$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KUZw4g8d2OtswzYqaM_8Pn36pNw.roa File: KUZw4g8d2OtswzYqaM_8Pn36pNw.roa (raw, json) Hash identifier: z7arzCzqW7tyfeSB7JWpkVliA0TS7QzbGVvLwywLKwY= Subject key identifier: 29:46:70:E2:0F:1D:D8:EB:6C:C3:36:2A:68:CF:FC:3E:7D:FA:A4:DC Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 323C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KUZw4g8d2OtswzYqaM_8Pn36pNw.roa Signing time: Mon 26 Aug 2024 05:31:26 +0000 ROA not before: Mon 26 Aug 2024 05:31:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.216.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12860 (0x323c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=294670E20F1DD8EB6CC3362A68CFFC3E7DFAA4DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a8:77:a4:88:4e:bd:46:ba:52:bc:b7:ec:2d: 76:68:e9:be:d1:c2:c7:d3:de:40:d7:9b:56:9f:ed: 69:f6:83:1c:5b:f8:3c:d6:c9:56:ba:6b:d7:c4:40: cd:d9:4e:43:bc:77:a0:64:69:28:e3:2f:a5:4d:57: 29:da:98:b2:bb:78:ba:74:1f:a4:03:ea:97:a6:3c: 60:ef:8e:fe:60:c4:29:ba:8e:15:ae:15:98:31:00: de:da:cd:0f:87:76:a6:23:ae:1e:90:59:f3:49:f4: 4d:ba:21:4c:aa:32:16:e1:e6:20:80:05:e5:c9:83: 3a:74:75:28:d6:f4:71:6a:87:1d:d3:4c:17:11:12: 66:46:7c:d9:ec:88:c5:d5:3b:77:04:44:3e:cc:e6: ec:30:45:58:1b:74:88:01:eb:6d:f0:e3:aa:88:7e: 2e:8d:1f:44:59:db:2c:e3:6d:b1:18:93:0d:ea:22: 33:6f:04:8e:27:7d:3d:4c:62:25:21:8f:92:f6:e0: b5:3e:4f:45:ce:fe:a1:2c:66:53:2a:9b:61:3c:c7: 9b:2e:f5:b1:43:fb:2b:86:ed:d9:fc:0c:9d:b6:25: 5b:8b:c8:dd:c7:3a:19:6a:2d:4f:d1:99:66:20:6a: f3:85:cf:ea:1b:65:d1:db:31:c1:13:35:15:13:b4: c2:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:46:70:E2:0F:1D:D8:EB:6C:C3:36:2A:68:CF:FC:3E:7D:FA:A4:DC X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KUZw4g8d2OtswzYqaM_8Pn36pNw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.216.0/21 Signature Algorithm: sha256WithRSAEncryption a8:9e:61:84:df:0d:8e:49:03:ef:57:22:c6:6d:b3:17:aa:b3: 87:cb:3c:5e:6e:45:25:2e:7e:cb:2c:a0:8f:51:d5:c4:1a:b1: ad:a5:52:78:30:92:b0:02:fc:8e:7d:d7:c7:1b:aa:e0:84:f5: 85:10:32:9e:8a:5f:5d:ee:7f:58:8a:6b:48:c9:ef:2c:a6:cb: c0:02:0a:f5:93:cd:5a:16:4d:b2:b6:bd:6c:85:97:2f:78:01: c5:28:e1:ee:91:48:54:39:be:44:c4:fb:bd:da:bc:f9:f0:44: 5f:71:00:80:b9:8d:68:b4:62:19:4d:52:d2:51:30:d9:21:fe: 47:2b:fa:25:da:dd:0b:a7:d4:5f:1e:2c:7d:cf:04:dd:f2:1f: df:94:c0:0a:56:2e:4a:ca:6c:ec:d0:8c:3a:f8:1c:63:cb:e8: 67:08:8d:f4:27:34:e5:be:27:54:3e:7c:81:c5:1f:81:60:9b: 2d:85:64:18:51:e6:9f:8e:f9:57:c8:1a:0d:29:57:80:a8:bd: 31:ba:ba:5f:3e:c5:b0:cf:77:da:78:80:ca:95:37:a1:64:c1: 09:86:a3:a9:f7:f7:f0:ea:ba:b6:aa:ec:b8:61:ab:fb:95:3d: 16:3c:c1:3b:52:3c:9a:c8:a5:29:9e:8b:08:a1:c7:72:e6:1f: 0c:90:cc:fa -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMjwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI5NDY3MEUyMEYxREQ4 RUI2Q0MzMzYyQTY4Q0ZGQzNFN0RGQUE0REMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIqHekiE69RrpSvLfsLXZo6b7RwsfT3kDXm1af7Wn2gxxb+DzW yVa6a9fEQM3ZTkO8d6BkaSjjL6VNVynamLK7eLp0H6QD6pemPGDvjv5gxCm6jhWu FZgxAN7azQ+HdqYjrh6QWfNJ9E26IUyqMhbh5iCABeXJgzp0dSjW9HFqhx3TTBcR EmZGfNnsiMXVO3cERD7M5uwwRVgbdIgB623w46qIfi6NH0RZ2yzjbbEYkw3qIjNv BI4nfT1MYiUhj5L24LU+T0XO/qEsZlMqm2E8x5su9bFD+yuG7dn8DJ22JVuLyN3H OhlqLU/RmWYgavOFz+obZdHbMcETNRUTtMIHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUKUZw4g8d2OtswzYqaM/8Pn36pNwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0tVWnc0ZzhkMk90c3d6WXFh TV84UG4zNnBOdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 w9gwDQYJKoZIhvcNAQELBQADggEBAKieYYTfDY5JA+9XIsZtsxeqs4fLPF5uRSUu fsssoI9R1cQasa2lUngwkrAC/I5918cbquCE9YUQMp6KX13uf1iKa0jJ7yymy8AC CvWTzVoWTbK2vWyFly94AcUo4e6RSFQ5vkTE+73avPnwRF9xAIC5jWi0YhlNUtJR MNkh/kcr+iXa3Qun1F8eLH3PBN3yH9+UwApWLkrKbOzQjDr4HGPL6GcIjfQnNOW+ J1Q+fIHFH4Fgmy2FZBhR5p+O+VfIGg0pV4CovTG6ul8+xbDPd9p4gMqVN6FkwQmG o6n39/Dquraq7Lhhq/uVPRY8wTtSPJrIpSmeiwihx3LmHwyQzPo= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:37 2024 by rpki-client on console-ams.rpki-client.org