$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QiEyXB9C9W-f24w8YTfgScHkjQM.roa File: QiEyXB9C9W-f24w8YTfgScHkjQM.roa (raw, json) Hash identifier: XNVUbjidaJv6vcMpuPYwBFXDH6ylb5YHVTF+4PkJnx0= Subject key identifier: 42:21:32:5C:1F:42:F5:6F:9F:DB:8C:3C:61:37:E0:49:C1:E4:8D:03 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2FFE Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QiEyXB9C9W-f24w8YTfgScHkjQM.roa Signing time: Mon 26 Aug 2024 05:29:02 +0000 ROA not before: Mon 26 Aug 2024 05:29:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 2407:4d00:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12286 (0x2ffe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:02 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4221325C1F42F56F9FDB8C3C6137E049C1E48D03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:52:2e:44:38:f7:fb:61:6e:95:38:7e:ec:01: 7c:bb:2b:61:9b:bc:c9:82:ff:c8:35:44:69:1a:85: 47:1e:8d:b7:d4:7f:fa:8b:64:c0:49:41:6a:c7:dc: 45:1c:b6:28:11:c7:05:43:9c:a6:d1:58:18:50:9c: 11:fc:cd:73:b1:5e:82:b7:9c:1a:2b:2f:25:77:47: 12:3b:2f:80:61:12:1b:c4:b3:96:d5:15:1e:1e:b7: a3:f2:2a:9d:eb:43:63:ae:af:82:0f:ea:31:11:91: f8:08:f9:76:ee:bf:e2:61:ce:70:aa:84:69:31:67: 28:b6:7c:52:15:df:72:d9:65:ce:2a:4a:3d:8e:91: 4e:08:f7:ef:dc:7e:0d:d5:e1:86:ee:4c:83:cd:55: 20:72:d3:7a:6a:da:98:50:cd:72:35:ff:22:4a:48: 94:ac:55:70:38:38:51:16:b6:a8:99:06:e3:67:24: 82:e7:bb:d9:6c:0f:86:da:1b:95:0c:46:28:d8:48: ae:88:c8:83:43:86:04:98:fc:61:85:fc:54:4f:89: a2:cf:de:a9:ba:79:0f:59:f4:02:94:f9:cd:bd:dc: f5:3a:4a:a6:07:8d:47:1e:29:26:32:94:d3:0a:97: f2:24:a4:be:97:99:03:18:36:fd:f6:10:40:10:2e: 23:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:21:32:5C:1F:42:F5:6F:9F:DB:8C:3C:61:37:E0:49:C1:E4:8D:03 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QiEyXB9C9W-f24w8YTfgScHkjQM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4d00:2000::/36 Signature Algorithm: sha256WithRSAEncryption 3f:7e:79:92:75:de:42:79:3e:49:49:b2:e0:48:b9:2e:b1:3a: cd:4c:ee:4d:3e:b5:4c:83:c1:46:26:a2:a1:1e:3a:2c:8d:0d: 2c:86:69:39:6d:35:c3:bc:af:85:ac:ce:ef:0b:97:21:6a:5a: 92:e2:0e:c1:d0:22:61:77:92:9c:4b:e7:ba:f5:58:cc:18:8f: 32:f6:a3:f5:98:24:cf:10:aa:47:58:9f:18:57:26:0d:74:e3: 5b:e7:2c:3e:53:ec:33:3a:f2:9e:e2:99:67:9f:68:67:32:66: 6f:1b:ad:f4:ff:72:89:ca:e5:e1:96:82:0e:7e:39:c0:de:3f: 51:7e:0b:e2:ba:cb:f3:c3:72:45:08:f5:a5:5a:5f:78:e4:77: 72:fc:6f:99:94:65:3c:a7:5f:08:27:a3:fe:8e:e6:f5:36:c8: d0:1b:e6:1c:25:af:73:e2:8a:5f:cb:cc:61:51:68:47:38:1d: d9:3d:cc:9a:a0:5d:88:09:b0:23:29:16:de:e6:ab:fe:12:43: ab:b2:3d:bb:e2:48:e2:c6:0a:22:b6:9a:36:5a:0b:aa:f2:6a: 6e:13:64:68:2e:6a:ea:1d:cb:46:ce:3d:1d:7c:46:d6:4b:01: 63:a7:78:9d:7a:49:36:72:b0:0b:89:34:fe:b1:ec:e6:f9:ec: 6b:6d:33:cf -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICL/4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQyMjEzMjVDMUY0MkY1 NkY5RkRCOEMzQzYxMzdFMDQ5QzFFNDhEMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHUi5EOPf7YW6VOH7sAXy7K2GbvMmC/8g1RGkahUcejbfUf/qL ZMBJQWrH3EUctigRxwVDnKbRWBhQnBH8zXOxXoK3nBorLyV3RxI7L4BhEhvEs5bV FR4et6PyKp3rQ2Our4IP6jERkfgI+Xbuv+JhznCqhGkxZyi2fFIV33LZZc4qSj2O kU4I9+/cfg3V4YbuTIPNVSBy03pq2phQzXI1/yJKSJSsVXA4OFEWtqiZBuNnJILn u9lsD4baG5UMRijYSK6IyINDhgSY/GGF/FRPiaLP3qm6eQ9Z9AKU+c293PU6SqYH jUceKSYylNMKl/IkpL6XmQMYNv32EEAQLiNzAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUQiEyXB9C9W+f24w8YTfgScHkjQMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1FpRXlYQjlDOVctZjI0dzhZ VGZnU2NIa2pRTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk B00AIDANBgkqhkiG9w0BAQsFAAOCAQEAP355knXeQnk+SUmy4Ei5LrE6zUzuTT61 TIPBRiaioR46LI0NLIZpOW01w7yvhazO7wuXIWpakuIOwdAiYXeSnEvnuvVYzBiP Mvaj9ZgkzxCqR1ifGFcmDXTjW+csPlPsMzrynuKZZ59oZzJmbxut9P9yicrl4ZaC Dn45wN4/UX4L4rrL88NyRQj1pVpfeOR3cvxvmZRlPKdfCCej/o7m9TbI0BvmHCWv c+KKX8vMYVFoRzgd2T3MmqBdiAmwIykW3uar/hJDq7I9u+JI4sYKIraaNloLqvJq bhNkaC5q6h3LRs49HXxG1ksBY6d4nXpJNnKwC4k0/rHs5vnsa20zzw== -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:52 2024 by rpki-client on console-fra.rpki-client.org