$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ReJhwIBBrDlDahdz7L1o8gLDmUE.roa File: ReJhwIBBrDlDahdz7L1o8gLDmUE.roa (raw, json) Hash identifier: yVG64Gx0VS2DaYkHkzYPAaGw0v7qpNABx2X5BbYvTNI= Subject key identifier: 45:E2:61:C0:80:41:AC:39:43:6A:17:73:EC:BD:68:F2:02:C3:99:41 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3270 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ReJhwIBBrDlDahdz7L1o8gLDmUE.roa Signing time: Mon 26 Aug 2024 05:31:39 +0000 ROA not before: Mon 26 Aug 2024 05:31:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12912 (0x3270) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:39 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=45E261C08041AC39436A1773ECBD68F202C39941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:be:b3:da:cd:d3:0d:e0:2f:0c:49:5a:87:ec: 4d:3e:3d:ca:81:21:73:f3:58:29:fc:7d:14:75:0f: d2:47:f1:76:87:d1:82:24:b9:fb:fc:f1:20:5f:3d: fd:f6:92:c8:05:14:ca:82:35:5d:1a:94:cb:e9:52: ae:35:b6:37:23:bd:ba:71:12:48:10:b5:12:ff:5e: 1a:41:07:81:75:09:0c:16:bc:a5:ff:ba:5d:53:b3: 09:13:a4:62:84:b2:0e:bc:11:46:0e:83:22:85:f5: 86:17:9e:df:0c:f3:39:c8:2b:ee:02:4f:9f:bf:99: 1b:2f:e1:b0:23:25:c6:a1:0d:6d:d7:c7:0c:36:b8: 4d:32:ec:9d:73:fc:a3:f2:a5:40:8d:bf:cd:52:70: 63:09:e9:9a:20:d4:5c:c5:41:a5:ca:4a:0c:43:88: 3d:1d:ef:0b:73:c1:5d:9a:27:fd:6e:37:54:a6:bc: 0d:c6:21:22:0d:e8:c1:bf:d0:3b:a1:29:85:35:15: a5:9d:7a:6b:73:b0:33:65:1f:53:4a:b5:98:97:68: eb:7c:b9:84:1e:af:03:1d:7b:72:1e:3e:bb:37:4a: 74:2e:3a:81:3d:a8:40:2f:76:dc:e6:ab:c4:ab:63: f5:30:58:65:c6:99:a1:6f:9c:3f:ec:31:89:a9:e5: f2:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:E2:61:C0:80:41:AC:39:43:6A:17:73:EC:BD:68:F2:02:C3:99:41 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ReJhwIBBrDlDahdz7L1o8gLDmUE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.148.0/24 Signature Algorithm: sha256WithRSAEncryption 03:95:2f:fe:74:7e:1b:35:aa:6a:68:d9:56:5f:b8:4b:e6:3a: 0e:45:82:82:ca:90:54:48:39:1c:8b:fa:51:6a:4a:06:8e:22: 3d:f1:e3:33:76:25:36:c1:7b:ef:44:4b:6e:23:28:6f:12:f5: 04:fb:98:15:7c:3f:cc:63:2b:97:a4:4b:e2:b1:8b:2f:9e:58: a6:18:82:97:ce:8b:a5:2a:0d:11:3f:5c:42:cf:0d:6a:3a:91: 33:24:9c:d3:1b:ef:90:3b:6c:07:bb:a2:de:66:25:bf:a6:8c: 87:6b:4a:56:0c:bb:0b:7d:b9:3d:fb:3d:ee:da:db:95:27:e8: 46:1a:4e:87:b9:aa:33:8a:06:92:dc:62:96:38:af:82:7a:88: d2:85:9e:e2:54:d0:9c:7e:4f:17:39:c6:12:5e:d1:53:99:c9: af:0f:d8:ee:eb:c1:82:73:f2:a5:e8:fb:0e:bb:4f:fe:fe:33: 22:a0:bc:d2:ce:5a:bb:f5:7a:c7:19:a6:36:fa:d1:78:b0:67: 19:be:72:ba:b1:af:47:04:89:a7:ac:8d:c9:aa:79:b2:de:42: 05:c1:c6:ee:fa:8c:3f:b5:2e:ac:1f:47:b9:e4:29:82:98:06: e8:48:68:ca:46:03:dd:10:fe:52:2d:a0:99:a0:ec:bb:d9:d2: 75:97:f0:09 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMnAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ1RTI2MUMwODA0MUFD Mzk0MzZBMTc3M0VDQkQ2OEYyMDJDMzk5NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlvrPazdMN4C8MSVqH7E0+PcqBIXPzWCn8fRR1D9JH8XaH0YIk ufv88SBfPf32ksgFFMqCNV0alMvpUq41tjcjvbpxEkgQtRL/XhpBB4F1CQwWvKX/ ul1TswkTpGKEsg68EUYOgyKF9YYXnt8M8znIK+4CT5+/mRsv4bAjJcahDW3Xxww2 uE0y7J1z/KPypUCNv81ScGMJ6Zog1FzFQaXKSgxDiD0d7wtzwV2aJ/1uN1SmvA3G ISIN6MG/0DuhKYU1FaWdemtzsDNlH1NKtZiXaOt8uYQerwMde3IePrs3SnQuOoE9 qEAvdtzmq8SrY/UwWGXGmaFvnD/sMYmp5fKFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUReJhwIBBrDlDahdz7L1o8gLDmUEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1JlSmh3SUJCckRsRGFoZHo3 TDFvOGdMRG1VRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 w5QwDQYJKoZIhvcNAQELBQADggEBAAOVL/50fhs1qmpo2VZfuEvmOg5FgoLKkFRI ORyL+lFqSgaOIj3x4zN2JTbBe+9ES24jKG8S9QT7mBV8P8xjK5ekS+Kxiy+eWKYY gpfOi6UqDRE/XELPDWo6kTMknNMb75A7bAe7ot5mJb+mjIdrSlYMuwt9uT37Pe7a 25Un6EYaToe5qjOKBpLcYpY4r4J6iNKFnuJU0Jx+Txc5xhJe0VOZya8P2O7rwYJz 8qXo+w67T/7+MyKgvNLOWrv1escZpjb60XiwZxm+crqxr0cEiaesjcmqebLeQgXB xu76jD+1LqwfR7nkKYKYBuhIaMpGA90Q/lItoJmg7LvZ0nWX8Ak= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org