$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/W2blvkONq_53mNXhQ4Ds6AJRlcs.roa File: W2blvkONq_53mNXhQ4Ds6AJRlcs.roa (raw, json) Hash identifier: DtIrJNjL8wzRtOw+NrfYDzV36WpJHU0E6BDVJo55mhQ= Subject key identifier: 5B:66:E5:BE:43:8D:AB:FE:77:98:D5:E1:43:80:EC:E8:02:51:95:CB Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2FC7 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/W2blvkONq_53mNXhQ4Ds6AJRlcs.roa Signing time: Mon 26 Aug 2024 05:28:51 +0000 ROA not before: Mon 26 Aug 2024 05:28:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 211.76.113.0/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12231 (0x2fc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:28:51 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5B66E5BE438DABFE7798D5E14380ECE8025195CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ce:16:cd:36:37:7e:01:22:a4:b7:5e:3c:7f: 07:03:bc:ac:74:33:df:91:d0:f2:2d:b6:1c:32:0c: 73:6e:fd:14:c7:1c:a3:c2:5a:71:56:bc:7d:fc:07: b2:38:2b:a6:75:7f:7f:45:22:f8:66:06:69:92:8e: 1d:3e:a8:7b:e9:f7:f5:6a:42:c0:e9:0b:98:a8:f8: 51:f5:ec:1a:ff:63:6f:f6:8c:23:60:1c:b5:58:4a: bd:e5:aa:fd:cf:96:4d:a6:a5:ec:dd:bc:35:8e:cb: 84:11:d5:ea:a8:3c:3f:d0:d9:04:9d:40:39:6c:bd: 3a:d0:dd:eb:b4:89:68:7e:36:6d:66:a4:53:31:24: 5d:b1:44:5a:d5:32:76:cd:21:4a:7f:a9:f7:cc:a0: c6:15:53:49:33:48:40:62:9d:51:2d:91:98:1e:a3: b9:35:35:8e:43:87:9d:8f:6f:0c:b5:ba:fc:f4:4d: 6e:20:15:dc:b9:c5:49:d2:1a:9b:8d:d2:f6:20:14: f3:4e:2c:41:82:3c:29:0a:e2:3b:ce:5d:05:f8:39: ca:b3:66:9f:5e:6f:ac:7c:49:b6:16:01:6d:b1:19: 88:6a:0a:b9:c8:75:84:ee:54:5c:ae:0b:99:c2:3d: 95:2f:03:65:57:e5:9e:43:b4:5e:91:af:67:44:1e: e7:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:66:E5:BE:43:8D:AB:FE:77:98:D5:E1:43:80:EC:E8:02:51:95:CB X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/W2blvkONq_53mNXhQ4Ds6AJRlcs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.113.0/25 Signature Algorithm: sha256WithRSAEncryption 13:6e:04:b8:ca:9b:b8:33:60:6c:b3:f6:73:86:1e:19:a1:ea: 96:e3:16:8d:c4:69:e3:63:a4:a1:6c:e4:62:f0:5d:f5:da:04: 5b:ef:23:30:a9:a5:ab:ae:90:93:67:17:a9:7a:e9:dc:97:0f: 20:45:a2:79:3e:11:02:d9:19:34:a3:b7:56:78:d4:51:c6:3b: 53:65:29:98:09:6b:d3:4e:c8:ef:c0:02:dc:13:73:5e:16:12: 00:c4:f5:43:72:89:62:b7:5b:db:7b:f6:ef:f6:8f:de:5e:9d: 3b:10:fe:2c:c9:f6:cb:24:fb:8c:cc:48:a3:61:6a:a9:ba:f2: 66:cf:39:20:d6:0b:f5:98:b6:48:ab:de:40:c8:de:a2:26:d0: 66:4c:aa:e0:19:08:25:6f:b0:79:d6:52:51:d9:2b:ec:8a:87: b0:fe:68:cd:fb:ab:0f:29:2e:87:94:db:73:0c:67:38:1f:4f: 09:66:21:9a:a8:d0:da:9a:3d:f2:38:00:39:19:5f:a4:f6:af: ba:51:d9:7e:8d:48:b5:61:d0:bc:c3:6e:e7:9b:e3:5c:bb:05: 34:ef:7a:10:40:ad:3d:ab:dc:30:03:de:56:13:b3:04:69:f8: 77:48:26:b1:a2:da:68:53:e0:d5:bc:39:17:92:8c:83:c6:73: bd:85:a6:8e -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICL8cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI4NTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVCNjZFNUJFNDM4REFC RkU3Nzk4RDVFMTQzODBFQ0U4MDI1MTk1Q0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFzhbNNjd+ASKkt148fwcDvKx0M9+R0PItthwyDHNu/RTHHKPC WnFWvH38B7I4K6Z1f39FIvhmBmmSjh0+qHvp9/VqQsDpC5io+FH17Br/Y2/2jCNg HLVYSr3lqv3Plk2mpezdvDWOy4QR1eqoPD/Q2QSdQDlsvTrQ3eu0iWh+Nm1mpFMx JF2xRFrVMnbNIUp/qffMoMYVU0kzSEBinVEtkZgeo7k1NY5Dh52Pbwy1uvz0TW4g Fdy5xUnSGpuN0vYgFPNOLEGCPCkK4jvOXQX4OcqzZp9eb6x8SbYWAW2xGYhqCrnI dYTuVFyuC5nCPZUvA2VX5Z5DtF6Rr2dEHuepAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUW2blvkONq/53mNXhQ4Ds6AJRlcswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1cyYmx2a09OcV81M21OWGhR NERzNkFKUmxjcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQfT THEAMA0GCSqGSIb3DQEBCwUAA4IBAQATbgS4ypu4M2Bss/Zzhh4ZoeqW4xaNxGnj Y6ShbORi8F312gRb7yMwqaWrrpCTZxepeunclw8gRaJ5PhEC2Rk0o7dWeNRRxjtT ZSmYCWvTTsjvwALcE3NeFhIAxPVDcolit1vbe/bv9o/eXp07EP4syfbLJPuMzEij YWqpuvJmzzkg1gv1mLZIq95AyN6iJtBmTKrgGQglb7B51lJR2Svsioew/mjN+6sP KS6HlNtzDGc4H08JZiGaqNDamj3yOAA5GV+k9q+6Udl+jUi1YdC8w27nm+NcuwU0 73oQQK09q9wwA95WE7MEafh3SCaxotpoU+DVvDkXkoyDxnO9haaO -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:20 2024 by rpki-client on console-ams.rpki-client.org