$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FaAX3RFb2zfBzuzWWHeLlthKbqI.roa File: FaAX3RFb2zfBzuzWWHeLlthKbqI.roa (raw, json) Hash identifier: Iyik3KD8qIb7lZkW0V92fQtDcKG5ONoWHjLka73DSrs= Subject key identifier: 15:A0:17:DD:11:5B:DB:37:C1:CE:EC:D6:58:77:8B:96:D8:4A:6E:A2 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 30A9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FaAX3RFb2zfBzuzWWHeLlthKbqI.roa Signing time: Mon 26 Aug 2024 05:29:41 +0000 ROA not before: Mon 26 Aug 2024 05:29:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 103.224.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12457 (0x30a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:41 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=15A017DD115BDB37C1CEECD658778B96D84A6EA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:21:4f:ed:db:7e:26:e8:93:68:41:ea:14:a9: 0e:ef:f5:ae:88:1b:bd:ad:4e:ac:cb:b8:f1:d5:fa: e8:49:88:0c:1c:5b:cf:74:e2:a9:d4:b4:cb:ef:31: be:b3:ff:51:20:0e:2a:9b:97:7a:d9:b4:1c:39:1d: b2:9a:43:3d:36:89:55:3d:0b:69:84:0e:e1:f2:81: 56:f5:72:14:18:6c:92:52:c8:24:9d:5d:3d:2d:5b: 99:8e:ef:45:52:19:eb:92:17:44:7d:f3:35:2a:7a: 73:23:f3:f7:40:cf:77:e3:bf:c9:13:7e:68:6c:30: 08:c7:27:a2:eb:47:2c:81:16:f0:4d:88:92:de:80: 5e:6f:5d:30:88:04:6d:a5:14:18:c0:38:a3:4a:a9: 1a:b8:3f:24:59:18:c1:15:21:c6:46:84:c1:ce:92: ec:47:db:c3:d3:08:c6:bf:1c:58:76:dd:b2:71:86: dd:f2:93:6e:6f:10:1c:f5:9c:d5:aa:34:8c:30:9e: aa:d0:03:08:a0:8c:bd:82:cf:77:5e:c0:a8:68:5a: b4:6c:bf:6c:46:ef:dc:81:87:6f:a6:f8:e7:2c:67: 92:84:24:fe:e2:6c:82:45:87:59:5e:81:d2:40:bf: 12:f4:99:0b:d0:72:3a:31:84:47:af:ff:3d:e3:3a: b1:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:A0:17:DD:11:5B:DB:37:C1:CE:EC:D6:58:77:8B:96:D8:4A:6E:A2 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FaAX3RFb2zfBzuzWWHeLlthKbqI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.224.192.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:9c:f6:cb:25:83:6f:fb:f3:1c:16:75:c4:ca:ab:f8:9d:5b: 2c:83:e0:f3:6f:c5:a4:7f:61:2d:fe:09:87:22:bf:93:3a:b5: 65:7c:76:66:64:3e:58:c5:b3:de:a0:a0:c1:f4:16:48:b1:4f: 57:2c:5d:a4:74:11:44:5d:53:20:37:57:90:5c:bd:b3:38:be: a2:31:e3:16:03:d3:00:54:ee:5f:37:d2:6a:0d:9d:28:b7:70: 51:16:bf:03:79:9f:a7:ee:99:84:26:44:4e:e5:c1:00:60:a3: 12:e7:24:ba:62:6c:d2:7a:7d:fd:d6:d6:08:b6:87:f0:ba:78: 9a:31:11:11:72:96:97:b3:b1:d4:73:09:7b:57:cd:92:f5:5b: b2:d8:72:2f:87:dc:64:b5:7a:80:7f:93:e7:79:a3:a6:1c:3e: 67:dd:55:87:fd:cd:42:2a:01:77:0c:45:d2:d6:96:db:72:c9: 62:b8:da:08:a1:a2:af:be:85:3c:7c:62:db:1b:df:7a:fd:11: 9b:ba:6f:2b:ff:21:5e:a9:fd:a0:fe:19:b3:e5:15:c7:a9:58: 65:5f:fe:aa:fa:0e:f9:7b:58:83:da:0b:ec:44:87:f4:9b:fd: af:11:f5:c6:53:68:19:6f:4e:8d:93:b9:bd:bd:b5:14:7f:fb: 82:12:62:f5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMKkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE1QTAxN0REMTE1QkRC MzdDMUNFRUNENjU4Nzc4Qjk2RDg0QTZFQTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpIU/t234m6JNoQeoUqQ7v9a6IG72tTqzLuPHV+uhJiAwcW890 4qnUtMvvMb6z/1EgDiqbl3rZtBw5HbKaQz02iVU9C2mEDuHygVb1chQYbJJSyCSd XT0tW5mO70VSGeuSF0R98zUqenMj8/dAz3fjv8kTfmhsMAjHJ6LrRyyBFvBNiJLe gF5vXTCIBG2lFBjAOKNKqRq4PyRZGMEVIcZGhMHOkuxH28PTCMa/HFh23bJxht3y k25vEBz1nNWqNIwwnqrQAwigjL2Cz3dewKhoWrRsv2xG79yBh2+m+OcsZ5KEJP7i bIJFh1legdJAvxL0mQvQcjoxhEev/z3jOrGZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFaAX3RFb2zfBzuzWWHeLlthKbqIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0ZhQVgzUkZiMnpmQnp1eldX SGVMbHRoS2JxSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn 4MAwDQYJKoZIhvcNAQELBQADggEBAE6c9sslg2/78xwWdcTKq/idWyyD4PNvxaR/ YS3+CYciv5M6tWV8dmZkPljFs96goMH0FkixT1csXaR0EURdUyA3V5BcvbM4vqIx 4xYD0wBU7l830moNnSi3cFEWvwN5n6fumYQmRE7lwQBgoxLnJLpibNJ6ff3W1gi2 h/C6eJoxERFylpezsdRzCXtXzZL1W7LYci+H3GS1eoB/k+d5o6YcPmfdVYf9zUIq AXcMRdLWlttyyWK42gihoq++hTx8Ytsb33r9EZu6byv/IV6p/aD+GbPlFcepWGVf /qr6Dvl7WIPaC+xEh/Sb/a8R9cZTaBlvTo2Tub29tRR/+4ISYvU= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:51 2024 by rpki-client on console-fra.rpki-client.org