$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cUZnn87RXNOks4HrSob25vXMVk8.roa File: cUZnn87RXNOks4HrSob25vXMVk8.roa (raw, json) Hash identifier: zbmtkmP26VVdVlwz6V1pltWOMGtAb7hd9qv+RMvFQPk= Subject key identifier: 71:46:67:9F:CE:D1:5C:D3:A4:B3:81:EB:4A:86:F6:E6:F5:CC:56:4F Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 308B Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cUZnn87RXNOks4HrSob25vXMVk8.roa Signing time: Mon 26 Aug 2024 05:29:35 +0000 ROA not before: Mon 26 Aug 2024 05:29:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.108.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12427 (0x308b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:35 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7146679FCED15CD3A4B381EB4A86F6E6F5CC564F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:4b:42:08:68:74:d6:2b:41:4d:b0:94:69:54: ce:df:24:58:54:fe:90:82:ad:18:9a:44:16:09:7e: c1:1f:c7:36:b2:e8:1a:48:ce:33:93:a4:33:a4:88: f8:de:0f:ad:65:10:5e:5b:44:1b:d4:8d:0f:1d:16: e9:38:e8:5b:53:4e:03:a5:a3:60:36:fe:41:35:94: ca:7e:c0:24:6b:b3:ec:b5:b5:df:67:4b:08:bc:c3: e2:95:39:36:45:50:8f:92:59:e3:97:55:15:b2:59: 1d:13:ce:3a:6f:6b:a3:8a:c5:2b:16:f7:22:60:2d: 62:83:30:33:3b:c5:36:40:c7:00:77:e1:f2:6b:93: 9f:d4:51:ac:97:ef:7e:bd:79:f4:86:68:7f:57:58: 0b:f7:73:d4:61:c4:39:25:cc:e4:d2:ce:45:0e:e5: 15:76:88:61:eb:8c:33:82:ac:ec:3a:6d:d4:b3:e1: 2b:97:ff:83:8c:91:93:df:50:ad:98:ce:7e:81:20: 3b:71:c4:a6:6c:a2:e6:78:e7:6b:c5:e6:0e:58:8b: 63:42:56:9a:0a:25:21:ac:2d:64:c7:eb:b9:d1:69: 9d:0e:cc:65:78:3c:7a:52:80:1b:74:a4:d3:df:b5: a4:3f:43:c7:30:1f:45:58:c0:b8:6f:73:ea:c6:ae: 99:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:46:67:9F:CE:D1:5C:D3:A4:B3:81:EB:4A:86:F6:E6:F5:CC:56:4F X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cUZnn87RXNOks4HrSob25vXMVk8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.108.0/22 Signature Algorithm: sha256WithRSAEncryption 74:19:89:8c:4e:e9:6d:f5:97:29:9a:12:0e:85:42:26:b2:a9: 23:c5:c7:8d:c2:60:c5:77:c0:11:ad:19:b6:0c:1a:b1:d7:5e: 4e:d5:78:e1:30:07:65:4e:9b:bd:5e:68:4a:6d:f3:38:51:1d: da:84:a2:e0:86:2e:ed:a9:32:d0:9e:c1:ee:e9:01:58:e1:d7: 57:f1:b8:7d:59:50:9a:34:83:1b:6b:73:f4:ed:08:a1:a9:e7: 2e:7d:49:61:2f:13:75:86:c8:7f:f8:54:3a:58:d3:62:aa:c0: 65:fc:e3:f1:8f:b0:61:79:51:82:a3:35:31:76:ae:d4:42:ed: 9e:ac:f6:0d:73:51:80:83:fc:31:cf:be:9c:95:16:6b:5e:15: d9:62:f1:36:56:9b:d1:07:d9:f9:7a:8b:bc:e8:b3:c5:36:ad: 91:73:27:42:0c:6f:be:ed:49:2e:d5:b8:c0:a2:0e:58:25:0c: 02:a4:09:ce:d7:c6:ee:4e:94:fc:1e:de:ed:6b:5c:49:60:2e: 50:36:e2:e9:3c:44:7b:29:99:69:59:18:01:1d:06:a2:78:38: 6b:39:59:e8:a7:37:d4:88:8e:3c:a7:6a:5f:5f:2b:4e:1a:11: 4d:f8:3e:f9:36:b1:46:3c:e5:65:1f:8f:c0:82:da:38:5e:cb: 7c:63:2e:56 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMIswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcxNDY2NzlGQ0VEMTVD RDNBNEIzODFFQjRBODZGNkU2RjVDQzU2NEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrS0IIaHTWK0FNsJRpVM7fJFhU/pCCrRiaRBYJfsEfxzay6BpI zjOTpDOkiPjeD61lEF5bRBvUjQ8dFuk46FtTTgOlo2A2/kE1lMp+wCRrs+y1td9n Swi8w+KVOTZFUI+SWeOXVRWyWR0Tzjpva6OKxSsW9yJgLWKDMDM7xTZAxwB34fJr k5/UUayX7369efSGaH9XWAv3c9RhxDklzOTSzkUO5RV2iGHrjDOCrOw6bdSz4SuX /4OMkZPfUK2Yzn6BIDtxxKZsouZ452vF5g5Yi2NCVpoKJSGsLWTH67nRaZ0OzGV4 PHpSgBt0pNPftaQ/Q8cwH0VYwLhvc+rGrpk1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUcUZnn87RXNOks4HrSob25vXMVk8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2NVWm5uODdSWE5Pa3M0SHJT b2IyNXZYTVZrOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wmwwDQYJKoZIhvcNAQELBQADggEBAHQZiYxO6W31lymaEg6FQiayqSPFx43CYMV3 wBGtGbYMGrHXXk7VeOEwB2VOm71eaEpt8zhRHdqEouCGLu2pMtCewe7pAVjh11fx uH1ZUJo0gxtrc/TtCKGp5y59SWEvE3WGyH/4VDpY02KqwGX84/GPsGF5UYKjNTF2 rtRC7Z6s9g1zUYCD/DHPvpyVFmteFdli8TZWm9EH2fl6i7zos8U2rZFzJ0IMb77t SS7VuMCiDlglDAKkCc7Xxu5OlPwe3u1rXElgLlA24uk8RHspmWlZGAEdBqJ4OGs5 WeinN9SIjjynal9fK04aEU34Pvk2sUY85WUfj8CC2jhey3xjLlY= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:53 2024 by rpki-client on console-fra.rpki-client.org