$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ijb1yWArjZNMNLV_mS4iBEdc0fM.roa File: Ijb1yWArjZNMNLV_mS4iBEdc0fM.roa (raw, json) Hash identifier: aAnzLSeWjGxogd0xd+Rfd1WDEIgkLR30W4yzAI7onJ4= Subject key identifier: 22:36:F5:C9:60:2B:8D:93:4C:34:B5:7F:99:2E:22:04:47:5C:D1:F3 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31F4 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ijb1yWArjZNMNLV_mS4iBEdc0fM.roa Signing time: Mon 26 Aug 2024 05:31:07 +0000 ROA not before: Mon 26 Aug 2024 05:31:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12788 (0x31f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2236F5C9602B8D934C34B57F992E2204475CD1F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:04:20:05:6d:78:37:3e:8f:77:73:fa:7e:3b: c0:6d:c6:33:97:70:b1:75:eb:07:7f:7e:92:1d:bc: 18:0a:cc:e7:a0:d7:2c:8c:50:37:d2:cc:fa:29:ae: a7:8b:b2:65:0b:64:27:95:27:b7:bc:c7:91:f5:b7: 0a:0b:33:cc:a6:ff:89:3e:72:73:b4:2c:28:12:97: db:e1:65:e6:02:3d:9e:d9:ed:9d:e4:8a:a3:f7:c1: 90:29:fe:3a:0c:0d:80:97:84:eb:09:04:30:d6:e8: e8:e2:08:47:4b:51:15:64:52:7b:e7:d2:a9:6a:e7: a9:2a:3b:d1:d0:de:0c:46:26:1e:85:69:8c:4d:87: 2c:e9:43:ca:c9:3f:b5:5e:d7:b5:89:d9:fa:14:ad: 14:d0:69:7a:13:ac:d1:97:7b:93:22:1b:0c:8c:97: f5:8f:c7:2f:f8:3e:2f:48:5d:5e:27:19:d0:df:9d: 51:de:96:4b:cc:e1:7d:05:92:3b:6a:9d:53:98:59: 69:7e:4b:65:d9:9a:cc:08:89:a4:dd:c1:62:5f:32: fb:30:e5:99:70:2a:7c:fa:4a:6b:1d:18:a3:31:88: 26:a7:f0:6a:e1:72:82:7b:d8:7f:59:72:03:de:a3: 2f:7b:c9:10:8d:c4:e1:90:dc:63:5c:41:02:d0:8b: a2:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:36:F5:C9:60:2B:8D:93:4C:34:B5:7F:99:2E:22:04:47:5C:D1:F3 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ijb1yWArjZNMNLV_mS4iBEdc0fM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.182.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:ea:56:bd:98:41:ce:63:44:6b:69:b0:ba:11:f5:84:48:bc: 7a:73:30:5c:f1:58:95:b8:9a:6f:7a:c1:97:0c:20:91:55:7a: a9:2c:10:46:e9:87:38:61:db:81:91:62:8a:6e:0f:eb:f9:01: 2f:46:16:9a:9c:3c:a3:90:e5:d2:7e:6b:44:96:2a:0b:ca:5b: 65:5b:f7:0c:4f:73:fb:92:ae:2b:54:30:52:25:c9:44:29:dd: 35:32:7a:8e:d7:fc:27:d4:1a:40:a0:01:0a:ea:10:78:5e:21: dd:21:39:f8:bb:c7:ea:1b:e4:5b:25:a3:06:bb:47:fd:bd:05: 05:ce:67:a6:9c:8b:6f:b9:e8:a9:8f:69:95:fb:b3:77:aa:2e: 81:a6:98:63:de:84:ed:8f:2b:f5:cd:d0:57:d3:06:55:36:44: 12:4c:cc:39:56:bd:fe:97:af:e7:83:e7:55:99:a4:cd:15:85: e5:ee:ba:11:39:9d:c0:62:0f:fe:46:a7:a4:35:0f:0f:ca:1f: 6d:84:a4:12:4a:bd:98:fb:bb:22:32:7f:70:43:fd:32:53:f8: 59:e4:5c:2a:ee:7f:b8:64:01:3d:47:f7:97:c9:e3:db:52:6c: bb:9e:4a:4d:59:01:9d:48:3a:b9:0e:39:95:02:5b:db:da:cf: fa:72:57:4b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMfQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIyMzZGNUM5NjAyQjhE OTM0QzM0QjU3Rjk5MkUyMjA0NDc1Q0QxRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnBCAFbXg3Po93c/p+O8BtxjOXcLF16wd/fpIdvBgKzOeg1yyM UDfSzPoprqeLsmULZCeVJ7e8x5H1twoLM8ym/4k+cnO0LCgSl9vhZeYCPZ7Z7Z3k iqP3wZAp/joMDYCXhOsJBDDW6OjiCEdLURVkUnvn0qlq56kqO9HQ3gxGJh6FaYxN hyzpQ8rJP7Ve17WJ2foUrRTQaXoTrNGXe5MiGwyMl/WPxy/4Pi9IXV4nGdDfnVHe lkvM4X0FkjtqnVOYWWl+S2XZmswIiaTdwWJfMvsw5ZlwKnz6SmsdGKMxiCan8Grh coJ72H9ZcgPeoy97yRCNxOGQ3GNcQQLQi6L1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUIjb1yWArjZNMNLV/mS4iBEdc0fMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0lqYjF5V0FyalpOTU5MVl9t UzRpQkVkYzBmTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 w7YwDQYJKoZIhvcNAQELBQADggEBAA7qVr2YQc5jRGtpsLoR9YRIvHpzMFzxWJW4 mm96wZcMIJFVeqksEEbphzhh24GRYopuD+v5AS9GFpqcPKOQ5dJ+a0SWKgvKW2Vb 9wxPc/uSritUMFIlyUQp3TUyeo7X/CfUGkCgAQrqEHheId0hOfi7x+ob5Fslowa7 R/29BQXOZ6aci2+56KmPaZX7s3eqLoGmmGPehO2PK/XN0FfTBlU2RBJMzDlWvf6X r+eD51WZpM0VheXuuhE5ncBiD/5Gp6Q1Dw/KH22EpBJKvZj7uyIyf3BD/TJT+Fnk XCruf7hkAT1H95fJ49tSbLueSk1ZAZ1IOrkOOZUCW9vaz/pyV0s= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:47 2024 by rpki-client on console-fra.rpki-client.org