$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bJjx-bkvkRx-AaarIgGY--bsaVA.roa File: bJjx-bkvkRx-AaarIgGY--bsaVA.roa (raw, json) Hash identifier: KZSEQ0iZF5t9fxv2yfZoFC3tUfqi3D+n8DJBBBNB3zk= Subject key identifier: 6C:98:F1:F9:B9:2F:91:1C:7E:01:A6:AB:22:01:98:FB:E6:EC:69:50 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3061 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bJjx-bkvkRx-AaarIgGY--bsaVA.roa Signing time: Mon 26 Aug 2024 05:29:24 +0000 ROA not before: Mon 26 Aug 2024 05:29:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12385 (0x3061) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6C98F1F9B92F911C7E01A6AB220198FBE6EC6950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b9:67:6d:9a:e8:86:5b:af:e1:fc:40:a0:6f: 5f:7d:0f:3f:f8:ba:6d:20:27:23:bb:f8:33:5d:90: f8:20:fe:36:e7:2d:d5:86:0f:47:17:4c:44:c3:1e: ab:00:75:1e:7c:18:4f:a6:00:5c:55:f2:46:52:db: 16:33:72:7b:25:0b:f3:bd:8c:c2:05:34:fc:3a:47: 72:9b:35:cd:45:c5:22:fe:a0:eb:0f:0e:5f:67:72: 43:a8:7f:d3:73:b9:8c:9b:50:70:14:71:ac:52:b3: 2e:2a:8e:86:82:ba:e4:ae:60:2e:61:07:e6:50:e9: 73:cc:98:4a:e0:0a:0f:27:43:d8:25:a0:ff:1e:e6: ed:8c:0e:60:2a:46:91:01:12:7d:7d:c7:b0:a2:23: fd:ae:38:94:a3:1b:3b:c8:0c:fc:38:ec:37:42:e2: 31:d8:88:4d:ac:c0:64:ca:fe:86:e3:61:a6:64:eb: 95:f4:e8:3c:ba:2e:2f:b5:31:b8:b1:18:9a:d3:84: 88:5d:de:ef:4c:ca:6c:94:05:cb:ef:03:7e:86:97: a9:b3:96:93:77:b3:84:bd:63:9c:59:e4:e0:f7:e5: 8a:ea:95:23:c3:43:3d:9f:07:44:18:9e:d4:8d:83: e4:de:17:50:e2:fb:33:41:59:d9:85:6f:05:14:af: bf:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:98:F1:F9:B9:2F:91:1C:7E:01:A6:AB:22:01:98:FB:E6:EC:69:50 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bJjx-bkvkRx-AaarIgGY--bsaVA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.178.0/24 Signature Algorithm: sha256WithRSAEncryption a5:0b:8e:2e:3e:29:ab:c8:c1:f2:ae:cb:ce:72:5f:1a:94:11: 48:7f:ca:78:a4:b9:0d:e6:b5:6f:3a:1d:cc:ff:d8:2f:c9:77: 43:c4:0e:6c:6e:66:f6:ca:fa:9f:2a:1f:72:9f:a2:c8:d1:ee: f1:39:9d:5d:f1:4b:ef:45:a1:35:a9:44:be:01:ac:93:ac:1d: b8:f2:df:dc:8a:91:c6:9e:8d:43:f0:cd:8b:94:78:32:ea:ff: 02:d3:1a:62:ca:77:ae:f2:a4:d1:5f:5c:52:4b:a9:dc:08:54: 1f:28:1e:87:2e:28:fe:b2:2b:30:7a:39:59:2f:19:fc:f3:00: c1:5f:1f:89:d5:aa:13:20:d2:4f:35:f5:b1:26:b3:02:fd:43: 42:42:96:da:e8:f7:22:cc:d6:09:29:fd:00:3e:90:3f:b1:b4: ec:85:ac:75:13:16:0d:21:f0:2d:1c:b0:44:40:ad:f5:c5:15: c0:e1:32:f5:0c:d4:ad:f6:b8:8e:fb:70:cd:6d:76:5a:30:87: ee:10:21:a7:91:c9:be:33:f7:0b:fd:80:d1:cb:e0:f9:ce:80: db:a8:c8:26:12:87:be:40:46:d4:87:05:fc:bb:c0:e1:7f:a3: 4c:34:bb:d8:86:9b:bb:f1:d8:3d:da:02:a1:b2:45:62:9d:29: 0d:00:15:89 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMGEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZDOThGMUY5QjkyRjkx MUM3RTAxQTZBQjIyMDE5OEZCRTZFQzY5NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCauWdtmuiGW6/h/ECgb199Dz/4um0gJyO7+DNdkPgg/jbnLdWG D0cXTETDHqsAdR58GE+mAFxV8kZS2xYzcnslC/O9jMIFNPw6R3KbNc1FxSL+oOsP Dl9nckOof9NzuYybUHAUcaxSsy4qjoaCuuSuYC5hB+ZQ6XPMmErgCg8nQ9gloP8e 5u2MDmAqRpEBEn19x7CiI/2uOJSjGzvIDPw47DdC4jHYiE2swGTK/objYaZk65X0 6Dy6Li+1MbixGJrThIhd3u9MymyUBcvvA36Gl6mzlpN3s4S9Y5xZ5OD35YrqlSPD Qz2fB0QYntSNg+TeF1Di+zNBWdmFbwUUr78jAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUbJjx+bkvkRx+AaarIgGY++bsaVAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2JKangtYmt2a1J4LUFhYXJJ Z0dZLS1ic2FWQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB2 6bIwDQYJKoZIhvcNAQELBQADggEBAKULji4+KavIwfKuy85yXxqUEUh/ynikuQ3m tW86Hcz/2C/Jd0PEDmxuZvbK+p8qH3KfosjR7vE5nV3xS+9FoTWpRL4BrJOsHbjy 39yKkcaejUPwzYuUeDLq/wLTGmLKd67ypNFfXFJLqdwIVB8oHocuKP6yKzB6OVkv GfzzAMFfH4nVqhMg0k819bEmswL9Q0JCltro9yLM1gkp/QA+kD+xtOyFrHUTFg0h 8C0csERArfXFFcDhMvUM1K32uI77cM1tdlowh+4QIaeRyb4z9wv9gNHL4PnOgNuo yCYSh75ARtSHBfy7wOF/o0w0u9iGm7vx2D3aAqGyRWKdKQ0AFYk= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:53 2024 by rpki-client on console-fra.rpki-client.org