$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OYUtFBbb13ojgSf-y3KyDUXxzvA.roa File: OYUtFBbb13ojgSf-y3KyDUXxzvA.roa (raw, json) Hash identifier: YGkbQwNvjhkCFEakoisl75j+vQHzFBZVihiKaokz7ro= Subject key identifier: 39:85:2D:14:16:DB:D7:7A:23:81:27:FE:CB:72:B2:0D:45:F1:CE:F0 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 312A Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OYUtFBbb13ojgSf-y3KyDUXxzvA.roa Signing time: Mon 26 Aug 2024 05:30:11 +0000 ROA not before: Mon 26 Aug 2024 05:30:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12586 (0x312a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=39852D1416DBD77A238127FECB72B20D45F1CEF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:77:b5:10:80:db:f1:44:ff:a9:4a:d0:ab:ac: 4c:56:db:1b:42:61:85:2f:93:a3:69:50:ab:52:fe: 17:8e:1c:28:fc:c6:ce:a2:73:ac:8e:8b:ba:8d:b5: fc:20:e8:3a:75:6b:09:b9:89:23:24:2c:85:35:80: 70:e7:64:f2:c4:54:e9:8e:dc:37:de:4c:08:de:27: b2:77:7c:d8:4d:7d:70:2d:e5:b9:d2:7d:1e:c7:24: 44:da:9c:20:46:e9:00:bf:6a:61:67:29:a6:02:d1: a2:58:24:7a:bd:3d:54:11:a4:4d:36:ea:97:a3:90: d0:90:0f:83:b0:4b:7d:c7:ae:4d:21:ee:32:c6:e5: b0:c0:1f:e3:7e:6c:ac:52:2c:4a:a3:02:4e:4b:29: 4a:d2:3e:e5:4c:7c:88:f8:a1:6e:da:c5:53:50:fa: f4:53:83:fc:2e:8b:d6:d0:0e:fa:8f:e1:0f:85:6f: b9:cc:56:5e:86:dd:f8:77:0f:b1:11:d7:6b:43:d6: 08:03:4b:f8:90:7b:d6:61:3d:a6:90:3b:8e:c3:6b: 7b:93:07:da:3f:32:18:ac:c4:81:7f:dc:35:64:15: 80:5e:b0:19:11:32:13:29:ce:e2:ad:0d:e5:61:6a: 3e:29:a4:62:d6:72:b1:11:c2:2f:90:c4:75:b8:55: 3f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:85:2D:14:16:DB:D7:7A:23:81:27:FE:CB:72:B2:0D:45:F1:CE:F0 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/OYUtFBbb13ojgSf-y3KyDUXxzvA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.120.0/22 Signature Algorithm: sha256WithRSAEncryption aa:57:00:3b:cb:c1:55:38:ec:57:c0:7f:90:a5:14:d8:4d:cc: fc:8f:a8:d1:8e:96:b4:e0:be:0f:58:98:af:cc:9c:61:3f:31: 48:a1:aa:2d:51:a3:dc:42:37:80:18:c2:09:96:2c:d2:f8:2b: 6c:2a:b2:a9:ee:e5:1d:27:cc:46:75:0e:df:db:62:06:29:a0: 9e:c2:0e:23:f9:26:45:a3:f1:8e:5a:04:3d:64:8e:3d:1f:a1: 95:26:14:c9:12:d2:10:a3:63:d3:5b:58:6e:c5:b5:3a:ba:d1: 11:3f:d8:55:1a:12:d0:61:07:cb:f1:eb:65:6b:7e:df:b5:42: 4b:c9:ce:3f:b1:ab:71:08:aa:09:82:75:05:22:10:79:59:38: eb:b7:d6:4a:7d:84:2a:b2:7e:6a:6e:a8:dc:ff:dd:96:25:79: 5e:00:4e:e9:4d:55:91:cc:20:51:ee:00:b2:e5:e2:00:20:a1: 1f:a6:54:3d:e0:35:59:5c:7e:4e:89:3a:2a:6e:00:0f:7b:38: 48:16:d2:cf:b2:de:44:91:e8:af:6a:1f:f1:b9:43:46:45:bc: 7b:c1:da:bd:8e:7b:f2:5f:db:3b:54:d6:51:7b:f5:29:e7:82: d0:10:e2:53:f5:74:31:84:9d:3a:9b:e8:78:f0:61:28:4b:d1: c4:0b:29:81 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMSowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM5ODUyRDE0MTZEQkQ3 N0EyMzgxMjdGRUNCNzJCMjBENDVGMUNFRjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpd7UQgNvxRP+pStCrrExW2xtCYYUvk6NpUKtS/heOHCj8xs6i c6yOi7qNtfwg6Dp1awm5iSMkLIU1gHDnZPLEVOmO3DfeTAjeJ7J3fNhNfXAt5bnS fR7HJETanCBG6QC/amFnKaYC0aJYJHq9PVQRpE026pejkNCQD4OwS33Hrk0h7jLG 5bDAH+N+bKxSLEqjAk5LKUrSPuVMfIj4oW7axVNQ+vRTg/wui9bQDvqP4Q+Fb7nM Vl6G3fh3D7ER12tD1ggDS/iQe9ZhPaaQO47Da3uTB9o/MhisxIF/3DVkFYBesBkR MhMpzuKtDeVhaj4ppGLWcrERwi+QxHW4VT8zAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOYUtFBbb13ojgSf+y3KyDUXxzvAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL09ZVXRGQmJiMTNvamdTZi15 M0t5RFVYeHp2QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AXgwDQYJKoZIhvcNAQELBQADggEBAKpXADvLwVU47FfAf5ClFNhNzPyPqNGOlrTg vg9YmK/MnGE/MUihqi1Ro9xCN4AYwgmWLNL4K2wqsqnu5R0nzEZ1Dt/bYgYpoJ7C DiP5JkWj8Y5aBD1kjj0foZUmFMkS0hCjY9NbWG7FtTq60RE/2FUaEtBhB8vx62Vr ft+1QkvJzj+xq3EIqgmCdQUiEHlZOOu31kp9hCqyfmpuqNz/3ZYleV4ATulNVZHM IFHuALLl4gAgoR+mVD3gNVlcfk6JOipuAA97OEgW0s+y3kSR6K9qH/G5Q0ZFvHvB 2r2Oe/Jf2ztU1lF79SnngtAQ4lP1dDGEnTqb6HjwYShL0cQLKYE= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:56 2024 by rpki-client on console-fra.rpki-client.org