$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/S2j5vF2Jmaxo_dLq29HsKywGewA.roa File: S2j5vF2Jmaxo_dLq29HsKywGewA.roa (raw, json) Hash identifier: vXKhMlPSAxCPeUDfmWS7/lj/N5eHjrKZkL8bptfKeFQ= Subject key identifier: 4B:68:F9:BC:5D:89:99:AC:68:FD:D2:EA:DB:D1:EC:2B:2C:06:7B:00 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 321E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/S2j5vF2Jmaxo_dLq29HsKywGewA.roa Signing time: Mon 26 Aug 2024 05:31:17 +0000 ROA not before: Mon 26 Aug 2024 05:31:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12830 (0x321e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4B68F9BC5D8999AC68FDD2EADBD1EC2B2C067B00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:4a:3a:99:79:1a:a5:fd:14:b7:5b:e7:7e:d7: 03:c5:de:29:30:e0:db:ea:cb:ba:b6:8d:23:41:10: 7f:83:eb:47:cf:a1:11:5c:1f:9e:de:7a:53:40:b8: 50:75:85:17:ee:b7:bb:f5:41:bc:eb:57:49:ce:b7: 3c:86:a2:28:80:d0:47:a5:98:e4:bf:0e:16:cd:d1: f4:8e:1e:8a:60:e9:88:23:8e:c7:cd:6b:48:98:58: 06:76:63:db:21:86:0d:56:1b:34:76:97:88:98:a1: b7:96:11:2d:72:4d:ab:8a:16:ea:8d:c4:7d:72:24: 49:0b:a0:79:ea:f0:26:04:4d:b7:a7:21:f3:48:1f: e6:0e:db:48:01:1a:44:c7:56:08:e8:e3:2b:db:b7: 71:34:e6:e2:f3:0d:48:74:af:2d:7b:9d:70:04:18: 0a:e3:bc:e2:86:64:3f:10:44:44:ce:bd:0e:7e:d1: 3f:db:57:7f:c2:1a:b4:f8:96:a5:0c:d2:a5:2b:20: 83:d6:03:4c:a6:f4:82:e4:82:0c:53:7c:1e:ed:cd: ed:2c:61:b7:b7:b1:49:60:8b:84:60:08:3b:42:50: 2c:94:63:9b:98:45:13:07:78:88:c2:95:53:91:cd: a0:14:d0:1c:ca:cd:21:df:2d:b6:06:e3:4a:7d:7b: 7e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:68:F9:BC:5D:89:99:AC:68:FD:D2:EA:DB:D1:EC:2B:2C:06:7B:00 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/S2j5vF2Jmaxo_dLq29HsKywGewA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.24.0/22 Signature Algorithm: sha256WithRSAEncryption 18:a4:b1:8b:62:c4:c1:f4:59:55:44:f0:2d:0a:f0:2e:b4:47: b6:24:98:70:8c:d0:23:84:6b:5b:38:16:df:aa:9d:a8:11:46: 64:5d:a0:c1:ce:7e:b4:74:19:23:6b:92:c6:21:aa:fe:83:3e: 97:e7:6f:62:fa:c7:e3:fc:45:a9:aa:b3:5d:df:cd:b8:7e:28: ef:c8:7e:de:d7:07:e6:76:ac:7c:67:f1:ee:c4:05:b4:c1:5c: e9:78:57:00:6e:90:b2:62:88:56:62:c6:9a:88:0b:41:07:32: 66:6b:1f:22:24:95:9c:69:2e:96:78:1d:b3:37:ea:39:88:18: 75:9d:20:8a:2e:02:ba:83:51:de:47:35:e8:c9:9c:08:d6:f2: f9:5f:18:bf:1c:ad:f5:ae:d4:c5:bf:20:3b:2c:d0:76:79:12: 2b:2c:dc:e2:0f:f5:b6:a3:a0:c2:21:f7:29:04:bc:10:3e:f5: d1:b9:83:e3:5d:9a:be:af:2f:0a:03:df:be:cf:3a:9e:49:ad: 64:ee:69:10:b3:3f:84:54:1d:0e:7e:18:4c:b4:94:8c:a2:90: ba:65:35:56:a5:9e:48:1b:f0:cd:34:15:48:98:29:e5:16:a5: 07:ae:3a:cc:27:25:f1:25:7a:46:97:24:ba:2e:2a:ac:0a:9a: b2:f2:80:0f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMh4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRCNjhGOUJDNUQ4OTk5 QUM2OEZERDJFQURCRDFFQzJCMkMwNjdCMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDuSjqZeRql/RS3W+d+1wPF3ikw4Nvqy7q2jSNBEH+D60fPoRFc H57eelNAuFB1hRfut7v1QbzrV0nOtzyGoiiA0EelmOS/DhbN0fSOHopg6YgjjsfN a0iYWAZ2Y9shhg1WGzR2l4iYobeWES1yTauKFuqNxH1yJEkLoHnq8CYETbenIfNI H+YO20gBGkTHVgjo4yvbt3E05uLzDUh0ry17nXAEGArjvOKGZD8QRETOvQ5+0T/b V3/CGrT4lqUM0qUrIIPWA0ym9ILkggxTfB7tze0sYbe3sUlgi4RgCDtCUCyUY5uY RRMHeIjClVORzaAU0BzKzSHfLbYG40p9e37xAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUS2j5vF2Jmaxo/dLq29HsKywGewAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1MyajV2RjJKbWF4b19kTHEy OUhzS3l3R2V3QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6RgwDQYJKoZIhvcNAQELBQADggEBABiksYtixMH0WVVE8C0K8C60R7YkmHCM0COE a1s4Ft+qnagRRmRdoMHOfrR0GSNrksYhqv6DPpfnb2L6x+P8Ramqs13fzbh+KO/I ft7XB+Z2rHxn8e7EBbTBXOl4VwBukLJiiFZixpqIC0EHMmZrHyIklZxpLpZ4HbM3 6jmIGHWdIIouArqDUd5HNejJnAjW8vlfGL8crfWu1MW/IDss0HZ5Eiss3OIP9baj oMIh9ykEvBA+9dG5g+Ndmr6vLwoD377POp5JrWTuaRCzP4RUHQ5+GEy0lIyikLpl NValnkgb8M00FUiYKeUWpQeuOswnJfElekaXJLouKqwKmrLygA8= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org