$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VNSHqZqyPimIJfw_R7a5FpYKfRo.roa File: VNSHqZqyPimIJfw_R7a5FpYKfRo.roa (raw, json) Hash identifier: h5VcqzS4tZkpY1Jq2KtB6oUVrWGA4MdSosmsomB6HEA= Subject key identifier: 54:D4:87:A9:9A:B2:3E:29:88:25:FC:3F:47:B6:B9:16:96:0A:7D:1A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3016 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VNSHqZqyPimIJfw_R7a5FpYKfRo.roa Signing time: Mon 26 Aug 2024 05:29:07 +0000 ROA not before: Mon 26 Aug 2024 05:29:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.192.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12310 (0x3016) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=54D487A99AB23E298825FC3F47B6B916960A7D1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4d:5e:3f:d4:e6:b0:8a:12:96:3e:d1:41:45: 72:a0:4c:79:b9:03:07:e1:de:3c:0a:f9:9c:1c:cb: a5:87:7b:6d:54:77:69:46:59:d8:61:11:eb:fe:29: 8d:25:ee:40:c0:8e:c5:dd:7a:35:6b:f2:62:ad:75: ce:33:cb:75:f0:2f:05:5c:dc:fa:43:16:0f:f1:dd: 9d:99:58:90:eb:1c:0d:2b:b0:53:b2:20:b7:fd:4c: 48:3f:b6:3c:52:cb:1a:fe:e7:80:a2:64:56:ae:c2: 31:95:dc:0d:0c:18:3b:76:46:e4:18:34:ed:8f:bf: f4:2d:1c:e3:57:61:7d:89:29:55:03:92:72:8e:5e: d3:ef:5e:43:4d:5b:54:89:98:c5:cb:df:b0:8f:8b: 71:bc:5f:1b:85:91:b0:43:f5:ae:b3:eb:75:55:d2: 99:1e:4f:eb:f2:fe:95:0a:d6:5c:7b:36:cb:84:3a: ec:d6:40:e6:aa:54:c7:b9:5d:c1:10:3f:96:f6:df: ea:ec:3f:29:14:9c:38:0d:32:ea:01:bd:c2:ed:8a: dd:e6:6f:4d:ca:26:52:d5:b8:58:6a:97:8a:db:48: c7:16:d2:36:99:ef:b3:cd:d3:ed:f6:f6:44:b1:f6: 04:d3:26:e4:77:2d:ef:40:64:f1:af:79:76:0c:2c: 98:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:D4:87:A9:9A:B2:3E:29:88:25:FC:3F:47:B6:B9:16:96:0A:7D:1A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VNSHqZqyPimIJfw_R7a5FpYKfRo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.100.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:f5:23:3d:ac:88:9f:53:b6:94:d8:2c:7d:10:f5:49:46:38: 3c:4a:ab:64:28:28:c1:c4:e7:e6:19:8c:97:11:7b:89:0d:00: e3:94:f7:24:c6:7f:59:fd:1d:a9:d2:17:8d:8c:b0:b4:c2:b7: 46:8e:58:9c:5e:d9:8f:b3:e2:f8:98:eb:87:0b:be:2a:ac:2b: 51:24:ad:2e:14:4b:47:52:6c:7e:49:72:e8:9a:fb:2a:6a:1b: 8d:c9:39:87:42:a8:64:be:01:3e:15:ff:3a:ae:30:c7:19:08: 36:98:8b:46:60:9b:6f:f0:da:3c:9d:f0:4c:56:f9:5a:41:7b: 8a:c3:f4:a5:c8:ba:37:6b:59:79:c2:b2:4a:55:3d:3b:a7:4d: b4:95:b5:dc:a6:d3:2c:94:7f:47:b8:db:e6:ee:e9:34:1c:8b: a9:b7:67:d3:e6:ce:68:e6:64:63:d5:8f:66:95:7b:3d:f7:71: 2d:40:68:f2:43:c9:ed:8a:a9:cd:c5:13:7e:ef:19:b9:65:96: 0f:76:52:a7:5d:c0:87:e2:40:18:7a:2b:8d:eb:a5:3f:0e:d1: 2e:f5:f8:8f:fa:d2:3a:6e:a4:29:1d:3a:e6:08:bc:4e:c0:a3: e7:a8:a4:51:9c:b2:b6:df:6f:f5:59:85:9f:c8:85:55:ea:22: 80:07:9d:90 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMBYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU0RDQ4N0E5OUFCMjNF Mjk4ODI1RkMzRjQ3QjZCOTE2OTYwQTdEMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGTV4/1OawihKWPtFBRXKgTHm5Awfh3jwK+Zwcy6WHe21Ud2lG WdhhEev+KY0l7kDAjsXdejVr8mKtdc4zy3XwLwVc3PpDFg/x3Z2ZWJDrHA0rsFOy ILf9TEg/tjxSyxr+54CiZFauwjGV3A0MGDt2RuQYNO2Pv/QtHONXYX2JKVUDknKO XtPvXkNNW1SJmMXL37CPi3G8XxuFkbBD9a6z63VV0pkeT+vy/pUK1lx7NsuEOuzW QOaqVMe5XcEQP5b23+rsPykUnDgNMuoBvcLtit3mb03KJlLVuFhql4rbSMcW0jaZ 77PN0+329kSx9gTTJuR3Le9AZPGveXYMLJjZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUVNSHqZqyPimIJfw/R7a5FpYKfRowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1ZOU0hxWnF5UGltSUpmd19S N2E1RnBZS2ZSby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wGQwDQYJKoZIhvcNAQELBQADggEBAAz1Iz2siJ9TtpTYLH0Q9UlGODxKq2QoKMHE 5+YZjJcRe4kNAOOU9yTGf1n9HanSF42MsLTCt0aOWJxe2Y+z4viY64cLviqsK1Ek rS4US0dSbH5Jcuia+ypqG43JOYdCqGS+AT4V/zquMMcZCDaYi0Zgm2/w2jyd8ExW +VpBe4rD9KXIujdrWXnCskpVPTunTbSVtdym0yyUf0e42+bu6TQci6m3Z9Pmzmjm ZGPVj2aVez33cS1AaPJDye2Kqc3FE37vGblllg92UqddwIfiQBh6K43rpT8O0S71 +I/60jpupCkdOuYIvE7Ao+eopFGcsrbfb/VZhZ/IhVXqIoAHnZA= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:53 2024 by rpki-client on console-fra.rpki-client.org