$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FKGi6jVw5bz6nomMlgPZ7h-d4QM.roa File: FKGi6jVw5bz6nomMlgPZ7h-d4QM.roa (raw, json) Hash identifier: VtOeaMuWmYPehkT/Fro992XRdR1W7JfreQ5/LQGyffE= Subject key identifier: 14:A1:A2:EA:35:70:E5:BC:FA:9E:89:8C:96:03:D9:EE:1F:9D:E1:03 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2FF1 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FKGi6jVw5bz6nomMlgPZ7h-d4QM.roa Signing time: Mon 26 Aug 2024 05:29:00 +0000 ROA not before: Mon 26 Aug 2024 05:29:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.177.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12273 (0x2ff1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=14A1A2EA3570E5BCFA9E898C9603D9EE1F9DE103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9a:88:a4:0a:b1:94:9b:d2:ee:43:7e:88:62: 17:51:5d:fe:de:d0:dc:a8:17:05:23:51:7c:fb:c6: 27:93:a3:be:84:72:70:39:2e:6b:82:8b:88:27:8b: 3e:94:fc:bd:db:2e:d9:66:23:db:7a:9a:d2:7b:b9: 74:6f:e0:e6:eb:e6:98:71:ad:4d:4f:45:35:cd:99: ef:50:ec:28:9d:27:06:fa:cc:0a:52:e6:b8:5f:ca: 69:d6:00:0e:2b:13:d1:19:df:96:84:3b:f6:5e:5a: d7:2d:1a:49:6a:a9:8e:bf:28:b0:d7:0b:4a:ac:ec: 45:68:45:bc:7b:e6:59:3f:6e:66:1b:52:bd:4b:be: 08:05:59:1e:ea:7f:00:1e:3f:fd:4c:db:b3:d6:9a: 42:93:5c:2b:ef:64:c3:22:6d:90:af:7e:34:e8:3d: ea:6f:2b:f7:3b:7a:9b:fc:e2:c6:0a:27:45:06:f9: 7e:ff:94:f1:c3:fe:ec:c6:8c:05:03:fd:8a:da:f4: 01:f4:12:c2:12:19:78:2f:4f:95:20:9b:5e:18:af: 71:c6:00:14:b5:a0:e5:52:a1:f2:26:50:0f:06:11: 00:cb:d2:01:f6:b1:b9:97:6e:ec:c2:68:ec:ce:e0: 6b:8f:68:39:88:e6:c4:17:8c:2f:17:62:b1:d4:79: d8:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A1:A2:EA:35:70:E5:BC:FA:9E:89:8C:96:03:D9:EE:1F:9D:E1:03 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FKGi6jVw5bz6nomMlgPZ7h-d4QM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.116.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:ad:30:a1:1a:3c:02:77:4f:06:70:97:2b:3d:a6:ae:0e:59: 1d:c4:68:12:5d:ac:c8:54:4e:2f:cd:af:d7:39:12:fe:eb:91: 95:5c:9e:70:fb:18:03:37:a7:6f:30:bf:4b:dc:7b:fc:d8:aa: a9:18:6b:69:f0:9e:c5:88:fe:44:1d:4f:b2:4a:f5:ff:74:c5: 6a:3f:a4:98:23:86:ff:d9:d6:be:60:3d:e8:af:eb:67:f2:83: c7:26:3d:6e:cd:b1:d1:4d:92:28:57:3c:8b:7b:0c:e7:ba:04: 24:c0:5d:c4:16:e0:f5:03:b0:1d:ba:e7:90:ed:44:26:93:3a: ec:81:10:98:d4:c8:b2:59:35:77:6c:8e:02:cc:ba:58:de:31: de:94:88:d2:63:51:3f:95:92:4b:6e:fb:d0:d9:22:13:ae:94: 85:3d:77:81:4e:0b:46:87:85:5f:0b:e8:a9:be:0d:a4:4f:7d: 68:28:b3:c1:fa:e2:35:35:8d:52:11:50:67:14:4b:08:5c:19: 81:80:a1:9d:e8:cd:47:42:91:3e:50:1d:db:c7:47:e6:6f:93: 26:8a:bd:1d:53:5c:04:5e:03:41:73:20:fc:9a:cc:3b:0b:19: 2e:f0:76:79:13:f3:18:c3:18:bd:1b:0f:bd:24:5b:50:c5:9f: c9:ad:9a:1c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICL/EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE0QTFBMkVBMzU3MEU1 QkNGQTlFODk4Qzk2MDNEOUVFMUY5REUxMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBmoikCrGUm9LuQ36IYhdRXf7e0NyoFwUjUXz7xieTo76EcnA5 LmuCi4gniz6U/L3bLtlmI9t6mtJ7uXRv4Obr5phxrU1PRTXNme9Q7CidJwb6zApS 5rhfymnWAA4rE9EZ35aEO/ZeWtctGklqqY6/KLDXC0qs7EVoRbx75lk/bmYbUr1L vggFWR7qfwAeP/1M27PWmkKTXCvvZMMibZCvfjToPepvK/c7epv84sYKJ0UG+X7/ lPHD/uzGjAUD/Yra9AH0EsISGXgvT5Ugm14Yr3HGABS1oOVSofImUA8GEQDL0gH2 sbmXbuzCaOzO4GuPaDmI5sQXjC8XYrHUedj3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFKGi6jVw5bz6nomMlgPZ7h+d4QMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0ZLR2k2alZ3NWJ6Nm5vbU1s Z1BaN2gtZDRRTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG0 sXQwDQYJKoZIhvcNAQELBQADggEBAEytMKEaPAJ3TwZwlys9pq4OWR3EaBJdrMhU Ti/Nr9c5Ev7rkZVcnnD7GAM3p28wv0vce/zYqqkYa2nwnsWI/kQdT7JK9f90xWo/ pJgjhv/Z1r5gPeiv62fyg8cmPW7NsdFNkihXPIt7DOe6BCTAXcQW4PUDsB2655Dt RCaTOuyBEJjUyLJZNXdsjgLMuljeMd6UiNJjUT+Vkktu+9DZIhOulIU9d4FOC0aH hV8L6Km+DaRPfWgos8H64jU1jVIRUGcUSwhcGYGAoZ3ozUdCkT5QHdvHR+ZvkyaK vR1TXAReA0FzIPyazDsLGS7wdnkT8xjDGL0bD70kW1DFn8mtmhw= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:18 2024 by rpki-client on console-ams.rpki-client.org