$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/arRa3U9yC-6IVxQ0D265123zyXU.roa File: arRa3U9yC-6IVxQ0D265123zyXU.roa (raw, json) Hash identifier: 8DxjUbMzZzpofQ9jSPUyGEzcQWMmlOlGxoymQ0wzoVc= Subject key identifier: 6A:B4:5A:DD:4F:72:0B:EE:88:57:14:34:0F:6E:B9:D7:6D:F3:C9:75 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 301B Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/arRa3U9yC-6IVxQ0D265123zyXU.roa Signing time: Mon 26 Aug 2024 05:29:08 +0000 ROA not before: Mon 26 Aug 2024 05:29:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 123.195.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12315 (0x301b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6AB45ADD4F720BEE885714340F6EB9D76DF3C975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4a:1b:d3:5c:33:e1:f8:8b:51:d6:d1:5f:64: 79:81:8c:48:f2:47:94:a6:6e:e6:ad:be:a2:96:80: 65:66:65:4a:28:7f:ba:6d:87:3f:7d:47:62:3f:36: c2:35:2a:d1:9a:50:04:41:6b:44:19:da:25:f0:a5: ba:b2:64:01:1d:d0:cb:a8:c0:37:85:b7:40:9c:4d: c6:03:c8:40:70:62:ff:ca:a5:c0:b8:55:fd:08:f0: 90:d2:e5:49:55:07:3b:e3:50:47:40:ea:d3:18:f9: 5e:ec:22:86:1e:d7:bf:cc:46:21:46:39:2d:ec:e6: b3:03:20:d9:61:70:af:e3:ef:ea:34:15:cc:8e:28: 98:e2:99:82:ae:bc:3d:85:5d:c3:fb:78:2e:66:cd: 4b:2e:b0:13:58:d0:6a:0f:4b:3b:6c:a9:f3:e8:cb: 59:8f:21:da:f3:2d:09:f6:1c:a4:27:b8:2b:b5:27: 70:5e:be:88:e4:bd:11:82:56:97:66:35:fe:b0:dc: e5:56:1c:3b:27:69:f6:29:df:19:90:12:e0:de:6c: af:57:5c:37:b7:e1:b8:01:4e:3a:f3:69:3f:ec:1c: 9d:34:80:1f:1c:57:c6:69:7a:29:c7:40:bb:31:d8: e4:3c:2a:15:1f:d0:fb:8f:b6:70:90:8f:9b:2c:a1: 11:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:B4:5A:DD:4F:72:0B:EE:88:57:14:34:0F:6E:B9:D7:6D:F3:C9:75 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/arRa3U9yC-6IVxQ0D265123zyXU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.128.0/19 Signature Algorithm: sha256WithRSAEncryption 21:c7:a8:87:44:d3:bd:95:f4:70:88:81:cf:61:9b:47:8c:71: bc:e9:a2:ec:0c:1f:ca:20:51:f9:cc:0a:19:06:bb:db:58:12: a4:e9:24:18:03:15:a9:11:74:2a:7b:e8:3a:00:0c:60:46:a9: 0c:9e:1c:eb:1c:d0:8f:a6:94:c2:03:fa:f0:4f:b3:54:1d:8a: 14:da:09:65:49:87:e9:e1:6c:b3:6e:b0:2a:ff:c4:80:08:9c: 63:11:8b:f0:cf:e4:c5:55:3d:c9:0f:35:32:a6:02:7d:69:34: 13:b2:bd:82:79:e0:3b:89:c5:5e:7f:32:6a:51:bb:cc:08:c5: 7e:51:a9:3f:e2:24:1a:ba:46:6f:b9:83:cb:bb:30:6b:46:c7: 38:63:db:d6:1d:68:30:b5:d7:ce:22:4b:51:b2:9b:c0:09:53: a1:de:2e:56:2f:fd:7f:47:25:31:48:d8:72:0c:89:f8:99:6d: d0:9a:8d:ee:ba:0a:37:21:4c:6c:aa:ed:2d:3c:2d:eb:2e:48: 5f:7e:d9:f4:5e:a9:e8:78:2c:a2:d6:9b:c3:a9:c0:97:7c:94: 44:14:a2:c5:63:dc:ad:69:29:21:d6:63:9b:9e:9d:e1:5b:9d: 74:33:74:fa:dc:19:bf:a0:61:8c:61:af:41:60:51:c6:aa:34: dc:65:75:7b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMBswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZBQjQ1QURENEY3MjBC RUU4ODU3MTQzNDBGNkVCOUQ3NkRGM0M5NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6ShvTXDPh+ItR1tFfZHmBjEjyR5SmbuatvqKWgGVmZUoof7pt hz99R2I/NsI1KtGaUARBa0QZ2iXwpbqyZAEd0MuowDeFt0CcTcYDyEBwYv/KpcC4 Vf0I8JDS5UlVBzvjUEdA6tMY+V7sIoYe17/MRiFGOS3s5rMDINlhcK/j7+o0FcyO KJjimYKuvD2FXcP7eC5mzUsusBNY0GoPSztsqfPoy1mPIdrzLQn2HKQnuCu1J3Be vojkvRGCVpdmNf6w3OVWHDsnafYp3xmQEuDebK9XXDe34bgBTjrzaT/sHJ00gB8c V8ZpeinHQLsx2OQ8KhUf0PuPtnCQj5ssoRH3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUarRa3U9yC+6IVxQ0D265123zyXUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2FyUmEzVTl5Qy02SVZ4UTBE MjY1MTIzenlYVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV7 w4AwDQYJKoZIhvcNAQELBQADggEBACHHqIdE072V9HCIgc9hm0eMcbzpouwMH8og UfnMChkGu9tYEqTpJBgDFakRdCp76DoADGBGqQyeHOsc0I+mlMID+vBPs1QdihTa CWVJh+nhbLNusCr/xIAInGMRi/DP5MVVPckPNTKmAn1pNBOyvYJ54DuJxV5/MmpR u8wIxX5RqT/iJBq6Rm+5g8u7MGtGxzhj29YdaDC1184iS1Gym8AJU6HeLlYv/X9H JTFI2HIMifiZbdCaje66CjchTGyq7S08LesuSF9+2fReqeh4LKLWm8OpwJd8lEQU osVj3K1pKSHWY5ueneFbnXQzdPrcGb+gYYxhr0FgUcaqNNxldXs= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:20 2024 by rpki-client on console-ams.rpki-client.org