$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Qq3Odtbd3lFv67oT4b0Xlybr-4w.roa File: Qq3Odtbd3lFv67oT4b0Xlybr-4w.roa (raw, json) Hash identifier: 0B+ZH2m2H+sSjHpfLu2EjviD5abTG2WSgYkQehXxgw8= Subject key identifier: 42:AD:CE:76:D6:DD:DE:51:6F:EB:BA:13:E1:BD:17:97:26:EB:FB:8C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 30C0 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Qq3Odtbd3lFv67oT4b0Xlybr-4w.roa Signing time: Mon 26 Aug 2024 05:29:47 +0000 ROA not before: Mon 26 Aug 2024 05:29:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12480 (0x30c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=42ADCE76D6DDDE516FEBBA13E1BD179726EBFB8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f4:8e:71:64:52:20:d5:81:08:90:97:7c:3e: 18:c8:bb:26:49:c4:75:21:8f:58:1d:c5:a4:94:43: 2b:0e:e0:bd:92:e0:23:17:35:fc:7c:68:69:9e:10: ff:7e:9a:81:17:34:17:98:cd:23:d9:a6:80:6b:c5: 2b:d1:90:5b:fc:bb:07:d2:1e:0a:e0:0f:d8:e4:a8: fe:44:6e:02:59:8b:fb:49:6c:b4:a6:e9:0b:f2:f3: 44:67:f8:b6:25:dd:86:5d:f6:ae:32:5d:ac:68:76: c6:03:ee:5c:56:d8:5c:e7:8e:71:f0:2b:b6:82:5d: 67:95:98:b6:77:49:58:f7:a1:26:85:71:95:39:06: f1:36:fb:1c:38:ce:59:e4:a1:cf:88:8e:73:07:90: d5:15:27:4e:20:1b:cc:c7:ec:b8:90:ca:cc:d2:83: fb:43:ec:fa:ac:7f:83:da:06:1f:1c:71:00:9f:fb: a0:cb:2a:ed:11:0e:7a:2b:57:df:d5:d7:58:47:db: be:2e:c3:f7:1d:33:75:fc:90:e7:2f:59:ff:97:c7: 23:b4:96:ac:4d:8f:97:3f:9a:4e:5b:a4:7b:06:3e: 25:09:fc:d7:53:22:dd:19:d3:90:78:51:bc:df:5a: 2f:53:0b:86:16:39:4e:2f:7a:db:00:68:48:df:5f: 29:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:AD:CE:76:D6:DD:DE:51:6F:EB:BA:13:E1:BD:17:97:26:EB:FB:8C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Qq3Odtbd3lFv67oT4b0Xlybr-4w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.184.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:e8:ba:88:46:59:af:4e:b6:4b:69:8f:62:41:46:e3:66:b1: 4a:f2:de:9b:d5:c6:b6:c2:2f:ba:15:3c:7b:a8:a5:78:c9:c6: 3b:1a:89:81:0a:0b:7c:e8:03:b1:05:46:2a:f2:52:0c:07:87: 19:f5:47:61:5c:89:e5:a2:f6:0d:34:ab:07:11:f8:2b:27:5d: a4:77:c1:30:ad:99:d2:d8:e0:09:f1:f1:cb:f3:d4:ec:a6:ba: 28:d5:12:f8:d8:5e:34:f6:90:4f:4c:e1:b8:e9:3a:4a:59:65: ac:07:b4:69:b7:b4:be:0e:0d:d6:c4:f9:0e:56:ac:c7:3a:e8: b7:8d:8b:eb:df:93:e7:45:b4:ff:e3:e8:ed:fa:b7:7e:f1:5e: 5a:3a:89:a2:18:9d:a8:8f:92:a2:0f:2b:ad:e8:65:fa:7e:ac: e0:0c:0b:d6:b8:f8:6a:99:a6:e4:3a:04:60:ca:10:74:bf:30: 99:9d:bc:8e:bb:89:e8:a5:a1:a0:1a:79:c3:e7:8a:89:18:b3: 33:96:fa:fc:96:b1:df:6b:f6:3b:6b:bc:f7:5b:31:0b:31:9d: 5a:ab:f2:27:79:af:0c:cb:a6:9b:e2:85:78:e6:d4:b4:f3:2b: fd:e2:f2:81:0e:0c:e0:58:17:1e:dd:2e:07:73:b6:94:ed:5e: 31:4e:90:fa -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMMAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQyQURDRTc2RDZERERF NTE2RkVCQkExM0UxQkQxNzk3MjZFQkZCOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDS9I5xZFIg1YEIkJd8PhjIuyZJxHUhj1gdxaSUQysO4L2S4CMX Nfx8aGmeEP9+moEXNBeYzSPZpoBrxSvRkFv8uwfSHgrgD9jkqP5EbgJZi/tJbLSm 6Qvy80Rn+LYl3YZd9q4yXaxodsYD7lxW2FznjnHwK7aCXWeVmLZ3SVj3oSaFcZU5 BvE2+xw4zlnkoc+IjnMHkNUVJ04gG8zH7LiQyszSg/tD7Pqsf4PaBh8ccQCf+6DL Ku0RDnorV9/V11hH274uw/cdM3X8kOcvWf+XxyO0lqxNj5c/mk5bpHsGPiUJ/NdT It0Z05B4UbzfWi9TC4YWOU4vetsAaEjfXylTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUQq3Odtbd3lFv67oT4b0Xlybr+4wwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1FxM09kdGJkM2xGdjY3b1Q0 YjBYbHlici00dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AbgwDQYJKoZIhvcNAQELBQADggEBAG/ouohGWa9Otktpj2JBRuNmsUry3pvVxrbC L7oVPHuopXjJxjsaiYEKC3zoA7EFRiryUgwHhxn1R2FcieWi9g00qwcR+CsnXaR3 wTCtmdLY4Anx8cvz1OymuijVEvjYXjT2kE9M4bjpOkpZZawHtGm3tL4ODdbE+Q5W rMc66LeNi+vfk+dFtP/j6O36t37xXlo6iaIYnaiPkqIPK63oZfp+rOAMC9a4+GqZ puQ6BGDKEHS/MJmdvI67ieiloaAaecPniokYszOW+vyWsd9r9jtrvPdbMQsxnVqr 8id5rwzLppvihXjm1LTzK/3i8oEODOBYFx7dLgdztpTtXjFOkPo= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org