$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CQbhX1kJ9DTFAStfp24qGiflLzI.roa File: CQbhX1kJ9DTFAStfp24qGiflLzI.roa (raw, json) Hash identifier: VIcCJ8nKlvs03Kcru9EQqYqowTWUFjo+AbVjBucWTdk= Subject key identifier: 09:06:E1:5F:59:09:F4:34:C5:01:2B:5F:A7:6E:2A:1A:27:E5:2F:32 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32DD Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CQbhX1kJ9DTFAStfp24qGiflLzI.roa Signing time: Mon 26 Aug 2024 05:32:05 +0000 ROA not before: Mon 26 Aug 2024 05:32:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.232.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13021 (0x32dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:32:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0906E15F5909F434C5012B5FA76E2A1A27E52F32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:87:10:52:5b:de:2c:30:48:91:d8:87:8e:e7: f1:89:23:e0:11:8a:6d:44:32:05:c6:d0:ce:c3:6d: df:ee:cd:22:31:21:4e:a7:cf:47:9d:dd:ad:7f:87: 30:e0:1e:a0:78:48:c9:d3:68:ae:c0:9b:26:39:5e: 7e:33:3b:a3:f9:89:63:cb:88:c0:cf:bb:0a:87:bc: 40:c3:30:da:f7:47:df:54:c9:c7:2c:98:eb:25:d5: 00:cd:dc:64:f7:72:4c:3e:96:30:b5:10:9b:c1:1d: df:a2:67:54:ab:93:e5:5c:a4:e6:1d:c9:b4:7d:a1: a4:ab:e5:e1:a4:c5:a3:35:cc:7a:19:07:17:ae:5a: be:e1:2d:76:35:c6:e8:84:8d:b9:72:a0:2e:7e:5f: e3:b4:d1:ae:21:1f:17:3a:8e:c0:23:d2:f6:bc:ae: bd:12:78:c0:59:41:23:7a:24:c4:76:e3:a8:08:de: b7:6f:56:40:7f:26:28:29:d5:02:ee:76:3a:20:de: f4:35:2d:f6:bf:ed:85:a6:63:8c:81:45:38:35:0e: b0:18:51:9f:5b:06:af:f2:b8:2c:c1:68:dc:9f:d5: 49:15:f5:e1:37:9e:8d:ad:fd:d9:4c:13:90:c3:2b: 10:f6:0f:91:49:7b:f2:21:08:7c:98:75:d5:45:9e: b8:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:06:E1:5F:59:09:F4:34:C5:01:2B:5F:A7:6E:2A:1A:27:E5:2F:32 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/CQbhX1kJ9DTFAStfp24qGiflLzI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.8.0/22 Signature Algorithm: sha256WithRSAEncryption 69:92:77:44:5d:d9:6d:d8:d8:36:a1:42:e4:2d:06:b7:3b:c2: 82:ee:77:d7:57:87:38:94:f7:f2:28:06:83:b0:86:97:a1:ec: c8:eb:00:5b:b2:cb:94:ec:34:a1:63:47:ff:63:6b:89:e6:e3: 5e:76:95:a4:a2:05:68:da:9b:ca:c7:a7:cb:fa:51:2c:f9:6a: 98:73:de:0a:24:6f:69:0b:85:8b:eb:f3:7e:15:09:c2:f7:47: ca:dc:49:5b:67:21:48:3f:98:99:77:9b:68:d5:4e:16:c5:d2: 26:dc:ef:0b:99:91:58:af:49:26:bd:3a:33:ef:bf:bb:61:33: 1d:11:99:c8:3a:c0:9c:f5:58:36:22:f4:2b:38:d6:e7:9f:da: 5b:65:20:2d:29:3f:1b:38:2c:99:77:14:4f:72:50:37:98:f1: 1a:25:e0:a8:6c:73:23:d9:c8:66:d6:f1:0a:09:68:88:48:97: 88:1b:40:27:4d:6b:03:1d:31:0a:1a:45:86:4d:5f:27:26:3d: 82:cf:5f:5d:63:2a:18:fe:c4:5d:30:bc:69:8c:3d:38:43:03: 76:7b:ea:bd:6a:05:b6:34:c4:60:43:c6:be:0e:5b:bd:9a:06: 04:1e:0e:fb:94:10:c7:d9:ec:75:9d:df:cb:f2:a0:47:1d:73: 61:ed:9f:0f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMt0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMyMDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA5MDZFMTVGNTkwOUY0 MzRDNTAxMkI1RkE3NkUyQTFBMjdFNTJGMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyhxBSW94sMEiR2IeO5/GJI+ARim1EMgXG0M7Dbd/uzSIxIU6n z0ed3a1/hzDgHqB4SMnTaK7AmyY5Xn4zO6P5iWPLiMDPuwqHvEDDMNr3R99Uyccs mOsl1QDN3GT3ckw+ljC1EJvBHd+iZ1Srk+VcpOYdybR9oaSr5eGkxaM1zHoZBxeu Wr7hLXY1xuiEjblyoC5+X+O00a4hHxc6jsAj0va8rr0SeMBZQSN6JMR246gI3rdv VkB/Jigp1QLudjog3vQ1Lfa/7YWmY4yBRTg1DrAYUZ9bBq/yuCzBaNyf1UkV9eE3 no2t/dlME5DDKxD2D5FJe/IhCHyYddVFnrjXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUCQbhX1kJ9DTFAStfp24qGiflLzIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0NRYmhYMWtKOURURkFTdGZw MjRxR2lmbEx6SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6AgwDQYJKoZIhvcNAQELBQADggEBAGmSd0Rd2W3Y2DahQuQtBrc7woLud9dXhziU 9/IoBoOwhpeh7MjrAFuyy5TsNKFjR/9ja4nm4152laSiBWjam8rHp8v6USz5aphz 3gokb2kLhYvr834VCcL3R8rcSVtnIUg/mJl3m2jVThbF0ibc7wuZkVivSSa9OjPv v7thMx0Rmcg6wJz1WDYi9Cs41uef2ltlIC0pPxs4LJl3FE9yUDeY8Rol4KhscyPZ yGbW8QoJaIhIl4gbQCdNawMdMQoaRYZNXycmPYLPX11jKhj+xF0wvGmMPThDA3Z7 6r1qBbY0xGBDxr4OW72aBgQeDvuUEMfZ7HWd38vyoEcdc2Htnw8= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:55 2024 by rpki-client on console-fra.rpki-client.org