$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DByNU9jNF6eFDQ9YFXMXct8uKCQ.roa File: DByNU9jNF6eFDQ9YFXMXct8uKCQ.roa (raw, json) Hash identifier: I9oVYpgFTRGy7p/AlrfTjkSzeMnYw08awcprzUcXkuw= Subject key identifier: 0C:1C:8D:53:D8:CD:17:A7:85:0D:0F:58:15:73:17:72:DF:2E:28:24 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32C2 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DByNU9jNF6eFDQ9YFXMXct8uKCQ.roa Signing time: Mon 26 Aug 2024 05:31:59 +0000 ROA not before: Mon 26 Aug 2024 05:31:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.176.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12994 (0x32c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0C1C8D53D8CD17A7850D0F5815731772DF2E2824 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:fe:41:79:03:e1:cc:58:56:03:ae:0c:9a:7d: 0d:8f:0b:57:2d:ce:b6:67:0b:0b:d9:cb:54:c7:78: af:33:a5:2b:71:41:05:5b:89:75:cf:99:f8:c5:98: 35:27:85:90:47:fa:42:2f:b8:ee:09:7e:5d:78:9b: 66:35:fc:56:16:ce:b7:46:21:e9:c4:cd:84:99:50: 97:ac:9e:83:bb:a3:6c:a0:29:ef:4c:db:9c:c6:9a: 95:ba:bd:f0:8b:c7:35:9f:ae:40:ed:48:e4:62:64: 79:0b:9a:1b:a2:88:50:87:17:c2:d8:92:1b:c7:a5: 06:ec:e0:f9:df:af:4d:39:89:d2:ec:a2:e7:fa:95: 20:0f:4c:5f:f1:85:e0:5e:fc:3f:ef:9d:3d:ef:de: 1e:a9:88:06:6a:40:1d:90:e7:ca:42:63:3a:c1:8e: dd:2d:65:2a:69:10:a0:6f:85:db:56:ff:d9:97:a0: b2:54:84:b3:22:35:11:de:9c:4c:98:3a:60:0e:eb: 14:68:a6:03:55:aa:21:e6:15:45:ce:7a:6a:de:48: 72:9c:3e:f5:21:15:1a:e1:b2:62:8a:a1:89:b2:99: 03:75:46:fc:fa:37:17:7a:b8:d9:0b:c7:dc:97:ca: 5f:72:db:f2:6e:40:21:e2:48:21:27:07:49:94:3a: 1b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:1C:8D:53:D8:CD:17:A7:85:0D:0F:58:15:73:17:72:DF:2E:28:24 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DByNU9jNF6eFDQ9YFXMXct8uKCQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.104.0/21 Signature Algorithm: sha256WithRSAEncryption 2c:49:33:21:3d:3e:4e:4b:0f:b1:0c:ba:8f:55:3a:64:14:d2: bc:4e:71:4f:20:b9:28:7b:4a:f0:fc:e8:1f:e4:58:b8:da:45: d5:94:19:7c:62:4f:76:c5:17:d2:a9:37:4b:a8:5f:cd:43:5d: f9:a0:30:73:3b:5c:dc:cb:45:fa:11:7f:38:04:7f:a9:40:94: 34:0b:2f:c3:1a:a4:a9:0d:07:b0:3a:0e:a5:a6:c3:89:00:f1: ed:e2:18:00:94:6b:bb:eb:5a:bf:cf:35:d7:fc:f8:c8:46:85: cd:0f:28:81:36:92:76:eb:a4:34:f4:ea:33:2a:2b:06:de:40: 7a:78:ab:33:73:9f:63:cf:3a:27:89:85:23:fe:ad:28:28:23: 92:43:de:5e:48:24:af:01:68:73:e0:05:e2:d7:b2:bd:58:3d: be:3b:91:8e:4b:c0:e7:d4:e5:c5:5f:c6:f7:05:81:e9:2e:e4: 0b:7b:59:38:75:5c:02:c0:07:ec:fb:a7:88:d7:47:25:2c:e8: 96:33:ec:af:79:1b:d8:c0:45:93:82:7a:28:54:33:93:92:fe: 70:a5:63:59:a3:27:cc:bf:a7:ae:96:17:b9:35:29:41:04:17: 28:5c:20:aa:95:3c:99:77:a1:05:aa:f3:f6:49:0e:77:85:59: a6:5e:77:f8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMsIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBDMUM4RDUzRDhDRDE3 QTc4NTBEMEY1ODE1NzMxNzcyREYyRTI4MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDe/kF5A+HMWFYDrgyafQ2PC1ctzrZnCwvZy1THeK8zpStxQQVb iXXPmfjFmDUnhZBH+kIvuO4Jfl14m2Y1/FYWzrdGIenEzYSZUJesnoO7o2ygKe9M 25zGmpW6vfCLxzWfrkDtSORiZHkLmhuiiFCHF8LYkhvHpQbs4Pnfr005idLsouf6 lSAPTF/xheBe/D/vnT3v3h6piAZqQB2Q58pCYzrBjt0tZSppEKBvhdtW/9mXoLJU hLMiNRHenEyYOmAO6xRopgNVqiHmFUXOemreSHKcPvUhFRrhsmKKoYmymQN1Rvz6 Nxd6uNkLx9yXyl9y2/JuQCHiSCEnB0mUOhshAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUDByNU9jNF6eFDQ9YFXMXct8uKCQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0RCeU5VOWpORjZlRkRROVlG WE1YY3Q4dUtDUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sGgwDQYJKoZIhvcNAQELBQADggEBACxJMyE9Pk5LD7EMuo9VOmQU0rxOcU8guSh7 SvD86B/kWLjaRdWUGXxiT3bFF9KpN0uoX81DXfmgMHM7XNzLRfoRfzgEf6lAlDQL L8MapKkNB7A6DqWmw4kA8e3iGACUa7vrWr/PNdf8+MhGhc0PKIE2knbrpDT06jMq KwbeQHp4qzNzn2PPOieJhSP+rSgoI5JD3l5IJK8BaHPgBeLXsr1YPb47kY5LwOfU 5cVfxvcFgeku5At7WTh1XALAB+z7p4jXRyUs6JYz7K95G9jARZOCeihUM5OS/nCl Y1mjJ8y/p66WF7k1KUEEFyhcIKqVPJl3oQWq8/ZJDneFWaZed/g= -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:37 2024 by rpki-client on console-fra.rpki-client.org