$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_qa3ZdHTskcXownWccNFvW2sum8.roa File: _qa3ZdHTskcXownWccNFvW2sum8.roa (raw, json) Hash identifier: by2L1eYeWJI6NhzVXf1rUHl0Uy6dGynePIei85C16Hs= Subject key identifier: FE:A6:B7:65:D1:D3:B2:47:17:A3:09:D6:71:C3:45:BD:6D:AC:BA:6F Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32B2 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_qa3ZdHTskcXownWccNFvW2sum8.roa Signing time: Mon 26 Aug 2024 05:31:55 +0000 ROA not before: Mon 26 Aug 2024 05:31:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12978 (0x32b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FEA6B765D1D3B24717A309D671C345BD6DACBA6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:37:b4:f5:89:66:45:2e:ea:94:36:66:e1:50: c2:46:15:0f:4f:b7:7e:23:d7:7a:8d:b0:1a:14:aa: e9:94:68:07:45:98:d5:8c:26:2d:f6:2a:1d:94:b1: 8d:36:dc:a7:62:48:70:cb:a6:7a:bd:e2:71:82:84: 9a:ef:39:49:25:17:80:13:4e:30:8a:87:a1:8c:a4: 73:3a:96:84:55:f7:8f:18:63:be:05:dc:b6:fc:73: ec:23:7a:0d:51:e9:d6:2a:4f:28:c7:dd:92:46:eb: b4:c5:4b:31:5d:47:b9:eb:1a:3d:66:17:ec:86:41: 84:13:e0:bc:08:73:82:0d:41:8b:0a:39:7e:e8:0e: 3a:d6:8d:e7:92:3e:d0:72:45:64:a2:91:1a:48:90: 24:3c:c1:9e:cf:e7:c9:7d:37:d9:83:c2:13:87:42: 89:d7:9d:c3:66:de:89:15:39:62:1e:7e:2f:a3:37: 0b:97:36:e8:2a:22:db:f5:8e:51:e0:f3:3c:26:9b: 15:b9:8c:71:2f:0d:b5:c4:48:b0:c2:e5:2b:1b:3d: 0b:68:e1:fc:b7:47:c9:7c:36:15:a7:84:0b:91:33: 59:60:3e:07:97:ce:fb:fd:01:63:85:7b:31:5b:5b: 94:c3:67:1a:0b:93:b4:d8:1d:da:4d:bf:21:c8:34: 94:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:A6:B7:65:D1:D3:B2:47:17:A3:09:D6:71:C3:45:BD:6D:AC:BA:6F X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_qa3ZdHTskcXownWccNFvW2sum8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.192.0/21 Signature Algorithm: sha256WithRSAEncryption 5c:6b:2d:a5:f2:54:f6:8c:6b:7f:64:51:4c:e7:ac:80:96:cf: 59:a0:de:1c:ac:14:1c:28:68:6b:d2:92:d4:21:53:85:40:7c: 8b:ac:18:23:a1:2d:56:3e:a9:24:18:0b:65:58:7f:50:e6:b1: ba:94:25:df:c3:4b:f4:7e:6f:78:ca:ef:46:c7:84:5d:a1:b3: 1f:8d:c7:e1:7d:65:d2:18:a5:66:b7:fd:81:bb:90:e6:f6:2d: d1:9e:84:4a:3e:84:61:97:28:8c:1c:fd:d3:7d:61:46:06:eb: 22:38:d3:a3:83:fe:39:10:4d:bb:f6:11:bd:d4:a6:d1:4f:c6: 0a:cf:a9:55:be:0b:06:84:eb:db:f0:7d:5b:ca:25:8a:84:3c: 0e:0c:47:a3:e6:2c:6b:84:fc:4d:c4:77:ba:e2:11:a6:e0:d4: f1:87:49:20:ec:6b:68:f1:c0:05:c0:6f:26:1f:ef:52:42:dd: 6d:5f:67:11:3c:68:58:ff:b1:d6:e3:c5:f1:ef:ca:59:35:23: cc:d1:2d:9b:9e:b7:1c:7b:cd:0a:7a:92:d5:f5:92:42:87:48: 01:74:98:c4:61:e0:ec:d7:47:61:ac:6d:04:7b:fc:c6:80:40: e4:b6:b9:62:39:b8:f8:8a:4f:0f:bf:92:c1:c0:81:6c:86:3b: 83:04:26:ec -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMrIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZFQTZCNzY1RDFEM0Iy NDcxN0EzMDlENjcxQzM0NUJENkRBQ0JBNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtN7T1iWZFLuqUNmbhUMJGFQ9Pt34j13qNsBoUqumUaAdFmNWM Ji32Kh2UsY023KdiSHDLpnq94nGChJrvOUklF4ATTjCKh6GMpHM6loRV948YY74F 3Lb8c+wjeg1R6dYqTyjH3ZJG67TFSzFdR7nrGj1mF+yGQYQT4LwIc4INQYsKOX7o DjrWjeeSPtByRWSikRpIkCQ8wZ7P58l9N9mDwhOHQonXncNm3okVOWIefi+jNwuX NugqItv1jlHg8zwmmxW5jHEvDbXESLDC5SsbPQto4fy3R8l8NhWnhAuRM1lgPgeX zvv9AWOFezFbW5TDZxoLk7TYHdpNvyHINJSXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU/qa3ZdHTskcXownWccNFvW2sum8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL19xYTNaZEhUc2tjWG93bldj Y05Gdlcyc3VtOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wsAwDQYJKoZIhvcNAQELBQADggEBAFxrLaXyVPaMa39kUUznrICWz1mg3hysFBwo aGvSktQhU4VAfIusGCOhLVY+qSQYC2VYf1DmsbqUJd/DS/R+b3jK70bHhF2hsx+N x+F9ZdIYpWa3/YG7kOb2LdGehEo+hGGXKIwc/dN9YUYG6yI406OD/jkQTbv2Eb3U ptFPxgrPqVW+CwaE69vwfVvKJYqEPA4MR6PmLGuE/E3Ed7riEabg1PGHSSDsa2jx wAXAbyYf71JC3W1fZxE8aFj/sdbjxfHvylk1I8zRLZuetxx7zQp6ktX1kkKHSAF0 mMRh4OzXR2GsbQR7/MaAQOS2uWI5uPiKTw+/ksHAgWyGO4MEJuw= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org