$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IfT9pdhm1vMQ-Vr7yNzjPEDnIYA.roa File: IfT9pdhm1vMQ-Vr7yNzjPEDnIYA.roa (raw, json) Hash identifier: j1ZdxUeG+Mob1qNIl2lUQwL5DyTOInVnGriUswkCj5Q= Subject key identifier: 21:F4:FD:A5:D8:66:D6:F3:10:F9:5A:FB:C8:DC:E3:3C:40:E7:21:80 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32C6 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IfT9pdhm1vMQ-Vr7yNzjPEDnIYA.roa Signing time: Mon 26 Aug 2024 05:32:00 +0000 ROA not before: Mon 26 Aug 2024 05:32:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12998 (0x32c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:32:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=21F4FDA5D866D6F310F95AFBC8DCE33C40E72180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:35:ea:23:74:13:d9:e6:9f:6a:54:5e:80:c6: e5:28:2e:6d:4c:d7:9f:77:a5:3c:6e:1d:5f:7f:1f: 54:04:f0:13:8a:0f:cf:98:ed:c7:00:83:9b:d6:c7: 8d:85:c7:20:dd:0a:d5:ce:0d:57:f3:3f:fd:30:b2: e7:09:85:84:f2:6e:18:d6:1a:74:62:3a:6d:74:2f: 3d:cc:aa:9f:20:8d:18:b6:39:c4:27:cf:b1:81:46: 16:5f:cb:65:a8:68:89:94:fe:90:4c:c7:84:3d:f5: da:3b:ad:20:f6:63:af:3c:d7:2a:6e:b4:56:08:e1: c4:a3:52:ab:77:6b:ed:16:13:bf:6e:fa:44:c3:de: bb:98:fd:00:d2:8b:d2:75:05:bf:6c:7d:b1:fb:a9: 9f:01:91:84:32:f5:e1:31:c9:24:88:02:eb:c2:68: e2:02:ad:87:52:4e:c5:5a:aa:c4:22:3a:ae:11:c5: 13:6e:8b:ce:31:7c:fc:28:64:d2:cc:01:ca:70:b9: ed:a6:03:05:a2:28:16:fc:fe:35:d5:4e:bd:03:87: 15:e5:bf:c5:e0:3f:b8:58:cd:3b:1a:95:8f:c6:9e: c1:f7:ca:27:2e:04:a7:f0:fe:e3:a9:2e:80:77:ef: c6:2c:21:ed:dc:ed:22:65:61:3a:b8:52:dd:f1:49: 11:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:F4:FD:A5:D8:66:D6:F3:10:F9:5A:FB:C8:DC:E3:3C:40:E7:21:80 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/IfT9pdhm1vMQ-Vr7yNzjPEDnIYA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.88.0/22 Signature Algorithm: sha256WithRSAEncryption b6:76:f4:5e:e2:db:bf:2d:5f:04:d9:98:26:12:32:14:01:89: ea:e7:be:e6:66:15:3a:ba:cf:c5:fc:c8:d2:64:f5:e8:49:11: 7f:70:ea:d3:f6:ea:37:ee:54:07:f5:2d:71:0e:a9:b5:05:2a: 66:34:de:05:c7:35:fb:63:4e:a2:a2:88:0f:c9:48:6e:8d:58: c4:61:c4:a9:b7:03:d5:0b:26:b0:b7:8b:83:fe:6b:08:64:cf: 9e:d3:93:68:f5:35:e2:a5:00:2b:6b:05:cf:b0:d0:e0:02:db: c1:e5:1e:a7:5e:26:f6:26:87:53:1f:fe:90:9f:01:89:22:53: 52:21:8c:a5:99:eb:32:41:95:45:94:9a:b7:19:ed:f3:50:b0: 5c:7e:5e:9a:db:3b:34:a1:40:72:46:7e:64:35:ce:f6:d2:57: 42:fa:a9:d8:db:75:c9:a0:9e:fc:2e:8b:7b:05:16:da:cd:13: 1d:b5:51:de:e3:35:07:db:96:16:13:37:c8:68:62:52:5f:62: 8f:2d:3c:93:78:75:7e:11:24:b1:a2:f2:20:a6:3f:4a:c2:65: 74:a9:af:9c:12:ee:08:64:39:95:62:21:fb:a2:90:84:d3:96: d6:d5:5a:95:54:bb:6a:87:de:e4:06:5c:ef:32:a4:71:40:df: f5:1a:63:2e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMsYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMyMDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIxRjRGREE1RDg2NkQ2 RjMxMEY5NUFGQkM4RENFMzNDNDBFNzIxODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKNeojdBPZ5p9qVF6AxuUoLm1M1593pTxuHV9/H1QE8BOKD8+Y 7ccAg5vWx42FxyDdCtXODVfzP/0wsucJhYTybhjWGnRiOm10Lz3Mqp8gjRi2OcQn z7GBRhZfy2WoaImU/pBMx4Q99do7rSD2Y6881yputFYI4cSjUqt3a+0WE79u+kTD 3ruY/QDSi9J1Bb9sfbH7qZ8BkYQy9eExySSIAuvCaOICrYdSTsVaqsQiOq4RxRNu i84xfPwoZNLMAcpwue2mAwWiKBb8/jXVTr0DhxXlv8XgP7hYzTsalY/GnsH3yicu BKfw/uOpLoB378YsIe3c7SJlYTq4Ut3xSRHbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUIfT9pdhm1vMQ+Vr7yNzjPEDnIYAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0lmVDlwZGhtMXZNUS1Wcjd5 TnpqUEVEbklZQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wlgwDQYJKoZIhvcNAQELBQADggEBALZ29F7i278tXwTZmCYSMhQBiernvuZmFTq6 z8X8yNJk9ehJEX9w6tP26jfuVAf1LXEOqbUFKmY03gXHNftjTqKiiA/JSG6NWMRh xKm3A9ULJrC3i4P+awhkz57Tk2j1NeKlACtrBc+w0OAC28HlHqdeJvYmh1Mf/pCf AYkiU1IhjKWZ6zJBlUWUmrcZ7fNQsFx+XprbOzShQHJGfmQ1zvbSV0L6qdjbdcmg nvwui3sFFtrNEx21Ud7jNQfblhYTN8hoYlJfYo8tPJN4dX4RJLGi8iCmP0rCZXSp r5wS7ghkOZViIfuikITTltbVWpVUu2qH3uQGXO8ypHFA3/UaYy4= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:51 2024 by rpki-client on console-ams.rpki-client.org