$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cD5ZzQGTQpr09p9_pSFrCaN910g.roa File: cD5ZzQGTQpr09p9_pSFrCaN910g.roa (raw, json) Hash identifier: QhxC8zddtZl9Blq9GElRRM62NigfUQkDTEbnjw3Nd8M= Subject key identifier: 70:3E:59:CD:01:93:42:9A:F4:F6:9F:7F:A5:21:6B:09:A3:7D:D7:48 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2FE6 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cD5ZzQGTQpr09p9_pSFrCaN910g.roa Signing time: Mon 26 Aug 2024 05:28:58 +0000 ROA not before: Mon 26 Aug 2024 05:28:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.192.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12262 (0x2fe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:28:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=703E59CD0193429AF4F69F7FA5216B09A37DD748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:03:f6:50:6a:fd:3d:ca:50:33:1d:ff:53:54: 1f:86:17:32:53:a7:af:f8:ae:27:d6:99:17:c4:6c: 37:60:09:7e:27:ed:4e:a4:a3:d5:5b:de:cc:0b:24: af:5f:93:a3:f2:c0:89:f2:aa:99:aa:35:fd:99:e1: 4e:4f:d1:c7:be:9a:53:93:e0:c1:47:95:1c:91:05: 5a:a1:85:02:e2:2c:79:48:c7:4e:14:ca:f4:01:30: 83:3d:32:05:dc:50:df:09:8a:83:14:d8:f3:7e:92: 72:7f:3a:32:40:bd:21:f9:a2:b8:6b:24:8f:fe:14: 83:17:33:7f:ab:9e:20:de:c4:95:8b:cf:27:3a:0e: f9:c8:18:72:65:26:2a:20:e1:22:5a:ff:88:07:da: 0a:f3:fc:8b:c6:c3:23:47:71:6e:7f:b1:50:c4:0a: 2f:3c:ed:74:33:63:6c:73:7e:2d:c2:cc:68:b3:cb: 7c:89:3a:e8:d4:f4:13:db:b9:00:71:a7:ca:2e:b9: 44:57:d3:97:f7:15:3c:20:64:5a:6d:66:ed:8d:67: 87:98:2d:f9:0d:ba:b1:da:72:19:e3:51:57:0b:5e: c5:d4:4c:4d:20:ee:d4:5f:e1:85:ff:70:54:2a:15: d5:d7:41:7d:7e:bb:e7:ce:3f:b2:a8:d0:bf:d3:89: a2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:3E:59:CD:01:93:42:9A:F4:F6:9F:7F:A5:21:6B:09:A3:7D:D7:48 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cD5ZzQGTQpr09p9_pSFrCaN910g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.152.0/22 Signature Algorithm: sha256WithRSAEncryption 37:cd:9a:54:2a:5d:c6:20:52:48:fb:19:a0:37:84:28:0e:71: 3b:96:8e:3c:a7:f8:a7:8a:25:e4:eb:a8:6e:c0:bb:44:91:d0: 00:61:db:31:1d:99:57:53:8a:83:ae:df:32:35:a0:81:19:32: f3:4b:4a:24:15:62:09:dc:43:51:d4:ed:83:14:5b:d7:86:12: 70:00:2c:4c:ab:01:7b:4f:ed:48:fb:7b:48:4c:75:fb:9f:4e: 7d:09:9d:da:91:a8:18:aa:a4:4f:a3:72:76:f1:6f:c0:5d:35: 6b:17:75:ca:90:34:42:cb:70:43:f4:a2:81:f3:d6:b8:de:63: b2:f8:0a:3b:94:f1:53:28:08:4c:f1:6c:bc:67:f6:5b:48:ca: 4e:70:c9:75:4e:18:10:ae:a9:39:d9:c2:47:5d:c1:11:70:18: 02:03:6b:f8:62:56:0a:82:a1:eb:d7:83:b8:7c:7f:ff:c0:78: 0c:67:4e:7e:72:07:75:63:08:b3:3a:f8:f3:94:aa:eb:2f:f9: bb:cd:7b:e3:61:5e:10:84:92:2a:a6:77:e2:58:28:16:0c:75: a8:e5:07:d1:9f:be:e5:e1:ad:05:d2:64:b0:a4:fc:b8:40:fc: 95:21:e1:c9:2b:18:27:40:1d:ab:b1:0c:f7:f3:f0:f4:63:d1: 71:4e:43:6f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICL+YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI4NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcwM0U1OUNEMDE5MzQy OUFGNEY2OUY3RkE1MjE2QjA5QTM3REQ3NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQA/ZQav09ylAzHf9TVB+GFzJTp6/4rifWmRfEbDdgCX4n7U6k o9Vb3swLJK9fk6PywInyqpmqNf2Z4U5P0ce+mlOT4MFHlRyRBVqhhQLiLHlIx04U yvQBMIM9MgXcUN8JioMU2PN+knJ/OjJAvSH5orhrJI/+FIMXM3+rniDexJWLzyc6 DvnIGHJlJiog4SJa/4gH2grz/IvGwyNHcW5/sVDECi887XQzY2xzfi3CzGizy3yJ OujU9BPbuQBxp8ouuURX05f3FTwgZFptZu2NZ4eYLfkNurHachnjUVcLXsXUTE0g 7tRf4YX/cFQqFdXXQX1+u+fOP7Ko0L/TiaLBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUcD5ZzQGTQpr09p9/pSFrCaN910gwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2NENVp6UUdUUXByMDlwOV9w U0ZyQ2FOOTEwZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wJgwDQYJKoZIhvcNAQELBQADggEBADfNmlQqXcYgUkj7GaA3hCgOcTuWjjyn+KeK JeTrqG7Au0SR0ABh2zEdmVdTioOu3zI1oIEZMvNLSiQVYgncQ1HU7YMUW9eGEnAA LEyrAXtP7Uj7e0hMdfufTn0JndqRqBiqpE+jcnbxb8BdNWsXdcqQNELLcEP0ooHz 1rjeY7L4CjuU8VMoCEzxbLxn9ltIyk5wyXVOGBCuqTnZwkddwRFwGAIDa/hiVgqC oevXg7h8f//AeAxnTn5yB3VjCLM6+POUqusv+bvNe+NhXhCEkiqmd+JYKBYMdajl B9GfvuXhrQXSZLCk/LhA/JUh4ckrGCdAHauxDPfz8PRj0XFOQ28= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:53 2024 by rpki-client on console-ams.rpki-client.org