$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/O76NqniWpZRSlzY50ZvgBACckFE.roa File: O76NqniWpZRSlzY50ZvgBACckFE.roa (raw, json) Hash identifier: v1MX5MfXEilFhxG/1puXhI0QhN1V4teAb8OmH3fvciY= Subject key identifier: 3B:BE:8D:AA:78:96:A5:94:52:97:36:39:D1:9B:E0:04:00:9C:90:51 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3014 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/O76NqniWpZRSlzY50ZvgBACckFE.roa Signing time: Mon 26 Aug 2024 05:29:07 +0000 ROA not before: Mon 26 Aug 2024 05:29:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.176.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12308 (0x3014) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3BBE8DAA7896A59452973639D19BE004009C9051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:42:e5:5b:89:d8:a1:1b:6c:5f:b1:e0:6e:b7: 21:ad:61:19:19:61:8b:d2:73:01:e4:7b:e9:4f:b0: 22:5e:e7:cc:42:20:cf:27:dd:1e:23:77:91:69:b2: e7:3c:89:fe:c9:26:93:a5:3c:10:06:2e:58:27:ef: 5f:e7:61:63:cc:c6:d1:96:b1:29:fa:5f:2b:ca:bc: 68:13:25:88:f1:0f:0f:5f:2e:0c:d5:c7:e3:e7:a6: 71:ec:e8:55:cf:31:7b:ec:c5:27:a1:64:4b:27:21: 57:13:94:db:6a:6c:d2:68:61:d0:37:ed:16:9f:df: 85:0f:5a:69:56:c6:f8:a5:f1:39:92:c0:2b:2f:e4: b8:b3:54:33:b6:61:7c:3a:e8:2f:8e:42:ff:e9:a2: ff:d7:f8:3d:34:8e:4f:2d:24:ae:bf:fd:e2:8f:a2: 30:ed:10:91:32:b2:22:bf:09:dc:cf:9e:50:a1:72: 9a:b0:14:d7:91:cd:fa:8c:cb:aa:d3:63:c0:d5:54: c8:e9:0a:4f:13:16:b6:62:80:39:79:33:57:05:ea: c4:ae:b8:fd:fd:52:66:92:75:de:28:78:57:4b:0c: 3f:8a:d5:a2:2e:23:e0:a9:9e:b3:b1:a1:e5:1e:dd: aa:a9:b8:22:50:00:2d:9d:1b:ff:06:ce:c9:2c:3e: 03:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:BE:8D:AA:78:96:A5:94:52:97:36:39:D1:9B:E0:04:00:9C:90:51 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/O76NqniWpZRSlzY50ZvgBACckFE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.8.0/21 Signature Algorithm: sha256WithRSAEncryption 21:8e:05:89:5b:7b:78:82:43:36:97:83:ba:01:b9:e9:50:52: d2:7e:5c:4a:5d:37:df:06:17:7c:00:40:b3:36:12:be:59:47: fa:2e:8a:52:c4:2e:ab:fd:f6:c8:eb:e1:1c:d8:da:d9:4b:7e: 55:fd:e8:44:86:dd:29:95:47:7f:db:72:4a:b0:d2:9a:2a:26: a4:d5:d3:ea:a6:40:7c:57:2d:48:de:c6:e0:b4:ec:e4:41:04: b6:ad:ec:c9:c3:ff:4d:77:d3:b9:f0:d9:6e:21:68:f1:9c:38: 0a:d8:64:dc:31:7d:98:5a:0a:db:6a:1d:23:d7:da:9a:a8:a1: 3a:ec:f9:c3:9b:73:74:a8:47:9a:49:b2:db:f8:6c:71:ca:15: 98:03:e1:d3:d3:68:a1:59:89:41:42:a9:c9:2f:c7:ac:db:db: fd:6c:6a:ca:f3:e8:b1:7b:7a:ea:d7:e8:e9:27:c4:60:60:5f: e7:16:c9:4b:f6:bc:1f:b5:8c:c0:e3:77:4f:27:02:96:c0:61: 2c:16:18:63:f1:a4:37:12:28:9a:33:4f:87:4e:06:f3:9a:61: 09:2e:fe:d5:f4:82:9b:a9:a3:e3:3f:9b:40:bb:16:15:ec:45: e7:bc:27:d6:be:e0:c9:0d:c6:da:df:af:13:78:d1:5d:a7:78: b9:97:e3:12 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMBQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNCQkU4REFBNzg5NkE1 OTQ1Mjk3MzYzOUQxOUJFMDA0MDA5QzkwNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdQuVbidihG2xfseButyGtYRkZYYvScwHke+lPsCJe58xCIM8n 3R4jd5Fpsuc8if7JJpOlPBAGLlgn71/nYWPMxtGWsSn6XyvKvGgTJYjxDw9fLgzV x+PnpnHs6FXPMXvsxSehZEsnIVcTlNtqbNJoYdA37Raf34UPWmlWxvil8TmSwCsv 5LizVDO2YXw66C+OQv/pov/X+D00jk8tJK6//eKPojDtEJEysiK/CdzPnlChcpqw FNeRzfqMy6rTY8DVVMjpCk8TFrZigDl5M1cF6sSuuP39UmaSdd4oeFdLDD+K1aIu I+CpnrOxoeUe3aqpuCJQAC2dG/8GzsksPgM/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUO76NqniWpZRSlzY50ZvgBACckFEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL083Nk5xbmlXcFpSU2x6WTUw WnZnQkFDY2tGRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sAgwDQYJKoZIhvcNAQELBQADggEBACGOBYlbe3iCQzaXg7oBuelQUtJ+XEpdN98G F3wAQLM2Er5ZR/ouilLELqv99sjr4RzY2tlLflX96ESG3SmVR3/bckqw0poqJqTV 0+qmQHxXLUjexuC07ORBBLat7MnD/01307nw2W4haPGcOArYZNwxfZhaCttqHSPX 2pqooTrs+cObc3SoR5pJstv4bHHKFZgD4dPTaKFZiUFCqckvx6zb2/1sasrz6LF7 eurX6OknxGBgX+cWyUv2vB+1jMDjd08nApbAYSwWGGPxpDcSKJozT4dOBvOaYQku /tX0gpupo+M/m0C7FhXsRee8J9a+4MkNxtrfrxN40V2neLmX4xI= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org