$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Mz_VyOKvuTU-kXtGuh3mAUeon5I.roa File: Mz_VyOKvuTU-kXtGuh3mAUeon5I.roa (raw, json) Hash identifier: NquEac3FDEzJKp/naqyt/nFD+KNlVs3m7/L7FbyDd0Y= Subject key identifier: 33:3F:D5:C8:E2:AF:B9:35:3E:91:7B:46:BA:1D:E6:01:47:A8:9F:92 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3117 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Mz_VyOKvuTU-kXtGuh3mAUeon5I.roa Signing time: Mon 26 Aug 2024 05:30:06 +0000 ROA not before: Mon 26 Aug 2024 05:30:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12567 (0x3117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:06 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=333FD5C8E2AFB9353E917B46BA1DE60147A89F92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b0:eb:a5:aa:60:8b:d4:b6:7e:e8:39:99:04: 80:7e:64:f9:83:32:b6:67:e1:83:93:1b:bd:1a:f5: 05:18:2a:53:5e:84:32:fc:65:65:2e:a2:e0:e6:aa: 2f:56:72:09:22:62:6f:91:88:45:ea:57:5d:64:c1: 5b:d1:73:8e:96:87:fa:af:ab:d7:18:47:66:ef:87: 06:b7:ee:d2:89:96:92:4d:1c:23:0e:f8:0b:a0:94: ff:5a:10:33:69:3d:43:20:4b:e1:0a:f7:b2:a5:2c: 93:c0:cd:45:89:7e:2b:81:4b:1b:3e:91:99:00:52: ed:42:6a:d7:b0:52:94:b6:b2:82:3f:a7:cb:52:91: 47:53:53:72:93:4c:83:c9:dd:7e:85:22:fc:1e:fe: c3:15:bc:9e:eb:3a:c2:50:51:64:4f:c7:da:e3:be: 4a:5c:da:1a:04:f0:18:cd:3f:13:a4:9c:62:f3:1d: a2:f0:4c:7d:b1:7f:1c:ff:be:3e:bc:36:a4:8a:69: 31:38:31:e5:09:b9:19:01:77:50:ef:6d:8d:43:73: e8:b6:23:a9:a5:cf:39:ba:30:3b:b8:ee:17:c9:35: 2b:da:98:ac:a9:f5:0f:86:81:9b:c3:05:f1:07:b7: a7:e6:a8:bc:e9:f4:06:54:66:1a:ed:ad:69:aa:a2: 2e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:3F:D5:C8:E2:AF:B9:35:3E:91:7B:46:BA:1D:E6:01:47:A8:9F:92 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Mz_VyOKvuTU-kXtGuh3mAUeon5I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.204.0/24 Signature Algorithm: sha256WithRSAEncryption 97:1b:64:e0:91:e9:be:1a:dc:5c:a0:eb:a8:43:a5:75:af:ff: 86:15:b6:da:60:16:35:43:d2:a8:c0:9b:8c:bb:6a:4a:f0:1f: 64:cb:45:f1:81:00:a2:04:52:d9:a4:54:3b:69:b7:02:42:b8: 25:90:92:97:27:80:68:91:b2:eb:03:00:e2:9c:9d:2e:57:91: 1c:68:91:f4:bb:b2:93:e7:b7:a1:24:23:94:cd:45:94:0b:5f: bd:a9:44:eb:63:28:23:c7:9e:0c:bc:98:7a:1f:46:49:10:cd: 25:ee:89:8d:09:11:f8:67:31:6f:87:e7:f0:6c:b3:9c:75:b8: 59:75:f7:2e:7e:1c:47:1e:37:69:60:07:00:ce:4d:89:bd:6a: 5e:08:8b:5b:0e:4a:7e:e9:b6:7b:b5:b6:6c:44:64:54:98:1d: 57:6f:ae:20:af:8e:ab:b4:29:c7:62:19:1d:87:18:c3:de:48: fa:de:e8:91:8a:65:87:35:51:b9:c5:be:cb:d8:96:e7:fa:58: 6b:9e:b7:2b:fe:02:a2:1a:06:ff:8b:a0:55:16:e9:a6:5a:7f: be:fb:a5:1e:3d:f0:63:5b:22:2a:61:b5:48:16:bc:3d:17:6a: bb:95:f9:3f:5c:82:a1:00:38:03:98:cf:8b:e6:43:2c:30:a8: 76:71:2d:52 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMRcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMzM0ZENUM4RTJBRkI5 MzUzRTkxN0I0NkJBMURFNjAxNDdBODlGOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJsOulqmCL1LZ+6DmZBIB+ZPmDMrZn4YOTG70a9QUYKlNehDL8 ZWUuouDmqi9WcgkiYm+RiEXqV11kwVvRc46Wh/qvq9cYR2bvhwa37tKJlpJNHCMO +AuglP9aEDNpPUMgS+EK97KlLJPAzUWJfiuBSxs+kZkAUu1CatewUpS2soI/p8tS kUdTU3KTTIPJ3X6FIvwe/sMVvJ7rOsJQUWRPx9rjvkpc2hoE8BjNPxOknGLzHaLw TH2xfxz/vj68NqSKaTE4MeUJuRkBd1DvbY1Dc+i2I6mlzzm6MDu47hfJNSvamKyp 9Q+GgZvDBfEHt6fmqLzp9AZUZhrtrWmqoi4zAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUMz/VyOKvuTU+kXtGuh3mAUeon5IwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL016X1Z5T0t2dVRVLWtYdEd1 aDNtQVVlb241SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AcwwDQYJKoZIhvcNAQELBQADggEBAJcbZOCR6b4a3Fyg66hDpXWv/4YVttpgFjVD 0qjAm4y7akrwH2TLRfGBAKIEUtmkVDtptwJCuCWQkpcngGiRsusDAOKcnS5XkRxo kfS7spPnt6EkI5TNRZQLX72pROtjKCPHngy8mHofRkkQzSXuiY0JEfhnMW+H5/Bs s5x1uFl19y5+HEceN2lgBwDOTYm9al4Ii1sOSn7ptnu1tmxEZFSYHVdvriCvjqu0 KcdiGR2HGMPeSPre6JGKZYc1UbnFvsvYluf6WGuetyv+AqIaBv+LoFUW6aZaf777 pR498GNbIiphtUgWvD0XaruV+T9cgqEAOAOYz4vmQywwqHZxLVI= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:19 2024 by rpki-client on console-ams.rpki-client.org