$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZA5OHkVzmpgbKTTqpnUAhMgGGf4.roa File: ZA5OHkVzmpgbKTTqpnUAhMgGGf4.roa (raw, json) Hash identifier: 0zfmLNsuSM4otJBFiQH+cvWKAEzlaSTnFnAjS1Iapiw= Subject key identifier: 64:0E:4E:1E:45:73:9A:98:1B:29:34:EA:A6:75:00:84:C8:06:19:FE Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 27DA Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZA5OHkVzmpgbKTTqpnUAhMgGGf4.roa Signing time: Fri 01 Sep 2023 10:04:38 +0000 ROA not before: Fri 01 Sep 2023 10:04:38 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 123.193.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10202 (0x27da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:04:38 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=640E4E1E45739A981B2934EAA6750084C80619FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:9a:0e:f2:7c:f2:b4:b7:aa:ce:7f:7f:b5:f8: d5:cf:81:e7:b3:01:91:12:62:4a:e4:62:76:01:d9: 51:00:0b:4c:8b:f8:53:f5:c8:ad:6a:c5:f5:3c:c8: 73:e7:53:1e:7f:0b:1f:d8:55:eb:cb:f6:60:31:b8: ac:e0:db:ee:10:30:b0:52:a2:7f:34:f6:86:57:1d: 9c:99:b6:61:1b:4a:ea:74:fa:c4:51:c9:fb:ab:45: 49:00:c2:e3:69:c7:7b:d7:ba:af:83:9b:37:7d:54: a6:5b:30:ad:da:9a:51:c1:dc:96:7d:19:08:6c:1e: 30:84:70:a0:ac:cd:2f:41:dc:5c:5e:f7:b3:40:52: cd:7e:f5:49:3a:05:cd:20:d7:a0:31:61:66:b8:fc: 30:59:a0:bb:13:74:94:6a:71:3f:9a:5d:e9:55:63: 41:66:2d:7c:80:6d:ad:e7:f1:9c:16:58:9e:76:56: f5:ff:d6:2a:f2:04:15:62:e8:60:2e:b7:5e:70:c4: ec:2e:c8:8a:1c:1e:c1:27:b4:e7:de:91:ad:19:6b: 60:87:a7:28:23:b5:53:cd:f5:b7:ca:9d:5a:b9:0a: 81:87:be:8d:d3:0f:0a:c8:25:5b:8f:10:69:55:27: 0f:cc:0a:a2:96:0d:3d:24:54:de:3c:46:3e:94:a0: e1:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:0E:4E:1E:45:73:9A:98:1B:29:34:EA:A6:75:00:84:C8:06:19:FE X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZA5OHkVzmpgbKTTqpnUAhMgGGf4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.240.0/21 Signature Algorithm: sha256WithRSAEncryption 7c:8f:d2:76:3b:5b:bf:33:b7:20:77:fb:4a:2a:64:52:24:fd: a9:b9:c8:57:fb:69:3a:d7:13:0e:50:40:fb:d0:cb:6f:3a:f3: e8:cb:11:ea:d8:fa:63:a3:31:24:12:f6:d6:7f:00:21:ae:3a: 92:ed:96:04:29:92:0d:85:5c:1e:23:2c:14:9b:81:41:b1:fe: 38:a1:85:6a:df:2a:c9:4e:e8:8f:e5:a2:6f:83:75:d1:24:86: d7:ec:c0:54:d1:67:2b:ff:0c:d6:44:12:80:0f:3f:b7:f1:e6: 2e:d5:fa:8c:82:37:2c:53:a6:2b:dc:36:aa:c4:d1:c6:74:25: 7d:74:d6:e3:5a:74:b6:f6:eb:05:ca:d3:e5:35:66:62:94:09: 7a:0a:96:c8:c7:e9:f6:74:e6:3c:4f:b0:8c:87:44:92:9f:37: 54:1f:06:97:57:b1:88:82:5b:cb:21:25:7b:1c:6f:8f:d3:5b: 5c:c2:98:c6:d4:e7:7b:5f:f4:5a:74:2f:c4:66:83:69:32:dd: 01:8f:d5:7c:11:cc:1e:d2:c1:3b:22:be:5b:79:9f:f8:09:bb: 44:1c:36:0b:91:09:ad:6c:85:f2:6e:a8:90:93:16:c9:fc:dc: 93:9f:11:fd:a7:5f:fc:86:69:39:a8:26:93:00:85:54:41:32: dc:25:4f:69 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJ9owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA0MzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY0MEU0RTFFNDU3MzlB OTgxQjI5MzRFQUE2NzUwMDg0QzgwNjE5RkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcmg7yfPK0t6rOf3+1+NXPgeezAZESYkrkYnYB2VEAC0yL+FP1 yK1qxfU8yHPnUx5/Cx/YVevL9mAxuKzg2+4QMLBSon809oZXHZyZtmEbSup0+sRR yfurRUkAwuNpx3vXuq+Dmzd9VKZbMK3amlHB3JZ9GQhsHjCEcKCszS9B3Fxe97NA Us1+9Uk6Bc0g16AxYWa4/DBZoLsTdJRqcT+aXelVY0FmLXyAba3n8ZwWWJ52VvX/ 1iryBBVi6GAut15wxOwuyIocHsEntOfeka0Za2CHpygjtVPN9bfKnVq5CoGHvo3T DwrIJVuPEGlVJw/MCqKWDT0kVN48Rj6UoOEPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUZA5OHkVzmpgbKTTqpnUAhMgGGf4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1pBNU9Ia1Z6bXBnYktUVHFw blVBaE1nR0dmNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wfAwDQYJKoZIhvcNAQELBQADggEBAHyP0nY7W78ztyB3+0oqZFIk/am5yFf7aTrX Ew5QQPvQy2868+jLEerY+mOjMSQS9tZ/ACGuOpLtlgQpkg2FXB4jLBSbgUGx/jih hWrfKslO6I/lom+DddEkhtfswFTRZyv/DNZEEoAPP7fx5i7V+oyCNyxTpivcNqrE 0cZ0JX101uNadLb26wXK0+U1ZmKUCXoKlsjH6fZ05jxPsIyHRJKfN1QfBpdXsYiC W8shJXscb4/TW1zCmMbU53tf9Fp0L8Rmg2ky3QGP1XwRzB7SwTsivlt5n/gJu0Qc NguRCa1shfJuqJCTFsn83JOfEf2nX/yGaTmoJpMAhVRBMtwlT2k= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:05 2024 by rpki-client on console-fra.rpki-client.org