$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Noufm-uh40OjjMcsLTx2B6vuy_I.roa File: Noufm-uh40OjjMcsLTx2B6vuy_I.roa (raw, json) Hash identifier: SWxEzJRzIFiO2VVFh8Wim1aAs328edYV79WEiXdkxv0= Subject key identifier: 36:8B:9F:9B:EB:A1:E3:43:A3:8C:C7:2C:2D:3C:76:07:AB:EE:CB:F2 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3150 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Noufm-uh40OjjMcsLTx2B6vuy_I.roa Signing time: Mon 26 Aug 2024 05:30:20 +0000 ROA not before: Mon 26 Aug 2024 05:30:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12624 (0x3150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=368B9F9BEBA1E343A38CC72C2D3C7607ABEECBF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:be:6d:49:11:29:a5:d3:ea:65:10:b2:97:b8: e6:94:c0:27:c7:f8:c9:f9:b4:50:e6:79:c4:aa:fc: 10:2c:08:f7:88:49:96:94:92:b8:48:ea:30:81:e5: ee:75:22:0d:99:b1:4b:e5:5c:ab:43:2c:6a:8e:51: d1:5b:58:86:3a:8a:88:c6:75:91:11:cb:fc:9e:37: 36:11:7f:4e:9d:c1:c3:93:64:72:94:db:af:1a:84: 03:3c:79:b1:1c:3e:23:e0:7d:b6:a0:4f:7a:a5:c7: 30:d2:7f:b6:fb:c1:5e:83:cd:44:5a:25:22:91:90: 6e:69:1c:ae:82:f8:19:3b:31:f0:71:8a:4e:4e:be: 55:3c:da:49:46:94:17:13:83:7a:55:f5:d0:df:66: a0:91:88:c8:bf:ec:2f:1c:56:58:e0:7d:3b:76:69: ba:93:9e:f2:4e:19:d7:3b:5c:1d:b1:f7:be:4a:e1: 5a:42:ad:49:3a:06:97:a9:d0:61:25:2e:60:ff:43: 3c:95:95:ce:3e:e2:52:80:01:52:94:13:ab:65:18: 1f:8b:38:7c:6d:7d:08:25:01:fb:ec:12:46:55:fd: 21:2f:ae:34:61:82:da:6f:0f:16:4b:aa:f6:0a:11: f8:37:f2:6c:89:82:e5:69:19:39:23:4c:c0:b0:82: 39:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:8B:9F:9B:EB:A1:E3:43:A3:8C:C7:2C:2D:3C:76:07:AB:EE:CB:F2 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Noufm-uh40OjjMcsLTx2B6vuy_I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.80.0/21 Signature Algorithm: sha256WithRSAEncryption 53:de:b4:8d:9e:9a:a3:21:ef:43:64:4c:69:86:75:7c:eb:4b: 5e:1a:53:6a:92:bd:a7:05:35:30:80:65:16:2e:aa:23:10:fe: 5f:ce:ca:82:ce:0e:39:4c:3f:65:4e:a7:9d:60:7c:5c:2e:c9: bc:8f:f1:ea:6a:a0:12:0b:17:1e:b8:8f:0c:60:eb:64:46:72: e7:a3:21:80:a1:4e:2e:07:1d:fe:64:c3:8f:6f:62:d6:25:c9: 2f:58:d7:e2:31:f4:90:47:56:39:86:96:c7:f4:de:8c:bc:eb: 93:5c:a7:a6:11:91:4e:cb:e6:76:3f:fc:e2:0b:17:b9:f3:e6: da:55:f1:76:9c:26:70:b3:5d:a8:cd:a6:b7:9e:89:25:f6:a3: 73:21:ae:00:93:d2:90:eb:ff:23:9f:bc:04:2e:bf:e7:6e:19: bd:2c:92:39:01:1e:33:be:c0:a3:54:2e:f4:f7:03:49:05:14: 39:bd:23:4e:12:00:0a:1d:be:21:35:54:35:94:ba:6d:4d:36: 63:7b:63:36:84:e2:e8:7b:5d:0c:d6:a7:fe:30:ff:41:e1:3a: 14:fd:d3:e1:39:c0:53:2f:90:78:0b:f3:20:f3:15:5b:69:6e: e7:57:d2:00:8b:11:1c:6d:4f:00:e3:32:1a:73:7c:79:e8:c0: 4f:a8:2f:16 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMVAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM2OEI5RjlCRUJBMUUz NDNBMzhDQzcyQzJEM0M3NjA3QUJFRUNCRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrvm1JESml0+plELKXuOaUwCfH+Mn5tFDmecSq/BAsCPeISZaU krhI6jCB5e51Ig2ZsUvlXKtDLGqOUdFbWIY6iojGdZERy/yeNzYRf06dwcOTZHKU 268ahAM8ebEcPiPgfbagT3qlxzDSf7b7wV6DzURaJSKRkG5pHK6C+Bk7MfBxik5O vlU82klGlBcTg3pV9dDfZqCRiMi/7C8cVljgfTt2abqTnvJOGdc7XB2x975K4VpC rUk6Bpep0GElLmD/QzyVlc4+4lKAAVKUE6tlGB+LOHxtfQglAfvsEkZV/SEvrjRh gtpvDxZLqvYKEfg38myJguVpGTkjTMCwgjkdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUNoufm+uh40OjjMcsLTx2B6vuy/IwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL05vdWZtLXVoNDBPampNY3NM VHgyQjZ2dXlfSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6VAwDQYJKoZIhvcNAQELBQADggEBAFPetI2emqMh70NkTGmGdXzrS14aU2qSvacF NTCAZRYuqiMQ/l/OyoLODjlMP2VOp51gfFwuybyP8epqoBILFx64jwxg62RGcuej IYChTi4HHf5kw49vYtYlyS9Y1+Ix9JBHVjmGlsf03oy865Ncp6YRkU7L5nY//OIL F7nz5tpV8XacJnCzXajNpreeiSX2o3MhrgCT0pDr/yOfvAQuv+duGb0skjkBHjO+ wKNULvT3A0kFFDm9I04SAAodviE1VDWUum1NNmN7YzaE4uh7XQzWp/4w/0HhOhT9 0+E5wFMvkHgL8yDzFVtpbudX0gCLERxtTwDjMhpzfHnowE+oLxY= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:52 2024 by rpki-client on console-fra.rpki-client.org