$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bqWFN9yrc_97ceL-bNFoLpEv_A0.roa File: bqWFN9yrc_97ceL-bNFoLpEv_A0.roa (raw, json) Hash identifier: YB11aJvSjYvMjjFdMAfDxmmkhDUXQXH6Ew4d+dHHIKo= Subject key identifier: 6E:A5:85:37:DC:AB:73:FF:7B:71:E2:FE:6C:D1:68:2E:91:2F:FC:0D Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3274 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bqWFN9yrc_97ceL-bNFoLpEv_A0.roa Signing time: Mon 26 Aug 2024 05:31:41 +0000 ROA not before: Mon 26 Aug 2024 05:31:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12916 (0x3274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:41 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6EA58537DCAB73FF7B71E2FE6CD1682E912FFC0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ea:cf:e6:c0:9a:d7:75:fa:ea:45:a8:c6:0a: 17:24:ac:b4:f9:85:84:fc:5b:f8:7b:f9:57:44:38: 31:be:a2:91:62:b9:1d:24:03:e3:db:fc:58:9d:0a: 59:7c:07:fa:f9:69:9f:d5:e2:d0:89:0f:cd:ab:7e: 53:e8:42:98:f3:63:6a:28:9a:f3:a2:48:04:2e:d4: 48:88:a6:d3:e8:12:25:e0:6b:1a:7a:d7:c8:b5:a6: 7d:07:2a:6f:a3:f7:41:62:fa:47:f0:60:ae:55:08: 5f:2c:69:6d:ad:51:af:ac:bb:3f:66:3e:f5:ee:c5: e3:cd:7a:9a:69:dc:0b:c7:86:9a:c9:cc:39:2c:14: d8:3a:eb:29:07:bc:82:96:59:c2:4b:7a:91:b4:4b: b6:19:2e:92:17:83:8a:c8:fc:79:b1:7a:08:ed:f0: 80:03:af:f6:3c:52:cd:4b:13:d3:7b:e5:3f:92:2c: 38:e0:17:9c:f0:d1:f9:b0:a6:24:10:cd:e1:c1:29: 35:bd:e0:71:af:f8:5a:b5:08:0d:27:5e:47:99:c6: 7e:ea:4b:11:92:91:11:80:1f:71:53:1d:d3:df:f8: 87:55:f6:00:c2:f6:5d:1d:b1:01:94:a7:31:72:e9: 62:f3:89:88:78:c8:ff:ef:3c:6c:8f:ad:29:96:69: 08:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:A5:85:37:DC:AB:73:FF:7B:71:E2:FE:6C:D1:68:2E:91:2F:FC:0D X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/bqWFN9yrc_97ceL-bNFoLpEv_A0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.128.0/22 Signature Algorithm: sha256WithRSAEncryption 84:9c:7d:33:26:13:53:c6:91:d0:08:3d:73:58:04:28:19:bf: 0c:7d:06:44:7c:0f:17:7b:54:f4:74:1d:2f:a9:98:64:f4:65: a5:65:42:32:01:c7:af:c9:87:b9:86:b0:95:96:d0:c3:f2:62: 62:2a:62:94:e1:67:56:f5:89:df:d1:c2:43:05:5f:1f:24:d5: 8e:a5:2b:d8:2c:89:15:f9:6b:4b:31:fb:64:d5:77:b1:5f:a1: de:c5:06:76:ba:27:ab:47:47:c1:b8:f6:86:ef:9f:5f:2d:8a: dc:5d:13:9e:00:4a:b7:bf:8c:9b:28:4a:b9:1e:22:44:75:81: 37:7b:22:43:63:2e:08:77:2d:18:5e:79:e2:cc:ea:6f:fb:d7: 27:45:e1:9b:48:17:fe:33:7a:73:a2:f1:e9:67:e9:1e:78:5a: d2:0a:87:86:28:ae:3f:e4:46:59:ab:74:9b:f0:d1:20:bb:f6: 63:e8:7b:17:a6:ca:c2:e5:26:a6:b1:5f:8b:85:0b:ce:f0:fd: f1:82:93:af:04:32:4a:ff:9d:ff:68:74:50:b2:59:28:ff:7d: 28:45:86:17:b0:e5:82:21:6f:d4:5d:d8:fc:a1:a5:1f:52:96: 22:6c:65:b7:d9:3c:e3:40:15:80:8f:ac:fc:1d:47:8a:a4:8e: bf:42:2b:95 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMnQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZFQTU4NTM3RENBQjcz RkY3QjcxRTJGRTZDRDE2ODJFOTEyRkZDMEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDa6s/mwJrXdfrqRajGChckrLT5hYT8W/h7+VdEODG+opFiuR0k A+Pb/FidCll8B/r5aZ/V4tCJD82rflPoQpjzY2oomvOiSAQu1EiIptPoEiXgaxp6 18i1pn0HKm+j90Fi+kfwYK5VCF8saW2tUa+suz9mPvXuxePNeppp3AvHhprJzDks FNg66ykHvIKWWcJLepG0S7YZLpIXg4rI/Hmxegjt8IADr/Y8Us1LE9N75T+SLDjg F5zw0fmwpiQQzeHBKTW94HGv+Fq1CA0nXkeZxn7qSxGSkRGAH3FTHdPf+IdV9gDC 9l0dsQGUpzFy6WLziYh4yP/vPGyPrSmWaQgBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUbqWFN9yrc/97ceL+bNFoLpEv/A0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2JxV0ZOOXlyY185N2NlTC1i TkZvTHBFdl9BMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wYAwDQYJKoZIhvcNAQELBQADggEBAIScfTMmE1PGkdAIPXNYBCgZvwx9BkR8Dxd7 VPR0HS+pmGT0ZaVlQjIBx6/Jh7mGsJWW0MPyYmIqYpThZ1b1id/RwkMFXx8k1Y6l K9gsiRX5a0sx+2TVd7Ffod7FBna6J6tHR8G49obvn18titxdE54ASre/jJsoSrke IkR1gTd7IkNjLgh3LRheeeLM6m/71ydF4ZtIF/4zenOi8eln6R54WtIKh4Yorj/k RlmrdJvw0SC79mPoexemysLlJqaxX4uFC87w/fGCk68EMkr/nf9odFCyWSj/fShF hhew5YIhb9Rd2PyhpR9SliJsZbfZPONAFYCPrPwdR4qkjr9CK5U= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:20 2024 by rpki-client on console-ams.rpki-client.org