$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SWSH5j0DA79n9p-U9WiAWux_VXc.roa File: SWSH5j0DA79n9p-U9WiAWux_VXc.roa (raw, json) Hash identifier: vIEhKHzUhkCyxcqvE2pZ+bDNkwUdOIB/JtBSfCTbExQ= Subject key identifier: 49:64:87:E6:3D:03:03:BF:67:F6:9F:94:F5:68:80:5A:EC:7F:55:77 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32F9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SWSH5j0DA79n9p-U9WiAWux_VXc.roa Signing time: Mon 26 Aug 2024 05:32:11 +0000 ROA not before: Mon 26 Aug 2024 05:32:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 211.76.123.0/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13049 (0x32f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:32:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=496487E63D0303BF67F69F94F568805AEC7F5577 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ff:e4:4a:d8:b0:68:8b:fe:63:5c:82:2b:95: 37:aa:d7:fa:53:b1:1a:65:16:39:9a:a2:39:20:17: 63:7e:b0:b5:6f:e5:3c:65:53:fc:23:93:89:01:68: 96:b2:44:47:91:e4:66:21:b6:30:1d:f0:92:f5:95: ce:9e:ae:53:e8:52:ab:9c:a7:3e:89:0f:58:3e:12: d2:76:48:e9:53:da:e0:0c:e7:b8:aa:a6:dd:55:e7: 17:8d:83:66:9c:44:cd:46:ce:76:bd:5e:8a:5f:84: f5:f0:b6:9c:46:90:dd:68:4c:7c:c7:5d:56:3e:d0: 3c:cd:04:3b:8b:b9:e9:df:96:f3:c2:ee:98:b9:af: 0f:58:e3:5e:a6:b0:af:ef:47:5e:92:55:71:b5:e9: c1:05:65:36:12:cb:dd:1b:da:ec:e1:33:32:35:9c: 9f:f9:83:a2:a5:5f:4a:e8:56:52:bb:94:0d:82:d7: 3d:ca:55:8e:82:dd:20:67:5a:c6:b2:ab:e8:a1:78: 1e:d0:98:9b:59:b5:aa:ec:e8:d4:29:f7:cc:a8:2b: 4c:32:22:c8:85:d8:af:f5:62:2e:60:55:fa:f9:8f: 7f:da:01:45:98:31:84:76:f4:9d:52:b7:64:1d:8c: 80:d0:04:0d:9a:eb:72:b6:8e:68:e8:d4:8a:c0:17: dd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:64:87:E6:3D:03:03:BF:67:F6:9F:94:F5:68:80:5A:EC:7F:55:77 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SWSH5j0DA79n9p-U9WiAWux_VXc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.123.0/25 Signature Algorithm: sha256WithRSAEncryption 70:eb:e8:25:5e:2a:a7:9e:5e:09:5e:a4:f2:f0:cc:9d:7d:a8: 59:4c:97:96:7d:63:56:77:08:07:67:63:34:c3:ca:32:32:35: e3:7b:67:15:a3:de:25:38:eb:ae:9c:37:94:a0:fa:da:f8:cc: 1f:90:09:49:bb:13:1e:09:22:90:43:f4:e2:67:c2:e5:ef:c4: 17:af:c2:54:dd:59:14:61:dd:a0:c8:dc:c3:d2:f9:e8:aa:2d: 08:49:f0:8e:bd:07:4f:bb:12:e2:93:1c:81:c7:97:09:be:80: fd:da:17:3c:d7:1e:90:d3:5a:28:64:b3:78:ac:de:db:96:ea: 88:43:ee:02:6f:71:41:2d:e3:df:e8:be:ad:b5:6b:67:db:24: 10:a1:19:f6:90:2e:23:5e:3e:44:3d:c2:fc:c6:81:f6:25:77: 11:95:13:87:b9:a6:0a:cf:3d:8a:9e:c8:be:7c:38:62:c3:40: 74:10:42:ca:0b:28:78:76:c4:d1:95:56:12:cd:5b:09:1e:75: ca:20:b4:ae:c5:af:3c:a9:ab:ca:a6:18:7d:aa:b2:f6:17:ce: ed:19:a7:1d:46:ef:f2:26:b2:1a:d5:a2:0e:7a:4f:72:b5:6e: 07:85:2b:41:49:95:e7:42:20:c3:5a:2f:8c:3f:87:5f:79:07: 70:30:8a:fa -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICMvkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMyMTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ5NjQ4N0U2M0QwMzAz QkY2N0Y2OUY5NEY1Njg4MDVBRUM3RjU1NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDN/+RK2LBoi/5jXIIrlTeq1/pTsRplFjmaojkgF2N+sLVv5Txl U/wjk4kBaJayREeR5GYhtjAd8JL1lc6erlPoUqucpz6JD1g+EtJ2SOlT2uAM57iq pt1V5xeNg2acRM1Gzna9XopfhPXwtpxGkN1oTHzHXVY+0DzNBDuLuenflvPC7pi5 rw9Y416msK/vR16SVXG16cEFZTYSy90b2uzhMzI1nJ/5g6KlX0roVlK7lA2C1z3K VY6C3SBnWsayq+iheB7QmJtZtars6NQp98yoK0wyIsiF2K/1Yi5gVfr5j3/aAUWY MYR29J1St2QdjIDQBA2a63K2jmjo1IrAF93hAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUSWSH5j0DA79n9p+U9WiAWux/VXcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1NXU0g1ajBEQTc5bjlwLVU5 V2lBV3V4X1ZYYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQfT THsAMA0GCSqGSIb3DQEBCwUAA4IBAQBw6+glXiqnnl4JXqTy8MydfahZTJeWfWNW dwgHZ2M0w8oyMjXje2cVo94lOOuunDeUoPra+MwfkAlJuxMeCSKQQ/TiZ8Ll78QX r8JU3VkUYd2gyNzD0vnoqi0ISfCOvQdPuxLikxyBx5cJvoD92hc81x6Q01ooZLN4 rN7bluqIQ+4Cb3FBLePf6L6ttWtn2yQQoRn2kC4jXj5EPcL8xoH2JXcRlROHuaYK zz2Knsi+fDhiw0B0EELKCyh4dsTRlVYSzVsJHnXKILSuxa88qavKphh9qrL2F87t GacdRu/yJrIa1aIOek9ytW4HhStBSZXnQiDDWi+MP4dfeQdwMIr6 -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:52 2024 by rpki-client on console-fra.rpki-client.org