$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IDnpaOqYF5pk6eLP59R4DZu3Bb0.roa File: IDnpaOqYF5pk6eLP59R4DZu3Bb0.roa (raw, json) Hash identifier: IE8NFwFOGAbTloypnnTqi2uLBAf5jg4bm7ANorg1LnE= Subject key identifier: 20:39:E9:68:EA:98:17:9A:64:E9:E2:CF:E7:D4:78:0D:9B:B7:05:BD Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31B7 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IDnpaOqYF5pk6eLP59R4DZu3Bb0.roa Signing time: Mon 26 Aug 2024 05:30:51 +0000 ROA not before: Mon 26 Aug 2024 05:30:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12727 (0x31b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:51 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2039E968EA98179A64E9E2CFE7D4780D9BB705BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f5:dd:58:58:05:8b:c0:a5:de:43:3a:36:db: f9:ff:6d:41:7c:6d:2d:bf:51:dc:cf:f3:7f:6b:4c: fd:87:4e:24:ca:03:9a:1b:5a:70:37:54:7c:7c:53: 42:60:21:6f:5f:5f:64:f8:0e:ea:d1:c7:97:ee:01: 21:73:a7:ed:df:a8:f7:61:9c:9a:71:d4:e1:67:f1: 1b:f8:64:32:72:27:70:d8:8c:da:c5:68:a7:9e:0a: 2a:3d:53:04:c1:d6:58:ea:12:79:f3:4c:01:db:66: 10:19:a1:22:96:32:8d:41:17:4e:e8:d9:c8:99:85: 64:fb:ba:3c:6f:7f:6a:55:45:51:46:44:76:91:a4: 85:0b:e7:d3:e0:59:a7:01:98:17:0d:60:9d:9a:b5: 09:5e:94:c7:94:be:e4:75:bd:80:2c:69:db:29:24: f7:24:db:6e:e2:da:a4:50:31:18:80:37:1d:63:e1: 4a:2c:b1:d7:59:85:c3:c8:75:72:76:a5:a6:65:5c: 53:2b:f0:82:c8:55:39:a3:14:12:5a:37:8d:67:43: 79:26:25:ad:da:66:ce:66:a8:7f:e9:3a:c6:3a:7d: 3d:2e:64:9a:ea:15:04:98:8e:86:50:8c:e1:67:f4: 25:37:3d:81:81:92:c0:56:3f:3f:9c:99:83:43:69: a7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:39:E9:68:EA:98:17:9A:64:E9:E2:CF:E7:D4:78:0D:9B:B7:05:BD X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IDnpaOqYF5pk6eLP59R4DZu3Bb0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.144.0/21 Signature Algorithm: sha256WithRSAEncryption 93:41:79:b6:c9:cf:ff:8c:a8:31:6e:5b:5c:36:ee:ff:bb:44: d9:cb:ee:21:fc:b7:85:b5:da:24:8a:0c:d3:db:22:42:ac:72: d1:a6:86:d1:3d:8e:7b:e7:6a:56:3e:9c:d2:e8:04:c0:fc:f3: 8c:52:93:2c:b0:54:a6:3b:00:8e:6f:c9:dd:3e:e9:7b:f5:8f: a5:af:76:53:83:df:81:5e:05:28:93:f7:a6:98:a1:f4:31:6c: 3c:7f:c0:e1:5d:aa:c5:12:64:a0:50:74:26:8e:39:d7:56:65: f9:f6:68:95:b6:5b:9d:f7:a8:05:b3:40:5a:b5:18:d8:aa:66: a1:5a:58:7b:76:8a:47:10:d9:d0:cb:b0:11:73:b8:19:b7:36: 19:c9:be:10:e5:cd:e2:7b:3c:3b:05:b9:45:b8:ab:72:1b:a4: 50:23:1b:b3:76:8f:82:07:17:39:37:47:cc:e2:57:84:df:ae: 06:64:ae:16:a0:28:87:8f:23:31:bc:24:30:90:fa:ff:76:57: 3e:2e:2a:68:07:08:ac:10:07:e5:9d:da:dd:cb:bf:29:19:e3: c9:0c:18:1c:5f:12:32:5d:31:3c:0b:c6:be:35:54:8c:35:51: 3d:54:b9:f7:d2:81:42:77:b6:83:dd:08:b9:2d:62:e1:1d:5b: bd:f1:fc:ba -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMbcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwNTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIwMzlFOTY4RUE5ODE3 OUE2NEU5RTJDRkU3RDQ3ODBEOUJCNzA1QkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCd9d1YWAWLwKXeQzo22/n/bUF8bS2/UdzP839rTP2HTiTKA5ob WnA3VHx8U0JgIW9fX2T4DurRx5fuASFzp+3fqPdhnJpx1OFn8Rv4ZDJyJ3DYjNrF aKeeCio9UwTB1ljqEnnzTAHbZhAZoSKWMo1BF07o2ciZhWT7ujxvf2pVRVFGRHaR pIUL59PgWacBmBcNYJ2atQlelMeUvuR1vYAsadspJPck227i2qRQMRiANx1j4Uos sddZhcPIdXJ2paZlXFMr8ILIVTmjFBJaN41nQ3kmJa3aZs5mqH/pOsY6fT0uZJrq FQSYjoZQjOFn9CU3PYGBksBWPz+cmYNDaadPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUIDnpaOqYF5pk6eLP59R4DZu3Bb0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0lEbnBhT3FZRjVwazZlTFA1 OVI0RFp1M0JiMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wZAwDQYJKoZIhvcNAQELBQADggEBAJNBebbJz/+MqDFuW1w27v+7RNnL7iH8t4W1 2iSKDNPbIkKsctGmhtE9jnvnalY+nNLoBMD884xSkyywVKY7AI5vyd0+6Xv1j6Wv dlOD34FeBSiT96aYofQxbDx/wOFdqsUSZKBQdCaOOddWZfn2aJW2W533qAWzQFq1 GNiqZqFaWHt2ikcQ2dDLsBFzuBm3NhnJvhDlzeJ7PDsFuUW4q3IbpFAjG7N2j4IH Fzk3R8ziV4TfrgZkrhagKIePIzG8JDCQ+v92Vz4uKmgHCKwQB+Wd2t3LvykZ48kM GBxfEjJdMTwLxr41VIw1UT1UuffSgUJ3toPdCLktYuEdW73x/Lo= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:37 2024 by rpki-client on console-ams.rpki-client.org