$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aF_Z7CpRFi82o1yB6OwFz0fPVaA.roa File: aF_Z7CpRFi82o1yB6OwFz0fPVaA.roa (raw, json) Hash identifier: 48Ycm//Zx6804K5Au436DS2MSpY2rE8lmPZO4Mo/040= Subject key identifier: 68:5F:D9:EC:2A:51:16:2F:36:A3:5C:81:E8:EC:05:CF:47:CF:55:A0 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 329E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aF_Z7CpRFi82o1yB6OwFz0fPVaA.roa Signing time: Mon 26 Aug 2024 05:31:50 +0000 ROA not before: Mon 26 Aug 2024 05:31:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12958 (0x329e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=685FD9EC2A51162F36A35C81E8EC05CF47CF55A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d5:9b:fe:ac:73:54:be:c0:bd:ff:41:ff:ad: 6a:75:de:a7:0a:c6:ec:1c:7d:2f:95:0c:91:a5:3d: c4:38:74:71:a7:85:96:45:50:bd:8a:aa:c1:87:20: 5e:9e:76:9b:cd:15:e4:69:12:d7:cf:46:9f:36:5b: 6b:d3:94:8c:cf:8d:44:53:eb:b6:d3:e7:b6:cb:9a: 52:ed:11:51:db:7d:57:40:55:99:9f:88:6e:ce:75: 0d:cc:78:fe:55:21:57:bb:1c:35:ab:56:97:6b:ae: b9:57:b0:da:ef:30:4f:f6:2c:64:4f:1c:18:6e:20: f1:32:90:b7:08:c7:60:b9:c2:4a:32:a2:66:32:c5: 36:19:15:e0:cb:a8:66:77:98:bd:a2:ac:8b:c8:56: 2b:b1:d6:ed:34:6f:8f:66:c1:a2:81:cc:93:d7:83: 59:c6:0d:4d:64:f6:ad:b2:25:e0:92:b0:53:93:1b: c6:b0:64:ca:8d:72:f7:7b:ab:7e:31:28:52:a2:34: bb:51:bb:54:a9:a4:a3:44:fa:7b:24:4c:1b:8c:76: d0:17:eb:f8:53:48:ec:62:08:71:cf:aa:b6:b8:af: 51:3d:47:70:ee:02:44:a6:2d:21:c4:8d:a3:73:9a: bf:f4:57:4e:3e:c5:0f:0f:18:3e:74:65:d5:37:01: 68:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:5F:D9:EC:2A:51:16:2F:36:A3:5C:81:E8:EC:05:CF:47:CF:55:A0 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aF_Z7CpRFi82o1yB6OwFz0fPVaA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.104.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:fc:7e:15:67:2f:47:e9:e9:d7:cc:20:27:4b:e6:7d:9d:7b: d6:0d:d9:99:d7:1f:68:5e:6f:36:2d:18:d4:e1:9e:50:ab:bd: e7:11:18:2b:a6:30:85:80:b8:4b:9e:28:85:90:c6:f6:1f:db: 58:93:f3:e7:83:4c:27:36:7b:b4:38:8e:e4:b0:d2:7c:6c:b1: ae:a0:44:5b:8f:9e:1e:19:c9:dd:63:47:3e:75:43:77:ea:5e: 0e:c0:44:27:92:67:ca:16:5c:da:8f:bd:38:af:27:0e:46:90: 3a:1a:35:e7:02:d0:38:f4:b5:71:e3:de:87:0a:d3:b5:aa:ca: fb:1d:ea:26:fb:6e:cd:23:95:23:bf:4e:db:c9:2a:0b:6c:8e: 0a:ea:f1:fc:01:7f:1a:1d:a4:95:ec:b0:7c:37:6f:d4:f7:de: d2:39:00:d9:2d:1f:a1:86:be:79:c5:47:9f:21:18:d0:4c:ea: 0f:d9:11:8c:4f:6a:37:d2:96:d0:51:c2:8e:fe:e7:96:70:e8: 5c:2d:1b:95:aa:d7:4a:94:7f:51:01:8d:1f:cf:64:54:7b:d6: 07:d7:a6:85:80:e1:81:01:d9:bc:4c:f4:35:2b:16:08:77:93: 24:de:f1:63:f8:68:52:af:ea:a9:3f:ce:ef:2b:bf:94:46:53: c2:a2:09:c9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMp4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY4NUZEOUVDMkE1MTE2 MkYzNkEzNUM4MUU4RUMwNUNGNDdDRjU1QTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDH1Zv+rHNUvsC9/0H/rWp13qcKxuwcfS+VDJGlPcQ4dHGnhZZF UL2KqsGHIF6edpvNFeRpEtfPRp82W2vTlIzPjURT67bT57bLmlLtEVHbfVdAVZmf iG7OdQ3MeP5VIVe7HDWrVpdrrrlXsNrvME/2LGRPHBhuIPEykLcIx2C5wkoyomYy xTYZFeDLqGZ3mL2irIvIViux1u00b49mwaKBzJPXg1nGDU1k9q2yJeCSsFOTG8aw ZMqNcvd7q34xKFKiNLtRu1SppKNE+nskTBuMdtAX6/hTSOxiCHHPqra4r1E9R3Du AkSmLSHEjaNzmr/0V04+xQ8PGD50ZdU3AWgnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUaF/Z7CpRFi82o1yB6OwFz0fPVaAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2FGX1o3Q3BSRmk4Mm8xeUI2 T3dGejBmUFZhQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AWgwDQYJKoZIhvcNAQELBQADggEBAC38fhVnL0fp6dfMICdL5n2de9YN2ZnXH2he bzYtGNThnlCrvecRGCumMIWAuEueKIWQxvYf21iT8+eDTCc2e7Q4juSw0nxssa6g RFuPnh4Zyd1jRz51Q3fqXg7ARCeSZ8oWXNqPvTivJw5GkDoaNecC0Dj0tXHj3ocK 07Wqyvsd6ib7bs0jlSO/TtvJKgtsjgrq8fwBfxodpJXssHw3b9T33tI5ANktH6GG vnnFR58hGNBM6g/ZEYxPajfSltBRwo7+55Zw6FwtG5Wq10qUf1EBjR/PZFR71gfX poWA4YEB2bxM9DUrFgh3kyTe8WP4aFKv6qk/zu8rv5RGU8KiCck= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:50 2024 by rpki-client on console-fra.rpki-client.org