$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/EkmQOu5y54FczPdVe1YDg1xJEeY.roa File: EkmQOu5y54FczPdVe1YDg1xJEeY.roa (raw, json) Hash identifier: YZrLxY5OZ06N/NpLkxf9YpDP/HbwtBKlWbsjpArgz9Q= Subject key identifier: 12:49:90:3A:EE:72:E7:81:5C:CC:F7:55:7B:56:03:83:5C:49:11:E6 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 323B Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/EkmQOu5y54FczPdVe1YDg1xJEeY.roa Signing time: Mon 26 Aug 2024 05:31:26 +0000 ROA not before: Mon 26 Aug 2024 05:31:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.246.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12859 (0x323b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1249903AEE72E7815CCCF7557B5603835C4911E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7a:83:5b:86:e2:d7:3e:2d:6d:48:44:5f:e0: 67:3d:7b:de:09:2a:bc:8d:79:02:ef:a2:cf:5f:36: 74:2a:84:68:eb:cc:f4:03:dd:7c:fc:9b:75:ab:71: ce:bf:42:b4:c5:23:57:b4:1d:f5:38:cb:2b:71:65: 10:11:49:27:4d:38:bd:e6:a1:5a:24:49:be:e8:8c: 62:98:64:c3:13:7e:97:f0:80:9c:55:99:47:b4:e5: fd:fb:5d:d2:d7:a6:30:4b:08:5d:21:a7:1d:fe:0e: 2d:54:e2:80:26:75:e9:d3:36:4b:71:47:e1:a6:3f: 87:2f:e1:f9:93:82:db:31:73:63:f2:c5:1d:33:20: 99:3b:6f:fc:10:15:f3:a8:6f:4b:82:25:a6:ce:35: 2e:03:e5:dd:5b:67:d5:f5:57:b4:de:96:71:32:e9: 6a:05:eb:08:73:57:30:99:9f:51:3c:d3:71:9b:5b: ff:ca:97:16:35:5e:c6:cd:26:66:a6:41:f2:b3:2a: b6:77:74:c1:53:b2:ed:93:1d:ca:e5:b1:ce:e4:7a: e1:37:5b:14:3f:55:2d:c2:42:dd:ef:8e:49:f1:43: 66:ac:c3:e6:91:d7:43:a4:81:d0:04:a0:d7:07:b9: ed:cb:e5:3a:5a:a1:2f:03:d5:b7:58:34:30:74:c7: 9a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:49:90:3A:EE:72:E7:81:5C:CC:F7:55:7B:56:03:83:5C:49:11:E6 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/EkmQOu5y54FczPdVe1YDg1xJEeY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.246.0/23 Signature Algorithm: sha256WithRSAEncryption 64:1f:14:b3:c3:63:c3:c1:f0:f3:9d:79:74:7d:28:7f:33:7a: 28:c9:52:91:a4:71:be:0d:54:44:de:a5:da:1d:c8:07:48:01: d0:bc:13:fd:94:fb:42:1f:3a:23:f5:64:af:e4:78:f1:44:3e: 70:74:2a:08:55:8c:74:d0:34:1f:b2:83:d4:35:db:10:15:ec: 49:62:fa:ca:90:92:92:6c:76:35:af:13:db:c0:a0:0d:96:ac: 9b:c9:c2:25:20:18:de:4a:60:5d:c0:67:b5:94:2d:0e:f4:a7: 91:55:76:32:03:13:90:5e:80:1d:82:b0:24:4a:6b:e0:03:56: 35:9b:9e:33:31:6f:e2:9d:4b:a4:20:25:a1:2f:f1:8a:25:51: b7:fb:cc:18:be:f3:af:58:8e:ba:4b:9f:42:bf:1d:f5:42:fc: d2:01:60:4d:8c:25:5c:30:99:16:37:0b:fe:a9:b6:58:25:74: 93:d5:75:a0:3b:26:15:68:e4:14:23:62:fe:42:13:95:b2:d8: 4c:8d:18:57:e1:40:17:1e:78:66:22:c0:23:5a:e5:fa:2a:16: 76:9e:6d:83:bc:5d:ff:a2:03:82:94:96:20:dd:5d:4e:4a:cb: b9:1a:63:4c:1b:30:13:04:b9:29:ef:8a:ee:6f:b7:07:f0:35: fc:79:95:b0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMjswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEyNDk5MDNBRUU3MkU3 ODE1Q0NDRjc1NTdCNTYwMzgzNUM0OTExRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJeoNbhuLXPi1tSERf4Gc9e94JKryNeQLvos9fNnQqhGjrzPQD 3Xz8m3Wrcc6/QrTFI1e0HfU4yytxZRARSSdNOL3moVokSb7ojGKYZMMTfpfwgJxV mUe05f37XdLXpjBLCF0hpx3+Di1U4oAmdenTNktxR+GmP4cv4fmTgtsxc2PyxR0z IJk7b/wQFfOob0uCJabONS4D5d1bZ9X1V7TelnEy6WoF6whzVzCZn1E803GbW//K lxY1XsbNJmamQfKzKrZ3dMFTsu2THcrlsc7keuE3WxQ/VS3CQt3vjknxQ2asw+aR 10OkgdAEoNcHue3L5TpaoS8D1bdYNDB0x5rnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUEkmQOu5y54FczPdVe1YDg1xJEeYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0VrbVFPdTV5NTRGY3pQZFZl MVlEZzF4SkVlWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF2 6fYwDQYJKoZIhvcNAQELBQADggEBAGQfFLPDY8PB8POdeXR9KH8zeijJUpGkcb4N VETepdodyAdIAdC8E/2U+0IfOiP1ZK/kePFEPnB0KghVjHTQNB+yg9Q12xAV7Eli +sqQkpJsdjWvE9vAoA2WrJvJwiUgGN5KYF3AZ7WULQ70p5FVdjIDE5BegB2CsCRK a+ADVjWbnjMxb+KdS6QgJaEv8YolUbf7zBi+869YjrpLn0K/HfVC/NIBYE2MJVww mRY3C/6ptlgldJPVdaA7JhVo5BQjYv5CE5Wy2EyNGFfhQBceeGYiwCNa5foqFnae bYO8Xf+iA4KUliDdXU5Ky7kaY0wbMBMEuSnviu5vtwfwNfx5lbA= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:51 2024 by rpki-client on console-ams.rpki-client.org