$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NZkJvDJHWmOYnssXnvFnxxCeLjQ.roa File: NZkJvDJHWmOYnssXnvFnxxCeLjQ.roa (raw, json) Hash identifier: 2+oo8ojFK1840+y8x6qRfqJPYeV3ZAoAfB8gel8y1cs= Subject key identifier: 35:99:09:BC:32:47:5A:63:98:9E:CB:17:9E:F1:67:C7:10:9E:2E:34 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32B8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NZkJvDJHWmOYnssXnvFnxxCeLjQ.roa Signing time: Mon 26 Aug 2024 05:31:57 +0000 ROA not before: Mon 26 Aug 2024 05:31:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.232.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12984 (0x32b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:57 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=359909BC32475A63989ECB179EF167C7109E2E34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0a:73:5c:4b:25:ce:03:41:2f:3e:f6:08:0b: e4:20:3a:c1:75:77:c8:20:fd:eb:f1:ed:35:16:0e: 06:98:a2:42:f6:fb:3c:67:e9:a2:7a:6c:72:aa:30: a8:86:a6:26:8a:7d:1e:df:6b:f1:9b:7f:dc:4b:f4: 57:f0:7e:2e:10:1a:70:59:95:80:be:a3:d5:b6:4a: 86:2f:6d:dc:19:b1:4c:a7:47:6d:f4:d9:68:c5:77: 93:c5:59:f9:f8:b3:1e:22:a2:8f:f3:26:5a:9d:07: 69:f9:ca:ba:54:29:2f:27:c2:40:30:69:45:a2:93: 1f:46:b0:75:0e:c6:12:e6:24:17:fa:c6:62:74:f2: 50:3f:11:30:2f:ed:15:f4:01:11:38:70:f3:c7:3b: 82:6f:b6:42:b5:1b:5a:96:a0:3c:d3:8b:80:5f:db: 1d:d2:56:6b:6a:cb:17:b4:75:f6:a9:ee:e1:c0:6a: c3:1e:9d:8a:33:55:3f:9e:a4:76:ad:c6:0c:5d:6f: 03:24:2c:8f:25:cc:28:28:46:f4:bb:b5:f2:a5:28: 68:89:d4:13:35:f1:d7:0e:b1:41:e0:ae:7a:90:e1: d5:44:ea:7d:23:49:73:72:e6:00:32:e2:85:d7:6a: 3f:08:60:9e:24:e0:46:82:1b:61:ce:85:e5:11:c9: a5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:99:09:BC:32:47:5A:63:98:9E:CB:17:9E:F1:67:C7:10:9E:2E:34 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NZkJvDJHWmOYnssXnvFnxxCeLjQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.208.0/21 Signature Algorithm: sha256WithRSAEncryption a9:35:d2:81:62:3f:ba:2a:ee:18:84:48:3a:93:85:0c:44:4a: da:2a:a6:16:bc:81:cc:5e:4f:c3:f9:62:db:25:fe:3f:16:44: 0d:bc:7b:c8:c5:7b:f9:f0:c3:bd:a3:53:60:98:f6:b3:38:d8: b2:5f:2a:ae:e6:84:94:04:42:d5:a1:3d:25:b0:1b:87:de:da: 2f:d3:0c:b1:1c:00:a3:c3:7f:2f:70:b0:df:6a:02:35:33:67: d0:5a:39:38:40:93:27:8f:74:cf:85:97:66:bb:39:53:77:dd: 40:88:10:8b:22:9d:d1:55:bb:40:18:5c:e0:38:7b:ce:5a:82: eb:7a:4e:98:31:a7:83:35:b1:8f:db:4f:8a:6e:f4:79:ef:69: 9e:0d:b5:5a:a5:5c:cf:41:8c:e3:8d:64:2c:d8:f9:4c:b0:ab: 2f:08:99:6c:4f:15:57:f5:31:2a:3a:bb:f4:cf:52:5b:0d:07: 06:56:b5:b7:08:e3:d7:d3:b4:8a:77:e7:4d:93:e6:7e:a3:71: a2:e7:5a:52:93:79:cb:2c:56:94:b3:64:1e:9f:c1:51:ef:09: 91:a8:80:5a:f3:15:26:fe:c2:00:3b:fa:a8:94:59:64:2a:42: 92:07:7a:2f:8e:cf:70:a7:73:0d:c7:bd:2c:4b:69:f3:aa:79: 1f:1f:85:48 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMrgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM1OTkwOUJDMzI0NzVB NjM5ODlFQ0IxNzlFRjE2N0M3MTA5RTJFMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8CnNcSyXOA0EvPvYIC+QgOsF1d8gg/evx7TUWDgaYokL2+zxn 6aJ6bHKqMKiGpiaKfR7fa/Gbf9xL9Ffwfi4QGnBZlYC+o9W2SoYvbdwZsUynR230 2WjFd5PFWfn4sx4ioo/zJlqdB2n5yrpUKS8nwkAwaUWikx9GsHUOxhLmJBf6xmJ0 8lA/ETAv7RX0ARE4cPPHO4JvtkK1G1qWoDzTi4Bf2x3SVmtqyxe0dfap7uHAasMe nYozVT+epHatxgxdbwMkLI8lzCgoRvS7tfKlKGiJ1BM18dcOsUHgrnqQ4dVE6n0j SXNy5gAy4oXXaj8IYJ4k4EaCG2HOheURyaW7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUNZkJvDJHWmOYnssXnvFnxxCeLjQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL05aa0p2REpIV21PWW5zc1hu dkZueHhDZUxqUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6NAwDQYJKoZIhvcNAQELBQADggEBAKk10oFiP7oq7hiESDqThQxEStoqpha8gcxe T8P5Ytsl/j8WRA28e8jFe/nww72jU2CY9rM42LJfKq7mhJQEQtWhPSWwG4fe2i/T DLEcAKPDfy9wsN9qAjUzZ9BaOThAkyePdM+Fl2a7OVN33UCIEIsindFVu0AYXOA4 e85agut6Tpgxp4M1sY/bT4pu9HnvaZ4NtVqlXM9BjOONZCzY+Uywqy8ImWxPFVf1 MSo6u/TPUlsNBwZWtbcI49fTtIp3502T5n6jcaLnWlKTecssVpSzZB6fwVHvCZGo gFrzFSb+wgA7+qiUWWQqQpIHei+Oz3Cncw3HvSxLafOqeR8fhUg= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:52 2024 by rpki-client on console-fra.rpki-client.org