$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P4CXsJ3koN8VwVuI6xbSd4b_Zjg.roa File: P4CXsJ3koN8VwVuI6xbSd4b_Zjg.roa (raw, json) Hash identifier: S5JQHQE3BVhP2LYK36I8OJJW37EkWsnxzhMKIsSfb38= Subject key identifier: 3F:80:97:B0:9D:E4:A0:DF:15:C1:5B:88:EB:16:D2:77:86:FF:66:38 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31C4 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P4CXsJ3koN8VwVuI6xbSd4b_Zjg.roa Signing time: Mon 26 Aug 2024 05:30:55 +0000 ROA not before: Mon 26 Aug 2024 05:30:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.232.0.0/15 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12740 (0x31c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3F8097B09DE4A0DF15C15B88EB16D27786FF6638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c0:e4:df:3e:29:c4:7d:fe:89:28:5a:f7:08: b2:17:86:9d:00:f8:fa:a5:f4:dc:51:59:1c:d3:e2: cd:da:a7:af:f5:4e:19:e9:33:26:dd:73:6c:75:a7: c6:26:0a:3c:b5:16:54:4b:cf:6a:ff:32:af:a8:3e: 04:0c:d3:ff:08:f7:ff:d4:c7:99:6c:9c:9f:ff:2d: 62:0d:c7:34:a4:e0:57:d2:4e:4d:de:8e:e3:91:c7: 0e:77:df:44:bd:83:0b:1d:37:29:bd:b6:cf:02:14: c8:e8:a3:5e:25:26:99:41:5e:1b:36:d4:57:60:85: 0f:67:5b:8f:3e:c7:6b:6e:a8:ab:c8:34:55:5e:10: ba:2f:13:f1:8a:93:8e:79:d4:77:5f:07:54:bb:c2: 31:de:2f:2f:0d:7b:61:4e:b9:de:ed:52:51:43:c2: a5:60:7c:e2:5c:b7:a7:d0:02:f6:82:ff:4c:cd:fd: 38:8e:6b:e2:31:24:52:6c:fc:20:ca:99:71:e4:66: c1:0e:11:19:df:c3:bc:00:1f:80:0a:7f:d4:11:a8: d0:78:e4:ce:4c:77:b6:fb:2d:96:e6:b9:42:72:3c: 7c:56:f6:2f:6a:2d:d5:d7:8d:7f:09:46:7e:3f:30: 24:d8:06:3c:e8:6d:b7:17:49:fa:5f:e3:54:7c:20: 1c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:80:97:B0:9D:E4:A0:DF:15:C1:5B:88:EB:16:D2:77:86:FF:66:38 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/P4CXsJ3koN8VwVuI6xbSd4b_Zjg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.0.0/15 Signature Algorithm: sha256WithRSAEncryption 05:93:6a:14:8f:36:88:76:ee:dc:8f:61:85:7a:fd:28:ef:b5: f2:57:76:f8:a0:e0:ee:78:d9:52:78:6d:54:b4:2b:a8:a9:f1: 1f:6e:de:a6:43:f3:50:e9:08:27:60:08:9e:60:79:b6:a0:05: 97:63:3a:18:4e:d8:ed:2b:43:0e:2f:a8:57:8c:fb:01:ab:65: 12:14:65:c8:1a:87:43:ee:3f:a2:c4:e0:22:ad:ae:d0:ed:59: f4:bd:6d:66:b4:17:dc:1d:37:7e:58:09:2f:65:02:b9:ff:c2: fe:97:07:b7:d9:56:9b:2c:69:f1:a4:dd:e6:32:ee:ef:28:85: e2:bd:76:b5:c7:26:7c:89:01:97:e4:e8:f9:1f:b5:b5:df:65: 96:70:5b:70:86:df:f1:56:f6:43:4f:ed:ac:c7:93:31:94:e0: f8:7c:a7:58:92:c9:e1:a6:3a:f7:3a:c4:29:20:e7:c4:78:3d: a5:95:68:0e:66:68:f4:29:d6:2a:23:6f:df:5f:81:ba:50:57: c4:46:fb:91:63:ce:e4:38:4c:cc:07:1f:0a:af:84:ef:c9:ad: a5:fb:c6:af:78:dd:ee:34:56:c4:b9:07:c8:9f:95:35:1f:e6: 9f:5c:cf:6b:2a:f8:36:bc:6e:17:68:54:ad:8c:32:ae:d2:69: 24:e0:88:96 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICMcQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwNTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNGODA5N0IwOURFNEEw REYxNUMxNUI4OEVCMTZEMjc3ODZGRjY2MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6wOTfPinEff6JKFr3CLIXhp0A+Pql9NxRWRzT4s3ap6/1Thnp Mybdc2x1p8YmCjy1FlRLz2r/Mq+oPgQM0/8I9//Ux5lsnJ//LWINxzSk4FfSTk3e juORxw5330S9gwsdNym9ts8CFMjoo14lJplBXhs21FdghQ9nW48+x2tuqKvINFVe ELovE/GKk4551HdfB1S7wjHeLy8Ne2FOud7tUlFDwqVgfOJct6fQAvaC/0zN/TiO a+IxJFJs/CDKmXHkZsEOERnfw7wAH4AKf9QRqNB45M5Md7b7LZbmuUJyPHxW9i9q LdXXjX8JRn4/MCTYBjzobbcXSfpf41R8IBxnAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUP4CXsJ3koN8VwVuI6xbSd4b/ZjgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1A0Q1hzSjNrb044VndWdUk2 eGJTZDRiX1pqZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwF2 6DANBgkqhkiG9w0BAQsFAAOCAQEABZNqFI82iHbu3I9hhXr9KO+18ld2+KDg7njZ UnhtVLQrqKnxH27epkPzUOkIJ2AInmB5tqAFl2M6GE7Y7StDDi+oV4z7AatlEhRl yBqHQ+4/osTgIq2u0O1Z9L1tZrQX3B03flgJL2UCuf/C/pcHt9lWmyxp8aTd5jLu 7yiF4r12tccmfIkBl+To+R+1td9llnBbcIbf8Vb2Q0/trMeTMZTg+HynWJLJ4aY6 9zrEKSDnxHg9pZVoDmZo9CnWKiNv31+BulBXxEb7kWPO5DhMzAcfCq+E78mtpfvG r3jd7jRWxLkHyJ+VNR/mn1zPayr4NrxuF2hUrYwyrtJpJOCIlg== -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org