$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/F0hE3-AA97ZLR6mg5DMI4_3PdAU.roa File: F0hE3-AA97ZLR6mg5DMI4_3PdAU.roa (raw, json) Hash identifier: 18IIO61eFDp58yUpOI5onYsZmQtVdmszFuwUHi8eb1U= Subject key identifier: 17:48:44:DF:E0:00:F7:B6:4B:47:A9:A0:E4:33:08:E3:FD:CF:74:05 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3220 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/F0hE3-AA97ZLR6mg5DMI4_3PdAU.roa Signing time: Mon 26 Aug 2024 05:31:17 +0000 ROA not before: Mon 26 Aug 2024 05:31:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.192.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12832 (0x3220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=174844DFE000F7B64B47A9A0E43308E3FDCF7405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a8:f4:24:54:c8:df:b9:db:0f:73:4b:4d:ef: 26:8e:a1:f2:a8:c1:a4:76:f3:d6:ff:08:d5:d4:a9: 58:7c:b3:1b:9b:73:35:44:a7:75:a9:b7:6e:99:55: 28:0b:60:a9:e1:8f:30:45:ff:bf:fe:d7:9f:64:20: 1a:6e:5f:fb:2d:b8:da:37:6a:a5:ff:b0:9e:9b:f1: a5:af:6b:1e:78:fc:87:50:84:ce:e9:3d:98:9a:85: 36:a9:29:ff:85:1f:58:50:a6:98:9d:d1:9b:2f:5d: d9:4d:91:3f:23:53:a0:ad:75:15:36:61:ed:0d:fd: 2e:bc:53:21:3b:1e:ce:23:a6:a5:00:7b:95:23:3e: 66:9d:ed:d8:a5:5c:9c:3c:2c:ad:18:33:f9:a0:5e: 59:bd:ae:97:b0:92:21:39:8d:16:42:ed:cd:cc:51: d4:30:fc:e6:7c:69:75:06:7e:b5:32:d1:5b:47:9d: 30:36:ee:28:04:d6:64:6f:a8:f9:ce:52:39:1c:40: a9:9a:14:32:8a:15:47:73:b6:b6:6d:cf:36:ed:44: 27:47:c1:da:df:7f:49:1f:bd:67:8e:be:bf:8b:85: 5b:e1:61:2b:68:52:70:a8:5a:a8:0b:b3:b6:c5:02: b0:1c:b1:fb:08:44:f6:5c:c9:9e:59:e1:76:df:2e: 66:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:48:44:DF:E0:00:F7:B6:4B:47:A9:A0:E4:33:08:E3:FD:CF:74:05 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/F0hE3-AA97ZLR6mg5DMI4_3PdAU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.216.0/22 Signature Algorithm: sha256WithRSAEncryption a1:11:08:a4:97:12:8e:da:5a:e3:ae:29:30:59:b0:f7:15:02: c3:70:51:7f:86:64:5c:09:ff:e7:6c:df:d0:3d:87:18:97:7c: fb:a5:05:44:c2:fa:23:ff:f2:52:ea:4f:ec:45:de:9a:8d:cb: 65:81:67:38:22:4a:1d:ab:c7:83:21:06:01:7d:1d:0b:b7:4d: e9:2d:d4:0a:a7:79:b3:76:48:19:d9:32:48:5f:23:22:50:f8: 7a:4b:64:9a:70:4d:44:5c:97:5e:36:ee:86:8c:5b:2a:70:a8: 7d:08:84:17:ad:e2:9c:5c:53:2a:e7:ea:84:13:c0:d8:df:d2: 84:27:53:db:9a:61:31:a1:21:1c:c3:b5:52:d0:b5:1b:36:13: 0b:c5:60:e7:cb:bf:13:11:05:ed:f2:74:de:ce:37:27:68:74: d4:0c:43:62:35:61:e0:ab:ae:ec:d4:45:61:3d:6a:4d:c6:54: 07:ea:16:2d:a7:14:84:4e:06:5e:7e:ce:25:79:d3:9e:96:3b: 6f:0f:35:6c:93:e0:fb:f3:a5:68:36:37:97:e3:6b:f0:f1:f6: ce:93:c3:6d:e3:81:4e:66:8a:75:cc:70:c2:21:39:24:93:30: 45:2e:e3:dd:3b:48:6a:94:98:6a:b1:e6:67:1a:96:10:d1:bc: cd:6f:49:8b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMiAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE3NDg0NERGRTAwMEY3 QjY0QjQ3QTlBMEU0MzMwOEUzRkRDRjc0MDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAqPQkVMjfudsPc0tN7yaOofKowaR289b/CNXUqVh8sxubczVE p3Wpt26ZVSgLYKnhjzBF/7/+159kIBpuX/stuNo3aqX/sJ6b8aWvax54/IdQhM7p PZiahTapKf+FH1hQppid0ZsvXdlNkT8jU6CtdRU2Ye0N/S68UyE7Hs4jpqUAe5Uj Pmad7dilXJw8LK0YM/mgXlm9rpewkiE5jRZC7c3MUdQw/OZ8aXUGfrUy0VtHnTA2 7igE1mRvqPnOUjkcQKmaFDKKFUdztrZtzzbtRCdHwdrff0kfvWeOvr+LhVvhYSto UnCoWqgLs7bFArAcsfsIRPZcyZ5Z4XbfLmbbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUF0hE3+AA97ZLR6mg5DMI4/3PdAUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0YwaEUzLUFBOTdaTFI2bWc1 RE1JNF8zUGRBVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wNgwDQYJKoZIhvcNAQELBQADggEBAKERCKSXEo7aWuOuKTBZsPcVAsNwUX+GZFwJ /+ds39A9hxiXfPulBUTC+iP/8lLqT+xF3pqNy2WBZzgiSh2rx4MhBgF9HQu3Tekt 1AqnebN2SBnZMkhfIyJQ+HpLZJpwTURcl1427oaMWypwqH0IhBet4pxcUyrn6oQT wNjf0oQnU9uaYTGhIRzDtVLQtRs2EwvFYOfLvxMRBe3ydN7ONydodNQMQ2I1YeCr ruzURWE9ak3GVAfqFi2nFIROBl5+ziV5056WO28PNWyT4PvzpWg2N5fja/Dx9s6T w23jgU5minXMcMIhOSSTMEUu4907SGqUmGqx5mcalhDRvM1vSYs= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:51 2024 by rpki-client on console-ams.rpki-client.org