$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ouku3O73QHQtVYJYGLN8tJ0Q-Rw.roa File: Ouku3O73QHQtVYJYGLN8tJ0Q-Rw.roa (raw, json) Hash identifier: +Y4Ob+loRHerTI9x8fVS0dNSGprdF2XmOnZXPqLbQ0Q= Subject key identifier: 3A:E9:2E:DC:EE:F7:40:74:2D:55:82:58:18:B3:7C:B4:9D:10:F9:1C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3075 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ouku3O73QHQtVYJYGLN8tJ0Q-Rw.roa Signing time: Mon 26 Aug 2024 05:29:28 +0000 ROA not before: Mon 26 Aug 2024 05:29:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12405 (0x3075) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:28 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3AE92EDCEEF740742D55825818B37CB49D10F91C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0e:a8:09:54:57:1e:ab:e7:0e:2a:28:a4:24: 4d:45:8a:c2:48:f7:6c:33:02:89:b9:59:b9:ef:a2: 26:cd:60:46:83:98:47:e3:d1:e3:5b:b9:12:19:71: 6d:4c:1c:3d:59:1e:43:bf:31:8d:65:15:35:ce:38: 9e:ba:80:c4:c1:36:6b:a1:6b:cd:2d:07:96:7d:f8: cd:5c:0d:37:7a:6c:80:bf:ae:fc:9c:da:0d:42:85: 21:89:0a:55:d4:eb:ab:e8:33:af:51:b4:46:5c:78: 78:36:96:64:6c:dc:d4:df:b4:bd:19:b6:c5:c5:56: bb:27:a7:ac:8c:58:0b:d2:f1:ad:64:be:40:ef:17: b5:d8:62:cd:82:34:e7:0c:6a:a8:35:ca:13:9e:07: 8a:f7:31:14:55:df:64:2b:f4:9d:40:59:20:6c:05: 19:88:ab:a3:7d:fd:e0:eb:1a:29:46:69:da:d9:0c: 87:b3:21:70:87:ad:56:79:23:66:6c:9a:e9:0c:eb: 50:c8:0d:e8:0a:7f:a5:77:b8:95:5c:c1:70:0b:32: 52:e2:93:71:f0:c6:55:2e:9d:a8:f7:06:8e:a3:5d: f9:be:62:f5:f0:0e:f4:5f:1f:5f:20:cd:b4:ac:52: fa:96:fb:34:bd:bb:02:e2:7c:0d:11:71:bb:91:23: 72:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E9:2E:DC:EE:F7:40:74:2D:55:82:58:18:B3:7C:B4:9D:10:F9:1C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Ouku3O73QHQtVYJYGLN8tJ0Q-Rw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.110.0/24 Signature Algorithm: sha256WithRSAEncryption 08:c0:ef:d4:5d:5a:3e:1b:a8:39:37:c1:bf:53:1b:12:70:e4: 94:c7:3f:0f:33:bf:de:0d:7b:fc:d3:ed:04:97:3f:0e:c7:3b: 93:24:bb:b8:14:cf:b3:03:ab:4b:ce:82:c2:3b:9b:b2:21:9f: a6:5c:66:4b:f7:11:da:dc:42:84:d5:5c:4f:d6:12:98:94:26: 9c:49:2d:9e:55:14:07:4b:6f:86:a4:42:83:9c:7e:35:08:e8: b5:18:fc:14:0d:48:c3:d5:90:fd:ce:bf:2d:5a:46:f2:7f:24: 1b:88:ba:0f:5f:73:1f:54:46:e4:78:4c:d5:56:4b:a9:db:90: 76:0d:ef:f6:e6:0e:b7:62:a8:37:e5:80:a8:9d:d4:51:83:76: 89:19:1f:ce:ce:69:ca:85:48:41:5c:4d:79:39:9b:63:fb:d3: fb:44:67:39:74:a6:3a:c3:8e:28:8e:97:f8:8a:6b:b7:79:46: 3b:4e:9c:68:a5:3b:ee:82:fc:f4:a2:62:42:6a:8b:cb:bb:16: fe:3b:5d:b0:bc:87:34:0e:57:eb:47:8a:a2:9b:70:70:6c:66: 30:d3:3f:5f:c1:ff:be:82:b7:6f:1c:18:b0:5e:c0:f7:54:32: a6:31:49:7b:df:61:5d:e0:e6:94:e5:20:d2:d5:aa:89:48:9f: 96:25:fb:11 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMHUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNBRTkyRURDRUVGNzQw NzQyRDU1ODI1ODE4QjM3Q0I0OUQxMEY5MUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHDqgJVFceq+cOKiikJE1FisJI92wzAom5WbnvoibNYEaDmEfj 0eNbuRIZcW1MHD1ZHkO/MY1lFTXOOJ66gMTBNmuha80tB5Z9+M1cDTd6bIC/rvyc 2g1ChSGJClXU66voM69RtEZceHg2lmRs3NTftL0ZtsXFVrsnp6yMWAvS8a1kvkDv F7XYYs2CNOcMaqg1yhOeB4r3MRRV32Qr9J1AWSBsBRmIq6N9/eDrGilGadrZDIez IXCHrVZ5I2ZsmukM61DIDegKf6V3uJVcwXALMlLik3HwxlUunaj3Bo6jXfm+YvXw DvRfH18gzbSsUvqW+zS9uwLifA0RcbuRI3JZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOuku3O73QHQtVYJYGLN8tJ0Q+RwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL091a3UzTzczUUhRdFZZSllH TE44dEowUS1Sdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 wW4wDQYJKoZIhvcNAQELBQADggEBAAjA79RdWj4bqDk3wb9TGxJw5JTHPw8zv94N e/zT7QSXPw7HO5Mku7gUz7MDq0vOgsI7m7Ihn6ZcZkv3EdrcQoTVXE/WEpiUJpxJ LZ5VFAdLb4akQoOcfjUI6LUY/BQNSMPVkP3Ovy1aRvJ/JBuIug9fcx9URuR4TNVW S6nbkHYN7/bmDrdiqDflgKid1FGDdokZH87OacqFSEFcTXk5m2P70/tEZzl0pjrD jiiOl/iKa7d5RjtOnGilO+6C/PSiYkJqi8u7Fv47XbC8hzQOV+tHiqKbcHBsZjDT P1/B/76Ct28cGLBewPdUMqYxSXvfYV3g5pTlINLVqolIn5Yl+xE= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:37 2024 by rpki-client on console-ams.rpki-client.org