$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ESCSwcOmAGBuQboSYevcLFt_nh4.roa File: ESCSwcOmAGBuQboSYevcLFt_nh4.roa (raw, json) Hash identifier: ZZcIfUAmDdFy8NRxEWqAlT4Hrb5iIpAKU830d/6ofvI= Subject key identifier: 11:20:92:C1:C3:A6:00:60:6E:41:BA:12:61:EB:DC:2C:5B:7F:9E:1E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2AB9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ESCSwcOmAGBuQboSYevcLFt_nh4.roa Signing time: Fri 01 Sep 2023 10:08:13 +0000 ROA not before: Fri 01 Sep 2023 10:08:13 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 211.76.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10937 (0x2ab9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:08:13 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=112092C1C3A600606E41BA1261EBDC2C5B7F9E1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:58:28:e6:ef:0a:83:f5:49:4b:03:5a:a2:d1: 65:b8:eb:4f:ac:a8:98:7d:bd:c9:0e:bc:3f:a1:ca: d1:01:08:ee:6f:bd:39:b2:48:6f:ff:6f:ee:43:63: 54:7a:d0:9d:38:f4:c2:bc:65:b2:8e:fa:2a:1d:34: 7f:66:f5:2e:0a:39:40:c8:4c:f2:5e:67:66:4e:93: 35:7c:e2:de:20:38:1f:1d:17:3f:ad:0d:24:98:80: d5:03:ab:5c:66:41:16:53:c0:a4:c4:3c:c0:4f:9f: ff:cc:d8:48:b1:f9:26:a5:4c:fa:40:a6:d8:e8:42: 9b:b2:51:d4:67:41:09:59:b6:6c:2d:68:53:9c:52: 33:5b:33:dc:cd:8b:2d:cf:38:94:7d:56:9f:ec:e6: 91:0d:c8:6f:77:24:bd:ba:53:10:05:4d:db:eb:d0: 90:1e:bb:89:84:8a:57:88:0d:fe:55:8b:7b:88:21: 0a:b8:1c:53:59:c5:2c:c4:7c:16:ca:d1:c2:40:f3: aa:5f:ce:1a:6c:21:58:0b:17:57:d5:88:98:99:0b: 96:bc:80:ed:d3:f3:59:eb:2b:16:b2:0c:65:3c:14: ab:2e:cd:bc:b5:e0:05:f7:e4:6c:5b:9d:ba:bc:6c: 60:4d:a0:ac:03:2e:3f:c0:93:44:b9:20:68:bc:80: 79:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:20:92:C1:C3:A6:00:60:6E:41:BA:12:61:EB:DC:2C:5B:7F:9E:1E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ESCSwcOmAGBuQboSYevcLFt_nh4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.125.0/24 Signature Algorithm: sha256WithRSAEncryption 51:e8:3f:77:e5:fa:24:72:e5:6c:c8:e2:50:e6:ff:8f:1b:a7: bf:ba:60:19:5d:cd:71:9d:a2:77:a6:b5:eb:0f:0d:5b:d9:d2: 2b:20:2c:4d:8e:ac:0e:67:04:9f:d6:b5:ef:6e:bc:4d:0d:d5: d1:b7:0c:9d:81:24:ae:a9:08:28:fb:dd:d2:6a:58:3e:01:8f: ee:43:f9:50:41:2f:eb:07:73:80:af:17:ca:af:a3:41:d5:58: 12:b2:96:96:74:76:45:56:b8:56:2a:e0:43:e7:a7:77:e4:0c: be:a6:e3:7a:6a:44:24:f4:eb:11:1d:ed:79:a3:56:0f:3d:6b: ad:e7:98:34:ab:12:28:a4:b0:4c:3c:3c:ac:7c:06:75:7d:b5: d7:dc:98:10:ca:11:d6:33:23:f8:92:6a:24:69:74:fa:4d:22: 6f:4c:8a:50:43:bd:29:46:e1:dc:87:85:d9:c5:3d:fc:c5:9f: 47:2f:0e:e7:45:08:8c:02:84:69:97:6c:60:39:98:b1:e0:08: 35:95:a6:59:36:c6:55:39:fa:0e:c4:1a:fc:bb:5a:2e:99:e4: b5:19:28:e7:1f:29:f5:8d:98:53:9c:82:c1:fa:c1:cb:a3:c6: 27:90:ab:c2:e8:98:7b:9a:b5:63:32:9a:cc:79:72:dd:09:a7: 54:3d:fa:48 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKrkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA4MTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDExMjA5MkMxQzNBNjAw NjA2RTQxQkExMjYxRUJEQzJDNUI3RjlFMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkWCjm7wqD9UlLA1qi0WW460+sqJh9vckOvD+hytEBCO5vvTmy SG//b+5DY1R60J049MK8ZbKO+iodNH9m9S4KOUDITPJeZ2ZOkzV84t4gOB8dFz+t DSSYgNUDq1xmQRZTwKTEPMBPn//M2Eix+SalTPpAptjoQpuyUdRnQQlZtmwtaFOc UjNbM9zNiy3POJR9Vp/s5pENyG93JL26UxAFTdvr0JAeu4mEileIDf5Vi3uIIQq4 HFNZxSzEfBbK0cJA86pfzhpsIVgLF1fViJiZC5a8gO3T81nrKxayDGU8FKsuzby1 4AX35Gxbnbq8bGBNoKwDLj/Ak0S5IGi8gHlnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUESCSwcOmAGBuQboSYevcLFt/nh4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0VTQ1N3Y09tQUdCdVFib1NZ ZXZjTEZ0X25oNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT TH0wDQYJKoZIhvcNAQELBQADggEBAFHoP3fl+iRy5WzI4lDm/48bp7+6YBldzXGd onemtesPDVvZ0isgLE2OrA5nBJ/Wte9uvE0N1dG3DJ2BJK6pCCj73dJqWD4Bj+5D +VBBL+sHc4CvF8qvo0HVWBKylpZ0dkVWuFYq4EPnp3fkDL6m43pqRCT06xEd7Xmj Vg89a63nmDSrEiiksEw8PKx8BnV9tdfcmBDKEdYzI/iSaiRpdPpNIm9MilBDvSlG 4dyHhdnFPfzFn0cvDudFCIwChGmXbGA5mLHgCDWVplk2xlU5+g7EGvy7Wi6Z5LUZ KOcfKfWNmFOcgsH6wcujxieQq8LomHuatWMymsx5ct0Jp1Q9+kg= -----END CERTIFICATE-----Generated at Mon Jun 3 12:09:04 2024 by rpki-client on console-ams.rpki-client.org