$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/N0hvYdHWnJk_WZndILTIkIPZynM.roa File: N0hvYdHWnJk_WZndILTIkIPZynM.roa (raw, json) Hash identifier: hTzOpDhqVU1OR5u76tpmLhvwSNnMsGgPJ/QTX1UMcz8= Subject key identifier: 37:48:6F:61:D1:D6:9C:99:3F:59:99:DD:20:B4:C8:90:83:D9:CA:73 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31E3 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/N0hvYdHWnJk_WZndILTIkIPZynM.roa Signing time: Mon 26 Aug 2024 05:31:03 +0000 ROA not before: Mon 26 Aug 2024 05:31:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.177.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12771 (0x31e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:03 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=37486F61D1D69C993F5999DD20B4C89083D9CA73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f5:fd:85:85:f4:c9:37:d1:e3:37:1e:1d:12: ff:d1:9e:d8:2a:b6:af:5e:20:b1:bb:b3:79:a8:56: 92:85:1e:93:cf:5d:14:ba:ed:af:93:8e:35:e0:ab: 4d:55:27:c5:5f:c4:57:b8:23:f2:4f:95:c4:5e:2c: 4f:93:bb:bc:28:bc:75:a2:33:8d:21:7e:bf:94:16: 2f:cc:67:22:6d:27:cb:81:38:e9:cc:c5:02:6f:5c: b0:e7:e5:a4:35:b6:d8:c6:b1:68:cf:4f:88:18:9d: 25:f7:30:5c:c9:39:02:7b:e2:01:57:b4:1d:53:d7: f5:7e:89:35:8a:48:f9:46:da:56:a6:1b:c4:f2:e0: 2c:bc:7a:c9:3b:60:4f:1c:14:de:af:fd:c6:1b:a8: 8b:20:47:00:18:c7:6d:05:5d:b7:1f:d3:2a:38:db: c5:08:36:3d:8d:cd:34:f2:1b:74:e9:fd:90:e7:fe: 0d:79:10:d8:b8:f7:e1:47:be:87:28:4d:b9:62:4b: f0:4c:6d:b1:33:14:3c:7d:dd:07:a3:8b:b0:7c:8b: 26:81:e3:af:a2:76:5c:14:e5:8a:0c:fd:81:45:e4: 7e:d0:2e:e7:76:db:f9:51:10:5f:80:d8:cd:17:98: 25:d2:88:1c:3d:58:c8:1c:b1:65:4c:21:d5:eb:b2: 0f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:48:6F:61:D1:D6:9C:99:3F:59:99:DD:20:B4:C8:90:83:D9:CA:73 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/N0hvYdHWnJk_WZndILTIkIPZynM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.140.0/22 Signature Algorithm: sha256WithRSAEncryption 04:0a:02:e4:53:79:13:93:b5:a6:2a:d5:8f:f5:2b:af:61:4c: 96:09:0d:cf:46:86:c1:13:48:73:67:f2:50:29:fb:71:6d:d7: 04:5d:46:7f:a1:7d:9e:7e:87:84:52:0b:0f:02:9e:87:39:61: e7:f8:ed:c6:35:f6:d9:e3:76:7c:16:dc:f5:1d:4e:e9:d0:86: 77:8d:32:1a:b5:7a:a4:6e:f5:b3:94:de:47:f3:e1:31:87:77: 2e:bf:e4:20:04:a4:eb:f7:b1:d1:5a:1e:a8:db:a6:bb:b7:b4: ba:19:58:38:a5:2d:19:d5:67:47:c0:42:3e:a2:8b:2e:1f:b6: 3c:1f:45:7c:f6:e5:36:e4:12:a6:84:2b:fd:37:04:eb:6c:8e: e3:3b:dc:61:05:b0:13:eb:36:d8:17:c6:f7:f2:27:6e:6d:32: 7a:10:89:53:3f:e7:db:b4:a4:65:ed:8b:3a:d7:67:cc:98:0d: 54:72:cc:44:40:59:69:f2:9f:2f:c9:9d:82:5d:15:c1:58:be: 69:13:9e:69:e3:9d:dd:e4:4f:58:93:93:76:aa:27:f5:a2:d0: 9e:35:93:9c:88:f5:44:3b:24:7d:9a:c1:7a:2e:91:a0:04:fd: 09:d4:b0:7f:25:bc:58:ac:fe:2e:80:ca:d0:71:71:52:2e:9a: e2:9b:6a:21 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMeMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM3NDg2RjYxRDFENjlD OTkzRjU5OTlERDIwQjRDODkwODNEOUNBNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCk9f2FhfTJN9HjNx4dEv/Rntgqtq9eILG7s3moVpKFHpPPXRS6 7a+TjjXgq01VJ8VfxFe4I/JPlcReLE+Tu7wovHWiM40hfr+UFi/MZyJtJ8uBOOnM xQJvXLDn5aQ1ttjGsWjPT4gYnSX3MFzJOQJ74gFXtB1T1/V+iTWKSPlG2lamG8Ty 4Cy8esk7YE8cFN6v/cYbqIsgRwAYx20FXbcf0yo428UINj2NzTTyG3Tp/ZDn/g15 ENi49+FHvocoTbliS/BMbbEzFDx93Qeji7B8iyaB46+idlwU5YoM/YFF5H7QLud2 2/lREF+A2M0XmCXSiBw9WMgcsWVMIdXrsg9FAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUN0hvYdHWnJk/WZndILTIkIPZynMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL04waHZZZEhXbkprX1dabmRJ TFRJa0lQWnluTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 sYwwDQYJKoZIhvcNAQELBQADggEBAAQKAuRTeROTtaYq1Y/1K69hTJYJDc9GhsET SHNn8lAp+3Ft1wRdRn+hfZ5+h4RSCw8Cnoc5Yef47cY19tnjdnwW3PUdTunQhneN Mhq1eqRu9bOU3kfz4TGHdy6/5CAEpOv3sdFaHqjbpru3tLoZWDilLRnVZ0fAQj6i iy4ftjwfRXz25TbkEqaEK/03BOtsjuM73GEFsBPrNtgXxvfyJ25tMnoQiVM/59u0 pGXtizrXZ8yYDVRyzERAWWnyny/JnYJdFcFYvmkTnmnjnd3kT1iTk3aqJ/Wi0J41 k5yI9UQ7JH2awXoukaAE/QnUsH8lvFis/i6AytBxcVIumuKbaiE= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:19 2024 by rpki-client on console-ams.rpki-client.org