$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/EiHB4EIcpHoq8lVQouyJ_u5t4rI.roa File: EiHB4EIcpHoq8lVQouyJ_u5t4rI.roa (raw, json) Hash identifier: 2ada+XNk+3MYeRbIo3P80WjnpIEZI9NjhnaljDO0yAA= Subject key identifier: 12:21:C1:E0:42:1C:A4:7A:2A:F2:55:50:A2:EC:89:FE:EE:6D:E2:B2 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 307A Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/EiHB4EIcpHoq8lVQouyJ_u5t4rI.roa Signing time: Mon 26 Aug 2024 05:29:29 +0000 ROA not before: Mon 26 Aug 2024 05:29:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12410 (0x307a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1221C1E0421CA47A2AF25550A2EC89FEEE6DE2B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:86:17:4d:a4:6b:0a:87:d2:f6:1e:0a:cc:7c: 07:b5:35:2a:7e:7a:f9:8b:f3:8f:11:9a:a5:0d:59: 50:92:da:78:fa:ad:b0:af:d2:6e:02:34:04:b7:3a: 6c:f3:17:b6:a7:e0:a3:98:80:dd:61:b4:13:ab:e6: a7:90:1a:9e:9d:31:29:ee:76:46:ed:42:b6:f6:6d: b9:ab:96:49:07:36:1b:89:2e:01:60:1e:30:a3:44: 67:02:01:a3:d9:aa:cd:21:9f:71:84:96:67:88:a8: df:53:9d:b1:8b:54:4e:86:1a:67:52:ff:44:a2:50: 11:c9:eb:77:65:aa:b3:7c:54:e6:00:04:bf:3f:5b: ce:ab:09:ef:85:82:85:30:24:59:2c:9c:ca:7a:53: 28:f7:85:1b:d0:6d:57:c6:5e:a7:8f:a1:d8:15:e2: 22:88:12:37:ac:39:b8:91:49:f3:95:51:5d:8d:d5: 59:5e:ce:fb:58:b6:12:fa:fb:08:37:b3:82:f1:53: b8:ba:bf:92:b4:83:d4:4b:1b:ef:63:1d:6a:a9:a8: 58:b9:13:35:a2:7e:d5:04:17:ed:da:45:9e:cc:6e: 0b:28:00:9e:72:90:9e:00:f1:86:24:7b:b0:54:13: 61:1c:56:b8:75:6f:d9:d8:12:31:f9:f4:08:3c:a7: 27:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:21:C1:E0:42:1C:A4:7A:2A:F2:55:50:A2:EC:89:FE:EE:6D:E2:B2 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/EiHB4EIcpHoq8lVQouyJ_u5t4rI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.64.0/22 Signature Algorithm: sha256WithRSAEncryption 93:e6:d9:14:26:18:11:2d:fd:e2:13:f9:ee:f2:44:8a:6d:a0: cd:a3:d3:eb:0d:ff:8a:9a:6d:69:43:e8:c8:bb:95:53:31:ec: a0:17:b5:96:8e:ee:02:d5:a6:3f:d5:3d:d1:15:c4:72:5c:6a: c1:14:6d:05:3d:3c:91:05:68:5a:71:cf:5f:b5:75:9e:26:ed: e8:61:ca:b5:e0:89:85:2b:a1:49:f1:3c:3e:dd:9f:81:30:c7: 77:42:ee:50:4c:cc:40:6b:8b:85:c4:75:93:c2:d1:87:b4:4a: cc:84:19:c6:e9:a7:c2:66:5e:d9:6f:da:e6:31:41:54:73:5d: 9b:f3:aa:3d:98:85:3f:8f:84:51:64:2c:db:2a:9d:ce:42:2a: 7a:30:c6:3b:ac:8d:95:96:53:30:96:ab:23:84:9a:d5:3c:58: dc:43:d9:66:3f:84:6a:06:f5:81:f1:01:16:d1:b1:be:57:e5: 21:b2:45:3b:85:75:65:d0:dc:80:3c:b1:52:73:18:1a:41:59: ff:ee:97:93:59:a9:c1:27:08:0a:54:74:ae:03:74:d7:3b:51: 54:42:7d:72:bc:9e:3c:ba:db:d5:84:c1:f4:21:18:13:3c:8b: ac:46:06:a5:56:03:69:b5:b0:f4:4a:d9:0f:e3:51:58:1c:f5: c8:3f:d5:ca -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMHowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEyMjFDMUUwNDIxQ0E0 N0EyQUYyNTU1MEEyRUM4OUZFRUU2REUyQjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCohhdNpGsKh9L2HgrMfAe1NSp+evmL848RmqUNWVCS2nj6rbCv 0m4CNAS3OmzzF7an4KOYgN1htBOr5qeQGp6dMSnudkbtQrb2bbmrlkkHNhuJLgFg HjCjRGcCAaPZqs0hn3GElmeIqN9TnbGLVE6GGmdS/0SiUBHJ63dlqrN8VOYABL8/ W86rCe+FgoUwJFksnMp6Uyj3hRvQbVfGXqePodgV4iKIEjesObiRSfOVUV2N1Vle zvtYthL6+wg3s4LxU7i6v5K0g9RLG+9jHWqpqFi5EzWiftUEF+3aRZ7MbgsoAJ5y kJ4A8YYke7BUE2EcVrh1b9nYEjH59Ag8pyeDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUEiHB4EIcpHoq8lVQouyJ/u5t4rIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0VpSEI0RUljcEhvcThsVlFv dXlKX3U1dDRySS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wUAwDQYJKoZIhvcNAQELBQADggEBAJPm2RQmGBEt/eIT+e7yRIptoM2j0+sN/4qa bWlD6Mi7lVMx7KAXtZaO7gLVpj/VPdEVxHJcasEUbQU9PJEFaFpxz1+1dZ4m7ehh yrXgiYUroUnxPD7dn4Ewx3dC7lBMzEBri4XEdZPC0Ye0SsyEGcbpp8JmXtlv2uYx QVRzXZvzqj2YhT+PhFFkLNsqnc5CKnowxjusjZWWUzCWqyOEmtU8WNxD2WY/hGoG 9YHxARbRsb5X5SGyRTuFdWXQ3IA8sVJzGBpBWf/ul5NZqcEnCApUdK4DdNc7UVRC fXK8njy629WEwfQhGBM8i6xGBqVWA2m1sPRK2Q/jUVgc9cg/1co= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:51 2024 by rpki-client on console-ams.rpki-client.org