$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GbclS4WjCLf1xH5JytrtcL-Zw2U.roa File: GbclS4WjCLf1xH5JytrtcL-Zw2U.roa (raw, json) Hash identifier: 16savo6jqPWDxPA+bhQ8+Cgx3N+3WjbrGCYwIVCtaqM= Subject key identifier: 19:B7:25:4B:85:A3:08:B7:F5:C4:7E:49:CA:DA:ED:70:BF:99:C3:65 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 30AE Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GbclS4WjCLf1xH5JytrtcL-Zw2U.roa Signing time: Mon 26 Aug 2024 05:29:43 +0000 ROA not before: Mon 26 Aug 2024 05:29:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12462 (0x30ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=19B7254B85A308B7F5C47E49CADAED70BF99C365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1b:97:17:51:ac:e7:81:09:8b:a9:06:37:66: cc:ca:f2:d4:29:21:08:57:86:61:5a:58:70:a6:64: c1:ad:46:54:44:7e:af:68:33:32:78:7e:da:9b:56: 62:cf:ab:00:04:bc:86:ab:2e:46:ea:fd:61:b1:89: b5:20:06:a8:44:8d:e6:66:43:a1:3c:94:7e:6b:5e: f5:86:5a:06:21:19:fa:46:1e:e2:c3:2c:e6:c3:3e: 7f:5d:e3:4b:9f:8a:98:8a:0a:d6:8e:ba:b9:ec:73: b7:c6:d3:ab:13:26:16:75:c1:9f:27:44:90:ef:3a: 19:ac:ff:d0:12:37:89:6d:61:32:80:c1:df:52:42: e3:80:2a:ad:1e:6b:21:1b:e5:c1:84:bb:15:4a:e3: 75:28:b0:71:4c:f9:60:39:37:6c:15:0c:b4:e6:76: 5d:2d:d1:4a:ee:c9:3c:d5:a7:a7:84:a3:61:eb:4e: 50:7f:9b:5a:2f:cd:ae:e7:79:4b:45:0a:0b:7a:57: bb:5d:5c:d6:65:a9:43:aa:85:dc:d0:44:50:c5:5d: 9c:9d:8a:83:aa:62:55:e8:48:2b:a8:48:82:69:27: bf:1c:4c:d7:bb:c0:21:62:c7:37:d5:b0:d8:2b:c7: 12:3c:b7:12:ee:ab:db:68:fd:ba:6c:da:72:30:bb: 59:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:B7:25:4B:85:A3:08:B7:F5:C4:7E:49:CA:DA:ED:70:BF:99:C3:65 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/GbclS4WjCLf1xH5JytrtcL-Zw2U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.47.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:c0:61:ba:a8:f2:9b:15:b2:f1:35:2d:67:6a:0c:10:76:b4: d3:a1:de:07:55:a6:ca:c6:fa:66:4f:22:c3:b6:a5:55:90:99: 41:33:9b:c8:52:50:e7:79:55:b8:f4:ed:08:58:98:e5:2d:4c: 55:20:22:d7:93:72:d9:d2:00:14:5a:fb:ea:88:aa:fa:b5:90: 45:8c:0d:92:52:39:58:eb:fb:20:50:f9:3a:7a:fa:bd:12:3a: 68:e4:6a:91:2a:f4:2f:a2:07:2c:a7:40:ed:d9:41:fa:9e:c6: 75:51:fa:cd:30:89:8f:08:07:fe:ab:ce:db:ad:ed:8b:cb:18: 8c:02:f3:2c:e1:bf:8e:75:ec:9a:1f:11:54:fe:a0:98:38:ca: 71:f2:99:a8:d8:6a:fa:e2:35:90:04:9c:fd:2d:30:c3:1b:fa: 14:a4:56:60:3b:35:bd:9a:69:f0:18:81:7c:88:76:27:4f:68: e8:4b:87:90:15:c5:79:14:9f:8f:fe:d4:7b:16:94:56:e7:06: 78:b2:86:33:73:92:99:c0:62:7d:68:af:30:da:c6:cc:cd:67: 30:f5:94:92:40:59:e6:d9:2e:91:12:19:35:38:38:3d:e6:a6: 47:e2:60:c2:4a:c3:5e:b8:7b:c6:bb:27:73:1f:90:55:b9:b9: 13:f6:b2:c6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMK4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE5QjcyNTRCODVBMzA4 QjdGNUM0N0U0OUNBREFFRDcwQkY5OUMzNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrG5cXUazngQmLqQY3ZszK8tQpIQhXhmFaWHCmZMGtRlREfq9o MzJ4ftqbVmLPqwAEvIarLkbq/WGxibUgBqhEjeZmQ6E8lH5rXvWGWgYhGfpGHuLD LObDPn9d40ufipiKCtaOurnsc7fG06sTJhZ1wZ8nRJDvOhms/9ASN4ltYTKAwd9S QuOAKq0eayEb5cGEuxVK43UosHFM+WA5N2wVDLTmdl0t0UruyTzVp6eEo2HrTlB/ m1ovza7neUtFCgt6V7tdXNZlqUOqhdzQRFDFXZydioOqYlXoSCuoSIJpJ78cTNe7 wCFixzfVsNgrxxI8txLuq9to/bps2nIwu1mdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUGbclS4WjCLf1xH5JytrtcL+Zw2UwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0diY2xTNFdqQ0xmMXhINUp5 dHJ0Y0wtWncyVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AS8wDQYJKoZIhvcNAQELBQADggEBAG/AYbqo8psVsvE1LWdqDBB2tNOh3gdVpsrG +mZPIsO2pVWQmUEzm8hSUOd5Vbj07QhYmOUtTFUgIteTctnSABRa++qIqvq1kEWM DZJSOVjr+yBQ+Tp6+r0SOmjkapEq9C+iByynQO3ZQfqexnVR+s0wiY8IB/6rztut 7YvLGIwC8yzhv4517JofEVT+oJg4ynHymajYavriNZAEnP0tMMMb+hSkVmA7Nb2a afAYgXyIdidPaOhLh5AVxXkUn4/+1HsWlFbnBniyhjNzkpnAYn1orzDaxszNZzD1 lJJAWebZLpESGTU4OD3mpkfiYMJKw164e8a7J3MfkFW5uRP2ssY= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:51 2024 by rpki-client on console-ams.rpki-client.org