$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Nor6ER2jA7Noi7DuHv4QXVVkomQ.roa File: Nor6ER2jA7Noi7DuHv4QXVVkomQ.roa (raw, json) Hash identifier: yhcSXLNJXQEpX4OBislIN328DYCwcMU1fs3gusdD1f8= Subject key identifier: 36:8A:FA:11:1D:A3:03:B3:68:8B:B0:EE:1E:FE:10:5D:55:64:A2:64 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31F1 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Nor6ER2jA7Noi7DuHv4QXVVkomQ.roa Signing time: Mon 26 Aug 2024 05:31:06 +0000 ROA not before: Mon 26 Aug 2024 05:31:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12785 (0x31f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:06 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=368AFA111DA303B3688BB0EE1EFE105D5564A264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fa:21:d2:e0:a3:2f:d3:1a:27:25:f9:ed:62: 99:79:6f:08:f2:10:37:e1:cf:3c:c9:f5:53:a3:49: b6:5a:74:a3:84:4e:c1:72:4c:d6:b1:91:3e:e3:4a: 44:7f:0b:ce:84:8d:b9:a1:72:cd:bc:ee:f3:49:fe: d7:60:aa:ec:43:3b:8d:81:fe:b3:ac:67:b1:c8:75: 25:ab:14:bb:1d:8b:65:e6:fe:5d:4f:e1:aa:da:6c: 5b:ff:6f:fd:98:71:db:19:4b:cf:d7:28:28:6c:c6: 28:3a:91:5b:87:bc:a1:84:fe:8f:03:1f:88:de:0d: d1:57:f9:06:41:ef:3b:97:d9:84:e7:b8:08:f1:bf: e7:a4:e2:9b:dc:0a:79:ca:08:dc:02:d9:3f:1e:0b: cb:bd:47:a8:86:93:fb:ec:ef:ae:ba:c0:6a:cf:1a: bc:6a:19:8e:78:1b:7c:da:36:d5:c4:a1:0b:6f:d7: f9:7f:06:5e:ff:fa:92:83:c9:29:97:89:3f:d3:13: 2a:15:3a:33:f3:bb:4a:60:46:65:0f:61:c8:59:43: 64:27:5f:23:b3:17:6e:3d:96:83:00:b9:2a:15:54: 96:09:4f:d9:ec:3e:de:e5:8b:71:37:d4:e3:28:2a: ff:77:b2:e9:40:a3:b8:75:c0:6e:b1:d3:de:ef:4c: d9:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:8A:FA:11:1D:A3:03:B3:68:8B:B0:EE:1E:FE:10:5D:55:64:A2:64 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Nor6ER2jA7Noi7DuHv4QXVVkomQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.4.0/22 Signature Algorithm: sha256WithRSAEncryption 19:60:34:f0:16:0b:23:8b:7b:d6:1b:c2:fc:5e:fb:9f:55:b0: e7:d9:78:fa:29:d8:64:90:4c:48:b6:22:1f:c4:52:2f:21:74: ca:32:41:95:5a:49:61:70:25:ce:44:2d:b2:59:03:37:6f:27: 00:2d:85:ea:f0:bc:af:e1:06:60:05:49:05:61:b3:ea:e7:ff: 19:d6:5d:87:98:1e:2f:df:e7:15:4e:0c:d1:40:f2:e3:a2:98: 4d:6b:25:32:97:09:9f:97:28:f5:ec:6b:c1:70:96:35:72:98: 49:10:a3:fe:f8:a5:8e:b0:50:10:ee:24:31:94:f3:f8:57:bb: 48:a0:ac:d8:e4:83:3e:95:d9:dd:ee:cb:17:52:25:f0:73:5c: 95:03:a0:51:85:98:9f:c1:c3:24:32:a0:1e:8f:0c:15:8d:09: b6:f5:ae:14:ed:e9:7a:b8:77:bf:d0:29:a7:d1:56:4c:ec:94: 2d:c9:8c:41:bf:2d:96:75:de:b7:e3:d7:25:83:28:e4:fb:1b: 7d:ad:a1:06:fc:c0:dc:06:2e:06:c0:f5:c7:a0:14:47:f1:37: c0:82:44:ae:71:9b:50:65:39:d6:44:1d:09:69:f0:9a:ba:b2: 07:72:23:a4:3d:c7:91:e9:75:0a:e9:5d:84:22:1c:6a:1d:cb: ad:eb:0b:82 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMfEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM2OEFGQTExMURBMzAz QjM2ODhCQjBFRTFFRkUxMDVENTU2NEEyNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCh+iHS4KMv0xonJfntYpl5bwjyEDfhzzzJ9VOjSbZadKOETsFy TNaxkT7jSkR/C86Ejbmhcs287vNJ/tdgquxDO42B/rOsZ7HIdSWrFLsdi2Xm/l1P 4arabFv/b/2YcdsZS8/XKChsxig6kVuHvKGE/o8DH4jeDdFX+QZB7zuX2YTnuAjx v+ek4pvcCnnKCNwC2T8eC8u9R6iGk/vs7666wGrPGrxqGY54G3zaNtXEoQtv1/l/ Bl7/+pKDySmXiT/TEyoVOjPzu0pgRmUPYchZQ2QnXyOzF249loMAuSoVVJYJT9ns Pt7li3E31OMoKv93sulAo7h1wG6x097vTNl/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUNor6ER2jA7Noi7DuHv4QXVVkomQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL05vcjZFUjJqQTdOb2k3RHVI djRRWFZWa29tUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AQQwDQYJKoZIhvcNAQELBQADggEBABlgNPAWCyOLe9Ybwvxe+59VsOfZePop2GSQ TEi2Ih/EUi8hdMoyQZVaSWFwJc5ELbJZAzdvJwAtherwvK/hBmAFSQVhs+rn/xnW XYeYHi/f5xVODNFA8uOimE1rJTKXCZ+XKPXsa8FwljVymEkQo/74pY6wUBDuJDGU 8/hXu0igrNjkgz6V2d3uyxdSJfBzXJUDoFGFmJ/BwyQyoB6PDBWNCbb1rhTt6Xq4 d7/QKafRVkzslC3JjEG/LZZ13rfj1yWDKOT7G32toQb8wNwGLgbA9cegFEfxN8CC RK5xm1BlOdZEHQlp8Jq6sgdyI6Q9x5HpdQrpXYQiHGody63rC4I= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org