$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OCxMsYP2RRV9DjEzs8K-YjZbUgs.roa File: OCxMsYP2RRV9DjEzs8K-YjZbUgs.roa (raw, json) Hash identifier: AhPrCnBZC5FpVi5v2cdWGI7lKCrG8ANzR4+hYDiMlWw= Subject key identifier: 38:2C:4C:B1:83:F6:45:15:7D:0E:31:33:B3:C2:BE:62:36:5B:52:0B Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3251 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OCxMsYP2RRV9DjEzs8K-YjZbUgs.roa Signing time: Mon 26 Aug 2024 05:31:32 +0000 ROA not before: Mon 26 Aug 2024 05:31:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.192.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12881 (0x3251) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=382C4CB183F645157D0E3133B3C2BE62365B520B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:cf:f0:58:50:71:4f:a6:8a:c3:2a:47:01:26: fa:bc:8d:2f:d9:d1:a3:dd:cb:17:80:d2:96:e8:09: 07:71:bb:16:04:67:8b:06:88:a7:1c:7e:e9:fd:8a: 00:a2:5c:95:d0:b0:75:bc:f4:df:7a:b5:ff:de:7f: 5a:42:e2:df:d0:26:fb:dd:47:9a:ed:bb:c6:1a:4e: 34:6c:33:b0:6c:cc:91:8a:84:a0:d7:7c:c9:c6:82: 15:71:9d:8a:e5:4e:ba:e0:f2:9e:21:65:6c:3a:12: 55:b8:81:b1:d6:bb:22:89:02:4a:64:0b:89:a1:e3: 6f:84:08:91:a5:03:ba:1b:4c:d9:cf:ed:c5:7a:ad: 68:98:db:cb:93:87:dd:05:57:46:0b:a5:8f:1c:0f: 6c:29:f5:b2:1c:3a:56:ba:7e:04:59:a5:91:25:e6: 81:8b:db:10:c9:9c:e4:66:8d:50:22:02:ae:89:5b: ac:dd:f2:2c:a6:38:46:ff:f8:a8:72:f4:02:6c:18: fa:f6:81:9a:6a:ee:4d:8c:54:2a:a2:a6:5f:99:00: 85:86:81:1a:8b:e9:4c:42:58:30:30:f1:4b:90:38: 46:da:a1:41:de:f7:89:d8:8e:02:06:cd:c8:cb:6c: e1:8b:1e:ba:35:c9:e6:d4:fa:a0:54:6a:f7:6a:a5: 7f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:2C:4C:B1:83:F6:45:15:7D:0E:31:33:B3:C2:BE:62:36:5B:52:0B X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OCxMsYP2RRV9DjEzs8K-YjZbUgs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.64.0/20 Signature Algorithm: sha256WithRSAEncryption 81:36:02:e7:e6:20:91:80:dd:60:22:0c:9e:d5:63:2d:1a:c8: 10:c0:7f:eb:74:c6:6b:22:36:48:65:58:bc:df:cc:66:5c:cf: 0f:4c:06:64:3f:49:9c:f2:bb:80:b3:b4:5e:86:a7:69:ec:68: ae:83:63:b1:77:8b:b9:6b:5e:9e:0a:d0:0a:be:9c:ae:7b:6c: 4b:aa:14:52:b5:3e:53:fd:51:bc:71:b4:cf:b5:39:c9:bd:b5: 45:32:06:80:e0:a4:96:d6:39:96:7e:25:20:76:a9:60:42:bb: f3:ff:b3:54:bf:47:99:a1:b5:9f:41:2a:0e:42:52:45:cf:8f: ca:bc:7b:12:1d:03:b1:2c:47:73:c3:02:4e:cc:f9:9d:e4:4f: 38:d7:2e:a9:89:1b:d1:14:15:f9:3c:29:32:4f:e3:02:ae:5e: a4:ba:91:06:37:e3:da:5a:98:9f:12:aa:0c:e9:71:23:85:a2: 1e:3f:a4:34:2a:f3:7f:b2:d3:0d:1d:a6:78:b8:07:23:b2:b8: 6a:8a:c9:a1:72:6f:10:ce:c6:70:be:f0:2c:bd:cc:6a:20:c4: 4c:08:f3:c9:f2:6e:2f:2f:27:5e:c6:b2:55:01:f7:cc:7b:c1: a1:94:16:a3:76:16:f6:8b:01:a1:a3:6d:be:30:9f:fa:ce:b5: 52:f6:ae:44 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMlEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM4MkM0Q0IxODNGNjQ1 MTU3RDBFMzEzM0IzQzJCRTYyMzY1QjUyMEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpz/BYUHFPporDKkcBJvq8jS/Z0aPdyxeA0pboCQdxuxYEZ4sG iKccfun9igCiXJXQsHW89N96tf/ef1pC4t/QJvvdR5rtu8YaTjRsM7BszJGKhKDX fMnGghVxnYrlTrrg8p4hZWw6ElW4gbHWuyKJAkpkC4mh42+ECJGlA7obTNnP7cV6 rWiY28uTh90FV0YLpY8cD2wp9bIcOla6fgRZpZEl5oGL2xDJnORmjVAiAq6JW6zd 8iymOEb/+Khy9AJsGPr2gZpq7k2MVCqipl+ZAIWGgRqL6UxCWDAw8UuQOEbaoUHe 94nYjgIGzcjLbOGLHro1yebU+qBUavdqpX+tAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOCxMsYP2RRV9DjEzs8K+YjZbUgswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL09DeE1zWVAyUlJWOURqRXpz OEstWWpaYlVncy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 wEAwDQYJKoZIhvcNAQELBQADggEBAIE2AufmIJGA3WAiDJ7VYy0ayBDAf+t0xmsi NkhlWLzfzGZczw9MBmQ/SZzyu4CztF6Gp2nsaK6DY7F3i7lrXp4K0Aq+nK57bEuq FFK1PlP9UbxxtM+1Ocm9tUUyBoDgpJbWOZZ+JSB2qWBCu/P/s1S/R5mhtZ9BKg5C UkXPj8q8exIdA7EsR3PDAk7M+Z3kTzjXLqmJG9EUFfk8KTJP4wKuXqS6kQY349pa mJ8SqgzpcSOFoh4/pDQq83+y0w0dpni4ByOyuGqKyaFybxDOxnC+8Cy9zGogxEwI 88nybi8vJ17GslUB98x7waGUFqN2FvaLAaGjbb4wn/rOtVL2rkQ= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org