$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D2WGTkT-eNlmek8R5WGUxsTSHwY.roa File: D2WGTkT-eNlmek8R5WGUxsTSHwY.roa (raw, json) Hash identifier: 0V47u0gp14WlmbGQ5xD/AKaVY8S8Qs6ny4qoue3k9Uw= Subject key identifier: 0F:65:86:4E:44:FE:78:D9:66:7A:4F:11:E5:61:94:C6:C4:D2:1F:06 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2FA8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D2WGTkT-eNlmek8R5WGUxsTSHwY.roa Signing time: Mon 26 Aug 2024 05:28:43 +0000 ROA not before: Mon 26 Aug 2024 05:28:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12200 (0x2fa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:28:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0F65864E44FE78D9667A4F11E56194C6C4D21F06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e4:18:ce:41:38:7b:6a:eb:52:87:62:b9:0c: 9b:9a:dc:9a:e6:e4:53:fe:65:be:02:3d:51:96:3f: ab:8c:67:01:e6:70:64:d0:6f:a1:2f:6d:0c:75:dd: 34:10:4a:95:8a:1b:5f:7a:a1:d9:01:bc:67:ea:1d: 01:99:98:8b:f2:dd:02:c9:29:89:10:57:c8:e9:65: 87:d4:3f:5d:8f:87:27:19:09:e4:65:0a:0b:48:5f: 3a:de:d3:a4:2c:b1:39:85:24:8b:f1:36:5f:61:0d: f4:96:76:66:15:eb:f3:2d:36:0b:25:88:50:a7:54: e3:b8:7e:e7:8c:33:2a:08:4f:ff:85:3b:bf:54:47: c0:37:70:76:90:b0:72:9a:fd:88:d1:29:0d:db:0e: 61:58:a5:47:ce:1f:19:d1:da:d5:d0:81:4b:e3:2e: 14:e7:2a:68:36:91:3e:87:7c:e0:50:bf:e8:0c:ef: 72:80:15:1e:99:9e:43:fb:3f:60:41:c4:11:a7:47: 91:16:a6:18:68:26:f7:db:a6:5c:08:ca:e5:e3:e5: f0:a5:24:a5:4f:d7:9c:40:e5:a9:56:35:7e:7c:be: a2:88:91:77:ba:b6:e8:1c:40:a3:6d:97:25:0f:36: e9:b8:8c:4d:46:66:cc:70:93:b1:85:81:43:a2:cb: 43:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:65:86:4E:44:FE:78:D9:66:7A:4F:11:E5:61:94:C6:C4:D2:1F:06 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/D2WGTkT-eNlmek8R5WGUxsTSHwY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.244.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:d3:e9:49:77:b7:f8:b0:09:95:52:e5:fa:76:60:6c:37:5d: df:97:31:05:3d:f6:5a:6f:6b:e2:87:8c:19:2b:5d:27:91:4c: bf:9a:3f:4f:e3:a9:5b:4d:b3:01:ee:c3:f7:91:35:1d:22:a8: 00:08:44:c1:b3:02:d4:0b:65:bf:9b:4b:a2:a5:13:15:1e:a3: 21:50:44:12:05:f6:e4:79:70:ae:93:78:50:40:08:13:b6:df: 9b:d9:01:0f:16:3e:59:90:f9:69:fd:ca:6f:73:38:92:e7:0a: e9:44:01:a6:3b:38:12:e2:63:34:54:f1:2b:d0:75:55:71:52: 77:c2:2c:b0:cb:83:f1:80:24:0a:f7:6c:e4:d9:70:12:93:6e: 6e:d4:8c:66:99:06:c6:3d:56:91:02:d4:77:3b:ff:12:26:88: d4:35:0a:8a:55:54:ad:40:59:37:e7:75:22:ea:df:fa:ca:5a: 90:d4:17:eb:e7:49:e3:18:e6:3d:43:42:40:a5:8d:f4:05:62: 21:4c:cc:d4:c1:24:1b:f7:3d:43:02:2a:8e:c6:9d:82:d9:26: 50:ee:ad:6e:ec:8a:99:ac:4a:07:03:4d:85:47:70:47:4c:69: b5:df:fa:00:6f:e7:e4:9a:ee:ab:8a:c1:90:33:48:59:71:96: 20:a8:67:c0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICL6gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI4NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBGNjU4NjRFNDRGRTc4 RDk2NjdBNEYxMUU1NjE5NEM2QzREMjFGMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC45BjOQTh7autSh2K5DJua3Jrm5FP+Zb4CPVGWP6uMZwHmcGTQ b6EvbQx13TQQSpWKG196odkBvGfqHQGZmIvy3QLJKYkQV8jpZYfUP12PhycZCeRl CgtIXzre06QssTmFJIvxNl9hDfSWdmYV6/MtNgsliFCnVOO4fueMMyoIT/+FO79U R8A3cHaQsHKa/YjRKQ3bDmFYpUfOHxnR2tXQgUvjLhTnKmg2kT6HfOBQv+gM73KA FR6ZnkP7P2BBxBGnR5EWphhoJvfbplwIyuXj5fClJKVP15xA5alWNX58vqKIkXe6 tugcQKNtlyUPNum4jE1GZsxwk7GFgUOiy0NRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUD2WGTkT+eNlmek8R5WGUxsTSHwYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0QyV0dUa1QtZU5sbWVrOFI1 V0dVeHNUU0h3WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF7 wfQwDQYJKoZIhvcNAQELBQADggEBAG3T6Ul3t/iwCZVS5fp2YGw3Xd+XMQU99lpv a+KHjBkrXSeRTL+aP0/jqVtNswHuw/eRNR0iqAAIRMGzAtQLZb+bS6KlExUeoyFQ RBIF9uR5cK6TeFBACBO235vZAQ8WPlmQ+Wn9ym9zOJLnCulEAaY7OBLiYzRU8SvQ dVVxUnfCLLDLg/GAJAr3bOTZcBKTbm7UjGaZBsY9VpEC1Hc7/xImiNQ1CopVVK1A WTfndSLq3/rKWpDUF+vnSeMY5j1DQkCljfQFYiFMzNTBJBv3PUMCKo7GnYLZJlDu rW7sipmsSgcDTYVHcEdMabXf+gBv5+Sa7quKwZAzSFlxliCoZ8A= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:51 2024 by rpki-client on console-ams.rpki-client.org