$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VTG7PWroXziYRH7gjSj0uNkxcWw.roa File: VTG7PWroXziYRH7gjSj0uNkxcWw.roa (raw, json) Hash identifier: lv1+pMHj1XavvjjcXyaOEK2t63R3+zE43xziAxnmtiw= Subject key identifier: 55:31:BB:3D:6A:E8:5F:38:98:44:7E:E0:8D:28:F4:B8:D9:31:71:6C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 309A Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VTG7PWroXziYRH7gjSj0uNkxcWw.roa Signing time: Mon 26 Aug 2024 05:29:37 +0000 ROA not before: Mon 26 Aug 2024 05:29:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.204.0/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12442 (0x309a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:37 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5531BB3D6AE85F3898447EE08D28F4B8D931716C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2a:ef:5f:80:fb:24:3c:8a:ac:83:7f:99:4b: b0:b3:1d:d3:41:de:3e:0b:11:23:15:a1:13:88:8f: 5b:d7:c8:1d:05:07:88:b0:bb:28:90:42:40:51:28: 9c:d3:21:8a:62:57:6e:ac:9b:65:d0:29:f7:87:89: 84:33:0c:b5:ab:f7:85:82:eb:89:fa:1d:e7:85:c0: 6c:a9:af:72:dd:90:f7:da:30:c6:aa:8c:44:d2:86: 6c:37:93:2e:54:4a:33:ae:cc:dc:2d:50:9f:57:85: 35:6d:2b:b5:c2:2f:c8:9d:50:9d:07:bd:ec:19:e9: 4b:ef:a0:74:10:a4:8d:ee:a0:9e:2d:b3:4e:c0:52: c9:7d:f7:66:57:4b:56:98:d0:bf:02:16:f5:61:b6: 27:97:65:01:d8:9e:1f:9f:23:a9:b6:30:59:a4:ad: f2:44:38:62:12:a0:02:13:c4:33:e8:38:a5:a3:67: c0:53:ae:8a:3d:43:ad:16:fb:91:c4:ac:39:57:d1: 3d:a3:e4:4b:f6:3e:8d:e5:45:09:27:bc:73:d8:fe: 7b:57:bf:b1:8a:42:ca:1a:1a:0c:7b:35:71:56:fc: 58:a5:fa:5a:cd:eb:46:33:bc:87:ff:21:06:92:bd: 6c:1b:d2:e7:0b:04:c0:02:ea:ca:e1:5b:d7:aa:4f: bb:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:31:BB:3D:6A:E8:5F:38:98:44:7E:E0:8D:28:F4:B8:D9:31:71:6C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/VTG7PWroXziYRH7gjSj0uNkxcWw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.204.0/26 Signature Algorithm: sha256WithRSAEncryption 45:ce:58:c7:00:f3:2c:95:5a:15:7a:b0:69:03:72:b2:b8:96: 8f:2d:09:28:a2:df:bd:f3:4f:08:5b:05:6e:4c:d1:aa:75:82: 30:38:43:cc:67:f5:7f:e8:96:86:fb:60:75:e0:ae:26:32:26: dd:8b:e4:7e:10:41:83:0b:ca:60:98:52:07:df:71:a4:c1:08: 86:ac:7c:da:a8:61:45:0f:29:49:3a:0f:23:f6:8a:65:aa:66: 9d:95:70:86:2a:07:69:32:3b:43:5e:05:a8:04:84:f6:c9:2b: 46:03:75:59:2f:cf:19:da:b2:98:5b:c4:18:4c:72:cb:6f:0a: 39:ef:9a:1e:a3:2c:b0:d1:22:28:36:37:06:c2:7f:32:0b:2a: b6:a6:16:7e:7c:d7:13:93:23:16:0d:38:df:23:0a:e8:80:3e: 85:dc:b6:20:07:65:f7:4d:51:33:2b:e0:f2:35:1e:0b:51:84: 8c:46:b8:5c:ef:06:90:36:da:0b:97:17:fd:57:0b:d4:80:3e: a6:6a:fa:75:54:23:c5:b3:7b:fc:f6:04:07:cb:38:eb:76:13: ed:6d:06:44:94:46:9e:03:12:18:fe:4a:f6:f1:9e:66:58:2e: 25:fc:ec:ca:85:c3:5f:9f:05:e8:0f:61:ab:b6:9c:b3:73:eb: b1:95:d2:4d -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICMJowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU1MzFCQjNENkFFODVG Mzg5ODQ0N0VFMDhEMjhGNEI4RDkzMTcxNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFKu9fgPskPIqsg3+ZS7CzHdNB3j4LESMVoROIj1vXyB0FB4iw uyiQQkBRKJzTIYpiV26sm2XQKfeHiYQzDLWr94WC64n6HeeFwGypr3LdkPfaMMaq jETShmw3ky5USjOuzNwtUJ9XhTVtK7XCL8idUJ0HvewZ6UvvoHQQpI3uoJ4ts07A Usl992ZXS1aY0L8CFvVhtieXZQHYnh+fI6m2MFmkrfJEOGISoAITxDPoOKWjZ8BT roo9Q60W+5HErDlX0T2j5Ev2Po3lRQknvHPY/ntXv7GKQsoaGgx7NXFW/Fil+lrN 60YzvIf/IQaSvWwb0ucLBMAC6srhW9eqT7tvAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUVTG7PWroXziYRH7gjSj0uNkxcWwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1ZURzdQV3JvWHppWVJIN2dq U2owdU5reGNXdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQZ7 wswAMA0GCSqGSIb3DQEBCwUAA4IBAQBFzljHAPMslVoVerBpA3KyuJaPLQkoot+9 808IWwVuTNGqdYIwOEPMZ/V/6JaG+2B14K4mMibdi+R+EEGDC8pgmFIH33GkwQiG rHzaqGFFDylJOg8j9oplqmadlXCGKgdpMjtDXgWoBIT2yStGA3VZL88Z2rKYW8QY THLLbwo575oeoyyw0SIoNjcGwn8yCyq2phZ+fNcTkyMWDTjfIwrogD6F3LYgB2X3 TVEzK+DyNR4LUYSMRrhc7waQNtoLlxf9VwvUgD6mavp1VCPFs3v89gQHyzjrdhPt bQZElEaeAxIY/kr28Z5mWC4l/OzKhcNfnwXoD2Grtpyzc+uxldJN -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org