$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TLdiE6HEvdbhMqygA9_kGsn6_Qk.roa File: TLdiE6HEvdbhMqygA9_kGsn6_Qk.roa (raw, json) Hash identifier: SbQ9nyRSWvbB96THXzi21GUaWrLC+FQC/EMXm43KNfQ= Subject key identifier: 4C:B7:62:13:A1:C4:BD:D6:E1:32:AC:A0:03:DF:E4:1A:C9:FA:FD:09 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3087 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TLdiE6HEvdbhMqygA9_kGsn6_Qk.roa Signing time: Mon 26 Aug 2024 05:29:32 +0000 ROA not before: Mon 26 Aug 2024 05:29:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12423 (0x3087) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4CB76213A1C4BDD6E132ACA003DFE41AC9FAFD09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:dd:03:68:bc:f6:06:2c:da:a2:e0:dd:23:14: 04:8b:db:35:b8:70:47:40:7c:81:bf:d1:03:5a:42: 98:07:3f:62:a5:7b:37:38:b9:2c:01:f2:94:0d:70: 88:a1:33:6a:87:63:55:4d:f1:0a:7f:5b:3c:e8:91: 9d:86:26:92:64:59:d5:3c:27:3c:8b:69:04:1b:d8: a8:09:c4:c9:f2:a3:55:45:66:51:e7:8b:32:80:a6: c9:ca:0e:c2:64:4c:bd:f3:ad:30:6c:56:7e:a4:eb: 12:4a:28:7b:b5:8a:07:fb:2c:57:ab:0f:02:5d:62: 53:7d:44:69:06:64:ba:ed:43:15:71:18:e9:0e:09: c6:85:4f:7b:c6:50:5e:ca:2f:21:1c:79:ce:68:d8: ff:32:f1:cf:96:0c:de:02:8a:55:2b:b0:27:23:26: f2:52:1e:9e:5e:7c:e3:84:a8:db:19:42:d0:33:b9: 94:9b:f1:79:c8:b0:a3:b5:89:39:8f:de:2b:ad:af: 57:c3:92:88:b4:65:31:62:64:8c:30:7b:7b:91:73: 9e:4b:2f:46:27:ec:9b:bb:37:4e:08:2a:dd:5c:c5: a6:e6:d3:57:b5:c0:86:ca:11:09:6a:5e:9f:72:17: 6a:2d:db:6d:01:76:66:65:a2:97:7a:d4:63:58:6b: 73:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:B7:62:13:A1:C4:BD:D6:E1:32:AC:A0:03:DF:E4:1A:C9:FA:FD:09 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TLdiE6HEvdbhMqygA9_kGsn6_Qk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.103.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:59:58:71:87:06:cd:d6:60:db:9b:74:26:e4:17:f7:81:3f: 45:4c:49:24:fc:44:05:11:18:db:fb:5c:68:9f:08:c9:e8:21: 5d:86:f4:72:92:15:a8:3e:24:b9:34:4a:36:79:ef:69:6b:74: 23:10:22:00:38:14:67:47:72:8c:2a:69:49:d5:79:14:c6:35: c4:d5:8b:5b:b6:3a:de:96:93:97:12:22:92:70:4a:65:c8:c7: b3:21:64:9a:b2:09:dd:55:33:68:45:9b:c8:0b:a5:ba:61:da: 8c:51:11:90:0f:c0:4d:df:37:60:5c:c3:93:c8:16:49:d7:85: 22:7e:c9:25:25:94:91:5d:af:42:00:43:e7:f1:b5:bd:b5:f7: d1:6e:77:9a:1d:66:d1:30:a3:9f:dd:64:48:11:25:38:b9:f6: 2a:d5:08:67:50:31:77:f8:02:ac:72:e8:a6:bf:92:3e:bc:e2: 54:79:43:a8:21:c5:d0:14:7d:6a:9c:ab:ec:6d:8b:bd:d7:fa: eb:ae:7d:6a:14:99:39:21:55:42:3f:15:7e:00:c6:c5:4e:da: bd:19:19:06:9f:07:aa:0d:43:ad:20:04:b5:43:4c:94:5f:4f: 8f:40:0a:e1:f8:a1:6a:76:6e:d4:6a:ce:1d:b7:29:54:43:68: b9:8b:93:c6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMIcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRDQjc2MjEzQTFDNEJE RDZFMTMyQUNBMDAzREZFNDFBQzlGQUZEMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCh3QNovPYGLNqi4N0jFASL2zW4cEdAfIG/0QNaQpgHP2Klezc4 uSwB8pQNcIihM2qHY1VN8Qp/WzzokZ2GJpJkWdU8JzyLaQQb2KgJxMnyo1VFZlHn izKApsnKDsJkTL3zrTBsVn6k6xJKKHu1igf7LFerDwJdYlN9RGkGZLrtQxVxGOkO CcaFT3vGUF7KLyEcec5o2P8y8c+WDN4CilUrsCcjJvJSHp5efOOEqNsZQtAzuZSb 8XnIsKO1iTmP3iutr1fDkoi0ZTFiZIwwe3uRc55LL0Yn7Ju7N04IKt1cxabm01e1 wIbKEQlqXp9yF2ot220BdmZlopd61GNYa3OdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUTLdiE6HEvdbhMqygA9/kGsn6/QkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1RMZGlFNkhFdmRiaE1xeWdB OV9rR3NuNl9Ray5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq AWcwDQYJKoZIhvcNAQELBQADggEBAJ9ZWHGHBs3WYNubdCbkF/eBP0VMSST8RAUR GNv7XGifCMnoIV2G9HKSFag+JLk0SjZ572lrdCMQIgA4FGdHcowqaUnVeRTGNcTV i1u2Ot6Wk5cSIpJwSmXIx7MhZJqyCd1VM2hFm8gLpbph2oxREZAPwE3fN2Bcw5PI FknXhSJ+ySUllJFdr0IAQ+fxtb2199Fud5odZtEwo5/dZEgRJTi59irVCGdQMXf4 Aqxy6Ka/kj684lR5Q6ghxdAUfWqcq+xti73X+uuufWoUmTkhVUI/FX4AxsVO2r0Z GQafB6oNQ60gBLVDTJRfT49ACuH4oWp2btRqzh23KVRDaLmLk8Y= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:37 2024 by rpki-client on console-ams.rpki-client.org