$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KG4Txv5npjLvqJwu7hWlcx8LEek.roa File: KG4Txv5npjLvqJwu7hWlcx8LEek.roa (raw, json) Hash identifier: isQN74jx3+oHjJTgGHIzRxMiblLaDIPkN6ieAoCu478= Subject key identifier: 28:6E:13:C6:FE:67:A6:32:EF:A8:9C:2E:EE:15:A5:73:1F:0B:11:E9 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 30B8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KG4Txv5npjLvqJwu7hWlcx8LEek.roa Signing time: Mon 26 Aug 2024 05:29:45 +0000 ROA not before: Mon 26 Aug 2024 05:29:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12472 (0x30b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=286E13C6FE67A632EFA89C2EEE15A5731F0B11E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fc:0c:d7:d8:20:da:42:b0:19:7f:61:e3:0d: eb:56:34:79:91:03:f0:08:6f:c7:25:b5:df:95:c2: 31:33:ef:86:b0:c7:5d:5f:32:43:d8:29:0a:0f:28: 3b:b6:96:6c:6f:83:8f:a5:30:32:e3:bb:0b:78:79: 13:59:69:50:d9:11:ec:01:70:bb:0b:52:b1:1c:8d: 66:f9:6a:34:8d:cc:ea:4b:a3:20:df:6c:44:ea:76: 38:72:1d:3d:92:ab:1c:3e:65:9a:8c:dd:fe:70:4f: 39:d1:9b:40:fe:79:72:d3:b8:bc:c6:ea:32:9e:98: fd:0e:4b:e8:8a:96:96:c0:9c:8f:65:e0:e7:76:3f: c8:67:05:00:b3:b1:48:fe:9f:13:35:3e:17:01:5d: bc:f7:fc:0b:1b:cc:f7:9f:39:5a:fc:17:4a:4f:f4: 73:b5:06:48:4e:b7:62:1b:24:41:82:19:40:90:b2: 6d:38:89:89:02:ed:72:70:6f:de:93:61:ce:28:36: c4:a9:33:3b:8e:18:d9:90:e8:b8:14:75:69:c5:7d: c6:27:25:ec:98:70:5f:b2:0b:26:6c:8c:d5:98:46: 50:c9:5a:d3:2c:a2:a1:bc:c8:11:45:f5:f2:8f:78: 5c:8a:3f:1d:5a:86:4d:a6:ce:90:5c:fe:e9:d4:a6: 3a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:6E:13:C6:FE:67:A6:32:EF:A8:9C:2E:EE:15:A5:73:1F:0B:11:E9 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KG4Txv5npjLvqJwu7hWlcx8LEek.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.44.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:47:1d:be:c4:8d:ce:c3:e4:62:62:e3:e8:04:ac:45:df:e4: f5:00:da:4f:f7:f7:26:92:8b:1c:a5:e5:1b:29:17:f2:87:a7: b2:80:39:0e:c8:b8:f3:3e:71:15:e3:dc:e6:24:72:3c:f3:c4: 0b:74:00:95:d9:05:c9:91:8f:e8:cf:37:16:77:62:e2:7d:56: 66:5f:e3:3f:62:ab:23:c0:7a:52:c8:d5:49:34:65:8f:be:4a: 79:33:6e:23:d7:4e:c4:02:62:3b:bd:81:19:79:a5:4f:70:ff: f7:24:00:5a:1d:b6:01:81:dc:6b:9f:74:7f:c4:8e:a8:eb:90: 6b:6d:21:ae:c3:27:11:14:99:e8:85:af:eb:62:74:d1:13:37: 98:12:ce:23:12:47:cc:17:6a:61:e1:28:6f:d0:09:de:0a:a3: c8:fb:fd:13:0f:21:7c:12:97:97:5e:a2:f1:99:78:c2:49:c9: 81:1d:11:a9:c5:42:1f:ae:23:b6:4d:04:87:27:52:ba:d5:37: c2:0f:af:66:50:c2:93:c0:59:3a:6b:cb:08:dc:08:6a:65:a7: 62:75:5d:40:35:4b:be:14:a7:ad:18:0f:ab:5e:14:cd:a3:d2: 64:91:a7:85:e5:69:fa:72:73:dc:f0:48:98:3c:d7:82:d6:6b: 18:15:3f:0f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMLgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI4NkUxM0M2RkU2N0E2 MzJFRkE4OUMyRUVFMTVBNTczMUYwQjExRTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT/AzX2CDaQrAZf2HjDetWNHmRA/AIb8cltd+VwjEz74awx11f MkPYKQoPKDu2lmxvg4+lMDLjuwt4eRNZaVDZEewBcLsLUrEcjWb5ajSNzOpLoyDf bETqdjhyHT2Sqxw+ZZqM3f5wTznRm0D+eXLTuLzG6jKemP0OS+iKlpbAnI9l4Od2 P8hnBQCzsUj+nxM1PhcBXbz3/AsbzPefOVr8F0pP9HO1BkhOt2IbJEGCGUCQsm04 iYkC7XJwb96TYc4oNsSpMzuOGNmQ6LgUdWnFfcYnJeyYcF+yCyZsjNWYRlDJWtMs oqG8yBFF9fKPeFyKPx1ahk2mzpBc/unUpjrDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUKG4Txv5npjLvqJwu7hWlcx8LEekwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0tHNFR4djVucGpMdnFKd3U3 aFdsY3g4TEVlay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq ASwwDQYJKoZIhvcNAQELBQADggEBAI9HHb7Ejc7D5GJi4+gErEXf5PUA2k/39yaS ixyl5RspF/KHp7KAOQ7IuPM+cRXj3OYkcjzzxAt0AJXZBcmRj+jPNxZ3YuJ9VmZf 4z9iqyPAelLI1Uk0ZY++SnkzbiPXTsQCYju9gRl5pU9w//ckAFodtgGB3GufdH/E jqjrkGttIa7DJxEUmeiFr+tidNETN5gSziMSR8wXamHhKG/QCd4Ko8j7/RMPIXwS l5deovGZeMJJyYEdEanFQh+uI7ZNBIcnUrrVN8IPr2ZQwpPAWTprywjcCGplp2J1 XUA1S74Up60YD6teFM2j0mSRp4Xlafpyc9zwSJg814LWaxgVPw8= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:51 2024 by rpki-client on console-fra.rpki-client.org