$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SfrrD10BxjmeO-kUlzvgduaCeqk.roa File: SfrrD10BxjmeO-kUlzvgduaCeqk.roa (raw, json) Hash identifier: CJscwyEueEmnx25gQLKW1RSFy0WPhgp2JiXTb89OaWk= Subject key identifier: 49:FA:EB:0F:5D:01:C6:39:9E:3B:E9:14:97:3B:E0:76:E6:82:7A:A9 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3023 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SfrrD10BxjmeO-kUlzvgduaCeqk.roa Signing time: Mon 26 Aug 2024 05:29:11 +0000 ROA not before: Mon 26 Aug 2024 05:29:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12323 (0x3023) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=49FAEB0F5D01C6399E3BE914973BE076E6827AA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e8:74:8e:b0:85:d1:26:0f:a9:cb:1f:1e:03: 5c:84:4d:c6:e2:58:38:b3:01:31:0d:ac:28:32:0a: 83:89:34:e3:8f:c6:43:d6:98:d9:f6:e0:4f:2a:7e: 2a:2a:22:f1:3a:14:8d:f7:57:30:4c:df:27:15:2c: b2:f0:15:29:88:b3:f9:36:b4:47:37:64:aa:5b:26: c8:89:e8:5d:6e:f0:75:98:f6:05:e1:0b:43:12:9d: 31:21:de:3e:36:f7:b4:cc:14:f2:66:bd:59:c4:0f: 89:a8:a0:3b:7a:cb:09:5d:9a:79:9a:35:23:b3:57: 6e:3b:39:41:c2:ef:0d:a3:e5:cb:3d:c7:42:87:88: 74:3b:04:a0:a6:5e:31:49:4a:cd:fe:dc:e8:85:21: 06:43:4d:2d:5a:c3:01:9f:ca:76:77:5b:bf:a2:1c: b9:5a:78:0f:25:70:f7:47:df:0d:74:49:50:d1:83: 06:8a:b0:df:3d:fa:2a:7f:84:1a:6a:ec:01:71:dd: 76:26:01:e9:32:14:54:e6:a2:40:72:df:42:45:57: da:12:6e:9d:a4:52:55:cb:5a:6b:8d:7c:c0:1c:29: a5:b8:b7:55:fc:18:18:cf:ef:b1:2c:4f:21:8c:c3: 0f:e7:47:eb:42:2d:56:63:ae:3b:07:01:d5:46:c0: 4a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:FA:EB:0F:5D:01:C6:39:9E:3B:E9:14:97:3B:E0:76:E6:82:7A:A9 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/SfrrD10BxjmeO-kUlzvgduaCeqk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.99.0/24 Signature Algorithm: sha256WithRSAEncryption 64:f1:7a:bd:c1:00:fd:83:39:9d:73:a7:f2:0c:bb:1a:55:5f: a7:0a:de:06:f6:54:9d:5f:e4:14:47:7f:54:35:06:c5:dc:e5: 8c:2a:8e:2f:20:cd:47:ad:f2:57:76:55:9b:31:4c:25:d3:20: 1f:83:d7:c9:ba:16:79:57:4f:63:dc:cb:06:89:cd:fb:6a:42: 35:2a:c1:80:eb:6f:7c:45:b9:cf:88:8d:44:33:dc:09:46:54: 52:e1:91:c1:28:6b:8a:8a:7a:25:fb:de:6c:56:d2:92:52:73: 25:64:71:d8:de:24:09:19:d4:7f:a7:f7:a7:80:d1:52:0c:e4: fe:ff:b7:31:c1:c7:5c:78:64:b1:33:95:38:1c:36:2f:a1:fc: 77:fb:be:68:b6:0b:1d:e3:e8:71:cd:42:9a:25:dd:17:82:d8: 42:9b:d2:e6:8c:9c:a4:81:2f:40:f9:b9:94:7a:24:21:eb:d2: 0a:f6:cb:5d:e1:bd:cb:7a:ca:c7:7c:dc:95:73:01:5a:ef:55: 08:30:cc:29:cd:28:88:b3:c1:6d:53:02:93:6f:96:06:41:1f: 18:98:c1:45:2f:eb:46:0c:90:93:9b:b9:59:d7:10:4e:f8:70: 59:e5:6a:62:63:cf:da:72:42:89:f3:5c:30:a6:3d:f5:d2:97: 1e:a2:97:a5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMCMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ5RkFFQjBGNUQwMUM2 Mzk5RTNCRTkxNDk3M0JFMDc2RTY4MjdBQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDD6HSOsIXRJg+pyx8eA1yETcbiWDizATENrCgyCoOJNOOPxkPW mNn24E8qfioqIvE6FI33VzBM3ycVLLLwFSmIs/k2tEc3ZKpbJsiJ6F1u8HWY9gXh C0MSnTEh3j4297TMFPJmvVnED4mooDt6ywldmnmaNSOzV247OUHC7w2j5cs9x0KH iHQ7BKCmXjFJSs3+3OiFIQZDTS1awwGfynZ3W7+iHLlaeA8lcPdH3w10SVDRgwaK sN89+ip/hBpq7AFx3XYmAekyFFTmokBy30JFV9oSbp2kUlXLWmuNfMAcKaW4t1X8 GBjP77EsTyGMww/nR+tCLVZjrjsHAdVGwEppAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUSfrrD10BxjmeO+kUlzvgduaCeqkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1NmcnJEMTBCeGptZU8ta1Vs enZnZHVhQ2Vxay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AWMwDQYJKoZIhvcNAQELBQADggEBAGTxer3BAP2DOZ1zp/IMuxpVX6cK3gb2VJ1f 5BRHf1Q1BsXc5Ywqji8gzUet8ld2VZsxTCXTIB+D18m6FnlXT2PcywaJzftqQjUq wYDrb3xFuc+IjUQz3AlGVFLhkcEoa4qKeiX73mxW0pJScyVkcdjeJAkZ1H+n96eA 0VIM5P7/tzHBx1x4ZLEzlTgcNi+h/Hf7vmi2Cx3j6HHNQpol3ReC2EKb0uaMnKSB L0D5uZR6JCHr0gr2y13hvct6ysd83JVzAVrvVQgwzCnNKIizwW1TApNvlgZBHxiY wUUv60YMkJObuVnXEE74cFnlamJjz9pyQonzXDCmPfXSlx6il6U= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org