$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/WF2FpCbCDwKeWJXnLknLz4aGPQE.roa File: WF2FpCbCDwKeWJXnLknLz4aGPQE.roa (raw, json) Hash identifier: 9usPzORqFEJjfl5R6LSVg/9uAL9KLkJzY9qWSDvDEyE= Subject key identifier: 58:5D:85:A4:26:C2:0F:02:9E:58:95:E7:2E:49:CB:CF:86:86:3D:01 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3134 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/WF2FpCbCDwKeWJXnLknLz4aGPQE.roa Signing time: Mon 26 Aug 2024 05:30:13 +0000 ROA not before: Mon 26 Aug 2024 05:30:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12596 (0x3134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:13 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=585D85A426C20F029E5895E72E49CBCF86863D01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a3:18:09:94:04:0c:53:5d:3a:1f:25:a7:18: 52:53:62:89:d1:b9:10:76:5d:e6:4b:39:4e:5d:c6: 5f:eb:bf:5e:1c:3c:a9:c8:0a:22:c5:1c:73:7a:3b: 6c:35:a7:24:ca:18:33:06:8e:bd:44:d0:b2:aa:94: bf:9c:bb:8f:68:6b:11:bd:4a:44:b2:16:02:a1:b4: ac:e2:67:fb:35:ab:39:d9:d1:64:ac:50:62:cc:8f: 95:30:c1:e6:7c:ad:54:9a:76:fc:62:e9:93:8f:f5: c3:d6:e2:2a:12:63:d0:e5:c2:9e:db:2c:cd:d2:28: 45:c7:c7:fd:85:80:85:20:3b:58:cf:c5:12:34:7f: 0b:c6:7f:2a:2f:82:89:bd:04:97:f9:30:fc:5f:97: fb:11:5f:a8:1b:42:38:04:36:53:cf:96:cb:c4:b1: 62:e3:c6:87:aa:63:1a:00:9e:4f:a0:d3:d3:50:8b: a3:ed:a5:13:59:36:75:73:22:ba:81:e0:d4:46:0c: d0:3e:df:20:4d:87:2d:5b:a9:9a:91:72:e8:03:6b: b5:19:a6:fe:7c:aa:dd:a7:39:7b:e4:7f:ed:51:ff: 56:6f:10:7c:38:10:ff:f3:54:54:8c:cb:ba:42:e6: 0d:9a:98:b2:ed:db:c4:26:9a:4b:b5:6e:de:44:ae: 52:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:5D:85:A4:26:C2:0F:02:9E:58:95:E7:2E:49:CB:CF:86:86:3D:01 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/WF2FpCbCDwKeWJXnLknLz4aGPQE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.179.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:3a:a6:45:73:41:2b:b5:86:ca:e3:53:8f:da:69:27:26:60: 83:8d:95:bd:a2:68:c2:d0:92:c0:df:f2:fc:fc:02:a8:9e:a2: 18:c6:fa:24:f8:8a:b7:ab:1a:8d:4a:b4:f7:04:ce:3d:8d:78: 6f:d6:53:95:2a:5c:d9:5b:31:4e:9b:74:74:af:a9:75:cf:4b: f9:96:71:fa:d1:13:a3:c8:44:8d:25:3a:be:1c:5c:6e:d1:1a: 55:d7:2f:db:ac:15:82:70:d9:7b:c5:80:1f:06:28:26:a5:bc: 90:28:8a:a5:68:b3:e4:86:bc:12:15:82:ca:a1:43:79:eb:a9: e4:2e:42:25:be:ce:06:17:6a:7e:07:17:4a:16:d8:71:21:a6: c8:7e:9c:0d:d2:7e:c2:79:8e:f0:95:64:61:48:f6:00:e5:c1: 5a:ef:8f:e7:bc:93:fe:27:b0:6a:fc:6c:82:40:a2:00:a1:22: f4:57:fe:e1:8f:f0:fd:3c:73:79:0d:91:f1:8a:da:42:a5:97: 94:84:36:a3:32:5f:86:79:bc:2f:f2:1b:b6:11:6c:cf:49:bb: 7f:ac:19:55:a6:30:e4:a6:af:cd:23:6a:5a:20:5a:a7:d7:d8: fd:a9:ee:5a:ad:a0:1e:ef:28:6e:b2:2e:ab:8b:07:e5:30:ed: 74:ba:b5:b1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMTQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU4NUQ4NUE0MjZDMjBG MDI5RTU4OTVFNzJFNDlDQkNGODY4NjNEMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7oxgJlAQMU106HyWnGFJTYonRuRB2XeZLOU5dxl/rv14cPKnI CiLFHHN6O2w1pyTKGDMGjr1E0LKqlL+cu49oaxG9SkSyFgKhtKziZ/s1qznZ0WSs UGLMj5UwweZ8rVSadvxi6ZOP9cPW4ioSY9Dlwp7bLM3SKEXHx/2FgIUgO1jPxRI0 fwvGfyovgom9BJf5MPxfl/sRX6gbQjgENlPPlsvEsWLjxoeqYxoAnk+g09NQi6Pt pRNZNnVzIrqB4NRGDNA+3yBNhy1bqZqRcugDa7UZpv58qt2nOXvkf+1R/1ZvEHw4 EP/zVFSMy7pC5g2amLLt28Qmmku1bt5ErlIxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUWF2FpCbCDwKeWJXnLknLz4aGPQEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1dGMkZwQ2JDRHdLZVdKWG5M a25MejRhR1BRRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 w7MwDQYJKoZIhvcNAQELBQADggEBAAs6pkVzQSu1hsrjU4/aaScmYIONlb2iaMLQ ksDf8vz8AqieohjG+iT4irerGo1KtPcEzj2NeG/WU5UqXNlbMU6bdHSvqXXPS/mW cfrRE6PIRI0lOr4cXG7RGlXXL9usFYJw2XvFgB8GKCalvJAoiqVos+SGvBIVgsqh Q3nrqeQuQiW+zgYXan4HF0oW2HEhpsh+nA3SfsJ5jvCVZGFI9gDlwVrvj+e8k/4n sGr8bIJAogChIvRX/uGP8P08c3kNkfGK2kKll5SENqMyX4Z5vC/yG7YRbM9Ju3+s GVWmMOSmr80jalogWqfX2P2p7lqtoB7vKG6yLquLB+Uw7XS6tbE= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org