$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/beMoQpS-swSvxCw36mi1RqfAcfA.roa File: beMoQpS-swSvxCw36mi1RqfAcfA.roa (raw, json) Hash identifier: OGyvM7D13Mslj4Ie3kCfDIFQONh17fPyWGVxKJ0p840= Subject key identifier: 6D:E3:28:42:94:BE:B3:04:AF:C4:2C:37:EA:68:B5:46:A7:C0:71:F0 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3175 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/beMoQpS-swSvxCw36mi1RqfAcfA.roa Signing time: Mon 26 Aug 2024 05:30:29 +0000 ROA not before: Mon 26 Aug 2024 05:30:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.232.56.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12661 (0x3175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6DE3284294BEB304AFC42C37EA68B546A7C071F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0c:13:e8:37:e5:bc:72:62:c8:bb:a4:eb:ec: 45:c7:e5:68:f1:2a:21:29:de:a8:2b:39:05:30:9f: 23:00:58:ec:38:3a:f3:57:a8:e6:30:1f:2d:37:b3: 1d:fc:11:a9:fd:0c:77:a3:67:55:ab:99:d6:18:d2: 9f:e9:da:15:67:eb:52:e6:35:2f:6b:85:23:85:14: dd:43:f2:07:b6:f0:98:70:c4:7f:cd:6b:d7:3e:d4: 64:0c:db:f0:18:1b:59:ff:f2:f5:b4:07:0a:f4:33: e4:b0:23:f6:8d:2e:bd:97:27:2f:c3:8d:e0:61:2e: 4e:d6:ba:f0:47:41:5d:9a:58:3b:09:d9:32:b3:26: 2d:6d:37:7b:1c:ff:ef:af:b2:66:2d:45:3c:6c:39: e3:61:89:e0:f0:af:ae:0e:b8:90:c8:b7:97:a4:23: ff:71:0f:c0:dd:39:35:72:d9:c8:79:81:97:70:99: 08:f1:74:36:66:ea:26:7d:58:03:ac:73:08:f8:35: 93:9d:ff:00:8e:2f:d0:07:e2:c1:68:cc:2c:2b:cb: 21:81:c5:eb:51:e5:44:57:aa:ea:3d:18:57:7b:e3: ab:40:8a:0c:09:2a:0e:6e:bb:18:86:c4:ca:2a:9c: d6:dc:5c:5d:93:68:c8:8e:73:41:13:fc:5d:e1:2f: 3d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:E3:28:42:94:BE:B3:04:AF:C4:2C:37:EA:68:B5:46:A7:C0:71:F0 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/beMoQpS-swSvxCw36mi1RqfAcfA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.56.0/21 Signature Algorithm: sha256WithRSAEncryption 8b:40:ed:83:a5:5e:23:96:7d:31:00:c2:7f:dc:15:e0:0b:cf: 7b:19:71:61:29:96:ed:a8:98:86:c6:51:c5:f8:74:9c:c1:14: 9a:dd:c6:87:e8:b3:92:46:5a:e0:d3:8e:75:93:e9:06:fc:b9: 04:33:58:fe:17:28:68:64:75:4b:f2:f2:85:87:93:d7:60:af: ac:35:28:2e:40:91:75:08:02:14:bd:1b:b9:4c:53:65:d9:8c: 47:24:bc:07:e3:4d:cd:63:25:e7:78:a3:e5:86:06:7d:9f:47: 02:88:15:97:f8:6d:92:e3:4c:52:de:c5:4b:d2:60:03:7f:26: f4:8a:79:5e:52:0c:24:52:83:ac:4b:e3:c8:69:0b:35:31:e1: 35:6b:92:07:23:e2:51:f8:89:e2:ba:f3:ac:52:0e:bd:c4:89: 1b:89:06:14:66:f3:57:c1:20:2e:29:45:e9:fe:7b:9a:08:f4: e0:3b:de:5e:d2:dc:fd:28:19:b3:1c:ea:6d:c3:22:43:90:82: a1:4b:55:3b:c6:7a:ac:77:09:3a:47:44:02:c9:98:d3:20:28: 06:43:0f:52:15:d9:88:13:7a:e1:86:2b:6e:42:c9:03:51:a4: d8:a4:5f:31:26:18:4e:7a:95:66:bc:dc:ec:3a:1a:03:f2:04: 66:cf:3c:7e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMXUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZERTMyODQyOTRCRUIz MDRBRkM0MkMzN0VBNjhCNTQ2QTdDMDcxRjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHDBPoN+W8cmLIu6Tr7EXH5WjxKiEp3qgrOQUwnyMAWOw4OvNX qOYwHy03sx38Ean9DHejZ1WrmdYY0p/p2hVn61LmNS9rhSOFFN1D8ge28JhwxH/N a9c+1GQM2/AYG1n/8vW0Bwr0M+SwI/aNLr2XJy/DjeBhLk7WuvBHQV2aWDsJ2TKz Ji1tN3sc/++vsmYtRTxsOeNhieDwr64OuJDIt5ekI/9xD8DdOTVy2ch5gZdwmQjx dDZm6iZ9WAOscwj4NZOd/wCOL9AH4sFozCwryyGBxetR5URXquo9GFd746tAigwJ Kg5uuxiGxMoqnNbcXF2TaMiOc0ET/F3hLz0nAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUbeMoQpS+swSvxCw36mi1RqfAcfAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2JlTW9RcFMtc3dTdnhDdzM2 bWkxUnFmQWNmQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6DgwDQYJKoZIhvcNAQELBQADggEBAItA7YOlXiOWfTEAwn/cFeALz3sZcWEplu2o mIbGUcX4dJzBFJrdxofos5JGWuDTjnWT6Qb8uQQzWP4XKGhkdUvy8oWHk9dgr6w1 KC5AkXUIAhS9G7lMU2XZjEckvAfjTc1jJed4o+WGBn2fRwKIFZf4bZLjTFLexUvS YAN/JvSKeV5SDCRSg6xL48hpCzUx4TVrkgcj4lH4ieK686xSDr3EiRuJBhRm81fB IC4pRen+e5oI9OA73l7S3P0oGbMc6m3DIkOQgqFLVTvGeqx3CTpHRALJmNMgKAZD D1IV2YgTeuGGK25CyQNRpNikXzEmGE56lWa83Ow6GgPyBGbPPH4= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:53 2024 by rpki-client on console-ams.rpki-client.org