$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZApkbH6YBLaN2NEOmxkJpaC5Sy4.roa File: ZApkbH6YBLaN2NEOmxkJpaC5Sy4.roa (raw, json) Hash identifier: 1riF5tZycjnrVcZWUM0W2LL52JEqua+yKwm51zV6zag= Subject key identifier: 64:0A:64:6C:7E:98:04:B6:8D:D8:D1:0E:9B:19:09:A5:A0:B9:4B:2E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 319F Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZApkbH6YBLaN2NEOmxkJpaC5Sy4.roa Signing time: Mon 26 Aug 2024 05:30:46 +0000 ROA not before: Mon 26 Aug 2024 05:30:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12703 (0x319f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=640A646C7E9804B68DD8D10E9B1909A5A0B94B2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4c:55:d8:3c:68:82:43:4b:c2:92:f7:01:a9: e9:54:21:14:01:1d:cc:87:c9:9a:84:b7:b3:06:06: af:6c:25:6c:fb:9c:3c:96:18:4c:b8:f8:af:f6:0c: 65:79:b0:3e:1e:ea:48:86:2e:60:fe:81:61:bb:56: da:77:83:12:55:c5:38:63:34:37:e0:b7:33:bf:cf: bd:58:73:bc:85:2b:d1:23:61:19:ff:66:f3:ef:38: 18:f5:f5:44:4d:e6:28:ee:ab:86:e8:38:87:fe:28: 4b:66:0a:dc:8a:6c:97:b1:23:6f:ea:9d:fb:11:f6: ec:a0:c9:ab:2e:89:ba:50:7c:f5:0b:99:c9:f4:31: 12:6e:1f:ca:2e:1f:79:23:a6:ef:89:6d:ae:62:28: 35:61:88:db:68:fd:33:2c:a1:70:86:e8:c5:91:20: 18:fe:8b:78:c2:21:19:d4:9f:35:a6:a6:75:3c:fd: e5:3a:80:6c:f6:4e:33:af:dd:7f:07:5c:28:82:9a: fd:c3:dc:54:fd:68:ce:02:c4:09:90:8a:6f:e5:b4: ce:f5:18:32:64:17:34:77:82:1e:98:37:88:83:a0: 3f:ea:cc:65:06:98:c5:91:3f:10:07:a5:d9:79:f6: 3d:50:d9:25:5c:fa:c4:1a:3b:25:29:03:6a:e4:e0: e7:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:0A:64:6C:7E:98:04:B6:8D:D8:D1:0E:9B:19:09:A5:A0:B9:4B:2E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZApkbH6YBLaN2NEOmxkJpaC5Sy4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.0.0/21 Signature Algorithm: sha256WithRSAEncryption b9:60:79:3e:c4:eb:0f:a5:59:1a:e7:27:3e:48:08:58:8f:fb: 22:79:3c:a5:51:6e:1f:0f:82:28:da:a3:eb:11:35:ee:ed:07: 7b:5b:9b:53:5c:3b:92:13:9b:0c:eb:59:43:20:e6:5b:9e:0e: d6:08:ac:e3:ad:db:ff:6b:d1:62:f8:06:85:13:8d:3f:db:41: 6f:2b:da:89:25:1b:d1:fb:8d:bb:91:16:f3:a4:e4:6a:1e:03: f4:e1:f0:7f:72:0a:5c:f4:e0:70:95:df:95:a3:14:57:26:30: 39:63:95:2e:5e:c8:a1:1d:69:fc:81:07:f2:dd:6c:0c:b2:28: 0d:ba:c6:af:25:67:78:54:e8:24:46:97:d7:c4:bb:a5:3a:f1: ba:80:e6:c1:ae:6b:86:20:d5:f6:00:d0:48:4f:1f:b4:5c:dc: c8:df:66:08:b7:44:b8:84:b6:6e:c9:74:ec:04:ad:ea:3a:5e: 0f:ce:88:e1:29:b0:b5:49:40:a4:ed:79:a1:a6:5c:0f:78:52: 09:e3:54:c2:98:f8:28:80:0a:4e:c3:b3:c9:a0:28:48:7c:e3: 19:2b:92:ff:3e:04:5c:51:90:2f:ce:b5:05:6c:b4:ff:39:fc: c8:c3:7c:5e:7c:f6:3d:5e:ce:c8:fd:6c:cc:1f:4d:d9:e3:19: 40:26:36:5f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMZ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwNDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY0MEE2NDZDN0U5ODA0 QjY4REQ4RDEwRTlCMTkwOUE1QTBCOTRCMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuTFXYPGiCQ0vCkvcBqelUIRQBHcyHyZqEt7MGBq9sJWz7nDyW GEy4+K/2DGV5sD4e6kiGLmD+gWG7Vtp3gxJVxThjNDfgtzO/z71Yc7yFK9EjYRn/ ZvPvOBj19URN5ijuq4boOIf+KEtmCtyKbJexI2/qnfsR9uygyasuibpQfPULmcn0 MRJuH8ouH3kjpu+Jba5iKDVhiNto/TMsoXCG6MWRIBj+i3jCIRnUnzWmpnU8/eU6 gGz2TjOv3X8HXCiCmv3D3FT9aM4CxAmQim/ltM71GDJkFzR3gh6YN4iDoD/qzGUG mMWRPxAHpdl59j1Q2SVc+sQaOyUpA2rk4OeXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUZApkbH6YBLaN2NEOmxkJpaC5Sy4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1pBcGtiSDZZQkxhTjJORU9t eGtKcGFDNVN5NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wQAwDQYJKoZIhvcNAQELBQADggEBALlgeT7E6w+lWRrnJz5ICFiP+yJ5PKVRbh8P gijao+sRNe7tB3tbm1NcO5ITmwzrWUMg5lueDtYIrOOt2/9r0WL4BoUTjT/bQW8r 2oklG9H7jbuRFvOk5GoeA/Th8H9yClz04HCV35WjFFcmMDljlS5eyKEdafyBB/Ld bAyyKA26xq8lZ3hU6CRGl9fEu6U68bqA5sGua4Yg1fYA0EhPH7Rc3MjfZgi3RLiE tm7JdOwEreo6Xg/OiOEpsLVJQKTteaGmXA94UgnjVMKY+CiACk7Ds8mgKEh84xkr kv8+BFxRkC/OtQVstP85/MjDfF589j1ezsj9bMwfTdnjGUAmNl8= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:57 2024 by rpki-client on console-fra.rpki-client.org