$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/R03quzrAAjavf22L7kZnoa9rchY.roa File: R03quzrAAjavf22L7kZnoa9rchY.roa (raw, json) Hash identifier: StHfd1K7yfnaa8Z9D5/JYvKpW85WysW8XWFHX+bl2Ec= Subject key identifier: 47:4D:EA:BB:3A:C0:02:36:AF:7F:6D:8B:EE:46:67:A1:AF:6B:72:16 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3295 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/R03quzrAAjavf22L7kZnoa9rchY.roa Signing time: Mon 26 Aug 2024 05:31:47 +0000 ROA not before: Mon 26 Aug 2024 05:31:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.177.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12949 (0x3295) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=474DEABB3AC00236AF7F6D8BEE4667A1AF6B7216 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:66:41:55:bf:2c:45:fa:a9:13:b5:52:64:ab: 1d:8b:3d:76:af:d1:27:d5:19:35:6c:29:8c:e3:da: 2e:77:78:d3:a7:c6:3b:f6:c1:86:ac:73:93:c0:f8: 16:71:cb:03:a8:9a:84:76:ab:22:7b:8d:5a:97:31: 26:17:9d:4b:76:4d:61:df:8f:3a:aa:c2:3a:f9:16: c7:e1:6b:46:94:71:9e:21:b9:29:c8:c7:02:ca:05: e3:bd:63:14:fa:df:ad:73:e0:6c:ec:c8:af:48:6a: d3:10:a7:b2:70:f9:6b:29:dd:da:15:57:b4:87:db: 9e:15:83:a5:71:ed:c3:92:cb:8d:9c:5f:32:bc:b7: dc:54:0a:ba:4b:df:dd:cd:e8:0b:ee:de:9c:72:21: 65:04:e8:49:53:64:79:13:23:23:ea:31:95:72:d8: 52:a8:d6:59:45:29:3c:bc:f6:a4:6b:a5:23:7b:ad: b2:ae:db:55:b4:9d:18:a1:39:db:b4:ea:e5:85:39: 58:d2:16:2e:30:bc:b4:0b:f8:03:fb:cb:4b:1a:cd: 85:39:fc:b9:d8:79:c2:4c:af:a4:9f:48:fb:9c:c5: c1:22:b0:d7:30:04:30:cd:82:ae:73:0f:f7:ff:71: ae:6b:de:5a:f8:69:9e:2c:a9:aa:c8:b4:b4:c7:59: c8:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:4D:EA:BB:3A:C0:02:36:AF:7F:6D:8B:EE:46:67:A1:AF:6B:72:16 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/R03quzrAAjavf22L7kZnoa9rchY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.128.0/22 Signature Algorithm: sha256WithRSAEncryption 00:94:3a:93:48:38:03:b6:de:13:58:98:e4:41:6f:ec:0a:99: 30:25:e2:c5:d9:3a:45:b7:1e:b4:9d:89:24:f8:2b:35:e0:b3: fc:97:96:52:63:fc:43:18:3c:27:03:af:8a:5a:bf:22:b4:ee: 19:ed:4b:f3:6e:3c:ef:40:50:85:b9:e9:b1:56:d9:c6:f2:bf: 05:fe:5a:f5:1e:3f:2b:60:bd:6b:4f:7d:dc:42:59:bd:b6:66: 28:d7:41:c1:5d:5c:4a:ec:55:7b:8a:6f:5f:4c:26:7b:eb:78: 28:5c:90:9f:2f:07:11:c4:bd:7f:95:9d:23:29:17:79:68:79: 90:5b:e1:4b:c1:b7:aa:56:f0:f7:a3:12:6d:07:18:6b:fa:c3: c8:59:a1:6e:90:a0:b1:97:8b:ce:12:de:fb:23:e2:f7:aa:22: 7b:2a:fc:f9:de:f8:b6:03:d4:2f:65:8c:94:c8:e4:90:40:05: 98:19:df:d3:cf:b2:61:4a:b9:8b:10:18:34:f5:f8:6f:6c:9c: ff:09:a7:76:ba:cd:68:1c:88:a7:6d:fe:85:be:fb:58:56:ca: 8f:f6:52:2b:56:6b:6d:aa:ea:42:89:a9:64:58:a0:0a:90:06: 3c:a8:69:dc:4c:b1:11:cf:bc:3d:cd:75:b1:4a:ff:a4:af:e0: 97:16:8e:c4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMpUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ3NERFQUJCM0FDMDAy MzZBRjdGNkQ4QkVFNDY2N0ExQUY2QjcyMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrZkFVvyxF+qkTtVJkqx2LPXav0SfVGTVsKYzj2i53eNOnxjv2 wYasc5PA+BZxywOomoR2qyJ7jVqXMSYXnUt2TWHfjzqqwjr5Fsfha0aUcZ4huSnI xwLKBeO9YxT6361z4GzsyK9IatMQp7Jw+Wsp3doVV7SH254Vg6Vx7cOSy42cXzK8 t9xUCrpL393N6Avu3pxyIWUE6ElTZHkTIyPqMZVy2FKo1llFKTy89qRrpSN7rbKu 21W0nRihOdu06uWFOVjSFi4wvLQL+AP7y0sazYU5/LnYecJMr6SfSPucxcEisNcw BDDNgq5zD/f/ca5r3lr4aZ4sqarItLTHWcirAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUR03quzrAAjavf22L7kZnoa9rchYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1IwM3F1enJBQWphdmYyMkw3 a1pub2E5cmNoWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 sYAwDQYJKoZIhvcNAQELBQADggEBAACUOpNIOAO23hNYmORBb+wKmTAl4sXZOkW3 HrSdiST4KzXgs/yXllJj/EMYPCcDr4pavyK07hntS/NuPO9AUIW56bFW2cbyvwX+ WvUePytgvWtPfdxCWb22ZijXQcFdXErsVXuKb19MJnvreChckJ8vBxHEvX+VnSMp F3loeZBb4UvBt6pW8PejEm0HGGv6w8hZoW6QoLGXi84S3vsj4veqInsq/Pne+LYD 1C9ljJTI5JBABZgZ39PPsmFKuYsQGDT1+G9snP8Jp3a6zWgciKdt/oW++1hWyo/2 UitWa22q6kKJqWRYoAqQBjyoadxMsRHPvD3NdbFK/6Sv4JcWjsQ= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org