$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aq3YZ1t42L37bYFe4L23VZVakwc.roa File: aq3YZ1t42L37bYFe4L23VZVakwc.roa (raw, json) Hash identifier: 5K8yhbfHZW9YMZVwXmXedadiurcJuMT4lP32etMwxnk= Subject key identifier: 6A:AD:D8:67:5B:78:D8:BD:FB:6D:81:5E:E0:BD:B7:55:95:5A:93:07 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3294 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aq3YZ1t42L37bYFe4L23VZVakwc.roa Signing time: Mon 26 Aug 2024 05:31:47 +0000 ROA not before: Mon 26 Aug 2024 05:31:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 118.232.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12948 (0x3294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6AADD8675B78D8BDFB6D815EE0BDB755955A9307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6f:38:73:10:c0:7b:99:9c:31:1e:18:5d:74: 25:58:52:3a:0d:fd:ee:1f:a5:8f:50:08:76:65:02: 86:09:f6:10:f4:46:80:05:ab:4e:74:93:a7:c3:a3: 1f:1e:d3:7f:2e:e4:73:a2:b8:aa:a3:22:97:a4:42: 07:32:03:59:9f:b5:07:e4:14:90:80:cc:44:f3:95: ed:09:79:f3:59:eb:6e:70:9f:a7:fd:03:13:6e:e8: 07:13:15:4b:5a:73:5b:b0:ec:d2:db:87:1d:8b:3a: d7:2f:1e:e0:88:d6:a4:7c:61:40:8d:e3:87:70:0d: 60:71:8b:3f:d7:be:1a:1d:5c:34:f9:c8:cb:b1:ea: 9e:2e:e5:61:d9:65:9b:e0:96:d6:c5:9a:d6:58:ff: 89:28:14:43:b4:42:fd:b3:71:55:c9:de:62:d2:49: 3e:83:6e:40:fe:58:18:3e:4a:aa:a6:06:04:10:32: 7e:9d:15:49:60:05:0b:69:f1:5a:7c:99:47:84:af: be:8e:a6:dc:08:29:c8:19:e2:a0:f7:a1:a2:26:94: 7b:85:da:12:38:53:74:b5:53:d8:a6:3a:7f:5d:f0: 50:0a:72:a8:a4:64:1c:8d:8d:36:2b:f5:3a:43:dd: 99:36:0c:00:2d:29:75:f1:ad:f6:bd:cd:46:99:04: 56:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:AD:D8:67:5B:78:D8:BD:FB:6D:81:5E:E0:BD:B7:55:95:5A:93:07 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aq3YZ1t42L37bYFe4L23VZVakwc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.192.0/22 Signature Algorithm: sha256WithRSAEncryption a0:2f:11:54:c1:1d:79:69:e3:56:f4:9a:0f:13:bd:99:45:88: 1e:45:41:1c:fd:bf:30:69:84:f1:a2:dd:f5:cf:7d:c1:e8:b7: 4f:e0:63:cd:ac:c9:a6:b1:7e:82:89:82:ec:65:ab:35:2d:15: 70:c8:05:69:7f:fa:4b:c6:10:7a:01:8f:51:11:51:0f:25:ca: 5d:ec:19:6f:27:eb:ff:21:51:60:8e:b2:fd:02:0f:d2:a5:df: 54:a9:54:b4:28:34:a9:58:02:6c:63:14:b4:f0:a4:9e:9c:41: 99:a6:78:91:5e:c0:f7:38:7d:b8:01:6d:37:5b:76:64:8d:b2: e9:97:45:5c:5c:43:64:da:3b:76:f8:2a:99:a9:8d:44:9b:ea: ba:90:bd:96:db:d2:e1:bc:09:77:a8:f4:3c:6d:a7:3d:d8:fd: b4:bf:2c:17:61:15:b9:0e:bd:77:1b:3c:c8:8c:bf:ad:37:f9: 1a:88:7d:19:09:c5:97:09:0b:52:2b:eb:4e:03:7c:4f:06:0a: 3c:e7:54:99:cf:c8:99:56:91:d9:d9:18:86:74:12:fc:d3:4c: a7:60:96:4b:d1:6d:0a:c4:aa:25:9c:f7:60:ec:0f:9a:ba:97: da:eb:74:03:aa:bb:71:bb:36:ce:4b:0c:30:6b:05:1c:cf:5e: 88:92:11:c1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMpQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZBQUREODY3NUI3OEQ4 QkRGQjZEODE1RUUwQkRCNzU1OTU1QTkzMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkbzhzEMB7mZwxHhhddCVYUjoN/e4fpY9QCHZlAoYJ9hD0RoAF q050k6fDox8e038u5HOiuKqjIpekQgcyA1mftQfkFJCAzETzle0JefNZ625wn6f9 AxNu6AcTFUtac1uw7NLbhx2LOtcvHuCI1qR8YUCN44dwDWBxiz/XvhodXDT5yMux 6p4u5WHZZZvgltbFmtZY/4koFEO0Qv2zcVXJ3mLSST6DbkD+WBg+SqqmBgQQMn6d FUlgBQtp8Vp8mUeEr76OptwIKcgZ4qD3oaImlHuF2hI4U3S1U9imOn9d8FAKcqik ZByNjTYr9TpD3Zk2DAAtKXXxrfa9zUaZBFZdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUaq3YZ1t42L37bYFe4L23VZVakwcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2FxM1laMXQ0MkwzN2JZRmU0 TDIzVlpWYWt3Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6MAwDQYJKoZIhvcNAQELBQADggEBAKAvEVTBHXlp41b0mg8TvZlFiB5FQRz9vzBp hPGi3fXPfcHot0/gY82syaaxfoKJguxlqzUtFXDIBWl/+kvGEHoBj1ERUQ8lyl3s GW8n6/8hUWCOsv0CD9Kl31SpVLQoNKlYAmxjFLTwpJ6cQZmmeJFewPc4fbgBbTdb dmSNsumXRVxcQ2TaO3b4KpmpjUSb6rqQvZbb0uG8CXeo9Dxtpz3Y/bS/LBdhFbkO vXcbPMiMv603+RqIfRkJxZcJC1Ir604DfE8GCjznVJnPyJlWkdnZGIZ0EvzTTKdg lkvRbQrEqiWc92DsD5q6l9rrdAOqu3G7Ns5LDDBrBRzPXoiSEcE= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:57 2024 by rpki-client on console-fra.rpki-client.org