$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KSXWbS_HNuICaLD16fIn7UncUyM.roa File: KSXWbS_HNuICaLD16fIn7UncUyM.roa (raw, json) Hash identifier: x3FYlyuJWsHcpIVpEnu05qT2Zqr4qWNPcKAH5aoY34Y= Subject key identifier: 29:25:D6:6D:2F:C7:36:E2:02:68:B0:F5:E9:F2:27:ED:49:DC:53:23 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31A1 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KSXWbS_HNuICaLD16fIn7UncUyM.roa Signing time: Mon 26 Aug 2024 05:30:46 +0000 ROA not before: Mon 26 Aug 2024 05:30:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12705 (0x31a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2925D66D2FC736E20268B0F5E9F227ED49DC5323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:58:25:3d:30:f7:81:b6:63:a6:b7:93:95:f0: 05:a0:5c:37:44:97:c3:c8:9e:99:cb:df:ed:f5:5b: 1c:cc:64:fd:c6:1f:d3:96:83:60:8e:7b:71:27:a1: 6e:0a:b3:44:fe:9f:30:e6:83:44:ac:ff:90:1e:0e: d0:e3:3c:40:b2:56:0d:3f:4a:82:c7:28:3b:53:83: 04:37:91:bd:20:e8:2a:b3:3a:74:25:57:d2:35:c7: ed:64:4e:e8:9f:49:2e:92:a4:de:38:2b:ed:a4:7b: 5d:66:61:b6:fc:4b:95:d4:5a:3e:58:81:84:b9:16: c2:b7:7b:7c:b7:7d:86:a4:c3:fc:fe:17:3c:79:42: 9d:8e:46:d3:d9:9e:2c:12:ec:d2:4b:0b:42:ee:83: 74:ec:b2:d5:c0:ef:6a:e3:df:77:89:cb:a0:4f:3e: 5f:e8:31:19:dd:81:1f:03:1b:8f:70:e8:54:2e:f9: c5:fc:fa:b4:f1:63:4e:93:fa:7c:0d:ad:53:56:5c: 07:e6:48:5f:1e:bd:1e:89:8a:b0:c2:13:03:a8:68: aa:23:ca:a0:d2:e3:db:dc:c5:3a:f2:77:7d:04:5a: ec:52:b3:b6:b9:a5:7c:b1:b3:f7:dc:67:80:73:9c: 34:0b:60:c6:87:61:92:b4:a8:97:53:05:45:2c:65: e3:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:25:D6:6D:2F:C7:36:E2:02:68:B0:F5:E9:F2:27:ED:49:DC:53:23 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KSXWbS_HNuICaLD16fIn7UncUyM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.32.0/22 Signature Algorithm: sha256WithRSAEncryption 38:5f:4a:5a:00:0f:12:ee:a4:a7:92:69:4a:32:40:8e:70:af: 77:97:81:6f:6a:0b:51:cd:e9:b1:d6:71:13:e8:05:2b:9e:91: 96:e2:82:ed:3b:dc:ff:09:4f:c3:3c:36:b3:93:52:60:ae:54: 18:51:40:cd:fd:f5:2f:fd:83:94:59:93:ce:32:8d:28:08:f3: ce:8f:b5:b7:45:53:a8:ee:5d:91:d9:0f:9f:6d:63:8e:d9:da: 67:18:76:15:bf:8c:23:fc:07:b5:d9:7e:2f:1c:2e:e4:16:d6: 1b:dc:59:af:38:db:7e:8b:29:b2:eb:ba:f5:27:46:2a:b3:d2: 24:16:17:cd:3e:56:3c:aa:6b:eb:b7:24:99:ee:d8:0e:84:94: 69:cd:5b:70:bf:d1:53:7f:d1:32:71:d0:ab:8a:33:9c:78:95: 57:44:b0:15:28:28:e4:45:61:b2:ab:0b:05:38:f4:e7:c4:9d: b7:9e:cf:cb:80:f5:d0:61:f0:41:92:0a:60:77:08:68:01:8a: 80:fc:bd:4a:27:44:01:45:de:3d:68:04:06:32:26:39:49:1b: 27:2e:b4:01:02:43:1f:c3:ba:0e:e8:82:fe:55:fc:42:9c:11: 6e:19:da:d3:99:1d:99:5f:25:c5:19:5e:6e:19:01:8f:64:87: bc:1a:73:31 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMaEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwNDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI5MjVENjZEMkZDNzM2 RTIwMjY4QjBGNUU5RjIyN0VENDlEQzUzMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJWCU9MPeBtmOmt5OV8AWgXDdEl8PInpnL3+31WxzMZP3GH9OW g2COe3EnoW4Ks0T+nzDmg0Ss/5AeDtDjPECyVg0/SoLHKDtTgwQ3kb0g6CqzOnQl V9I1x+1kTuifSS6SpN44K+2ke11mYbb8S5XUWj5YgYS5FsK3e3y3fYakw/z+Fzx5 Qp2ORtPZniwS7NJLC0Lug3TsstXA72rj33eJy6BPPl/oMRndgR8DG49w6FQu+cX8 +rTxY06T+nwNrVNWXAfmSF8evR6JirDCEwOoaKojyqDS49vcxTryd30EWuxSs7a5 pXyxs/fcZ4BznDQLYMaHYZK0qJdTBUUsZeP5AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUKSXWbS/HNuICaLD16fIn7UncUyMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0tTWFdiU19ITnVJQ2FMRDE2 ZkluN1VuY1V5TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6SAwDQYJKoZIhvcNAQELBQADggEBADhfSloADxLupKeSaUoyQI5wr3eXgW9qC1HN 6bHWcRPoBSuekZbigu073P8JT8M8NrOTUmCuVBhRQM399S/9g5RZk84yjSgI886P tbdFU6juXZHZD59tY47Z2mcYdhW/jCP8B7XZfi8cLuQW1hvcWa84236LKbLruvUn Riqz0iQWF80+Vjyqa+u3JJnu2A6ElGnNW3C/0VN/0TJx0KuKM5x4lVdEsBUoKORF YbKrCwU49OfEnbeez8uA9dBh8EGSCmB3CGgBioD8vUonRAFF3j1oBAYyJjlJGycu tAECQx/Dug7ogv5V/EKcEW4Z2tOZHZlfJcUZXm4ZAY9kh7waczE= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:56 2024 by rpki-client on console-fra.rpki-client.org