:e5:b6:69:89:dc:2f:b1:6e:b8:d6:ef:0f:19:87: 6a:59:66:1c:74:dc:8c:c4:89:8e:75:ac:1d:f4:09: 89:d3:c2:be:7f:f9:0f:c1:bb:39:1e:9f:66:1f:f5: d7:2a:95:32:18:2b:ce:9f:83:ac:d5:bb:a0:c2:0b: ff:93:b2:35:0d:c8:9a:ef:09:63:23:2e:e0:af:0c: 1d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:B4:18:AC:3E:FE:6E:2C:AF:9D:DE:B4:E0:A5:6F:B1:AC:9B:82:F2 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/B7QYrD7-biyvnd604KVvsaybgvI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.177.0/24 Signature Algorithm: sha256WithRSAEncryption 31:69:3a:62:eb:57:46:71:95:28:46:06:b9:73:b9:87:71:94: 2d:54:ed:ed:d8:10:f9:ee:04:84:47:07:a9:89:48:88:aa:4f: 57:2f:3e:c9:c1:b7:e6:50:d6:3a:6b:b5:36:4c:4a:6a:0a:20: 52:2f:d0:26:1d:05:2f:12:c5:b7:a9:24:50:20:87:4a:4c:03: 46:0c:2e:04:11:b4:50:a9:22:c8:61:86:40:54:44:98:f7:10: 84:b2:99:a4:2d:65:0e:0c:11:68:b6:0b:bb:d2:1f:a1:ca:eb: bd:89:5c:2d:23:f2:7f:d9:e9:ac:ed:90:63:75:90:61:c0:9c: 06:51:40:9d:83:60:a2:e3:c6:96:79:22:2d:da:ae:e6:dd:6a: 01:7f:2c:60:c6:52:38:06:e6:fb:e1:28:2e:8f:14:08:f0:f0: 9f:2b:8e:f3:ad:e4:1b:97:af:4a:a6:85:1b:78:d5:60:d7:06: 90:5c:2a:43:8e:7e:14:79:b1:9f:19:39:b4:da:93:fe:bc:0e: b8:85:f8:9e:e1:a9:c6:2a:d4:48:33:8c:95:1a:a6:03:de:f2: 70:5e:d8:1a:f5:7d:0b:2d:19:8d:0d:5f:78:0b:19:7b:c5:21: 54:ae:bf:21:c4:46:b5:38:69:a6:a9:da:93:aa:99:a2:30:d1: b7:50:6c:37 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICL/QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA3QjQxOEFDM0VGRTZF MkNBRjlEREVCNEUwQTU2RkIxQUM5QjgyRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7GcTPdL0FI1f5iIC7ilJb6fOCk4cw20Nx0OPTkDURX+R2njwF m71slpZdjXtWtQ6XzR2c/cIrYv99C0nYy+v7T57TAZ0nQILuSSwQPtz3l74ufpI4 rNAtDYzrPW+eyq8K5uDDV6AYWR/WvEYWa0PGQL7ZUPtcK2PCI175g25K/2xQSLCv KPknXb4/CZKtO9uYAyfiT3BCSueQIsEFCXMcTgk4TwtxdguGo7EIePE+dDmxcfvl tmmJ3C+xbrjW7w8Zh2pZZhx03IzEiY51rB30CYnTwr5/+Q/Buzken2Yf9dcqlTIY K86fg6zVu6DCC/+TsjUNyJrvCWMjLuCvDB2TAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUB7QYrD7+biyvnd604KVvsaybgvIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0I3UVlyRDctYml5dm5kNjA0 S1Z2c2F5Ymd2SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 w7EwDQYJKoZIhvcNAQELBQADggEBADFpOmLrV0ZxlShGBrlzuYdxlC1U7e3YEPnu BIRHB6mJSIiqT1cvPsnBt+ZQ1jprtTZMSmoKIFIv0CYdBS8SxbepJFAgh0pMA0YM LgQRtFCpIshhhkBURJj3EISymaQtZQ4MEWi2C7vSH6HK672JXC0j8n/Z6aztkGN1 kGHAnAZRQJ2DYKLjxpZ5Ii3arubdagF/LGDGUjgG5vvhKC6PFAjw8J8rjvOt5BuX r0qmhRt41WDXBpBcKkOOfhR5sZ8ZObTak/68DriF+J7hqcYq1EgzjJUapgPe8nBe 2Br1fQstGY0NX3gLGXvFIVSuvyHERrU4aaap2pOqmaIw0bdQbDc= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:51 2024 by rpki-client on console-ams.rpki-client.org