$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/a87ze2CI77u4kJZJg8o1uoac_UQ.roa File: a87ze2CI77u4kJZJg8o1uoac_UQ.roa (raw, json) Hash identifier: 4uyuamlQlx4UDD9+VN+kGwaUfp8ofuix1rpixCpc3o4= Subject key identifier: 6B:CE:F3:7B:60:88:EF:BB:B8:90:96:49:83:CA:35:BA:86:9C:FD:44 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32C8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/a87ze2CI77u4kJZJg8o1uoac_UQ.roa Signing time: Mon 26 Aug 2024 05:32:00 +0000 ROA not before: Mon 26 Aug 2024 05:32:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13000 (0x32c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:32:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6BCEF37B6088EFBBB890964983CA35BA869CFD44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:33:47:d5:3f:b3:a3:25:4f:27:53:58:8e:ef: 52:ff:6d:1d:b4:b5:19:41:73:7f:c8:d6:69:14:54: e3:21:58:55:89:c9:54:4a:af:9f:84:d4:2b:fd:18: e0:56:6d:f1:7e:7b:a6:1d:b6:a2:e4:81:02:40:73: 10:7b:aa:77:11:1f:79:06:22:2f:77:29:ae:8f:3f: f7:db:24:04:b9:51:dd:65:3c:f4:f8:af:5f:cc:98: 77:d9:45:04:53:77:74:03:08:f6:f1:7f:14:d2:c9: 6e:66:0c:9c:15:8d:d7:28:6e:a3:af:04:83:f4:35: 58:2d:f2:43:ef:0a:cb:02:5f:0c:01:24:b5:ce:d8: 44:69:3d:fb:f0:44:94:b0:72:34:f7:4c:9c:2e:da: ad:9f:c8:fb:74:cd:78:f6:c4:09:71:64:fc:60:27: 2d:33:cd:30:5a:eb:96:d9:e0:05:e5:57:da:33:6d: fe:54:7b:7d:36:84:bb:20:dd:56:8d:2f:e2:c5:db: bb:7b:29:b2:6b:2d:30:cc:5d:8d:e0:f4:99:85:9f: 45:68:0e:ff:fe:45:08:cd:c4:dd:c2:fe:8f:7e:8e: 98:22:b2:85:63:97:76:8d:70:93:e2:78:3c:ea:39: 17:76:cf:77:58:be:62:a3:de:7d:83:f0:84:fa:47: 91:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:CE:F3:7B:60:88:EF:BB:B8:90:96:49:83:CA:35:BA:86:9C:FD:44 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/a87ze2CI77u4kJZJg8o1uoac_UQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.94.0/24 Signature Algorithm: sha256WithRSAEncryption b2:e0:dd:a6:d8:c2:2f:78:87:dd:96:5c:f8:8c:f2:60:69:59: ea:1d:29:2a:e6:e7:a3:91:78:c8:ca:72:80:87:6a:1d:d8:c9: f0:f8:89:5c:8f:b4:97:6e:1a:be:91:9d:8b:14:4d:91:e5:a7: 53:dc:90:9c:5f:fc:6a:8f:06:67:3d:7e:01:26:3b:33:ff:72: 7e:55:40:57:e0:ba:bf:59:e7:c6:bb:34:a2:b9:3b:7f:ad:4c: 24:0f:9e:84:08:fb:c7:fc:21:ab:c1:6c:8d:fc:15:97:d7:27: 9e:07:d1:57:bb:0c:52:b4:86:ed:b8:c0:d0:4e:55:01:30:2a: 68:2e:a2:c6:fa:82:56:b3:1e:82:19:72:72:07:f1:3b:32:8e: 69:da:38:ac:70:79:da:14:a0:77:14:ab:ae:d6:11:56:c6:02: a4:9b:04:75:ed:74:7c:35:28:0e:69:f1:dc:51:ef:40:fa:86: 85:59:b5:0b:6f:ad:53:54:93:1e:51:bc:a1:ea:54:42:65:1d: d8:75:6a:4c:77:ff:a3:89:68:2e:1e:cf:a1:7e:0b:4f:ee:ae: 63:49:1d:7e:98:a2:5c:4a:e8:80:39:81:3e:fa:67:a8:d6:a6: 8e:62:80:48:1f:ab:e5:c4:31:83:c2:37:dd:8b:65:fa:c5:d3: 57:15:68:47 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMsgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMyMDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZCQ0VGMzdCNjA4OEVG QkJCODkwOTY0OTgzQ0EzNUJBODY5Q0ZENDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXM0fVP7OjJU8nU1iO71L/bR20tRlBc3/I1mkUVOMhWFWJyVRK r5+E1Cv9GOBWbfF+e6YdtqLkgQJAcxB7qncRH3kGIi93Ka6PP/fbJAS5Ud1lPPT4 r1/MmHfZRQRTd3QDCPbxfxTSyW5mDJwVjdcobqOvBIP0NVgt8kPvCssCXwwBJLXO 2ERpPfvwRJSwcjT3TJwu2q2fyPt0zXj2xAlxZPxgJy0zzTBa65bZ4AXlV9ozbf5U e302hLsg3VaNL+LF27t7KbJrLTDMXY3g9JmFn0VoDv/+RQjNxN3C/o9+jpgisoVj l3aNcJPieDzqORd2z3dYvmKj3n2D8IT6R5GXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUa87ze2CI77u4kJZJg8o1uoac/UQwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2E4N3plMkNJNzd1NGtKWkpn OG8xdW9hY19VUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 wV4wDQYJKoZIhvcNAQELBQADggEBALLg3abYwi94h92WXPiM8mBpWeodKSrm56OR eMjKcoCHah3YyfD4iVyPtJduGr6RnYsUTZHlp1PckJxf/GqPBmc9fgEmOzP/cn5V QFfgur9Z58a7NKK5O3+tTCQPnoQI+8f8IavBbI38FZfXJ54H0Ve7DFK0hu24wNBO VQEwKmguosb6glazHoIZcnIH8TsyjmnaOKxwedoUoHcUq67WEVbGAqSbBHXtdHw1 KA5p8dxR70D6hoVZtQtvrVNUkx5RvKHqVEJlHdh1akx3/6OJaC4ez6F+C0/urmNJ HX6YolxK6IA5gT76Z6jWpo5igEgfq+XEMYPCN92LZfrF01cVaEc= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:53 2024 by rpki-client on console-fra.rpki-client.org