$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PK4aamyh7gpi_GSEX7oBxjhwdYA.roa File: PK4aamyh7gpi_GSEX7oBxjhwdYA.roa (raw, json) Hash identifier: 6SDcfLOjT5rltK8Muq6v/M7/mzlpymJ8s3KwkChCSdw= Subject key identifier: 3C:AE:1A:6A:6C:A1:EE:0A:62:FC:64:84:5F:BA:01:C6:38:70:75:80 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31EF Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PK4aamyh7gpi_GSEX7oBxjhwdYA.roa Signing time: Mon 26 Aug 2024 05:31:06 +0000 ROA not before: Mon 26 Aug 2024 05:31:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12783 (0x31ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:06 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3CAE1A6A6CA1EE0A62FC64845FBA01C638707580 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2a:36:3c:7f:ed:fd:d4:ba:90:28:9e:8b:24: 56:3f:c8:3f:47:d3:b9:77:69:7f:8c:1a:fc:4f:bb: 9e:fc:72:49:be:81:c8:b9:65:c4:a7:cf:ee:ed:ca: fb:cb:0c:27:db:51:70:12:05:2c:79:10:c2:28:a8: 9d:24:dc:44:15:8a:8e:e9:00:a3:75:55:7d:2a:34: 6e:b3:0c:44:9e:99:f4:05:bc:b0:c0:a0:bc:0d:65: ed:86:14:a7:e7:25:90:74:b3:f7:fd:ec:65:02:5a: d3:9e:b5:bd:52:9b:28:08:aa:ba:4a:9a:c5:b6:18: c9:67:df:51:7b:b2:e4:fe:29:d5:47:1e:e6:a8:e2: 59:2d:c5:b1:38:92:78:37:76:da:41:c3:fc:b7:38: 7a:00:07:ee:c5:4f:b9:e2:4c:cf:f7:d3:18:2d:c9: f9:8f:b4:dd:1d:17:64:a2:e6:44:be:41:76:cf:b5: 3f:21:ef:4e:a7:b4:f6:c9:43:cf:c2:e1:9d:44:eb: ed:d1:11:dc:7c:f7:7e:ae:67:74:c0:93:ee:65:75: f6:20:99:c7:45:96:32:4d:d6:02:ad:e2:e2:98:74: 7c:7d:fb:80:9e:88:69:ca:fc:ac:a7:8b:8e:da:54: 22:2e:32:bc:8f:93:fc:1e:d1:e8:f6:82:d9:9d:b0: 9e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:AE:1A:6A:6C:A1:EE:0A:62:FC:64:84:5F:BA:01:C6:38:70:75:80 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PK4aamyh7gpi_GSEX7oBxjhwdYA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.88.0/22 Signature Algorithm: sha256WithRSAEncryption 65:29:1a:12:b5:9d:77:58:e4:fc:af:27:0f:a1:cb:2a:4d:f8: 89:7a:7b:fd:de:72:a8:a5:f9:ad:c7:6f:a5:16:fa:56:d7:5e: 21:8e:34:93:53:aa:a1:de:a2:97:0a:bb:34:1e:29:17:e4:2f: f5:6e:e1:26:4e:1b:48:a4:88:b2:ec:4c:c8:82:dd:a0:a7:8f: e9:93:56:ec:62:c6:a4:de:3c:d9:30:1b:2a:fa:ea:53:fe:a2: a7:79:26:09:56:41:86:a0:7c:e9:e7:6b:b5:fa:32:2d:37:a7: 93:cd:3e:10:b1:d9:3b:0a:07:0b:6c:f4:55:27:23:01:5e:8d: 3b:63:dc:b7:79:99:9a:50:60:0e:0f:7d:3a:29:4b:83:a9:fd: 7a:f8:03:1f:d7:93:a7:cc:15:65:cd:a4:ed:d0:20:94:f4:62: 36:d5:32:e9:9c:67:df:e7:5d:6e:16:70:a4:10:fe:bd:cb:47: 4d:1a:0a:72:50:1b:6b:84:c7:1c:dc:b7:64:cb:e3:5f:7f:7a: a6:43:35:b9:ba:47:f5:87:b8:58:3a:94:d1:25:fe:b4:22:f7: d6:82:fc:a3:70:0a:24:44:10:a8:49:ba:97:44:6f:05:c8:e1: 36:39:db:1d:1e:f3:61:1d:3a:ff:78:78:4e:28:b4:a6:67:2f: 7f:26:70:55 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMe8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNDQUUxQTZBNkNBMUVF MEE2MkZDNjQ4NDVGQkEwMUM2Mzg3MDc1ODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrKjY8f+391LqQKJ6LJFY/yD9H07l3aX+MGvxPu578ckm+gci5 ZcSnz+7tyvvLDCfbUXASBSx5EMIoqJ0k3EQVio7pAKN1VX0qNG6zDESemfQFvLDA oLwNZe2GFKfnJZB0s/f97GUCWtOetb1SmygIqrpKmsW2GMln31F7suT+KdVHHuao 4lktxbE4kng3dtpBw/y3OHoAB+7FT7niTM/30xgtyfmPtN0dF2Si5kS+QXbPtT8h 706ntPbJQ8/C4Z1E6+3REdx8936uZ3TAk+5ldfYgmcdFljJN1gKt4uKYdHx9+4Ce iGnK/Kyni47aVCIuMryPk/we0ej2gtmdsJ4XAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUPK4aamyh7gpi/GSEX7oBxjhwdYAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1BLNGFhbXloN2dwaV9HU0VY N29CeGpod2RZQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AVgwDQYJKoZIhvcNAQELBQADggEBAGUpGhK1nXdY5PyvJw+hyypN+Il6e/3ecqil +a3Hb6UW+lbXXiGONJNTqqHeopcKuzQeKRfkL/Vu4SZOG0ikiLLsTMiC3aCnj+mT VuxixqTePNkwGyr66lP+oqd5JglWQYagfOnna7X6Mi03p5PNPhCx2TsKBwts9FUn IwFejTtj3Ld5mZpQYA4PfTopS4Op/Xr4Ax/Xk6fMFWXNpO3QIJT0YjbVMumcZ9/n XW4WcKQQ/r3LR00aCnJQG2uExxzct2TL419/eqZDNbm6R/WHuFg6lNEl/rQi99aC /KNwCiREEKhJupdEbwXI4TY52x0e82EdOv94eE4otKZnL38mcFU= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org