$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NbPR12uWnaZYF4Qg1g0P9uGykis.roa File: NbPR12uWnaZYF4Qg1g0P9uGykis.roa (raw, json) Hash identifier: rfE4b843TDgYfqw4VRidkVtv/0+rAwPHC4l/a+Eyfys= Subject key identifier: 35:B3:D1:D7:6B:96:9D:A6:58:17:84:20:D6:0D:0F:F6:E1:B2:92:2B Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 307C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NbPR12uWnaZYF4Qg1g0P9uGykis.roa Signing time: Mon 26 Aug 2024 05:29:30 +0000 ROA not before: Mon 26 Aug 2024 05:29:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.177.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12412 (0x307c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:30 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=35B3D1D76B969DA658178420D60D0FF6E1B2922B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0e:42:96:98:27:af:2b:67:b1:74:06:e8:23: fe:53:6c:48:b3:72:a0:5e:9a:07:79:d3:0f:5a:a8: a1:ae:9f:5f:e5:e1:d3:05:a3:e8:cd:02:d3:d2:88: 0d:f6:25:44:cd:91:21:7d:14:e7:fc:6d:a7:78:84: 7b:43:01:14:ea:7d:a6:3e:57:ca:27:44:77:94:92: 48:43:a4:59:b7:a3:b5:38:bd:96:74:5b:62:be:52: cb:5a:45:df:9a:8d:e0:b5:0a:69:5f:d2:92:b0:ff: ae:a0:a0:15:82:3e:91:df:3d:3b:14:95:bf:3c:38: 33:e8:8e:18:0e:27:2a:0f:e4:02:55:6f:2a:a1:29: d7:d5:e5:28:18:58:c7:93:35:c4:4b:de:e0:59:5e: a4:8e:55:86:80:69:9e:e7:1f:87:0f:67:ed:4d:01: 5f:80:91:19:40:03:38:9f:f5:40:01:04:4b:a5:fe: ab:c7:42:94:6c:50:c3:46:1d:cd:c6:18:49:f1:8e: ee:89:4b:5a:f6:48:dd:fb:9a:86:11:21:00:01:eb: 6f:ec:c9:ec:28:d0:62:ef:2b:aa:1d:9a:e7:21:60: 55:76:45:03:3a:a3:2b:0f:38:44:8a:13:e3:bd:cd: 84:bf:66:1e:c0:9f:64:5b:c7:1e:a5:e5:2e:e1:33: 15:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B3:D1:D7:6B:96:9D:A6:58:17:84:20:D6:0D:0F:F6:E1:B2:92:2B X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NbPR12uWnaZYF4Qg1g0P9uGykis.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.52.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:db:85:d4:48:3c:b6:71:5e:d6:cc:f6:4a:26:f0:f4:3a:8b: 3c:85:42:67:55:21:8e:84:f6:30:44:fe:82:97:0c:7e:95:36: 84:4d:53:cb:27:e3:28:4a:f2:c4:91:4c:91:8e:7f:75:5c:10: a7:10:5e:d1:61:da:84:37:50:66:53:7c:b3:c0:68:5e:05:35: 63:be:64:18:70:31:f0:61:38:5b:3c:a7:7a:60:ef:67:9c:75: c2:6a:f7:d0:3a:cd:25:46:67:cd:8f:1f:e2:e3:10:ae:1a:cf: 69:15:3b:8d:ea:93:ff:59:0b:fc:92:b6:88:f6:34:49:1e:ad: b9:6e:32:5f:f1:32:38:c3:f1:34:d6:9d:19:90:03:63:9f:6a: 35:d2:32:a8:7d:be:19:8b:b0:fd:ac:5e:06:f5:76:77:80:2b: f2:82:47:0c:b4:a5:59:87:bf:08:13:1e:d3:d7:a3:1e:65:46: 45:67:97:b8:a8:8c:a5:49:7a:82:e5:8b:27:94:d9:dc:71:c9: ec:68:7e:3f:62:91:7c:22:53:42:b4:dd:ab:75:1c:c9:8d:7d: ff:f5:8c:36:79:1c:b4:54:65:37:53:50:8e:8b:0c:f8:49:27: aa:16:ba:c6:2e:ef:a2:1c:e4:d3:9c:7d:2d:d6:0b:c5:88:18: 9b:bc:d1:0c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMHwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM1QjNEMUQ3NkI5NjlE QTY1ODE3ODQyMEQ2MEQwRkY2RTFCMjkyMkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDODkKWmCevK2exdAboI/5TbEizcqBemgd50w9aqKGun1/l4dMF o+jNAtPSiA32JUTNkSF9FOf8bad4hHtDARTqfaY+V8onRHeUkkhDpFm3o7U4vZZ0 W2K+UstaRd+ajeC1Cmlf0pKw/66goBWCPpHfPTsUlb88ODPojhgOJyoP5AJVbyqh KdfV5SgYWMeTNcRL3uBZXqSOVYaAaZ7nH4cPZ+1NAV+AkRlAAzif9UABBEul/qvH QpRsUMNGHc3GGEnxju6JS1r2SN37moYRIQAB62/syewo0GLvK6odmuchYFV2RQM6 oysPOESKE+O9zYS/Zh7An2Rbxx6l5S7hMxXjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUNbPR12uWnaZYF4Qg1g0P9uGykiswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL05iUFIxMnVXbmFaWUY0UWcx ZzBQOXVHeWtpcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 sTQwDQYJKoZIhvcNAQELBQADggEBAA3bhdRIPLZxXtbM9kom8PQ6izyFQmdVIY6E 9jBE/oKXDH6VNoRNU8sn4yhK8sSRTJGOf3VcEKcQXtFh2oQ3UGZTfLPAaF4FNWO+ ZBhwMfBhOFs8p3pg72ecdcJq99A6zSVGZ82PH+LjEK4az2kVO43qk/9ZC/yStoj2 NEkerbluMl/xMjjD8TTWnRmQA2OfajXSMqh9vhmLsP2sXgb1dneAK/KCRwy0pVmH vwgTHtPXox5lRkVnl7iojKVJeoLliyeU2dxxyexofj9ikXwiU0K03at1HMmNff/1 jDZ5HLRUZTdTUI6LDPhJJ6oWusYu76Ic5NOcfS3WC8WIGJu80Qw= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:56 2024 by rpki-client on console-fra.rpki-client.org