$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JLWKdOrjxelcR2aWiB9nofkX5Ws.roa File: JLWKdOrjxelcR2aWiB9nofkX5Ws.roa (raw, json) Hash identifier: 0iOTcQu3hH+ijNe/fDUFl10fpqxmNhPViTu2e3xOgzM= Subject key identifier: 24:B5:8A:74:EA:E3:C5:E9:5C:47:66:96:88:1F:67:A1:F9:17:E5:6B Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3241 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JLWKdOrjxelcR2aWiB9nofkX5Ws.roa Signing time: Mon 26 Aug 2024 05:31:28 +0000 ROA not before: Mon 26 Aug 2024 05:31:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12865 (0x3241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:28 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=24B58A74EAE3C5E95C476696881F67A1F917E56B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:4f:60:d5:0a:77:9c:f5:cf:65:82:a3:61:c9: 07:64:be:9a:b4:6f:ca:17:2c:47:44:34:d1:ce:57: 17:9c:1c:67:3c:7d:bd:7f:31:02:26:ce:25:88:e9: d2:fb:6a:e4:e4:df:d0:fa:3b:89:fd:06:ba:dc:b8: dd:e7:2d:df:64:0c:e5:91:8a:0e:ae:8d:bd:db:8d: 11:57:18:1c:0b:2d:e2:ec:52:7c:27:bb:8e:06:32: 9f:1b:fe:eb:e3:a7:95:2f:9b:bf:bb:50:38:6c:da: 5a:9e:72:91:12:c5:c0:88:6c:19:84:95:f4:6e:3c: 58:cd:f6:27:5b:c8:33:ff:1f:61:c3:66:92:bc:aa: 15:fb:7a:2e:a0:da:93:98:da:a8:9d:45:be:40:97: 0a:d0:dc:52:6f:56:35:5b:a4:22:13:7a:f7:70:93: 6d:14:08:f8:cf:36:31:81:6e:5a:43:52:ed:fa:0a: ff:54:14:68:11:b6:54:ff:99:1a:92:8d:b4:ed:0b: 76:04:0e:12:e0:c2:b5:32:41:a1:51:d4:7d:61:1d: d7:50:fd:3a:9d:ad:7d:70:fe:0c:12:c3:6e:83:62: 90:8f:26:77:1c:7b:ad:70:a5:01:37:44:3c:d2:ae: 79:56:6e:98:9d:16:63:15:39:07:30:d9:0c:4c:2a: a0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B5:8A:74:EA:E3:C5:E9:5C:47:66:96:88:1F:67:A1:F9:17:E5:6B X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/JLWKdOrjxelcR2aWiB9nofkX5Ws.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.192.0/22 Signature Algorithm: sha256WithRSAEncryption 17:37:f0:47:da:6b:fd:a0:d5:15:e1:75:0b:81:54:25:fd:e1: 94:18:79:5f:16:b7:c6:03:ee:0a:e6:08:cc:ea:b9:39:b1:e3: 52:95:4d:15:85:38:92:14:5f:5d:1a:7d:2d:e5:05:4f:4e:18: b7:b0:0d:5b:7c:0e:e7:9e:63:50:73:f0:28:64:bf:54:45:f5: 9a:3c:9f:73:c8:40:3d:36:21:18:41:68:ae:6a:7d:52:47:a5: d1:e2:dd:2d:40:06:5d:7f:8d:c2:e4:0c:a9:44:eb:89:8a:0a: 37:10:53:d1:11:04:ee:43:a9:68:9c:3a:36:f1:7b:61:ea:7e: 5b:f0:1d:e9:44:a8:b3:40:03:dd:63:4d:76:b3:06:59:a9:09: ca:bf:93:7a:ea:94:5a:aa:be:2d:7a:3d:03:33:cf:0b:a7:aa: 82:45:0a:1b:69:49:8f:bf:d0:b1:82:a3:bb:61:cc:0d:f9:a5: cc:a8:ea:39:2f:50:3b:a7:51:36:dd:fa:e7:89:24:0a:88:ca: ba:c4:97:e6:d1:d0:45:3a:e7:74:a0:36:63:dd:9e:58:15:6d: c6:e3:c5:22:9c:cf:ee:6d:dd:91:d8:98:a9:a2:66:41:0b:b1: 23:2e:55:f4:7b:9e:fb:72:e8:95:16:6a:81:c7:0b:8a:87:da: 5a:21:da:4e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMkEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI0QjU4QTc0RUFFM0M1 RTk1QzQ3NjY5Njg4MUY2N0ExRjkxN0U1NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqT2DVCnec9c9lgqNhyQdkvpq0b8oXLEdENNHOVxecHGc8fb1/ MQImziWI6dL7auTk39D6O4n9BrrcuN3nLd9kDOWRig6ujb3bjRFXGBwLLeLsUnwn u44GMp8b/uvjp5Uvm7+7UDhs2lqecpESxcCIbBmElfRuPFjN9idbyDP/H2HDZpK8 qhX7ei6g2pOY2qidRb5AlwrQ3FJvVjVbpCITevdwk20UCPjPNjGBblpDUu36Cv9U FGgRtlT/mRqSjbTtC3YEDhLgwrUyQaFR1H1hHddQ/TqdrX1w/gwSw26DYpCPJncc e61wpQE3RDzSrnlWbpidFmMVOQcw2QxMKqAhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJLWKdOrjxelcR2aWiB9nofkX5WswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0pMV0tkT3JqeGVsY1IyYVdp Qjlub2ZrWDVXcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 w8AwDQYJKoZIhvcNAQELBQADggEBABc38Efaa/2g1RXhdQuBVCX94ZQYeV8Wt8YD 7grmCMzquTmx41KVTRWFOJIUX10afS3lBU9OGLewDVt8DueeY1Bz8Chkv1RF9Zo8 n3PIQD02IRhBaK5qfVJHpdHi3S1ABl1/jcLkDKlE64mKCjcQU9ERBO5DqWicOjbx e2HqflvwHelEqLNAA91jTXazBlmpCcq/k3rqlFqqvi16PQMzzwunqoJFChtpSY+/ 0LGCo7thzA35pcyo6jkvUDunUTbd+ueJJAqIyrrEl+bR0EU653SgNmPdnlgVbcbj xSKcz+5t3ZHYmKmiZkELsSMuVfR7nvty6JUWaoHHC4qH2loh2k4= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:18 2024 by rpki-client on console-ams.rpki-client.org