$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NRqN0ExlaP_lcUOCWWXghbB40Sg.roa File: NRqN0ExlaP_lcUOCWWXghbB40Sg.roa (raw, json) Hash identifier: LWvFqwJCLHZNMlYpr4Ix5jFc+Sq7/lX9Ngs1r8Wjssk= Subject key identifier: 35:1A:8D:D0:4C:65:68:FF:E5:71:43:82:59:65:E0:85:B0:78:D1:28 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32AE Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NRqN0ExlaP_lcUOCWWXghbB40Sg.roa Signing time: Mon 26 Aug 2024 05:31:54 +0000 ROA not before: Mon 26 Aug 2024 05:31:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.219.192/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12974 (0x32ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=351A8DD04C6568FFE57143825965E085B078D128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6a:c6:68:5b:30:2e:5c:8d:c6:6a:00:11:75: af:0c:51:7c:79:84:c7:86:e6:3b:5f:e2:23:af:70: 49:ff:a9:cc:2c:68:d0:e5:79:97:7d:a3:30:10:ce: ac:40:44:76:a0:e9:66:f3:c9:8c:19:4e:75:af:13: 32:9d:f9:14:ae:3e:ad:c4:2e:11:8f:db:4a:a2:ff: b7:05:86:8c:6d:b0:9d:e4:49:75:aa:38:a1:50:f7: dd:cf:13:2c:f5:21:ad:60:db:89:fb:2c:6b:66:ac: 70:18:94:fd:2e:4c:d6:a2:c5:53:0f:24:29:50:16: b1:1b:35:9d:ea:a5:c1:48:67:f7:ff:71:63:23:e1: d9:c7:0b:4e:0c:7c:40:ce:63:0b:92:60:6a:8d:fe: 9d:00:91:74:66:3e:a4:02:3c:d9:1d:01:8d:01:6e: 0c:e1:29:91:b1:55:7e:20:87:a1:cf:42:61:bf:80: 52:1d:95:b2:24:32:b8:bd:36:f5:48:fe:46:c0:ee: 16:41:38:2f:b8:d3:3b:e0:b2:8d:c2:f2:db:e2:e0: ae:fc:37:d1:ac:24:08:22:5c:49:f0:83:20:f1:f4: 96:e5:ee:f0:df:d0:d7:78:3e:5c:15:97:60:3a:88: 35:12:e3:eb:9e:a2:3a:5d:2e:c9:6c:47:7a:dc:ac: a5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:1A:8D:D0:4C:65:68:FF:E5:71:43:82:59:65:E0:85:B0:78:D1:28 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NRqN0ExlaP_lcUOCWWXghbB40Sg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.219.192/26 Signature Algorithm: sha256WithRSAEncryption a9:71:77:69:c8:38:87:8f:02:64:d6:f1:e0:bc:ea:18:97:60: c8:5e:a3:21:68:ae:db:63:61:0f:90:d2:54:34:9a:e2:46:06: 60:be:52:da:a4:fb:14:a5:03:2f:21:bc:e0:ab:eb:ec:53:4b: 0e:30:58:3a:62:a0:08:f8:b4:9a:b5:e2:39:60:00:9d:8a:1a: e7:c0:bb:16:fc:cd:aa:0c:ac:19:bb:e8:ac:05:cb:3d:29:f7: f1:76:c7:a2:be:d6:07:b2:44:be:dc:8c:fe:e7:79:5c:f3:8f: 01:57:a5:28:95:fe:d3:96:7e:86:0b:bd:99:65:d8:77:92:50: dd:c2:ca:d7:41:8f:52:18:8c:0d:6a:98:0a:83:3f:73:71:c4: 8d:f5:ef:55:84:62:47:df:8a:ed:d2:50:36:41:5a:f1:71:c1: b0:29:b8:0f:f7:bc:99:8d:1e:ff:47:68:66:e2:c5:c4:5a:c7: d4:8d:ba:97:7c:d4:21:f5:52:75:b0:6c:09:a3:d4:38:df:5a: cc:c5:49:6f:28:e7:d7:65:3f:27:cc:13:09:57:6d:86:0d:39: 49:96:fe:5c:2a:ed:54:97:80:b2:e3:aa:5d:7f:1d:d2:ca:8e: 4c:55:da:b0:84:50:bc:b8:47:41:b7:93:d1:95:e5:c1:a3:bb: 15:60:cd:88 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICMq4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM1MUE4REQwNEM2NTY4 RkZFNTcxNDM4MjU5NjVFMDg1QjA3OEQxMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEasZoWzAuXI3GagARda8MUXx5hMeG5jtf4iOvcEn/qcwsaNDl eZd9ozAQzqxARHag6WbzyYwZTnWvEzKd+RSuPq3ELhGP20qi/7cFhoxtsJ3kSXWq OKFQ993PEyz1Ia1g24n7LGtmrHAYlP0uTNaixVMPJClQFrEbNZ3qpcFIZ/f/cWMj 4dnHC04MfEDOYwuSYGqN/p0AkXRmPqQCPNkdAY0BbgzhKZGxVX4gh6HPQmG/gFId lbIkMri9NvVI/kbA7hZBOC+40zvgso3C8tvi4K78N9GsJAgiXEnwgyDx9Jbl7vDf 0Nd4PlwVl2A6iDUS4+ueojpdLslsR3rcrKWHAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUNRqN0ExlaP/lcUOCWWXghbB40SgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL05ScU4wRXhsYVBfbGNVT0NX V1hnaGJCNDBTZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQZ7 wdvAMA0GCSqGSIb3DQEBCwUAA4IBAQCpcXdpyDiHjwJk1vHgvOoYl2DIXqMhaK7b Y2EPkNJUNJriRgZgvlLapPsUpQMvIbzgq+vsU0sOMFg6YqAI+LSateI5YACdihrn wLsW/M2qDKwZu+isBcs9KffxdseivtYHskS+3Iz+53lc848BV6Uolf7Tln6GC72Z Zdh3klDdwsrXQY9SGIwNapgKgz9zccSN9e9VhGJH34rt0lA2QVrxccGwKbgP97yZ jR7/R2hm4sXEWsfUjbqXfNQh9VJ1sGwJo9Q431rMxUlvKOfXZT8nzBMJV22GDTlJ lv5cKu1Ul4Cy46pdfx3Syo5MVdqwhFC8uEdBt5PRleXBo7sVYM2I -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:51 2024 by rpki-client on console-ams.rpki-client.org