$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TZ8LiYRjdNEpPaqwV9ge3l1_Th8.roa File: TZ8LiYRjdNEpPaqwV9ge3l1_Th8.roa (raw, json) Hash identifier: zP1McNE9QzgArAYOxnJubPCUAYhGcMEVUyvcq/cBRT4= Subject key identifier: 4D:9F:0B:89:84:63:74:D1:29:3D:AA:B0:57:D8:1E:DE:5D:7F:4E:1F Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31CA Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TZ8LiYRjdNEpPaqwV9ge3l1_Th8.roa Signing time: Mon 26 Aug 2024 05:30:56 +0000 ROA not before: Mon 26 Aug 2024 05:30:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12746 (0x31ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:56 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4D9F0B89846374D1293DAAB057D81EDE5D7F4E1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a7:60:ae:08:e7:51:64:19:8e:76:16:56:7e: f1:8a:de:e5:a6:4b:7b:ea:20:ef:c3:d1:99:10:91: 00:ab:6a:e3:d9:36:15:0b:b8:b7:96:72:ff:55:4e: 14:58:cd:ac:b5:11:4c:bd:9e:da:59:37:59:8e:17: 69:ff:46:c4:d9:52:cb:1f:e2:df:de:f6:29:9a:a4: de:4b:81:b0:6c:dc:43:05:82:5b:f8:27:bc:e8:f4: d9:80:f0:55:51:4f:b3:e6:94:b1:0e:f6:2d:f9:b8: 0e:1f:9c:34:69:20:1f:ea:60:28:b7:55:77:e5:a0: 9b:86:9d:fb:4e:9f:a3:e9:02:4c:f2:1b:72:f9:bc: ec:b1:a6:5b:43:7a:a8:ed:c2:7e:d1:10:82:bc:73: 40:e7:01:75:9d:62:82:1a:e2:e4:40:79:39:76:64: 95:f9:82:59:ee:62:69:92:f4:87:09:33:16:77:2b: ea:2e:ac:c7:ae:ad:88:8e:e3:3c:b2:92:1d:ce:44: dc:96:e0:d6:17:5a:0e:a0:85:0b:7b:45:9b:a6:24: e8:89:4e:85:9d:2b:39:f9:9f:71:30:0b:61:0f:c5: 95:71:0e:dd:85:12:46:bf:b5:6b:8a:7c:ae:bf:3b: 4b:10:18:34:63:dc:4c:fc:e3:f4:89:65:43:03:e9: cd:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:9F:0B:89:84:63:74:D1:29:3D:AA:B0:57:D8:1E:DE:5D:7F:4E:1F X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/TZ8LiYRjdNEpPaqwV9ge3l1_Th8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.100.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:7a:8d:e0:15:ce:6e:b5:58:95:3d:09:48:f2:63:a4:b6:12: 47:c6:1b:c2:e7:53:40:f0:1f:e3:81:b2:0b:14:db:86:d9:1d: 13:ba:ae:30:10:cb:0e:0f:87:e1:a8:fb:d2:26:99:91:bf:c2: 68:91:44:41:7f:a5:64:e5:5f:69:20:4a:54:8b:ec:6e:64:cb: 69:ab:d7:90:63:67:79:18:9b:7c:29:ae:f5:f3:03:d1:34:c7: c5:cb:43:89:30:8c:e2:41:7c:b0:4b:b7:41:2c:ed:c9:d8:cb: 89:a1:36:92:05:bc:4b:97:c4:f8:86:73:a8:af:ec:b8:2e:e3: 17:bf:0a:f6:f1:e9:3a:59:a7:c2:15:5a:9c:60:42:fb:af:bf: 06:84:2e:36:74:06:5d:4c:e6:c4:3f:cb:01:bc:ec:67:51:63: 23:e5:be:34:ec:78:ba:8a:32:65:21:a4:88:e1:87:0f:8e:a1: 6a:64:92:db:8c:d3:20:2d:bd:5e:f1:e7:8a:c9:a3:d9:f1:04: be:1c:0c:59:c0:00:e9:79:96:57:ee:ac:87:4c:fb:15:a1:e0: f6:33:65:97:aa:57:9d:f2:10:39:90:88:d5:77:8d:00:00:da: 89:ba:eb:4e:db:24:b8:f0:8b:cc:a9:13:34:be:f9:d4:24:61: b0:78:70:ca -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMcowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDREOUYwQjg5ODQ2Mzc0 RDEyOTNEQUFCMDU3RDgxRURFNUQ3RjRFMUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsp2CuCOdRZBmOdhZWfvGK3uWmS3vqIO/D0ZkQkQCrauPZNhUL uLeWcv9VThRYzay1EUy9ntpZN1mOF2n/RsTZUssf4t/e9imapN5LgbBs3EMFglv4 J7zo9NmA8FVRT7PmlLEO9i35uA4fnDRpIB/qYCi3VXfloJuGnftOn6PpAkzyG3L5 vOyxpltDeqjtwn7REIK8c0DnAXWdYoIa4uRAeTl2ZJX5glnuYmmS9IcJMxZ3K+ou rMeurYiO4zyykh3ORNyW4NYXWg6ghQt7RZumJOiJToWdKzn5n3EwC2EPxZVxDt2F Eka/tWuKfK6/O0sQGDRj3Ez84/SJZUMD6c1rAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUTZ8LiYRjdNEpPaqwV9ge3l1/Th8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1RaOExpWVJqZE5FcFBhcXdW OWdlM2wxX1RoOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB2 6WQwDQYJKoZIhvcNAQELBQADggEBAG96jeAVzm61WJU9CUjyY6S2EkfGG8LnU0Dw H+OBsgsU24bZHRO6rjAQyw4Ph+Go+9ImmZG/wmiRREF/pWTlX2kgSlSL7G5ky2mr 15BjZ3kYm3wprvXzA9E0x8XLQ4kwjOJBfLBLt0Es7cnYy4mhNpIFvEuXxPiGc6iv 7Lgu4xe/Cvbx6TpZp8IVWpxgQvuvvwaELjZ0Bl1M5sQ/ywG87GdRYyPlvjTseLqK MmUhpIjhhw+OoWpkktuM0yAtvV7x54rJo9nxBL4cDFnAAOl5llfurIdM+xWh4PYz ZZeqV53yEDmQiNV3jQAA2om6607bJLjwi8ypEzS++dQkYbB4cMo= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:57 2024 by rpki-client on console-fra.rpki-client.org