$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bV_y9inDnSFmqfTB8DrcEN0dKL4.roa File: bV_y9inDnSFmqfTB8DrcEN0dKL4.roa (raw, json) Hash identifier: jK9+KJzhpseMUYD94pkEcKcVUQ0na2jM1bKU/MCwH/Y= Subject key identifier: 6D:5F:F2:F6:29:C3:9D:21:66:A9:F4:C1:F0:3A:DC:10:DD:1D:28:BE Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3188 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bV_y9inDnSFmqfTB8DrcEN0dKL4.roa Signing time: Mon 26 Aug 2024 05:30:33 +0000 ROA not before: Mon 26 Aug 2024 05:30:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 118.232.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12680 (0x3188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:33 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6D5FF2F629C39D2166A9F4C1F03ADC10DD1D28BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:11:21:55:7c:24:20:ff:9d:ff:19:4d:e9:1f: cd:c0:3b:34:ae:23:59:75:c9:fa:9c:b9:c6:4a:8e: 96:9f:54:86:11:f4:2a:05:73:eb:58:a2:61:e9:fa: 5f:f9:d8:df:1c:bb:f4:47:8e:6f:75:f8:18:b2:9e: aa:76:14:c1:ad:cb:26:ec:2a:6e:1c:69:60:2f:05: 21:60:7b:5a:f2:ff:f2:f6:76:72:98:07:75:c6:23: bb:35:30:54:70:00:3f:89:4c:63:5f:30:04:06:df: 86:b6:54:ae:eb:35:2c:62:88:aa:7a:3d:ca:06:18: 59:7e:90:16:21:36:49:d3:6d:8e:56:fe:75:08:be: 04:37:1b:dd:90:ab:ee:79:c1:be:92:a8:e1:e7:07: ea:63:2f:38:46:2f:b3:44:81:40:de:90:ea:45:d8: 42:43:9e:3e:b6:13:f4:a7:47:34:1d:b9:4a:d7:96: 94:da:5d:0d:97:dc:92:a6:e2:71:46:78:48:dc:ac: 1c:d2:86:a2:de:c6:9a:07:4f:88:0f:55:bc:8e:8f: d7:2b:47:f4:43:16:bf:a1:d2:0d:d0:15:27:3c:0c: 19:3e:3c:56:e6:34:9e:0c:09:44:f4:46:b4:35:fb: 59:fe:8a:81:5e:4e:1f:41:83:df:02:4f:ba:31:7a: c3:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:5F:F2:F6:29:C3:9D:21:66:A9:F4:C1:F0:3A:DC:10:DD:1D:28:BE X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bV_y9inDnSFmqfTB8DrcEN0dKL4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.220.0/22 Signature Algorithm: sha256WithRSAEncryption 82:62:35:1d:9e:8b:c4:bb:af:4a:e4:a8:7a:29:ad:4f:f9:e1: 11:a6:09:42:3a:fb:3f:98:78:ea:1f:88:c4:06:d7:38:7c:86: 51:b5:7e:14:ae:ed:fe:27:e0:b4:57:3e:d0:da:68:2f:dc:66: 8f:8d:80:2a:7b:e3:af:84:75:78:55:5a:e5:83:5f:6e:d1:2d: 41:23:62:60:70:bc:1e:e8:a2:15:ee:e8:ff:fb:f3:b3:87:28: 9d:fd:ad:5c:ca:26:2e:52:6e:a4:50:7b:07:bb:00:10:18:d8: 01:4d:47:0b:c4:a5:fe:cf:20:b2:66:7a:89:58:57:3e:35:73: 07:e1:b6:aa:d6:ee:06:a5:96:d2:93:c8:8c:e4:8e:91:d9:5d: 34:31:76:bd:0b:d1:57:d7:d7:4f:f5:fe:37:32:03:94:c9:9e: dc:b7:b3:fd:10:72:f4:ef:33:dc:66:4d:f8:ae:f9:3a:87:0f: d7:e7:a8:e5:38:f4:93:8f:14:11:9a:2e:df:e0:3f:dc:64:af: b7:11:c3:de:0e:ea:94:08:fe:ca:75:47:85:2b:0c:78:15:54: f3:77:ac:0a:5f:88:9d:f5:5d:ef:fa:12:9a:3d:90:56:59:b1: f0:73:8b:f0:80:dc:21:76:b4:9c:e4:60:90:09:94:73:97:52: 15:a9:36:6f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMYgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZENUZGMkY2MjlDMzlE MjE2NkE5RjRDMUYwM0FEQzEwREQxRDI4QkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKESFVfCQg/53/GU3pH83AOzSuI1l1yfqcucZKjpafVIYR9CoF c+tYomHp+l/52N8cu/RHjm91+Biynqp2FMGtyybsKm4caWAvBSFge1ry//L2dnKY B3XGI7s1MFRwAD+JTGNfMAQG34a2VK7rNSxiiKp6PcoGGFl+kBYhNknTbY5W/nUI vgQ3G92Qq+55wb6SqOHnB+pjLzhGL7NEgUDekOpF2EJDnj62E/SnRzQduUrXlpTa XQ2X3JKm4nFGeEjcrBzShqLexpoHT4gPVbyOj9crR/RDFr+h0g3QFSc8DBk+PFbm NJ4MCUT0RrQ1+1n+ioFeTh9Bg98CT7oxesOjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUbV/y9inDnSFmqfTB8DrcEN0dKL4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2JWX3k5aW5EblNGbXFmVEI4 RHJjRU4wZEtMNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6NwwDQYJKoZIhvcNAQELBQADggEBAIJiNR2ei8S7r0rkqHoprU/54RGmCUI6+z+Y eOofiMQG1zh8hlG1fhSu7f4n4LRXPtDaaC/cZo+NgCp746+EdXhVWuWDX27RLUEj YmBwvB7oohXu6P/787OHKJ39rVzKJi5SbqRQewe7ABAY2AFNRwvEpf7PILJmeolY Vz41cwfhtqrW7galltKTyIzkjpHZXTQxdr0L0VfX10/1/jcyA5TJnty3s/0QcvTv M9xmTfiu+TqHD9fnqOU49JOPFBGaLt/gP9xkr7cRw94O6pQI/sp1R4UrDHgVVPN3 rApfiJ31Xe/6Epo9kFZZsfBzi/CA3CF2tJzkYJAJlHOXUhWpNm8= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:50 2024 by rpki-client on console-fra.rpki-client.org