$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PHZvhGcOEI0hDOMC7MKuD4nKHik.roa File: PHZvhGcOEI0hDOMC7MKuD4nKHik.roa (raw, json) Hash identifier: 8tZcbpWnSBWpYnYsUZZ1hjheh2d9yyU40KZJhCwLVLs= Subject key identifier: 3C:76:6F:84:67:0E:10:8D:21:0C:E3:02:EC:C2:AE:0F:89:CA:1E:29 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 306B Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PHZvhGcOEI0hDOMC7MKuD4nKHik.roa Signing time: Mon 26 Aug 2024 05:29:26 +0000 ROA not before: Mon 26 Aug 2024 05:29:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.16.0/20 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12395 (0x306b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3C766F84670E108D210CE302ECC2AE0F89CA1E29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:17:9b:ea:34:e1:1d:91:77:e2:a8:a3:0f:53: 21:5a:9c:9e:99:6b:06:82:9e:8d:a2:7d:5f:d6:15: 8f:0a:cd:20:68:02:71:48:06:c0:77:b2:cb:e9:29: a7:b2:e8:16:8a:62:11:a1:b9:41:ab:b8:c8:ba:61: ac:ae:a9:72:3c:12:c3:cf:1a:d1:be:26:78:89:48: 4b:6e:4f:5d:ba:6b:50:40:1a:f4:40:e9:d3:9a:9d: 6e:ae:e0:4a:99:3a:e5:65:4d:ce:c6:7a:4c:65:d6: ab:a4:34:6e:29:9d:97:9c:88:a5:dd:e9:0d:11:e8: 6d:a0:ce:b9:ed:08:8a:16:3a:0e:77:0c:0c:43:2f: 85:b6:a5:76:31:8c:9a:67:c8:0f:f1:1e:aa:88:d2: ae:64:02:ea:99:28:90:69:82:b5:87:fd:6c:52:81: 3d:72:6b:08:5e:9f:99:a7:0f:f0:58:2d:26:27:2e: 75:4b:16:80:a1:5f:07:ca:f3:f3:9f:1c:fd:31:92: 8f:38:d4:29:e7:db:e6:49:0b:ed:51:39:6f:a1:f3: ac:32:d0:2b:32:94:3b:4e:15:25:22:28:45:9c:6e: 33:83:55:35:1d:1a:17:f9:e9:7a:84:3f:63:5a:3f: 0f:09:c4:f6:e2:0d:08:ce:58:ed:cb:e0:a6:97:4e: 48:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:76:6F:84:67:0E:10:8D:21:0C:E3:02:EC:C2:AE:0F:89:CA:1E:29 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PHZvhGcOEI0hDOMC7MKuD4nKHik.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.16.0/20 Signature Algorithm: sha256WithRSAEncryption 19:ba:2e:c4:33:bc:e8:04:6f:0e:d7:92:6e:6d:3d:31:1e:37: dc:59:01:ac:0e:26:6a:78:12:d6:9a:c3:3a:f9:c7:94:20:69: 4d:ee:11:0f:3d:7f:50:f9:94:e6:f6:41:68:3a:aa:21:f0:7b: 45:98:9d:1c:fa:f4:2e:df:96:b4:e2:86:58:31:b4:95:c8:7c: 14:05:06:93:00:aa:2d:99:51:d3:1f:8e:b0:95:80:be:7c:1d: 7f:84:9a:98:83:28:76:e6:d2:e3:f3:be:b5:8c:75:d5:2d:9b: a6:e1:a8:f2:30:0f:58:a9:97:d2:ef:3b:9f:33:a5:74:dd:91: 49:76:e2:2b:61:90:1a:9e:df:9b:9b:7a:1e:37:c9:0c:a8:ba: ef:f1:72:7c:3b:b8:c7:1d:bd:24:de:2d:59:9c:6e:dc:e2:39: 26:c9:1c:d8:48:f0:58:5a:d1:a4:24:23:7f:b2:8d:07:47:81: c8:3d:c9:d8:44:3f:6c:31:fd:ef:c0:49:b2:43:c1:bf:f1:34: 57:80:37:cf:61:7c:fe:8e:40:ba:af:de:63:dd:60:20:7e:ed: 41:a1:87:1b:f6:5d:61:50:9d:d5:04:f7:3f:3d:3b:ac:17:9f: f9:2a:38:c7:b9:f1:59:fc:0f:ed:76:39:b9:da:60:3e:5c:3f: b7:aa:b0:67 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMGswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNDNzY2Rjg0NjcwRTEw OEQyMTBDRTMwMkVDQzJBRTBGODlDQTFFMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMF5vqNOEdkXfiqKMPUyFanJ6ZawaCno2ifV/WFY8KzSBoAnFI BsB3ssvpKaey6BaKYhGhuUGruMi6YayuqXI8EsPPGtG+JniJSEtuT126a1BAGvRA 6dOanW6u4EqZOuVlTc7Gekxl1qukNG4pnZeciKXd6Q0R6G2gzrntCIoWOg53DAxD L4W2pXYxjJpnyA/xHqqI0q5kAuqZKJBpgrWH/WxSgT1yawhen5mnD/BYLSYnLnVL FoChXwfK8/OfHP0xko841Cnn2+ZJC+1ROW+h86wy0CsylDtOFSUiKEWcbjODVTUd Ghf56XqEP2NaPw8JxPbiDQjOWO3L4KaXTkibAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUPHZvhGcOEI0hDOMC7MKuD4nKHikwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1BIWnZoR2NPRUkwaERPTUM3 TUt1RDRuS0hpay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 whAwDQYJKoZIhvcNAQELBQADggEBABm6LsQzvOgEbw7Xkm5tPTEeN9xZAawOJmp4 Etaawzr5x5QgaU3uEQ89f1D5lOb2QWg6qiHwe0WYnRz69C7flrTihlgxtJXIfBQF BpMAqi2ZUdMfjrCVgL58HX+EmpiDKHbm0uPzvrWMddUtm6bhqPIwD1ipl9LvO58z pXTdkUl24ithkBqe35ubeh43yQyouu/xcnw7uMcdvSTeLVmcbtziOSbJHNhI8Fha 0aQkI3+yjQdHgcg9ydhEP2wx/e/ASbJDwb/xNFeAN89hfP6OQLqv3mPdYCB+7UGh hxv2XWFQndUE9z89O6wXn/kqOMe58Vn8D+12ObnaYD5cP7eqsGc= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org