$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q_t8elKgTb_pernDTf5VsDV3qFk.roa File: Q_t8elKgTb_pernDTf5VsDV3qFk.roa (raw, json) Hash identifier: bp6/qhBOCyJ6xVUEdtw5kUjuCNjyzg+jIXh4oN5R+5Q= Subject key identifier: 43:FB:7C:7A:52:A0:4D:BF:E9:7A:B9:C3:4D:FE:55:B0:35:77:A8:59 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 311D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q_t8elKgTb_pernDTf5VsDV3qFk.roa Signing time: Mon 26 Aug 2024 05:30:07 +0000 ROA not before: Mon 26 Aug 2024 05:30:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.223.192/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12573 (0x311d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=43FB7C7A52A04DBFE97AB9C34DFE55B03577A859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2f:b6:8f:69:b6:90:a1:c5:9e:b0:24:ba:33: 45:98:5d:13:63:e1:26:c5:df:c9:0a:e5:59:eb:41: 3f:64:d5:4c:10:f5:fb:8a:44:5f:f5:35:f3:52:db: c7:2e:be:54:65:b0:d6:79:2a:68:51:b4:b5:1e:1e: 78:17:64:72:87:b5:cf:4e:cc:dd:36:42:5f:74:6f: ae:ec:c9:f1:83:9f:da:d4:19:f0:a6:55:5c:3e:1f: 6a:d4:75:76:91:12:02:d0:f5:34:a7:d7:70:3d:bc: c0:9b:95:8d:d7:8c:ad:3d:8d:07:ae:e4:08:4f:29: b7:79:6a:62:5d:a8:ee:42:c1:a3:e7:95:ff:e8:8c: 86:0f:c1:ba:56:1f:df:f8:94:a4:00:9e:41:63:3a: c3:e9:47:96:6f:a5:57:ed:03:11:60:ba:ee:bd:ad: 62:5d:c4:7a:2d:b5:fa:15:55:fe:b7:f0:cf:48:a8: b5:af:60:7c:b1:97:4c:c5:58:13:b7:32:96:c2:95: ff:56:85:ea:62:e4:c8:0b:51:84:04:91:97:12:5b: 71:12:ba:1b:3a:b5:ce:b0:e3:b5:21:a3:c7:af:ae: 05:bc:6a:0d:8b:e9:52:67:88:cd:46:47:74:c5:6a: 6c:5d:a9:be:0a:4f:7e:ff:88:63:57:d7:72:c9:9f: 69:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:FB:7C:7A:52:A0:4D:BF:E9:7A:B9:C3:4D:FE:55:B0:35:77:A8:59 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Q_t8elKgTb_pernDTf5VsDV3qFk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.223.192/26 Signature Algorithm: sha256WithRSAEncryption 9f:5f:a2:0e:59:cd:aa:7b:9f:4a:27:7c:c8:65:05:2a:28:e5: 81:4c:e2:98:ef:39:c9:ea:91:3c:5c:fc:07:87:d3:76:19:c3: 2b:70:9c:b9:57:48:22:df:53:6e:46:81:25:74:6c:35:4f:55: 28:f7:c4:c9:a2:4e:a2:2e:c7:e1:5b:02:96:d5:5a:ef:95:63: 23:7b:0a:b6:23:68:70:2e:7c:a6:fb:de:7e:be:5d:53:17:8d: 53:d7:ba:52:bf:16:78:0a:70:5c:90:44:c5:30:18:ca:23:ba: 33:75:cd:c6:22:90:c8:a2:4f:ff:04:8f:e2:88:bb:78:45:1b: de:ce:c9:d3:d3:f5:d6:e4:98:b7:09:35:51:81:ed:56:30:eb: 6c:05:11:14:27:79:3f:f6:c6:8a:32:04:dd:a0:b0:3d:99:dc: a8:ad:b2:b1:a6:90:b3:6e:36:cc:d7:2a:4e:73:4c:ac:3b:15: 41:b8:b8:4f:cd:ba:db:9b:f5:19:58:1f:ae:0f:fe:2c:1f:9a: 61:b6:6c:43:65:c1:00:82:a1:72:79:c1:ab:35:39:c2:0f:ce: c9:71:d6:a4:04:23:6a:81:d3:3e:4f:50:86:33:38:c7:46:ac: 66:ff:71:e7:46:bb:76:3d:72:e0:55:ed:77:b8:8c:3e:ce:bc: ea:a0:72:70 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICMR0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQzRkI3QzdBNTJBMDRE QkZFOTdBQjlDMzRERkU1NUIwMzU3N0E4NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/L7aPabaQocWesCS6M0WYXRNj4SbF38kK5VnrQT9k1UwQ9fuK RF/1NfNS28cuvlRlsNZ5KmhRtLUeHngXZHKHtc9OzN02Ql90b67syfGDn9rUGfCm VVw+H2rUdXaREgLQ9TSn13A9vMCblY3XjK09jQeu5AhPKbd5amJdqO5CwaPnlf/o jIYPwbpWH9/4lKQAnkFjOsPpR5ZvpVftAxFguu69rWJdxHottfoVVf638M9IqLWv YHyxl0zFWBO3MpbClf9Whepi5MgLUYQEkZcSW3ESuhs6tc6w47Uho8evrgW8ag2L 6VJniM1GR3TFamxdqb4KT37/iGNX13LJn2llAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUQ/t8elKgTb/pernDTf5VsDV3qFkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1FfdDhlbEtnVGJfcGVybkRU ZjVWc0RWM3FGay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQZ7 wd/AMA0GCSqGSIb3DQEBCwUAA4IBAQCfX6IOWc2qe59KJ3zIZQUqKOWBTOKY7znJ 6pE8XPwHh9N2GcMrcJy5V0gi31NuRoEldGw1T1Uo98TJok6iLsfhWwKW1VrvlWMj ewq2I2hwLnym+95+vl1TF41T17pSvxZ4CnBckETFMBjKI7ozdc3GIpDIok//BI/i iLt4RRvezsnT0/XW5Ji3CTVRge1WMOtsBREUJ3k/9saKMgTdoLA9mdyorbKxppCz bjbM1ypOc0ysOxVBuLhPzbrbm/UZWB+uD/4sH5phtmxDZcEAgqFyecGrNTnCD87J cdakBCNqgdM+T1CGMzjHRqxm/3HnRrt2PXLgVe13uIw+zrzqoHJw -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:48 2024 by rpki-client on console-fra.rpki-client.org