$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KLrFC2oIW4ZB9kK_CtTn8ivgk4U.roa File: KLrFC2oIW4ZB9kK_CtTn8ivgk4U.roa (raw, json) Hash identifier: PG7Z9M2hKjZo6obmNFStFzgjo/vyA7wFvQ2jyfyKhA4= Subject key identifier: 28:BA:C5:0B:6A:08:5B:86:41:F6:42:BF:0A:D4:E7:F2:2B:E0:93:85 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31D4 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KLrFC2oIW4ZB9kK_CtTn8ivgk4U.roa Signing time: Mon 26 Aug 2024 05:30:59 +0000 ROA not before: Mon 26 Aug 2024 05:30:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.176.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12756 (0x31d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=28BAC50B6A085B8641F642BF0AD4E7F22BE09385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:e2:07:db:69:76:3c:93:1a:b4:9e:74:df:fc: 55:d8:88:e0:9e:4c:6d:27:4e:4e:17:13:c3:97:a8: 60:10:be:f5:d3:74:e8:49:4a:01:05:59:2f:c9:ba: aa:38:c5:10:67:4f:b7:ec:97:b5:df:a2:55:06:ca: ee:bb:83:7a:dd:f1:dc:71:8e:62:3f:29:59:dc:86: 96:5c:40:f7:55:23:82:52:78:2a:2c:a5:38:92:64: f2:53:92:43:10:12:28:aa:50:c7:c8:44:cb:1d:bf: 6d:9b:cf:be:46:57:e6:dd:10:f4:87:df:32:d7:43: b5:27:63:3a:0b:18:bd:2e:f3:37:86:b7:bb:e3:8d: 16:59:53:4f:e4:4b:ac:5c:0a:47:78:be:54:89:b7: 72:63:7b:dc:66:26:b7:2c:62:43:c6:8b:38:e4:51: 9b:a8:59:ec:9e:5d:69:76:2f:a3:8a:37:b6:0e:0f: fa:2e:89:ad:b6:0c:2a:b1:4f:bc:76:eb:b5:4e:0b: 65:5f:2a:70:8d:a4:3d:40:8b:7b:25:34:76:fb:9a: ea:51:31:16:b8:4e:08:da:3a:1e:2e:37:6c:92:67: c1:ca:27:5d:54:09:0d:cb:94:30:93:73:16:b2:5a: ce:7e:14:ae:1a:ec:80:7c:bc:53:1a:28:d8:a1:ee: ee:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:BA:C5:0B:6A:08:5B:86:41:F6:42:BF:0A:D4:E7:F2:2B:E0:93:85 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KLrFC2oIW4ZB9kK_CtTn8ivgk4U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.224.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:c6:80:15:f2:44:8d:ad:49:99:49:8e:90:aa:47:6a:81:a4: 4b:4a:cf:88:91:25:d6:0e:e4:4c:a2:53:79:16:d4:46:f8:0d: df:58:4f:48:04:fe:c6:3b:31:6b:e2:d4:ef:0a:c0:9e:5a:a4: 64:fe:15:2a:2d:9e:ff:23:c8:a2:7a:18:df:7d:40:08:a6:2e: 82:4f:09:3f:c0:b3:45:ce:33:34:c4:9e:4f:d6:3e:52:9f:70: 6b:08:7c:9c:e4:b3:d7:23:28:32:5b:55:19:5f:b2:6e:53:a4: dd:7f:c2:f3:a3:fc:5a:86:84:99:6c:04:8f:a1:e0:38:dc:4d: a7:75:00:74:ad:da:df:c5:ac:bf:52:44:8d:bf:4f:a6:e6:b2: 8d:1a:59:77:06:4f:44:e1:6c:cf:d9:85:50:cf:ea:88:0c:fb: bb:2d:a0:fa:af:12:15:09:52:79:1b:e0:70:ae:f7:a2:38:95: 51:7e:2b:92:7d:e8:4a:11:71:d7:a3:67:b0:4c:b4:1f:c6:ce: 78:01:7c:76:56:eb:1e:1c:03:1d:7b:b0:6f:c9:88:c5:1b:9e: cb:cb:fc:e9:9b:6b:8c:12:c8:ab:3b:31:99:9c:3b:1a:a2:ae: 1e:66:52:0c:c5:2d:b0:82:11:83:6a:85:6e:b8:87:46:19:9b: 9a:83:c6:cb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMdQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwNTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI4QkFDNTBCNkEwODVC ODY0MUY2NDJCRjBBRDRFN0YyMkJFMDkzODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDz4gfbaXY8kxq0nnTf/FXYiOCeTG0nTk4XE8OXqGAQvvXTdOhJ SgEFWS/Juqo4xRBnT7fsl7XfolUGyu67g3rd8dxxjmI/KVnchpZcQPdVI4JSeCos pTiSZPJTkkMQEiiqUMfIRMsdv22bz75GV+bdEPSH3zLXQ7UnYzoLGL0u8zeGt7vj jRZZU0/kS6xcCkd4vlSJt3Jje9xmJrcsYkPGizjkUZuoWeyeXWl2L6OKN7YOD/ou ia22DCqxT7x267VOC2VfKnCNpD1Ai3slNHb7mupRMRa4TgjaOh4uN2ySZ8HKJ11U CQ3LlDCTcxayWs5+FK4a7IB8vFMaKNih7u5pAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUKLrFC2oIW4ZB9kK/CtTn8ivgk4UwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0tMckZDMm9JVzRaQjlrS19D dFRuOGl2Z2s0VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 sOAwDQYJKoZIhvcNAQELBQADggEBAC/GgBXyRI2tSZlJjpCqR2qBpEtKz4iRJdYO 5EyiU3kW1Eb4Dd9YT0gE/sY7MWvi1O8KwJ5apGT+FSotnv8jyKJ6GN99QAimLoJP CT/As0XOMzTEnk/WPlKfcGsIfJzks9cjKDJbVRlfsm5TpN1/wvOj/FqGhJlsBI+h 4DjcTad1AHSt2t/FrL9SRI2/T6bmso0aWXcGT0ThbM/ZhVDP6ogM+7stoPqvEhUJ Unkb4HCu96I4lVF+K5J96EoRcdejZ7BMtB/GzngBfHZW6x4cAx17sG/JiMUbnsvL /Omba4wSyKs7MZmcOxqirh5mUgzFLbCCEYNqhW64h0YZm5qDxss= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:51 2024 by rpki-client on console-fra.rpki-client.org