$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KlRJl7zdjO44MAxlmFTP8mIlvq8.roa File: KlRJl7zdjO44MAxlmFTP8mIlvq8.roa (raw, json) Hash identifier: p0vVZEOtHtuvRMl3+65UGlAfUVuCrEqys93YNVADUns= Subject key identifier: 2A:54:49:97:BC:DD:8C:EE:38:30:0C:65:98:54:CF:F2:62:25:BE:AF Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32C0 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KlRJl7zdjO44MAxlmFTP8mIlvq8.roa Signing time: Mon 26 Aug 2024 05:31:58 +0000 ROA not before: Mon 26 Aug 2024 05:31:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12992 (0x32c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2A544997BCDD8CEE38300C659854CFF26225BEAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:17:a4:f9:39:7d:d7:be:ac:29:14:f7:94:28: d6:2a:2e:d1:5c:e7:66:a6:d3:74:d8:f1:63:4b:2f: 95:f6:28:39:40:84:b2:8b:37:ec:37:d6:a4:1f:dc: c8:df:f6:83:6c:9a:39:7d:3e:d3:6f:d9:4c:4f:d8: 8f:72:4a:2f:44:63:4e:29:7f:f0:93:da:bc:b1:47: c7:48:7e:15:37:e2:4d:54:67:52:5d:46:fa:76:22: 3c:ac:da:81:61:62:3e:8d:ce:a9:1a:26:a3:6a:2a: af:c8:06:81:58:f1:28:c9:66:aa:7b:68:af:63:d0: 2b:25:d9:0a:b2:22:b4:70:5b:be:e0:1c:4c:d1:f8: 13:4a:23:14:c4:c3:53:5c:f2:82:51:ff:fa:c8:95: 23:8d:5a:71:f3:4a:37:d8:3a:32:94:e8:40:21:35: 7d:eb:0b:56:d3:cf:b8:65:e1:a0:4e:e9:94:d8:2f: cc:22:67:79:b4:0c:90:81:bf:93:ba:b3:f5:80:a1: 63:b0:4e:9f:1e:f6:6d:d0:6b:2b:28:fa:16:e5:1d: 90:49:68:95:76:e3:4c:4c:7f:54:0c:de:93:45:d8: 1e:80:fa:21:e8:2c:99:6e:92:c3:f5:56:bb:b3:1d: 23:a7:7a:06:dc:95:7a:9d:3a:02:18:45:d3:84:df: 83:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:54:49:97:BC:DD:8C:EE:38:30:0C:65:98:54:CF:F2:62:25:BE:AF X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/KlRJl7zdjO44MAxlmFTP8mIlvq8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.20.0/22 Signature Algorithm: sha256WithRSAEncryption 98:fc:74:13:65:62:c4:05:0b:04:f4:95:5a:20:b7:be:b2:bb: 1a:9e:94:85:75:83:1e:83:04:4a:e3:cb:40:d6:60:91:d3:6f: a1:6c:94:6f:4d:eb:84:86:f8:51:07:8f:19:30:a4:41:d5:ae: 08:42:d9:0d:c0:b3:2b:bd:88:85:00:89:05:24:ca:cb:7a:c4: 46:28:26:e7:fd:f6:a5:de:34:97:fe:82:99:f7:6b:9c:b3:d5: 78:6a:52:d1:d2:03:52:40:a2:95:53:f8:ae:e8:85:52:47:db: a7:11:fb:ce:c6:8c:96:05:9e:10:1d:f0:2a:71:34:9c:45:0d: 4f:19:a6:6a:5b:18:a0:27:a6:e5:87:50:a8:0e:f5:7c:79:ee: 5d:67:ee:ec:5c:7d:8c:ec:16:ca:64:53:80:be:5d:1d:50:d1: 83:e8:27:b7:ee:14:21:fb:f4:12:7f:53:79:a0:36:ee:0e:6b: 3e:e5:6b:c3:29:1c:43:6f:4f:6d:eb:80:26:f3:6f:bd:96:77: 54:63:87:c7:b2:0e:24:46:5d:98:61:00:65:04:34:59:28:7a: b5:b5:8b:7e:51:36:f0:df:96:58:74:4a:68:66:e1:d9:24:dd: db:65:76:f3:c7:b8:bc:dd:09:f7:af:5c:e4:7f:89:1b:ba:91: 2b:1b:7a:07 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMsAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJBNTQ0OTk3QkNERDhD RUUzODMwMEM2NTk4NTRDRkYyNjIyNUJFQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvF6T5OX3XvqwpFPeUKNYqLtFc52am03TY8WNLL5X2KDlAhLKL N+w31qQf3Mjf9oNsmjl9PtNv2UxP2I9ySi9EY04pf/CT2ryxR8dIfhU34k1UZ1Jd Rvp2Ijys2oFhYj6NzqkaJqNqKq/IBoFY8SjJZqp7aK9j0Csl2QqyIrRwW77gHEzR +BNKIxTEw1Nc8oJR//rIlSONWnHzSjfYOjKU6EAhNX3rC1bTz7hl4aBO6ZTYL8wi Z3m0DJCBv5O6s/WAoWOwTp8e9m3Qayso+hblHZBJaJV240xMf1QM3pNF2B6A+iHo LJluksP1VruzHSOnegbclXqdOgIYRdOE34MTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUKlRJl7zdjO44MAxlmFTP8mIlvq8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0tsUkpsN3pkak80NE1BeGxt RlRQOG1JbHZxOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wRQwDQYJKoZIhvcNAQELBQADggEBAJj8dBNlYsQFCwT0lVogt76yuxqelIV1gx6D BErjy0DWYJHTb6FslG9N64SG+FEHjxkwpEHVrghC2Q3Asyu9iIUAiQUkyst6xEYo Juf99qXeNJf+gpn3a5yz1XhqUtHSA1JAopVT+K7ohVJH26cR+87GjJYFnhAd8Cpx NJxFDU8ZpmpbGKAnpuWHUKgO9Xx57l1n7uxcfYzsFspkU4C+XR1Q0YPoJ7fuFCH7 9BJ/U3mgNu4Oaz7la8MpHENvT23rgCbzb72Wd1Rjh8eyDiRGXZhhAGUENFkoerW1 i35RNvDfllh0Smhm4dkk3dtldvPHuLzdCfevXOR/iRu6kSsbegc= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:56 2024 by rpki-client on console-fra.rpki-client.org