$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/WfgVfPDdJn32blnG-rmVQOB0ivc.roa File: WfgVfPDdJn32blnG-rmVQOB0ivc.roa (raw, json) Hash identifier: YM2nkRp7B+aImZVMLD9O87VePx95y7YOLhFawlyxHJM= Subject key identifier: 59:F8:15:7C:F0:DD:26:7D:F6:6E:59:C6:FA:B9:95:40:E0:74:8A:F7 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 327C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/WfgVfPDdJn32blnG-rmVQOB0ivc.roa Signing time: Mon 26 Aug 2024 05:31:42 +0000 ROA not before: Mon 26 Aug 2024 05:31:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12924 (0x327c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:42 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=59F8157CF0DD267DF66E59C6FAB99540E0748AF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:94:f9:7a:c6:c9:1c:94:e4:79:fa:42:44:b1: 43:de:57:12:f5:57:3c:c9:5f:b6:38:d5:bf:a7:71: 67:1b:cb:ed:27:0c:65:ec:0c:d9:2c:40:fe:d6:03: dd:ec:a6:27:97:d1:1f:8a:e6:0c:ad:5a:b2:a8:d2: 80:41:f1:ec:f5:9b:e5:fe:10:c6:b4:28:5b:4b:cd: 15:b8:5f:f5:1c:47:f3:a2:38:9b:37:ab:64:1a:27: 0e:20:c5:41:9b:b8:a9:68:0c:6b:15:9e:8b:d0:c5: 1f:c1:42:56:a4:60:7c:ed:f0:ff:f3:f0:9f:0c:80: 1b:22:52:c3:f8:8d:5d:67:3e:ee:ae:1f:db:af:f9: 00:d5:1a:b3:7c:57:d3:f0:f7:35:ae:1d:0d:d5:f2: a7:d8:c9:6e:b4:6f:fc:07:cd:c5:7f:ff:5f:2e:58: e4:c5:f6:9c:89:98:34:55:87:00:86:23:6a:5a:cd: 1f:7c:5c:87:5c:61:e5:2d:cd:3f:d1:9a:13:44:41: 9d:a0:0e:2d:02:27:bf:bf:09:98:bd:5d:fb:9a:09: 5e:61:1f:4a:98:89:0e:3f:9a:28:ff:31:3b:3b:6f: c6:56:ee:fc:6a:3f:63:7a:91:8f:99:31:27:c4:5b: fd:be:e6:f2:b1:db:7f:53:a0:a3:a0:bc:79:17:ed: 8e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:F8:15:7C:F0:DD:26:7D:F6:6E:59:C6:FA:B9:95:40:E0:74:8A:F7 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/WfgVfPDdJn32blnG-rmVQOB0ivc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.247.0/24 Signature Algorithm: sha256WithRSAEncryption 68:06:82:03:c9:b9:66:36:44:1d:05:72:56:5b:16:c5:6a:14: 68:f5:ca:69:ac:47:1e:78:df:c6:59:70:b5:1f:59:77:f6:5e: df:06:a3:4f:04:63:e6:c3:a8:ab:69:1c:2d:39:29:91:85:2f: f3:84:fe:ea:1e:a2:48:4c:2e:bc:67:8e:f1:45:a9:3d:21:cb: 20:c0:8e:96:a2:b3:bd:e5:a9:a5:f6:53:cd:04:01:73:53:0e: 08:f5:41:6e:60:15:9d:a4:19:06:5f:ba:2c:b8:c3:77:81:3f: 7e:1c:1e:e0:62:43:b7:09:f2:86:70:e1:88:00:51:32:f0:6e: 04:b0:53:7d:bd:0e:3d:e7:e2:0b:d6:fa:15:56:b4:97:db:a7: f6:e7:e2:82:1a:b4:10:e3:1e:ba:10:db:dd:17:57:b3:82:b7: d2:fc:fa:1e:54:38:32:a9:35:ee:c1:56:9d:72:15:c1:c9:fd: 32:7a:aa:ce:b8:5a:d1:5a:fd:93:6a:92:b1:5f:ca:51:2e:4f: 01:e5:84:0f:dd:1e:c2:9f:07:8c:1e:4c:ee:6a:47:56:59:64: 91:af:69:f8:8b:ca:a8:ae:4a:aa:79:64:59:49:96:df:6f:52: ea:75:cb:c8:aa:cb:96:3b:3d:81:4e:ec:a8:d5:0d:35:a3:63: 67:d9:ae:1d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMnwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU5RjgxNTdDRjBERDI2 N0RGNjZFNTlDNkZBQjk5NTQwRTA3NDhBRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCblPl6xskclOR5+kJEsUPeVxL1VzzJX7Y41b+ncWcby+0nDGXs DNksQP7WA93spieX0R+K5gytWrKo0oBB8ez1m+X+EMa0KFtLzRW4X/UcR/OiOJs3 q2QaJw4gxUGbuKloDGsVnovQxR/BQlakYHzt8P/z8J8MgBsiUsP4jV1nPu6uH9uv +QDVGrN8V9Pw9zWuHQ3V8qfYyW60b/wHzcV//18uWOTF9pyJmDRVhwCGI2pazR98 XIdcYeUtzT/RmhNEQZ2gDi0CJ7+/CZi9XfuaCV5hH0qYiQ4/mij/MTs7b8ZW7vxq P2N6kY+ZMSfEW/2+5vKx239ToKOgvHkX7Y7tAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUWfgVfPDdJn32blnG+rmVQOB0ivcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1dmZ1ZmUERkSm4zMmJsbkct cm1WUU9CMGl2Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 wfcwDQYJKoZIhvcNAQELBQADggEBAGgGggPJuWY2RB0FclZbFsVqFGj1ymmsRx54 38ZZcLUfWXf2Xt8Go08EY+bDqKtpHC05KZGFL/OE/uoeokhMLrxnjvFFqT0hyyDA jpais73lqaX2U80EAXNTDgj1QW5gFZ2kGQZfuiy4w3eBP34cHuBiQ7cJ8oZw4YgA UTLwbgSwU329Dj3n4gvW+hVWtJfbp/bn4oIatBDjHroQ290XV7OCt9L8+h5UODKp Ne7BVp1yFcHJ/TJ6qs64WtFa/ZNqkrFfylEuTwHlhA/dHsKfB4weTO5qR1ZZZJGv afiLyqiuSqp5ZFlJlt9vUup1y8iqy5Y7PYFO7KjVDTWjY2fZrh0= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org