$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QshZ5gBblKSES9bJcDItO1CGInw.roa File: QshZ5gBblKSES9bJcDItO1CGInw.roa (raw, json) Hash identifier: AjKNtVlHTv2h2U9CY80WRUrI5DaQ5VX6PF0Gw1y9cR0= Subject key identifier: 42:C8:59:E6:00:5B:94:A4:84:4B:D6:C9:70:32:2D:3B:50:86:22:7C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32E8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QshZ5gBblKSES9bJcDItO1CGInw.roa Signing time: Mon 26 Aug 2024 05:32:08 +0000 ROA not before: Mon 26 Aug 2024 05:32:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.176.0.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13032 (0x32e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:32:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=42C859E6005B94A4844BD6C970322D3B5086227C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:27:fc:11:f9:1c:07:d9:0a:91:37:43:55:33: 3b:1d:d5:ba:2b:9e:f8:d4:ec:67:64:7d:ff:ce:24: da:d7:e6:53:9a:57:85:86:42:8f:ee:f6:ec:29:e6: 83:79:4c:7f:c7:af:e3:5a:a3:19:1a:6e:f6:cb:06: 36:8e:0a:25:15:4c:9e:a1:74:46:92:d1:57:49:75: 43:59:d2:3f:cc:4a:19:ca:3c:16:16:2a:2a:71:b7: c9:b1:0c:7b:20:c5:e5:5b:e3:6f:ca:d6:24:5e:19: 7f:bd:34:c8:c8:45:bd:59:8f:3c:47:e9:7d:03:cd: e3:88:25:11:75:94:e2:a5:25:04:9a:a0:17:c2:5f: 0c:51:34:00:32:02:27:e8:a7:7a:d4:72:0f:73:12: f8:ec:f4:f0:f4:2c:72:3f:df:9b:6f:ea:f9:d9:25: 10:79:19:19:7c:1e:2e:24:19:9f:7c:5d:d7:29:b3: 35:f2:e3:eb:ae:54:a1:3d:a8:86:80:09:ef:92:6c: 30:96:7a:c4:f4:e8:14:6f:51:31:2b:de:fd:d2:99: 25:95:73:48:57:f9:7e:9a:c0:a2:7c:0e:3a:96:5b: 9d:8f:57:28:76:0c:ea:97:bb:4a:78:d2:8e:87:0d: ce:a1:f2:1a:4d:6f:cf:8e:84:a0:25:0c:aa:ac:0c: 00:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:C8:59:E6:00:5B:94:A4:84:4B:D6:C9:70:32:2D:3B:50:86:22:7C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/QshZ5gBblKSES9bJcDItO1CGInw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.0.0/20 Signature Algorithm: sha256WithRSAEncryption 6b:fb:d4:cc:d8:0d:21:51:b2:15:47:22:22:c2:4b:bc:b9:38: 28:5b:f0:34:d9:6b:7f:4d:80:67:8d:de:f6:af:01:3a:d6:79: 99:7a:99:68:3a:20:5e:21:62:28:cf:e9:02:cd:37:6f:dd:38: 7a:a6:8f:31:31:1a:75:c0:5c:b9:d9:4f:1f:cd:15:cd:46:14: b9:12:c8:d6:d3:fa:c0:19:fb:ba:ac:4b:5b:fd:cf:4a:90:78: 67:44:92:2c:4f:d9:08:84:24:a2:78:93:c2:36:39:60:6f:00: 16:9a:21:00:fe:17:61:1f:3a:50:b7:8f:f8:63:55:fe:c9:1c: e0:7d:97:80:df:bc:2e:e3:78:ec:d3:af:d0:54:3a:3d:b2:0c: 4e:29:16:f2:be:18:4c:a3:d1:ba:f6:0b:5f:90:e5:06:e2:00: a0:2b:f0:4d:cd:84:cd:95:20:bf:69:fe:02:45:8b:2a:df:10: d7:d0:8d:d6:ea:46:48:8e:a5:0e:cd:72:a7:78:3c:68:b0:a4: 64:90:b8:b2:0f:5b:4a:42:73:6e:e7:fa:f5:d5:64:8d:9f:ee: 39:69:c1:a2:b0:25:4f:0a:f3:b4:48:f1:ab:38:32:67:1a:7c: 0b:a5:59:29:cb:b7:76:2d:8d:9c:a1:11:d2:ff:0e:91:fd:31: 2e:9b:14:57 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMugwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMyMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQyQzg1OUU2MDA1Qjk0 QTQ4NDRCRDZDOTcwMzIyRDNCNTA4NjIyN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKJ/wR+RwH2QqRN0NVMzsd1bornvjU7Gdkff/OJNrX5lOaV4WG Qo/u9uwp5oN5TH/Hr+NaoxkabvbLBjaOCiUVTJ6hdEaS0VdJdUNZ0j/MShnKPBYW Kipxt8mxDHsgxeVb42/K1iReGX+9NMjIRb1ZjzxH6X0DzeOIJRF1lOKlJQSaoBfC XwxRNAAyAifop3rUcg9zEvjs9PD0LHI/35tv6vnZJRB5GRl8Hi4kGZ98XdcpszXy 4+uuVKE9qIaACe+SbDCWesT06BRvUTEr3v3SmSWVc0hX+X6awKJ8DjqWW52PVyh2 DOqXu0p40o6HDc6h8hpNb8+OhKAlDKqsDADnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUQshZ5gBblKSES9bJcDItO1CGInwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1FzaFo1Z0JibEtTRVM5Ykpj REl0TzFDR0ludy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0 sAAwDQYJKoZIhvcNAQELBQADggEBAGv71MzYDSFRshVHIiLCS7y5OChb8DTZa39N gGeN3vavATrWeZl6mWg6IF4hYijP6QLNN2/dOHqmjzExGnXAXLnZTx/NFc1GFLkS yNbT+sAZ+7qsS1v9z0qQeGdEkixP2QiEJKJ4k8I2OWBvABaaIQD+F2EfOlC3j/hj Vf7JHOB9l4DfvC7jeOzTr9BUOj2yDE4pFvK+GEyj0br2C1+Q5QbiAKAr8E3NhM2V IL9p/gJFiyrfENfQjdbqRkiOpQ7Ncqd4PGiwpGSQuLIPW0pCc27n+vXVZI2f7jlp waKwJU8K87RI8as4MmcafAulWSnLt3YtjZyhEdL/DpH9MS6bFFc= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org