$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZZtJ7jFx5XtqmJUIkrjS4CnT8LQ.roa File: ZZtJ7jFx5XtqmJUIkrjS4CnT8LQ.roa (raw, json) Hash identifier: sRiW3P6Y+XS8EdVX59mjKOZa3w4fabuUI1VSetdFP8s= Subject key identifier: 65:9B:49:EE:31:71:E5:7B:6A:98:95:08:92:B8:D2:E0:29:D3:F0:B4 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2FD7 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZZtJ7jFx5XtqmJUIkrjS4CnT8LQ.roa Signing time: Mon 26 Aug 2024 05:28:54 +0000 ROA not before: Mon 26 Aug 2024 05:28:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12247 (0x2fd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:28:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=659B49EE3171E57B6A98950892B8D2E029D3F0B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:92:97:90:c6:11:5d:71:f7:13:a9:c2:f7:11: 50:86:09:e5:99:f3:b9:d8:10:44:de:c7:14:d0:39: 40:7b:27:b0:ef:db:11:74:8a:65:8a:97:6d:ad:e0: fc:6e:ed:36:52:be:9a:a1:3a:41:d6:15:bf:e4:52: 21:76:de:20:3e:7e:f2:30:48:b2:c2:0c:f6:8d:5c: 63:f9:aa:e4:c8:f2:e8:b3:86:89:4b:0e:50:04:9c: ce:fe:16:ef:01:2e:4c:5d:e3:c7:bb:16:98:8d:e7: 2e:72:41:e6:68:ae:22:9c:cb:c7:64:58:cd:4f:21: 52:42:d6:01:bf:da:5d:32:3c:07:42:3d:1a:5c:1f: 52:61:df:ba:f6:65:80:dc:91:ad:4d:a4:5e:5a:44: 48:06:f7:5c:52:dc:e5:de:80:53:fb:7d:1d:1f:ba: e3:9c:c9:bc:63:e8:e8:48:05:64:d3:49:74:a4:d0: 31:f5:d9:f1:3a:2b:40:ae:60:ab:e2:c0:42:39:ce: e5:eb:bf:03:f7:c2:06:08:b3:7f:9c:56:9d:c6:39: af:c9:42:e9:01:eb:71:90:19:dd:d1:41:84:9c:86: d2:95:42:0f:2c:31:d4:11:7d:db:f2:2b:93:b5:68: 40:6b:c6:48:f4:67:2f:16:a9:8e:94:d0:35:a2:aa: ae:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:9B:49:EE:31:71:E5:7B:6A:98:95:08:92:B8:D2:E0:29:D3:F0:B4 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ZZtJ7jFx5XtqmJUIkrjS4CnT8LQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.14.0/23 Signature Algorithm: sha256WithRSAEncryption 66:bb:63:43:92:db:72:e7:d1:3e:f3:02:5b:b5:2d:19:70:1c: e9:bb:ae:0a:92:01:10:62:59:7c:22:44:2a:52:a8:2a:a6:94: 23:45:d0:fb:2a:b0:b9:31:23:c9:1a:22:b9:2b:10:55:4d:94: 9e:75:d3:62:c9:e3:77:c5:a9:7e:2d:1d:68:81:34:dc:44:33: 58:47:45:04:2e:51:9b:e5:54:3f:c6:89:e8:0e:1e:cd:d7:85: 96:ff:3a:46:76:41:d4:06:ef:97:36:67:55:f1:0d:4a:98:f8: 1b:13:f5:22:c1:9a:05:b6:7e:b0:dc:3e:a9:cf:15:cf:e3:6e: e9:66:be:84:f3:ca:af:fe:8d:63:b7:f1:cf:de:24:0b:93:21: cc:98:49:fd:b8:cf:ec:a8:c7:98:2d:79:74:e6:eb:22:90:73: 77:75:0f:48:cb:af:59:41:a5:c9:21:3e:59:e7:a8:b5:17:1e: ca:5a:28:d3:2c:9c:a8:4e:aa:e8:3e:de:2c:cb:39:62:14:9d: 03:10:c6:21:6c:69:bb:e7:25:a0:46:36:49:ac:99:1a:5c:d8: 35:9f:be:1b:18:d6:c9:14:90:26:0f:89:e5:6d:61:34:7b:38: 3c:b0:49:d8:83:f9:35:a6:e5:c1:e5:20:8d:18:5d:e1:48:5f: 37:d8:a6:72 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICL9cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI4NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY1OUI0OUVFMzE3MUU1 N0I2QTk4OTUwODkyQjhEMkUwMjlEM0YwQjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJkpeQxhFdcfcTqcL3EVCGCeWZ87nYEETexxTQOUB7J7Dv2xF0 imWKl22t4Pxu7TZSvpqhOkHWFb/kUiF23iA+fvIwSLLCDPaNXGP5quTI8uizholL DlAEnM7+Fu8BLkxd48e7FpiN5y5yQeZoriKcy8dkWM1PIVJC1gG/2l0yPAdCPRpc H1Jh37r2ZYDcka1NpF5aREgG91xS3OXegFP7fR0fuuOcybxj6OhIBWTTSXSk0DH1 2fE6K0CuYKviwEI5zuXrvwP3wgYIs3+cVp3GOa/JQukB63GQGd3RQYSchtKVQg8s MdQRfdvyK5O1aEBrxkj0Zy8WqY6U0DWiqq7HAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUZZtJ7jFx5XtqmJUIkrjS4CnT8LQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1padEo3akZ4NVh0cW1KVUlr cmpTNENuVDhMUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFq AQ4wDQYJKoZIhvcNAQELBQADggEBAGa7Y0OS23Ln0T7zAlu1LRlwHOm7rgqSARBi WXwiRCpSqCqmlCNF0PsqsLkxI8kaIrkrEFVNlJ5102LJ43fFqX4tHWiBNNxEM1hH RQQuUZvlVD/GiegOHs3XhZb/OkZ2QdQG75c2Z1XxDUqY+BsT9SLBmgW2frDcPqnP Fc/jbulmvoTzyq/+jWO38c/eJAuTIcyYSf24z+yox5gteXTm6yKQc3d1D0jLr1lB pckhPlnnqLUXHspaKNMsnKhOqug+3izLOWIUnQMQxiFsabvnJaBGNkmsmRpc2DWf vhsY1skUkCYPieVtYTR7ODywSdiD+TWm5cHlII0YXeFIXzfYpnI= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:50 2024 by rpki-client on console-fra.rpki-client.org