$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/T5w4f2QkEKd1d6T7strnTDYEU3M.roa File: T5w4f2QkEKd1d6T7strnTDYEU3M.roa (raw, json) Hash identifier: 7i4wHOFEgZ/YgC6L3Gl9DaM9qdQ12wqPsNwoq2GUPmQ= Subject key identifier: 4F:9C:38:7F:64:24:10:A7:75:77:A4:FB:B2:DA:E7:4C:36:04:53:73 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 30C7 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/T5w4f2QkEKd1d6T7strnTDYEU3M.roa Signing time: Mon 26 Aug 2024 05:29:49 +0000 ROA not before: Mon 26 Aug 2024 05:29:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.205.128/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12487 (0x30c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4F9C387F642410A77577A4FBB2DAE74C36045373 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:05:e3:65:fd:57:4f:8b:11:57:5f:04:7c:82: 67:fa:76:4d:dd:55:00:61:d7:6f:b2:2b:75:ca:05: d4:05:74:87:5e:92:94:c5:13:c1:76:d1:f7:1b:17: b5:24:6c:7c:29:48:a9:2e:a0:6d:ba:db:42:f5:77: 7f:93:a3:c6:2b:d2:24:32:2f:b1:d1:e3:8d:2c:b1: 1e:71:d2:26:74:27:ef:0b:82:2a:02:70:3c:92:7c: 22:9a:4d:e4:61:a0:43:85:e4:da:2a:73:45:8e:86: 34:91:32:21:cd:64:31:97:5f:d1:67:db:a3:2d:8d: a2:ea:17:a3:24:53:cc:02:50:37:74:20:c2:1b:79: 13:c7:5d:2b:18:7c:56:18:e9:10:97:4f:39:8b:43: 03:10:21:12:c5:82:a8:c1:4c:00:5e:a6:26:9f:e9: 20:e2:03:86:ab:83:40:03:f6:cc:9e:e0:a5:21:7d: ae:3b:a7:a2:d3:a9:22:1e:3b:d6:b0:11:a4:0a:4b: af:a4:29:a7:48:f6:65:74:d8:56:a2:02:c7:f0:9e: fa:74:4a:37:c8:92:7a:34:60:6e:7f:f1:08:d4:f2: c4:5e:e4:26:fa:eb:12:14:0f:94:2f:b8:1b:ba:03: 15:51:c3:92:92:5d:46:36:64:b5:59:11:aa:c2:72: 78:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:9C:38:7F:64:24:10:A7:75:77:A4:FB:B2:DA:E7:4C:36:04:53:73 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/T5w4f2QkEKd1d6T7strnTDYEU3M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.205.128/28 Signature Algorithm: sha256WithRSAEncryption 81:81:e1:4a:e1:82:50:fc:97:76:36:70:14:da:80:29:31:4b: 99:de:11:15:b2:4e:26:c8:48:ee:99:f6:35:55:5a:62:5b:8a: 2e:22:1b:35:5f:30:c2:9c:f6:42:2c:18:52:01:80:de:c8:78: 01:41:68:a5:60:52:79:4f:7a:9f:23:83:16:15:ac:a9:05:80: 9f:36:45:21:d1:c7:ae:af:d1:42:e2:1f:84:cc:4f:bb:8e:28: 69:60:46:e8:c5:30:b4:8a:81:bc:36:77:ad:0c:ab:df:7e:19: e6:5a:9e:54:dd:2f:fe:0e:97:a2:27:a1:b6:7e:d7:34:0e:f0: 74:a2:54:5d:42:ef:51:bd:18:53:13:d3:8a:58:e1:d6:f3:92: 76:44:85:75:16:21:62:0a:99:4a:98:21:81:36:46:9c:7d:fc: eb:83:ea:9b:b2:9c:e6:1f:5a:e7:e7:03:c8:02:cb:0b:53:1d: 44:1d:93:c3:bd:d0:ec:88:73:29:3e:00:f1:f0:2f:a3:bc:0d: 21:2d:f4:d9:09:2f:99:33:53:bb:f5:dd:7e:3d:32:e0:06:de: b9:7a:dc:ed:ee:bd:52:ba:b9:78:65:7a:fe:15:b4:22:c8:2c: 48:73:0b:89:c5:0e:0d:4c:f3:e2:a3:ec:6d:c5:16:94:13:14: f4:bb:fb:36 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICMMcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRGOUMzODdGNjQyNDEw QTc3NTc3QTRGQkIyREFFNzRDMzYwNDUzNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+BeNl/VdPixFXXwR8gmf6dk3dVQBh12+yK3XKBdQFdIdekpTF E8F20fcbF7UkbHwpSKkuoG2620L1d3+To8Yr0iQyL7HR440ssR5x0iZ0J+8LgioC cDySfCKaTeRhoEOF5Noqc0WOhjSRMiHNZDGXX9Fn26MtjaLqF6MkU8wCUDd0IMIb eRPHXSsYfFYY6RCXTzmLQwMQIRLFgqjBTABepiaf6SDiA4arg0AD9sye4KUhfa47 p6LTqSIeO9awEaQKS6+kKadI9mV02FaiAsfwnvp0SjfIkno0YG5/8QjU8sRe5Cb6 6xIUD5QvuBu6AxVRw5KSXUY2ZLVZEarCcnjlAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUT5w4f2QkEKd1d6T7strnTDYEU3MwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1Q1dzRmMlFrRUtkMWQ2VDdz dHJuVERZRVUzTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQR7 ws2AMA0GCSqGSIb3DQEBCwUAA4IBAQCBgeFK4YJQ/Jd2NnAU2oApMUuZ3hEVsk4m yEjumfY1VVpiW4ouIhs1XzDCnPZCLBhSAYDeyHgBQWilYFJ5T3qfI4MWFaypBYCf NkUh0ceur9FC4h+EzE+7jihpYEboxTC0ioG8NnetDKvffhnmWp5U3S/+DpeiJ6G2 ftc0DvB0olRdQu9RvRhTE9OKWOHW85J2RIV1FiFiCplKmCGBNkacffzrg+qbspzm H1rn5wPIAssLUx1EHZPDvdDsiHMpPgDx8C+jvA0hLfTZCS+ZM1O79d1+PTLgBt65 etzt7r1Surl4ZXr+FbQiyCxIcwuJxQ4NTPPio+xtxRaUExT0u/s2 -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org