$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Cw9Xr1J_N-NWk5AW2LWd8ylA8CY.roa File: Cw9Xr1J_N-NWk5AW2LWd8ylA8CY.roa (raw, json) Hash identifier: rf+e4uorAojz8aPEWszrKkM2bRSnD6GeqZcZSofzf8Y= Subject key identifier: 0B:0F:57:AF:52:7F:37:E3:56:93:90:16:D8:B5:9D:F3:29:40:F0:26 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31D1 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Cw9Xr1J_N-NWk5AW2LWd8ylA8CY.roa Signing time: Mon 26 Aug 2024 05:30:59 +0000 ROA not before: Mon 26 Aug 2024 05:30:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 211.76.121.0/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12753 (0x31d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0B0F57AF527F37E356939016D8B59DF32940F026 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ca:09:51:9a:aa:a6:58:2d:47:fd:4a:f5:9a: d1:2f:35:4f:e6:f0:1c:e6:1b:ca:66:0a:7a:9d:14: b4:41:bd:20:63:60:64:45:49:22:2d:32:e1:e9:0e: 38:a0:d1:9e:2d:24:84:08:01:f7:38:3a:ad:9f:d0: e9:a2:bd:89:9e:4b:35:62:a6:f7:1f:7f:1d:20:79: ec:78:ee:89:dc:4c:80:82:ad:41:d0:7e:dc:f7:25: c1:68:d8:f2:34:ae:42:ea:d8:21:93:f2:15:b8:10: b0:d1:06:b6:d7:e9:77:f0:e9:67:90:6a:21:37:d2: f6:eb:7d:fc:29:8b:50:90:4d:3d:41:54:48:cb:ef: 26:a6:37:b5:62:7a:c0:54:64:6a:a8:18:17:bc:d7: 0b:dc:59:a1:d9:98:7b:4e:49:2b:dc:5e:19:62:a3: 47:6f:fe:57:de:20:47:24:32:90:ba:3a:56:32:9d: 8f:75:61:5d:25:4c:c2:d1:08:f7:2c:24:c7:cc:ce: bd:38:9c:7e:78:7a:ca:9a:f7:92:45:dc:17:0a:a5: 81:9e:ce:c5:6f:79:a3:92:71:47:c2:d2:30:a6:cb: 7c:60:a2:b3:83:31:f7:dd:b5:be:f6:76:0d:0f:7f: 55:e8:5b:0d:37:c0:cd:93:bc:26:e3:64:cf:0c:35: b8:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:0F:57:AF:52:7F:37:E3:56:93:90:16:D8:B5:9D:F3:29:40:F0:26 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Cw9Xr1J_N-NWk5AW2LWd8ylA8CY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.121.0/25 Signature Algorithm: sha256WithRSAEncryption b1:0c:ac:ee:e1:52:31:c3:95:ab:11:57:04:db:c0:83:34:1f: 01:47:e9:4a:96:4a:46:fc:49:61:67:eb:57:55:d5:b5:aa:64: a9:fb:6f:75:fb:34:f5:9d:7d:77:ec:5f:1c:be:03:56:9b:3c: 77:0e:ff:92:05:a8:27:b8:50:6b:92:3b:c4:b3:d6:a6:94:57: 28:55:38:99:94:79:75:89:8e:53:42:82:57:0a:aa:91:33:24: c5:2b:a9:4c:fe:b4:54:52:b9:e9:55:29:b4:00:51:bc:17:05: 93:b0:08:05:e9:f7:66:c8:83:b7:09:d9:07:32:d9:79:9a:eb: 61:9f:e0:7b:e0:4f:26:1e:64:3e:bd:71:6c:ba:16:96:51:44: f5:21:c7:b5:e6:23:03:54:18:cc:29:d0:1f:b4:c7:05:69:26: e1:bf:f3:3c:ab:e1:49:25:3d:62:e1:f7:63:b1:b0:39:7a:26: 67:04:3f:1e:f7:dd:b3:0b:28:f6:db:6f:e5:43:07:6d:32:21: 39:3c:f9:3e:81:1e:0b:0c:83:f9:fb:73:d1:9f:0c:94:f4:cc: ca:71:51:00:f1:98:fb:0e:bc:9a:a1:47:0b:1b:3c:d6:8f:2d: 75:58:42:7c:1c:67:5c:4b:8a:c1:2e:b8:24:b0:fd:e7:81:c8: 1c:ca:63:0d -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICMdEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwNTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBCMEY1N0FGNTI3RjM3 RTM1NjkzOTAxNkQ4QjU5REYzMjk0MEYwMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHyglRmqqmWC1H/Ur1mtEvNU/m8BzmG8pmCnqdFLRBvSBjYGRF SSItMuHpDjig0Z4tJIQIAfc4Oq2f0OmivYmeSzVipvcffx0geex47oncTICCrUHQ ftz3JcFo2PI0rkLq2CGT8hW4ELDRBrbX6Xfw6WeQaiE30vbrffwpi1CQTT1BVEjL 7yamN7ViesBUZGqoGBe81wvcWaHZmHtOSSvcXhlio0dv/lfeIEckMpC6OlYynY91 YV0lTMLRCPcsJMfMzr04nH54esqa95JF3BcKpYGezsVveaOScUfC0jCmy3xgorOD Mffdtb72dg0Pf1XoWw03wM2TvCbjZM8MNbhTAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUCw9Xr1J/N+NWk5AW2LWd8ylA8CYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0N3OVhyMUpfTi1OV2s1QVcy TFdkOHlsQThDWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQfT THkAMA0GCSqGSIb3DQEBCwUAA4IBAQCxDKzu4VIxw5WrEVcE28CDNB8BR+lKlkpG /ElhZ+tXVdW1qmSp+291+zT1nX137F8cvgNWmzx3Dv+SBagnuFBrkjvEs9amlFco VTiZlHl1iY5TQoJXCqqRMyTFK6lM/rRUUrnpVSm0AFG8FwWTsAgF6fdmyIO3CdkH Mtl5muthn+B74E8mHmQ+vXFsuhaWUUT1Ice15iMDVBjMKdAftMcFaSbhv/M8q+FJ JT1i4fdjsbA5eiZnBD8e992zCyj222/lQwdtMiE5PPk+gR4LDIP5+3PRnwyU9MzK cVEA8Zj7DryaoUcLGzzWjy11WEJ8HGdcS4rBLrgksP3ngcgcymMN -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:51 2024 by rpki-client on console-fra.rpki-client.org